#!/usr/bin/bash
# create ssl certificates for docker network
# create signing ca (minimal pki)
openssl req -new -config etc/kopano-ca.conf -out ca/kopano-ca.csr -keyout private/kopano-ca.key
openssl ca -selfsign -config etc/kopano-ca.conf -in ca/kopano-ca.csr -out certs/kopano-ca.crt -extensions signing_ca_ext
# create kopano server ssl key (for encryption)
set SAN=DNS:server
openssl req -new -config etc/kopano-server.conf -out certs/kopano-server.csr -keyout private/kopano-server.key
openssl ca -config etc/kopano-ca.conf -in certs/kopano-server.csr -out certs/kopano-server.crt -extensions server_ext

# create kopano clients ssl key pair (for authentification)
# private key for client, public key for server sslkeys
create-key dagent
create-key spooler
create-key search
create-key webapp
create-key z-push