free
/
freedombone
關注 1
收藏 0
複製 0
程式碼 問題 0 合併請求 0 版本發佈 0 Wiki 活動
瀏覽代碼

Create turn certificate if needed

Bob Mottram 9 年之前
父節點
f72c92b08e
當前提交
b9f6d1cf19
共有 1 個檔案被更改,包括 17 行新增4 行删除
分割檢視 顯示文件統計
  1. 17
    4
      src/freedombone

+ 17
- 4
src/freedombone 查看文件 

@@ -10387,10 +10387,25 @@ function install_sip_turn {
10387 10387
10388 10388 
     apt-get -y install turnserver
10389 10389
10390 
+    # create a nonce if needed
10390 10391 
     if [ ! $VOIP_TURN_NONCE ]; then
10391 10392 
         VOIP_TURN_NONCE="$(openssl rand -base64 32 | cut -c1-30)"
10392 10393 
     fi
10393 10394
10395 
+    # create a certificate if needed
10396 
+    if [ ! -f /etc/ssl/certs/$DEFAULT_DOMAIN_NAME.pem ]; then
10397 
+        if [ ! -f /etc/ssl/certs/$DEFAULT_DOMAIN_NAME.crt ]; then
10398 
+            if [ ! -f /etc/ssl/certs/$DEFAULT_DOMAIN_NAME.dhparam ]; then
10399 
+                if [[ $LETSENCRYPT_ENABLED != "yes" ]]; then
10400 
+                    ${PROJECT_NAME}-addcert -h $DEFAULT_DOMAIN_NAME --dhkey $DH_KEYLENGTH
10401 
+                else
10402 
+                    ${PROJECT_NAME}-addcert -e $DEFAULT_DOMAIN_NAME -s $LETSENCRYPT_SERVER --dhkey $DH_KEYLENGTH --email $MY_EMAIL_ADDRESS
10403 
+                fi
10404 
+                check_certificates $DEFAULT_DOMAIN_NAME
10405 
+            fi
10406 
+        fi
10407 
+    fi
10408 
+
10394 10409 
     echo '##' > /etc/turnserver/turnserver.conf
10395 10410 
     echo '# TurnServer configuration file.' >> /etc/turnserver/turnserver.conf
10396 10411 
     echo '#' >> /etc/turnserver/turnserver.conf
 
@@ -10487,14 +10502,12 @@ function install_sip_turn {
10487 10502 
     echo '## Certification Authority file.' >> /etc/turnserver/turnserver.conf
10488 10503 
     echo "ca_file = \"/etc/ssl/certs/ca-certificates.crt\"" >> /etc/turnserver/turnserver.conf
10489 10504 
     echo '' >> /etc/turnserver/turnserver.conf
10490 
-    echo '## Server certificate file.' >> /etc/turnserver/turnserver.conf
10505 
+    echo '## Server certificate file.' >> /etc/turnserver/turnserver.conf
10491 10506 
     if [ -f /etc/ssl/certs/$DEFAULT_DOMAIN_NAME.pem ]; then
10492 10507 
         echo "cert_file = \"/etc/ssl/certs/$DEFAULT_DOMAIN_NAME.pem\"" >> /etc/turnserver/turnserver.conf
10493 10508 
     else
10494 10509 
         if [ -f /etc/ssl/certs/$DEFAULT_DOMAIN_NAME.crt ]; then
10495 
-            echo "cert_file = \"/etc/ssl/certs/$DEFAULT_DOMAIN_NAME.crt\"" >> /etc/turnserver/turnserver.conf
10496 
-        else
10497 
-
10510 
+            echo "cert_file = \"/etc/ssl/certs/$DEFAULT_DOMAIN_NAME.crt\"" >> /etc/turnserver/turnserver.conf
10498 10511 
         fi
10499 10512 
     fi
10500 10513 
     echo '' >> /etc/turnserver/turnserver.conf