WebSVN – sysadmin_scripts – Diff – /trunk/ssl_certs/deployCert

 my $remoteCommand = 'chmod 644 /etc/certificates/* && chown root:root /etc/certificates/* && service apache2 reload';
 my $hostname = shift;
 my $certname = shift;
 die "Usage: $0 hostname [certname]\n" unless $hostname;
-$certname .= '*' unless $certname;
+# get list of all crt files (without the extension) into @temp
+my @temp;
+if ( $certname ) {
+   die "Can not find $certname ending in .crt or .key\n" unless -f "$serverCertDir$certname.crt" && -f "$serverCertDir$certname.key";
+   push @temp, "$serverCertDir$certname";
+} else {
+   opendir my $dh, $serverCertDir or die "Can not find cert directory $certDir: $!\n";
+   # get all matching cert files
+   my @temp = grep { /^$certname.*\.crt/ } readdir( $dh );
+   closedir $dh;
+   for ( my $i = 0; $i < @temp; $i++ ) {
+      $temp[$i] =~ s/crt$//;
+   }
+}
+# make pem, create a list of all files to copy
+my $filesToCopy;
+foreach my $file ( @temp ) {
+   die "Can not find $key file $file\n" unless -e "$file\.key";
+   `cat $file.crt $file.key > $file.pem`;
+   $filesToCopy .= "$file.crt";
+   $filesToCopy .= "$file.key";
+   $filesToCopy .= "$file.pem";
+}
+# ensure target directory exists on $hostname
+`ssh $hostname 'mkdir -p /etc/certificates`;
+# copy the files
-`scp $serverCertDir$certname.crt $serverCertDir$certname.key $hostname:$targetDir`;
+`scp $filesToCopy $hostname:$targetDir`;
+# set permissions and reload services
 `ssh $hostname '$remoteCommand'`;
 print "$hostname updated and web server restarted\n";
 ;

Subversion Repositories sysadmin_scripts