From 73b91444cc43470276bf0a48a13b630d461edf24 Mon Sep 17 00:00:00 2001
From: EugeneBogush <eugeneb2008@gmail.com>
Date: Thu, 28 Nov 2024 17:01:07 +0200
Subject: [PATCH] fix for revoke client

---
 openvpn-install.sh | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/openvpn-install.sh b/openvpn-install.sh
index 3de597b..61af85e 100644
--- a/openvpn-install.sh
+++ b/openvpn-install.sh
@@ -490,6 +490,9 @@ else
 				./easyrsa --batch revoke "$client"
 				./easyrsa --batch --days=3650 gen-crl
 				rm -f /etc/openvpn/server/crl.pem
+    				rm -f /etc/openvpn/server/easy-rsa/pki/reqs/"$client".req
+				rm -f /etc/openvpn/server/easy-rsa/pki/private/"$client".key
+				rm -f /etc/openvpn/server/easy-rsa/pki/issued/"$client".crt
 				cp /etc/openvpn/server/easy-rsa/pki/crl.pem /etc/openvpn/server/crl.pem
 				# CRL is read with each client connection, when OpenVPN is dropped to nobody
 				chown nobody:"$group_name" /etc/openvpn/server/crl.pem