#!/bin/sh

domain=$1

if [ "$domain" = "" ]
then
echo "Enter Domain name after script name: sh make-selfsigncert.sh domainname"
exit
fi

if [ ! -d /etc/ssl-wildcard/$domain ]
then
mkdir -p /etc/ssl-wildcard/$domain
fi

echo "the steps for making this were taken from here: http://www.tc.umn.edu/~brams006/selfsign.html"

openssl genrsa -des3 -out /etc/ssl-wildcard/$domain/$domain-server.key 2048

openssl req -new -key /etc/ssl-wildcard/$domain/$domain-server.key -out /etc/ssl-wildcard/$domain/$domain-server.csr

openssl x509 -req -days 365 -in /etc/ssl-wildcard/$domain/$domain-server.csr -signkey /etc/ssl-wildcard/$domain/$domain-server.key -out /etc/ssl-wildcard/$domain/$domain-server.crt

openssl rsa -in /etc/ssl-wildcard/$domain/$domain-server.key -out /etc/ssl-wildcard/$domain/$domain-server.key.insecure
mv /etc/ssl-wildcard/$domain/$domain-server.key /etc/ssl-wildcard/$domain/$domain-server.key.secure
mv /etc/ssl-wildcard/$domain/$domain-server.key.insecure /etc/ssl-wildcard/$domain/$domain-server.key

echo "your key has been generated, it is good for 365 days, edit your apps and point to"
echo "/etc/ssl-wildcard/$domain/$domain-server.key"
echo "/etc/ssl-wildcard/$domain/$domain-server.crt"
echo "/etc/ssl-wildcard/$domain/$domain-server.csr"