Created
July 17, 2018 02:56
-
-
Save caseyfw/0f8af522842b52bd8359a893b27540bf to your computer and use it in GitHub Desktop.
SSL certificate expiry checker - warns when a cert is expiring in less than 7 days.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Number of days from expiry to throw warning. | |
| warnPeriod=7 | |
| domainsFile="$( cd "$(dirname "$0")" ; pwd -P )/domains.txt" | |
| if [ ! -f "$domainsFile" ]; then | |
| >&2 echo "Missing domains.txt file." | |
| exit 1 | |
| fi | |
| exitCode=0 | |
| while read domain; do | |
| expiry=$(echo | openssl s_client -connect $domain:443 2>/dev/null | openssl x509 -noout -enddate 2>/dev/null | cut -d= -f2) | |
| expiryDate=$(echo $expiry | date +"%-d %b %Y" -f - ) | |
| expiryTimestamp=$(echo $expiry | date +%s -f -) | |
| nowTimestamp=$(date +%s -u) | |
| diffTimestamp=$(expr $expiryTimestamp - $nowTimestamp) | |
| diffDays=$(echo "$diffTimestamp / 86400" | bc) | |
| echo "$domain: $expiryDate ($diffDays days)" | |
| if [ $diffDays -le $warnPeriod -a $diffDays -gt 0 ]; then | |
| >&2 echo "WARNING: $domain expires in $diffDays days!" | |
| ((exitCode++)) | |
| fi | |
| done < $domainsFile | |
| exit $exitCode |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Script makes output like: