diff --git a/src/freedombone b/src/freedombone index 3fb8100a..68e2c628 100755 --- a/src/freedombone +++ b/src/freedombone @@ -10387,10 +10387,25 @@ function install_sip_turn { apt-get -y install turnserver + # create a nonce if needed if [ ! $VOIP_TURN_NONCE ]; then VOIP_TURN_NONCE="$(openssl rand -base64 32 | cut -c1-30)" fi + # create a certificate if needed + if [ ! -f /etc/ssl/certs/$DEFAULT_DOMAIN_NAME.pem ]; then + if [ ! -f /etc/ssl/certs/$DEFAULT_DOMAIN_NAME.crt ]; then + if [ ! -f /etc/ssl/certs/$DEFAULT_DOMAIN_NAME.dhparam ]; then + if [[ $LETSENCRYPT_ENABLED != "yes" ]]; then + ${PROJECT_NAME}-addcert -h $DEFAULT_DOMAIN_NAME --dhkey $DH_KEYLENGTH + else + ${PROJECT_NAME}-addcert -e $DEFAULT_DOMAIN_NAME -s $LETSENCRYPT_SERVER --dhkey $DH_KEYLENGTH --email $MY_EMAIL_ADDRESS + fi + check_certificates $DEFAULT_DOMAIN_NAME + fi + fi + fi + echo '##' > /etc/turnserver/turnserver.conf echo '# TurnServer configuration file.' >> /etc/turnserver/turnserver.conf echo '#' >> /etc/turnserver/turnserver.conf @@ -10487,14 +10502,12 @@ function install_sip_turn { echo '## Certification Authority file.' >> /etc/turnserver/turnserver.conf echo "ca_file = \"/etc/ssl/certs/ca-certificates.crt\"" >> /etc/turnserver/turnserver.conf echo '' >> /etc/turnserver/turnserver.conf - echo '## Server certificate file.' >> /etc/turnserver/turnserver.conf + echo '## Server certificate file.' >> /etc/turnserver/turnserver.conf if [ -f /etc/ssl/certs/$DEFAULT_DOMAIN_NAME.pem ]; then echo "cert_file = \"/etc/ssl/certs/$DEFAULT_DOMAIN_NAME.pem\"" >> /etc/turnserver/turnserver.conf else if [ -f /etc/ssl/certs/$DEFAULT_DOMAIN_NAME.crt ]; then - echo "cert_file = \"/etc/ssl/certs/$DEFAULT_DOMAIN_NAME.crt\"" >> /etc/turnserver/turnserver.conf - else - + echo "cert_file = \"/etc/ssl/certs/$DEFAULT_DOMAIN_NAME.crt\"" >> /etc/turnserver/turnserver.conf fi fi echo '' >> /etc/turnserver/turnserver.conf