blob: 2c496c959a4c5cbf312ba6c2b60dbcc362c2d4ed (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
|
pushd ../certs >/dev/null
source ./cert-def
# Fedora project authority
# ./cert-import homebundle admin.fedoraproject.org # good to do first?
./cert-import homebundle firefox https://admin.fedoraproject.org/ca/cacert.pem
./cert-import homebundle -nocrl https://admin.fedoraproject.org/ca/crl.pem
# CAcert.org ... should utilize cert_pick_url_selfsigned (not tested yet)
# ./cert-import homebundle firefox https://www.cacert.org/certs/root.crt
# ./cert-import homebundle -nocrl https://crl.cacert.org/revoke.crl
# GitHub
./cert-import homebundle -nocrl \
https://www.digicert.com/CACerts/DigiCertHighAssuranceEVRootCA.pem \
https://www.digicert.com/CACerts/DigiCertHighAssuranceEVCA-1.crt
./cert-import homebundle -nocrl www.github.com
# npm (prerequisite: GitHub)
NPMCA_SRC="https://raw.github.com/isaacs/npm/master/node_modules/npmconf/config-defs.js"
wget -nv --ca-certificate "${HOMEBUNDLE}" -O - -- "${NPMCA_SRC}" \
| sed -n '120,135{s|^\s\+\(\[\s*\)\?\"\([^\"]\+\)\\n\"[+,]|\2|g;p}' \
>> "${CA_BUNDLE_NPM}"
unset NPMCA_SRC
popd >/dev/null
|