Add option to revoke the existing certificate when creating one.

2020-05-04 23:02:48 +02:00 · 2020-05-04 23:02:48 +02:00 · df6d06d848
parent a9b2fdd832
commit df6d06d848
1 changed files with 16 additions and 2 deletions
--- a/18
+++ b/18
@ -327,7 +327,14 @@ create() {

        # check if CN already exist
        if [ -f "${CRT_DIR}/${cn}.crt" ]; then
-            error "${cn} already used !"
+            printf "%s already exists, do you revoke and recreate it ? [y/N] " "${cn}"
+            read -r REPLY
+            resp=$(echo "${REPLY}" | tr 'Y' 'y')
+            if [ "${resp}" = "y" ]; then
+                revoke "${cn}"
+            else
+                error "Abort"
+            fi
        fi

        # ca sign and generate cert
@ -346,7 +353,14 @@ create() {

        # check if CN already exist
        if [ -f "${CRT_DIR}/${cn}.crt" ]; then
-            error "${cn} already used !"
+            printf "%s already exists, do you revoke and recreate it ? [y/N] " "${cn}"
+            read -r REPLY
+            resp=$(echo "${REPLY}" | tr 'Y' 'y')
+            if [ "${resp}" = "y" ]; then
+                revoke "${cn}"
+            else
+                error "Abort"
+            fi
        fi

        # ask for CA passphrase