#! /usr/bin/perl
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see .
#
# Copyright (C) 2016 - 2017 Raphaƫl Gertz
# Best practice
use strict;
use warnings;
# Load required modules
use JSON;
use Tie::IxHash;
# Load POSIX
use POSIX qw(EXIT_SUCCESS EXIT_FAILURE);
# XXX: Debug
use Data::Dumper;
# Init redhat
my @redhat = ();
# Init debian
my @debian = ();
# Init root
my %root = ();
tie(%root, 'Tie::IxHash', thumbprint => '/etc/acmepl/thumbprint', certificates => []);
# Init prod
my $prod = 0;
# Strip and enable prod
@ARGV = map { if ($_ eq '-p') { $prod = 1; (); } else { $_; } } @ARGV;
# Strip and enable debug
for (my $i = 0; $i <= $#ARGV; $i++) {
# Match redhat types
if ($ARGV[$i] =~ /^(?:(\-r|\-\-redhat)(?:=([^-][a-zA-Z0-9_\.,-]+))?)$/) {
if (defined($2)) {
push(@redhat, split(',', $2));
# Extract next parameter
} elsif(defined($ARGV[$i+1]) && $ARGV[$i+1] =~ /^([^-][a-zA-Z0-9_\.,-]+)$/) {
push(@redhat, split(',', $1));
$i++;
# Set default
} else {
push(@redhat, ('example.com'));
}
# Match debian types
} elsif ($ARGV[$i] =~ /^(?:(\-d|\-\-debian)(?:=([^-][a-zA-Z0-9_\.,-]+))?)$/) {
if (defined($2)) {
push(@debian, split(',', $2));
# Extract next parameter
} elsif(defined($ARGV[$i+1]) && $ARGV[$i+1] =~ /^([^-][a-zA-Z0-9_\.,-]+)$/) {
push(@debian, split(',', $1));
$i++;
# Set default
} else {
push(@debian, ('example.com'));
}
}
}
# Show usage
if (scalar(@ARGV) < 1) {
print "Usage: $0 [(-d|--debian)[=example.com[,...]] [(-r|--redhat)[=example.com[,...]]] [...] > /etc/acmepl/config\n";
exit EXIT_FAILURE;
}
# Append redhat style examples
foreach my $key (@redhat) {
tie(%{$root{certificates}[$#{$root{certificates}}+1]}, 'Tie::IxHash', (
# Public cert
#XXX: required
cert => '/etc/pki/tls/certs/'.$key.'.pem',
# Private key
#XXX: required
key => '/etc/pki/tls/private/'.$key.'.pem',
# Mail address
#XXX: required
mail => 'webmaster@'.$key,
# Root domain
#XXX: required
domain => 'www.'.$key,
# Domain list
#XXX: required
domains => [
$key,
'...'
],
# Production certificate
#XXX: optional
#XXX: set to 1 for production
prod => $prod
));
}
# Append debian style examples
foreach my $key (@debian) {
tie(%{$root{certificates}[$#{$root{certificates}}+1]}, 'Tie::IxHash', (
# Public cert
#XXX: required
cert => '/etc/ssl/certs/'.$key.'.crt',
# Private key
#XXX: required
key => '/etc/ssl/private/'.$key.'.key',
# Mail address
#XXX: required
mail => 'webmaster@'.$key,
# Root domain
#XXX: required
domain => 'www.'.$key,
# Domain list
#XXX: required
domains => [
$key,
'...'
],
# Production certificate
#XXX: optional
#XXX: set to 1 for production
prod => $prod
));
}
# Display configuration template
print to_json(\%root, {pretty => 1});
# Exit with success
exit EXIT_SUCCESS;