From ce379bdb3d6ade0a6326d5d7cf9446389cf4d94b Mon Sep 17 00:00:00 2001
From: Seth Vidal <skvidal@fedoraproject.org>
Date: Thu, 4 Oct 2007 16:41:51 -0400
Subject: - certmaster-ca supports wildcards to -s and -c, now - add basic acl
 support to funcd - make sure that the caller is using   the cert/key of our
 ca before letting anything run - add authfailure exception

---
 scripts/certmaster-ca | 12 +++++++++---
 1 file changed, 9 insertions(+), 3 deletions(-)

(limited to 'scripts')

diff --git a/scripts/certmaster-ca b/scripts/certmaster-ca
index f7982ca..867bd04 100755
--- a/scripts/certmaster-ca
+++ b/scripts/certmaster-ca
@@ -67,9 +67,15 @@ def main(args):
             return 1
             
         for hn in args:
-            csrfile = '%s/%s.csr' % (cm.cfg.csrroot, hn)
-            certfile = cm.sign_this_csr(csrfile)
-            print '%s signed - cert located at %s' % (hn, certfile)
+            csrglob = '%s/%s.csr' % (cm.cfg.csrroot, hn)
+            csrs = glob.glob(csrglob)
+            if not csrs:
+                errorprint('No match for %s to sign' % hn)
+                return 1
+            
+            for fn in csrs:
+                certfile = cm.sign_this_csr(fn)
+                print '%s signed - cert located at %s' % (fn, certfile)
         return 0
     
     if opts.clean:
-- 
cgit