stackoom
  简体   繁体   中英

Bash script to update path to ssl certificate file in ssl.conf

 原文  2017-01-24 19:43:53       bash/ apache/ shell/ ssl

Question

I am creating a reusable script for automating the setup of new SSLs on server setups. I have a few different lines that need to get the file paths updated.

The defaults in the ssl.conf file look like this (One has leading # tag): 

SSLCertificateFile /etc/pki/tls/certs/localhost.crt

I need it to be dynamically set in the bash script, to end up like this:

SSLCertificateFile /etc/pki/tls/certs/example.crt

So far I started out with this, but i'm not sure what I'm doing.

~/update_ssl_conf.sh

Code:

#!/bin/bash
SSL_CONFIG_PATH="/etc/httpd/conf.d/ssl.conf"

SSL_DEFAULT_CERT_PATH="SSLCertificateFile /etc/pki/tls/certs/localhost.crt"
SSL_CERT_PATH="SSLCertificateFile /etc/pki/tls/certs/example.crt"
sed "s/.*\b$SSL_DEFAULT_CERT_PATH\b.*/$SSL_CERT_PATH/" $SSL_CONFIG_PATH

***UPDATED AREA, Also need sed command to update lines that begin with #.

The defaults in the ssl.conf file look like this (Has leading # tag): 

#SSLCACertificateFile /etc/pki/tls/certs/ca-bundle.crt

I need it to be dynamically set in the bash script, to end up like this:

 SSLCACertificateFile /etc/pki/tls/certs/example-ca-bundle.crt

So far I started out with this, but i'm not sure what I'm doing.

~/update_ssl_conf.sh

Code:

#!/bin/bash
SSL_CONFIG_PATH="/etc/httpd/conf.d/ssl.conf"

SSL_DEFAULT_CA_CERT_PATH="#SSLCACertificateFile /etc/pki/tls/certs/ca-bundle.crt" 
SSL_CA_CERT_PATH="SSLCACertificateFile /etc/pki/tls/certs/example-ca-bundle.crt"

I tried from the accepted solution for the

sed -i "s|.*\b#$SSL_DEFAULT_CA_CERT_PATH\b.*|$SSL_CA_CERT_PATH|" SSL_CONFIG_PATH

and

sed -i "s|(?s).*(?<!\\w)$SSL_DEFAULT_CA_CERT_PATH(?!\\w).*|$SSL_CA_‌​CERT_PATH|" $SSL_CONFIG_PATH

neither are working because the regular expression is not correct.

1 answers

solution1
 1 ACCPTED  2017-01-24 19:51:31

The problem is with slashes. Your variable contains them and the final command will have multiple forward slashes, which affect your original sed syntax ofs/ <search>/<replace/ syntax. Just change your sed word separator from / to | (or any other character eg say @ or ~ ) to fix it. 

sed -i "s|.*\b$SSL_DEFAULT_CERT_PATH\b.*|$SSL_CERT_PATH|" file

should solve your problem and use the -i flag to do in-place substitution and do -i.bak to save a backup of the file in the format <filename>.bak

The GNU sed , man page says

The / characters may be uniformly replaced by any other single character within any given s command. The / character (or whatever other character is used in its stead) can appear in the regexp or replacement only if it is preceded by a \\ character.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Bash script to update path to SSL certificate file in ssl.conf (RegEx word match with #) Mongo --ssl on bash script wget unable to establish SSL connection in bash script Bash script to pass two arguments to get status of ssl Bash script to generate lots of ssl/tls connections for performance testing wget Unable to establish SSL connection on bash script install Is it a good idea to add a bash code snippet into a bash conf file that is sourced by a bash script? Bash script is working only in path where is bash script file How to Fix SSL certificate error when want to push to GitHub using git bash? Running bash script in upstart .conf script
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM