Correct attempt to build CA Chains for PDF Validation

Waiting https://github.com/Stirling-Tools/Stirling-PDF/issues/4662 Signed-off-by: Leonardo Amaral <contato@leonardoamaral.com.br>
2025-10-13 11:23:55 -03:00
parent e3a5b00a2c
commit 9edfb9b035
3 changed files with 131 additions and 5 deletions
--- a/update-java-cacerts.sh
+++ b/update-java-cacerts.sh
@@ -0,0 +1,18 @@
+#!/bin/sh
+
+# Source: https://gist.github.com/socheatsok78/2d895a17c04d568f6e207dd4d51b7faa
+
+JKS_STOREPASS="${JKS_STOREPASS:-changeit}"
+cd /etc/ssl/certs
+for cert in ca-*.pem; do
+	ca_alias=${cert//ca-cert-}
+	ca_alias=${ca_alias//.pem}
+	echo "Importing certificate $ca_alias... "
+	echo -n " => "
+	keytool -cacerts -trustcacerts \
+		-storepass ${JKS_STOREPASS} \
+		-importcert \
+		-alias "${ca_alias}" \
+		-file /etc/ssl/certs/${cert} \
+		-noprompt
+done