From 259991b24e25e29505899099d62823d6ffe1bda9 Mon Sep 17 00:00:00 2001
From: Omid Shojaee <omid.shojaee@gmail.com>
Date: Sat, 12 Oct 2024 15:20:44 +0330
Subject: [PATCH] Ask for how many days the new client should be valid in days.
 Defaults to 3650 days (10 years).

---
 openvpn-install.sh | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/openvpn-install.sh b/openvpn-install.sh
index 6c6a647..fae7e1c 100755
--- a/openvpn-install.sh
+++ b/openvpn-install.sh
@@ -1066,6 +1066,10 @@ function newClient() {
 		read -rp "Client name: " -e CLIENT
 	done
 
+	echo ""
+	echo "How many days should the client be valid for?"
+	read -rp "Enter the number of days (default is 3650, which is about 10 years): " -e -i 3650 DAYS_VALID
+
 	echo ""
 	echo "Do you want to protect the configuration file with a password?"
 	echo "(e.g. encrypt the private key with a password)"
@@ -1085,14 +1089,14 @@ function newClient() {
 		cd /etc/openvpn/easy-rsa/ || return
 		case $PASS in
 		1)
-			EASYRSA_CERT_EXPIRE=3650 ./easyrsa --batch build-client-full "$CLIENT" nopass
+			EASYRSA_CERT_EXPIRE=$DAYS_VALID ./easyrsa --batch build-client-full "$CLIENT" nopass
 			;;
 		2)
 			echo "⚠️ You will be asked for the client password below ⚠️"
-			EASYRSA_CERT_EXPIRE=3650 ./easyrsa --batch build-client-full "$CLIENT"
+			EASYRSA_CERT_EXPIRE=$DAYS_VALID ./easyrsa --batch build-client-full "$CLIENT"
 			;;
 		esac
-		echo "Client $CLIENT added."
+		echo "Client $CLIENT added and is valid for $DAYS_VALID days."
 	fi
 
 	# Home directory of the user, where the client configuration will be written