add script to generate cert

BeryJu · Feb 21, 2022 · 9312391 · 9312391
1 parent ae03e21
commit 9312391
Show file tree

Hide file tree

Showing 3 changed files with 8 additions and 0 deletions.
diff --git a/.gitignore b/.gitignore
@@ -0,0 +1,2 @@
+saml-sp.key
+saml-sp.pem
diff --git a/mkcert.sh b/mkcert.sh
@@ -0,0 +1,5 @@
+#!/bin/bash
+openssl req -x509 -newkey rsa:4096 -sha256 -days 3650 -nodes \
+  -keyout saml-sp.key -out saml-sp.pem -subj "/CN=localhost"
+export SP_SSL_CERT=./saml-sp.pem
+export SP_SSL_KEY=./saml-sp.key
diff --git a/pkg/server/root.go b/pkg/server/root.go
@@ -114,6 +114,7 @@ func RunServer() {
 	server.l.Infof("ACS URL is '%s'", samlSP.ServiceProvider.AcsURL.String())
 
 	if _, set := os.LookupEnv("SP_SSL_CERT"); set {
+		server.l.Info("SSL enabled")
 		// SP_SSL_CERT set, so we run SSL mode
 		err := http.ListenAndServeTLS(listen, os.Getenv("SP_SSL_CERT"), os.Getenv("SP_SSL_KEY"), server.logRequest(server.h))
 		if err != nil {