From dcae23df17c90720e8f2477da66025c2d9c6fbf3 Mon Sep 17 00:00:00 2001
From: Luca Rullo <luca@audio-lab.org>
Date: Thu, 18 May 2023 09:45:49 -0500
Subject: [PATCH] Add: Generation Default CRL

---
 Dockerfile | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index 5b2bdff..8330c52 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -2,30 +2,30 @@ FROM debian:stable-slim
 
 RUN apt update && apt dist-upgrade -y
 
-RUN apt install -y openvpn openvpn-auth-ldap easy-rsa
+RUN apt install -y openvpn openvpn-auth-ldap easy-rsa 
 
 WORKDIR /etc/openvpn
 
+## Default Certificates - Not Production Use
+## Documentation: https://wiki.archlinux.org/title/Easy-RSA
+
 RUN make-cadir easy-rsa/
 
 WORKDIR easy-rsa
 
-COPY ./vars ./vars
 RUN ./easyrsa init-pki
 RUN export EASYRSA_BATCH=1 && ./easyrsa build-ca nopass
 RUN export EASYRSA_BATCH=1 && ./easyrsa build-server-full server nopass
 RUN ./easyrsa gen-dh
 RUN  openvpn --genkey secret /etc/openvpn/server/ta.key
-
-RUN mkdir -p /dev/net && \
-	mknod /dev/net/tun c 10 200 && \
-	chmod 600 /dev/net/tun
-
+RUN ./easyrsa gen-crl
 
 COPY server.conf /etc/openvpn/server.conf
 
 ADD entrypoint.sh /entrypoint.sh
 
+VOLUME ["/etc/openvpn"]
+
 ENTRYPOINT ["/entrypoint.sh"]
 
 CMD ["openvpn","/etc/openvpn/server.conf"]