diff options
author | Karl MacMillan <kmacmill@redhat.com> | 2007-12-06 17:17:43 -0500 |
---|---|---|
committer | Karl MacMillan <kmacmill@redhat.com> | 2007-12-06 17:17:43 -0500 |
commit | 3b4f0db73e73912e39baa4a4c8b8c2e9ae3ab5be (patch) | |
tree | d1326b1160c2f227179e36ee08761a80491dbc8c /ipa-server/ipaserver/httpinstance.py | |
parent | ad3fcc200c88a5b4d5502c1f5415f72d293ae581 (diff) | |
download | freeipa-3b4f0db73e73912e39baa4a4c8b8c2e9ae3ab5be.tar.gz freeipa-3b4f0db73e73912e39baa4a4c8b8c2e9ae3ab5be.tar.xz freeipa-3b4f0db73e73912e39baa4a4c8b8c2e9ae3ab5be.zip |
Convert the setup of ssl from a shell script to a
python module. This is in preparation for user
supplied certs.
Diffstat (limited to 'ipa-server/ipaserver/httpinstance.py')
-rw-r--r-- | ipa-server/ipaserver/httpinstance.py | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/ipa-server/ipaserver/httpinstance.py b/ipa-server/ipaserver/httpinstance.py index 301035130..448a9d97b 100644 --- a/ipa-server/ipaserver/httpinstance.py +++ b/ipa-server/ipaserver/httpinstance.py @@ -27,6 +27,8 @@ import sys import time import service +import certs +import dsinstance from ipa.ipautil import * HTTPD_DIR = "/etc/httpd" @@ -143,3 +145,11 @@ class HTTPInstance(service.Service): self.step("Setting mod_nss port to 443") if update_file(NSS_CONF, '8443', '443') != 0: print "Updating %s failed." % NSS_CONF + + def __setup_ssl(self): + self.step("Setting up ssl") + ds_ca = certs.CertDB(dsinstance.config_dirname(self.realm)) + ca = certs.CertDB(dirname) + ca.create_from_cacert(ds_ca.cacert_fname) + ca.create_server_cert_extca("Server-Cert", "cn=%s,ou=Apache Web Server" % self.fqdn, ds_ca) + |