From 0261e875679f1bf63c8d689da7fc7e014597885d Mon Sep 17 00:00:00 2001
From: Stonewall Jackson <stonewall@sacredheartsc.com>
Date: Sat, 4 Feb 2023 01:23:43 -0500
Subject: initial commit

---
 .../usr/local/sbin/unifi-certificate-update.sh.j2  | 33 ++++++++++++++++++++++
 1 file changed, 33 insertions(+)
 create mode 100644 roles/unifi/templates/usr/local/sbin/unifi-certificate-update.sh.j2

(limited to 'roles/unifi/templates')

diff --git a/roles/unifi/templates/usr/local/sbin/unifi-certificate-update.sh.j2 b/roles/unifi/templates/usr/local/sbin/unifi-certificate-update.sh.j2
new file mode 100644
index 0000000..becb349
--- /dev/null
+++ b/roles/unifi/templates/usr/local/sbin/unifi-certificate-update.sh.j2
@@ -0,0 +1,33 @@
+#!/bin/bash
+
+exec 1> >(logger -s -t $(basename "$0")) 2>&1
+
+UNIFI_KEYSTORE='{{ unifi_keystore }}'
+CERT_PATH='{{ unifi_certificate_path }}'
+CA_PATH='{{ unifi_certificate_ca_path }}'
+KEY_PATH='{{ unifi_certificate_key_path }}'
+PKCS12_PATH='/etc/pki/tls/private/unifi.p12'
+PASSWORD='aircontrolenterprise'
+
+openssl pkcs12         \
+  -export              \
+  -in "$CERT_PATH"     \
+  -inkey "$KEY_PATH"   \
+  -out "$PKCS12_PATH"  \
+  -name unifi          \
+  -CAfile "$CA_PATH"   \
+  -caname root         \
+  -password pass:"$PASSWORD"
+
+keytool                           \
+  -importkeystore                 \
+  -deststorepass "$PASSWORD"      \
+  -destkeypass "$PASSWORD"        \
+  -destkeystore "$UNIFI_KEYSTORE" \
+  -srckeystore "$PKCS12_PATH"     \
+  -srcstoretype PKCS12            \
+  -srcstorepass "$PASSWORD"       \
+  -alias unifi                    \
+  -noprompt
+
+systemctl restart unifi
-- 
cgit