michael/michaelschiemer
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
6c266861ecde2eaaeea8d46b1c471f9e658777fa
michaelschiemer/scripts/ssl/generate_ssl_certificates.sh
Michael Schiemer 36ef2a1e2c
Some checks failed
🚀 Build & Deploy Image / Determine Build Necessity (push) Failing after 10m14s
Details
🚀 Build & Deploy Image / Build Runtime Base Image (push) Has been skipped
Details
🚀 Build & Deploy Image / Build Docker Image (push) Has been skipped
Details
🚀 Build & Deploy Image / Run Tests & Quality Checks (push) Has been skipped
Details
🚀 Build & Deploy Image / Auto-deploy to Staging (push) Has been skipped
Details
🚀 Build & Deploy Image / Auto-deploy to Production (push) Has been skipped
Details
Security Vulnerability Scan / Check for Dependency Changes (push) Failing after 11m25s
Details
Security Vulnerability Scan / Composer Security Audit (push) Has been cancelled
Details
fix: Gitea Traefik routing and connection pool optimization 
- Remove middleware reference from Gitea Traefik labels (caused routing issues)
- Optimize Gitea connection pool settings (MAX_IDLE_CONNS=30, authentication_timeout=180s)
- Add explicit service reference in Traefik labels
- Fix intermittent 504 timeouts by improving PostgreSQL connection handling

Fixes Gitea unreachability via git.michaelschiemer.de
2025-11-09 14:46:15 +01:00

36 lines
1.0 KiB
Bash
Executable File
Raw Blame History

#!/bin/bash
# Generiert selbstsignierte Zertifikate für die lokale Entwicklung
mkdir -p ssl
# Generiere Root-CA
openssl req -x509 -nodes -new -sha256 -days 1024 -newkey rsa:2048 \
-keyout ssl/rootCA.key -out ssl/rootCA.pem \
-subj "/C=DE/ST=Berlin/L=Berlin/O=Development/CN=Local Development CA"
# Generiere localhost-Zertifikat
openssl req -new -nodes -newkey rsa:2048 \
-keyout ssl/localhost+2-key.pem -out ssl/localhost.csr \
-subj "/C=DE/ST=Berlin/L=Berlin/O=Development/CN=localhost"
# Konfigurationsdatei für Alternativen Namen
cat > ssl/localhost.ext << EOF
authorityKeyIdentifier=keyid,issuer
basicConstraints=CA:FALSE
keyUsage = digitalSignature, nonRepudiation, keyEncipherment, dataEncipherment
subjectAltName = @alt_names
[alt_names]
DNS.1 = localhost
DNS.2 = *.localhost
IP.1 = 127.0.0.1
EOF
# Signiere das Zertifikat
openssl x509 -req -in ssl/localhost.csr \
-CA ssl/rootCA.pem -CAkey ssl/rootCA.key -CAcreateserial \
-out ssl/localhost+2.pem -days 500 \
-sha256 -extfile ssl/localhost.ext
echo "SSL certificates generated:"
ls -la ssl/
Reference in New Issue View Git Blame Copy Permalink