4 # Outputs the keyfiles to stdout as tar.gz
6 rm -f /tmp
/vpn-mk-client-cert.log
7 exec 2>/tmp
/vpn-mk-client-cert.log
14 echo common_name
=$common_name >&2
16 server_dir
=/etc
/openvpn
17 if [[ -e /etc
/openvpn
/server
]]; then
18 server_dir
=/etc
/openvpn
/server
21 cafile
=$server_dir/ca-
$name.crt
23 ### begin section roughly copied from vpn-server-setup
24 rsadir
=/etc
/openvpn
/easy-rsa-
$name
27 $rsadir/pki
/private
/$common_name.key
28 $rsadir/pki
/issued
/$common_name.crt
30 if [[ -e /etc
/openvpn
/easy-rsa-
$name/build-ca
]]; then
33 $rsadir/keys
/$common_name.key
34 $rsadir/keys
/$common_name.crt
37 ### end section roughly copied from vpn-server-setup
39 if [[ ! -e $cafile ]]; then
40 echo error
: no cafile found
at $cafile >/tmp
/errors
45 for x
in ${keyfiles[@]}; do
46 if [[ ! -e $x ]]; then
54 cd /etc
/openvpn
/easy-rsa-
$name
56 .
/easyrsa build-client-full
$common_name nopass
>/dev
/null
58 source vars
>/dev
/null
60 { echo -e '\n\n\n\n\n'$common_name'\n\n\n\n\n'; sleep 2; echo -e 'y\ny\n'; } | .
/build-key
$name >/dev
/null
65 cp $server_dir/ta-
$name.key
$cafile $d
66 for f
in ${keyfiles[@]}; do
67 cp $f $d/$name.
${f##*.}