chore: modified code to use self-signed ssl certificates

2025-05-10 10:43:06 +00:00 · 2025-04-19 01:20:58 -04:00 · 2025-04-19 01:20:58 -04:00 · a5b33da0fa
commit a5b33da0fa
parent d050976484
7 changed files with 89 additions and 7 deletions
--- a/generate-certs.sh
+++ b/generate-certs.sh
@ -0,0 +1,43 @@
+#!/bin/bash
+
+# Get the Effective User ID
+_uid="$(id -u)"
+
+# Create the certificates directory
+mkdir -p certs
+
+# Generate PostgreSQL Certificates
+openssl req -new -x509 -days 365 -nodes \
+  -out certs/psql-server.crt \
+  -keyout certs/psql-server.key \
+  -subj "/CN=localhost"
+
+# Generate Valkey Certificates
+openssl req -new -x509 -days 365 -nodes \
+  -out certs/cache-server.crt \
+  -keyout certs/cache-server.key \
+  -subj "/CN=localhost"
+
+# Get CA Certificates
+cp certs/psql-server.crt certs/psql-ca.crt
+cp certs/cache-server.crt certs/cache-ca.crt
+
+# Setup Permissions
+chmod 0600 certs/psql-server.key
+chmod 0600 certs/cache-server.key
+
+# Assign Ownership
+sudo chown 70:70 certs/psql-*.*
+sudo chown 999:1000 certs/cache-*.*
+
+# Get Client Keys
+sudo cp certs/psql-server.key certs/psql-client.key
+sudo cp certs/cache-server.key certs/cache-client.key
+
+# Change Client Key Ownership
+sudo chown $_uid:$_uid certs/psql-client.key
+sudo chown $_uid:$_uid certs/cache-client.key
+
+# Change Client Key Permissions
+sudo chmod +r certs/psql-client.key
+sudo chmod +r certs/cache-client.key