#!/bin/bash

if [ -z "$1" ]; then
    echo "Usage: $0 <name>"
    exit 1
fi

NAME=$1
CA_DIR=/etc/nginx/ca-certs
CERT_DIR=/etc/nginx/certs
DAYS_VALID=365
COUNTRY="UA"
STATE="Kyiv"
CITY="Kyiv"
ORGANIZATION="Wocker"
ORG_UNIT="Wocker"
COMMON_NAME=$NAME

mkdir -p $CERT_DIR

openssl req \
    -new \
    -nodes \
    -newkey rsa:2048 \
    -keyout $CERT_DIR/$NAME.key \
    -out $CERT_DIR/$NAME.csr \
    -subj "/C=$COUNTRY/ST=$STATE/L=$CITY/O=$ORGANIZATION/OU=$ORG_UNIT/CN=$COMMON_NAME"

openssl x509 \
    -req \
    -sha256 \
    -days 1024 \
    -in $CERT_DIR/$NAME.csr \
    -CA $CA_DIR/Wocker-CA.pem \
    -CAkey $CA_DIR/Wocker-CA.key \
    -CAcreateserial \
    -extfile $CERT_DIR/$NAME.ext \
    -out $CERT_DIR/$NAME.crt
