Versions Compared

Old Version 10

changes.mady.by.user Marc Amouyal

Saved on

compared with

New Version Current

changes.mady.by.user Marc Amouyal

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Code Block
sl.ignoreCertificateErrors=true

Helpers

...

Table of Contents
minLevel3
maxLevel6
outlinefalse
typelist
separatorbrackets
printabletrue
Note

Disclaimer:
The scripts provided below are for reference purposes only. They are offered "as-is" without any guarantees or support from Sealights.
Please ensure you understand and test their functionality before deploying them in any environment.

Check the certificates' expiration date

Here are Bash and PowerShell scripts that check the expiration dates of certificates in a Java keystore and notify you about certificates that are either expired or will expire in less than 30 days:

...

Replace /path/to/your/keystore.jks with the actual path to your Java keystore file and your_keystore_password with your keystore password. Set appropriate permissions on the script file and execute it in a proper environment.
Please note that this script assumes that the keytool command is available in your environment (usually comes with Java installations). Also, ensure that you have the necessary permissions to access the keystore file.

...

Script saving an SSL certificate

...

from a URL to a local file

These scripts should help you download SSL certificates and save them in the specified format.

Bash

PowerShell

Code Block
languagebash
#!/bin/bash

# Function to download SSL certificate
download_ssl_certificate() {
  local url=$1
  local port=${2:-443}
  local output_file=${3:-certificate.pem}

  # Extract the hostname from the URL
  local hostname=$(echo $url | awk -F[/:] '{print $4}')

  # Use openssl to get the certificate and save it to a file
  echo | openssl s_client -connect ${hostname}:${port} -servername ${hostname} 2>/dev/null | openssl x509 > ${output_file}

  echo "Certificate downloaded and saved as ${output_file}"
}

# Example usage
download_ssl_certificate "https://mycompany.sealights.co"
Code Block
languagepowershell
# Function to download SSL certificate
function Download-SSLCertificate {
    param (
        [string]$url,
        [int]$port = 443,
        [string]$outputFile = "certificate.cer"
    )

    $hostname = ([System.Uri]$url).Host

    $tcpClient = New-Object Net.Sockets.TcpClient
    $tcpClient.Connect($hostname, $port)
    $sslStream = New-Object Net.Security.SslStream($tcpClient.GetStream(), $false, ({$true}))
    $sslStream.AuthenticateAsClient($hostname)

    $cert = $sslStream.RemoteCertificate
    $bytes = $cert.Export([System.Security.Cryptography.X509Certificates.X509ContentType]::Cert)
    [System.IO.File]::WriteAllBytes($outputFile, $bytes)

    $sslStream.Close()
    $tcpClient.Close()

    Write-Output "Certificate downloaded and saved as $outputFile"
}

# Example usage
Download-SSLCertificate -url "https://mycompany.sealights.co"

...