summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorEndi Sukma Dewata <edewata@redhat.com>2012-03-08 03:10:49 -0600
committerEndi Sukma Dewata <edewata@redhat.com>2012-03-16 10:47:39 -0500
commit0bfd291051117ea6af3c2637a764a8f56626f555 (patch)
treef7f904bd9ec4fcb0d952b3ff54017d3a3fa03442
downloadpki-dev-0bfd291051117ea6af3c2637a764a8f56626f555.tar.gz
pki-dev-0bfd291051117ea6af3c2637a764a8f56626f555.tar.xz
pki-dev-0bfd291051117ea6af3c2637a764a8f56626f555.zip
Initial check-in.
Diffstat
-rw-r--r--repos/fedora-candlepin.repo16
-rwxr-xr-xscripts/ca-configure.sh51
-rwxr-xr-xscripts/ca-console.sh3
-rwxr-xr-xscripts/ca-create.sh23
-rwxr-xr-xscripts/ca-remove.sh5
-rwxr-xr-xscripts/ca-restart.sh3
-rwxr-xr-xscripts/ca-start.sh3
-rwxr-xr-xscripts/ca-stop.sh3
-rwxr-xr-xscripts/console-build.sh13
-rwxr-xr-xscripts/console-install.sh5
-rwxr-xr-xscripts/console-rebuild.sh5
-rwxr-xr-xscripts/console-uninstall.sh3
-rwxr-xr-xscripts/core-build.sh16
-rwxr-xr-xscripts/core-install.sh5
-rwxr-xr-xscripts/core-rebuild.sh5
-rwxr-xr-xscripts/core-uninstall.sh17
-rwxr-xr-xscripts/core-update.sh5
-rwxr-xr-xscripts/dev-init.sh70
-rwxr-xr-xscripts/ds-create.sh11
-rwxr-xr-xscripts/ds-install.sh16
-rwxr-xr-xscripts/ds-remove.sh3
-rwxr-xr-xscripts/ds-restart.sh3
-rwxr-xr-xscripts/ds-start.sh3
-rwxr-xr-xscripts/ds-stop.sh3
-rwxr-xr-xscripts/ds-uninstall.sh15
-rwxr-xr-xscripts/kra-configure.sh58
-rwxr-xr-xscripts/kra-console.sh3
-rwxr-xr-xscripts/kra-create.sh23
-rwxr-xr-xscripts/kra-remove.sh5
-rwxr-xr-xscripts/kra-restart.sh3
-rwxr-xr-xscripts/kra-start.sh3
-rwxr-xr-xscripts/kra-stop.sh3
-rwxr-xr-xscripts/theme-build.sh13
-rwxr-xr-xscripts/theme-install.sh5
-rwxr-xr-xscripts/theme-uninstall.sh10
35 files changed, 431 insertions, 0 deletions
diff --git a/repos/fedora-candlepin.repo b/repos/fedora-candlepin.repo
new file mode 100644
index 0000000..6718d40
--- /dev/null
+++ b/repos/fedora-candlepin.repo
@@ -0,0 +1,16 @@
+# Place this file in your /etc/yum.repos.d/ directory
+
+[fedora-candlepin]
+name=An open source entitlement management system.
+baseurl=http://repos.fedorapeople.org/repos/candlepin/candlepin/fedora-$releasever/$basearch/
+enabled=1
+skip_if_unavailable=1
+gpgcheck=0
+
+[fedora-candlepin-source]
+name=An open source entitlement management system. - Source
+baseurl=http://repos.fedorapeople.org/repos/candlepin/candlepin/fedora-$releasever/SRPMS
+enabled=0
+skip_if_unavailable=1
+gpgcheck=0
+
diff --git a/scripts/ca-configure.sh b/scripts/ca-configure.sh
new file mode 100755
index 0000000..892a94c
--- /dev/null
+++ b/scripts/ca-configure.sh
@@ -0,0 +1,51 @@
+#!/bin/sh -x
+
+PKI_DEV_SRC=`cd .. ; pwd`
+
+PASSWORD=Secret123
+PIN=`grep preop.pin= /var/lib/pki-ca/conf/CS.cfg | awk -F= '{ print $2; }'`
+
+CERTS=$PKI_DEV_SRC/certs/ca
+rm -rf $CERTS
+mkdir -p $CERTS
+
+pkisilent ConfigureCA \
+ -cs_hostname `hostname` \
+ -cs_port 9443 \
+ -preop_pin $PIN \
+ -client_certdb_dir "$CERTS" \
+ -client_certdb_pwd "$PASSWORD" \
+ -token_name "internal" \
+ -domain_name "Example Domain" \
+ -subsystem_name "Certificate Authority" \
+ -ldap_host "localhost" \
+ -ldap_port "389" \
+ -base_dn "ou=ca,dc=example,dc=com" \
+ -db_name "example.com-pki-ca" \
+ -bind_dn "cn=Directory Manager" \
+ -bind_password "$PASSWORD" \
+ -remove_data true \
+ -key_type rsa \
+ -key_size 2048 \
+ -key_algorithm SHA256withRSA \
+ -signing_signingalgorithm SHA256withRSA \
+ -save_p12 true \
+ -backup_fname "$CERTS/ca-server-certs.p12" \
+ -backup_pwd "$PASSWORD" \
+ -ca_sign_cert_subject_name "CN=Certificate Authority,OU=pki-ca,O=Example Domain" \
+ -ca_ocsp_cert_subject_name "CN=OCSP Signing Certificate,OU=pki-ca,O=Example Domain" \
+ -ca_server_cert_subject_name "CN=$HOSTNAME,OU=pki-ca,O=Example Domain" \
+ -ca_subsystem_cert_subject_name "CN=CA Subsystem Certificate,OU=pki-ca,O=Example Domain" \
+ -ca_audit_signing_cert_subject_name "CN=CA Audit Signing Certificate,OU=pki-ca,O=Example Domain" \
+ -admin_user "caadmin" \
+ -agent_name "caadmin" \
+ -admin_email "caadmin@example.com" \
+ -admin_password "$PASSWORD" \
+ -agent_key_size 2048 \
+ -agent_key_type rsa \
+ -agent_cert_subject "CN=caadmin,UID=caadmin,E=caadmin@example.com,O=Example Domain"
+
+echo $PASSWORD > "$CERTS/password.txt"
+PKCS12Export -d "$CERTS" -o "$CERTS/ca-client-certs.p12" -p "$CERTS/password.txt" -w "$CERTS/password.txt"
+
+systemctl restart pki-cad@pki-ca.service
diff --git a/scripts/ca-console.sh b/scripts/ca-console.sh
new file mode 100755
index 0000000..5b61313
--- /dev/null
+++ b/scripts/ca-console.sh
@@ -0,0 +1,3 @@
+#!/bin/sh -x
+
+pkiconsole https://`hostname`:9443/ca
diff --git a/scripts/ca-create.sh b/scripts/ca-create.sh
new file mode 100755
index 0000000..e44ecd4
--- /dev/null
+++ b/scripts/ca-create.sh
@@ -0,0 +1,23 @@
+#!/bin/sh -x
+
+PKI_SRC=`cd ../.. ; pwd`/pki
+
+pkicreate -pki_instance_root=/var/lib \
+ -pki_instance_name=pki-ca \
+ -subsystem_type=ca \
+ -secure_port=9443 \
+ -unsecure_port=9180 \
+ -tomcat_server_port=9701 \
+ -user=pkiuser \
+ -group=pkiuser \
+ -redirect conf=/etc/pki-ca \
+ -redirect logs=/var/log/pki-ca \
+ -verbose
+
+ln -s /usr/share/tomcat6/bin /var/lib/pki-ca/bin
+ln -s /usr/share/tomcat6/lib /var/lib/pki-ca/lib
+rm -f /var/lib/pki-ca/webapps/ca/WEB-INF/lib/pki-*
+ln -s $PKI_SRC/pki/build/classes /var/lib/pki-ca/webapps/ca/WEB-INF/classes
+
+systemctl restart pki-cad@pki-ca.service
+
diff --git a/scripts/ca-remove.sh b/scripts/ca-remove.sh
new file mode 100755
index 0000000..1884761
--- /dev/null
+++ b/scripts/ca-remove.sh
@@ -0,0 +1,5 @@
+#!/bin/sh -x
+
+pkiremove -pki_instance_root=/var/lib\
+ -pki_instance_name=pki-ca\
+ -force
diff --git a/scripts/ca-restart.sh b/scripts/ca-restart.sh
new file mode 100755
index 0000000..eb7f0c1
--- /dev/null
+++ b/scripts/ca-restart.sh
@@ -0,0 +1,3 @@
+#!/bin/sh -x
+
+systemctl restart pki-cad@pki-ca.service
diff --git a/scripts/ca-start.sh b/scripts/ca-start.sh
new file mode 100755
index 0000000..ff7ba41
--- /dev/null
+++ b/scripts/ca-start.sh
@@ -0,0 +1,3 @@
+#!/bin/sh -x
+
+systemctl start pki-cad@pki-ca.service
diff --git a/scripts/ca-stop.sh b/scripts/ca-stop.sh
new file mode 100755
index 0000000..55254fc
--- /dev/null
+++ b/scripts/ca-stop.sh
@@ -0,0 +1,3 @@
+#!/bin/sh -x
+
+systemctl stop pki-cad@pki-ca.service
diff --git a/scripts/console-build.sh b/scripts/console-build.sh
new file mode 100755
index 0000000..d5b1930
--- /dev/null
+++ b/scripts/console-build.sh
@@ -0,0 +1,13 @@
+#!/bin/sh -x
+
+PKI_SRC=`cd ../.. ; pwd`/pki
+
+cd $PKI_SRC
+
+rm -rf packages
+mkdir packages
+
+./pki/scripts/compose_pki_console_packages rpms
+
+rm -rf packages.console
+mv packages packages.console
diff --git a/scripts/console-install.sh b/scripts/console-install.sh
new file mode 100755
index 0000000..770fc7d
--- /dev/null
+++ b/scripts/console-install.sh
@@ -0,0 +1,5 @@
+#!/bin/sh -x
+
+PKI_SRC=`cd ../.. ; pwd`/pki
+
+rpm -ivh $PKI_SRC/packages.console/RPMS/noarch/*.rpm
diff --git a/scripts/console-rebuild.sh b/scripts/console-rebuild.sh
new file mode 100755
index 0000000..2464246
--- /dev/null
+++ b/scripts/console-rebuild.sh
@@ -0,0 +1,5 @@
+#!/bin/sh -x
+
+./console-uninstall.sh
+./console-build.sh
+./console-install.sh
diff --git a/scripts/console-uninstall.sh b/scripts/console-uninstall.sh
new file mode 100755
index 0000000..5504f19
--- /dev/null
+++ b/scripts/console-uninstall.sh
@@ -0,0 +1,3 @@
+#!/bin/sh -x
+
+rpm -ev pki-console
diff --git a/scripts/core-build.sh b/scripts/core-build.sh
new file mode 100755
index 0000000..3763d14
--- /dev/null
+++ b/scripts/core-build.sh
@@ -0,0 +1,16 @@
+#!/bin/sh -x
+
+PKI_SRC=`cd ../.. ; pwd`/pki
+
+cd $PKI_SRC
+
+rm -rf packages
+mkdir packages
+
+./pki/scripts/compose_pki_core_packages hybrid_rpms
+
+mkdir packages/RPMS/combined
+cp -p packages/RPMS/*/*.rpm packages/RPMS/combined
+
+rm -rf packages.core
+mv packages packages.core
diff --git a/scripts/core-install.sh b/scripts/core-install.sh
new file mode 100755
index 0000000..06bd960
--- /dev/null
+++ b/scripts/core-install.sh
@@ -0,0 +1,5 @@
+#!/bin/sh -x
+
+PKI_SRC=`cd ../.. ; pwd`/pki
+
+rpm -ivh $PKI_SRC/packages.core/RPMS/combined/*.rpm
diff --git a/scripts/core-rebuild.sh b/scripts/core-rebuild.sh
new file mode 100755
index 0000000..28f3bb9
--- /dev/null
+++ b/scripts/core-rebuild.sh
@@ -0,0 +1,5 @@
+#!/bin/sh -x
+
+./core-uninstall.sh
+./core-build.sh
+./core-install.sh
diff --git a/scripts/core-uninstall.sh b/scripts/core-uninstall.sh
new file mode 100755
index 0000000..19bd5c2
--- /dev/null
+++ b/scripts/core-uninstall.sh
@@ -0,0 +1,17 @@
+#!/bin/sh -x
+
+rpm -ev pki-selinux\
+ pki-tks\
+ pki-kra\
+ pki-common\
+ pki-native-tools\
+ pki-silent\
+ pki-util\
+ pki-common-javadoc\
+ pki-java-tools-javadoc\
+ pki-setup\
+ pki-ocsp\
+ pki-ca\
+ pki-java-tools\
+ pki-symkey\
+ pki-util-javadoc
diff --git a/scripts/core-update.sh b/scripts/core-update.sh
new file mode 100755
index 0000000..904bd29
--- /dev/null
+++ b/scripts/core-update.sh
@@ -0,0 +1,5 @@
+#!/bin/sh -x
+
+PKI_SRC=`cd ../.. ; pwd`/pki
+
+rpm -Uvh $PKI_SRC/packages.core/RPMS/combined/*.rpm
diff --git a/scripts/dev-init.sh b/scripts/dev-init.sh
new file mode 100755
index 0000000..f5f84e4
--- /dev/null
+++ b/scripts/dev-init.sh
@@ -0,0 +1,70 @@
+#!/bin/sh -x
+
+yum install -y rpm-build\
+ cmake\
+ gcc\
+ gcc-c++\
+ selinux-policy-doc\
+ java-devel\
+ ldapjdk\
+ apache-commons-codec\
+ nspr-devel\
+ nss-devel\
+ openldap-devel\
+ velocity\
+ xalan-j2\
+ xerces-j2\
+ candlepin-deps\
+ 389-ds\
+ java-1.7.0-openjdk\
+ junit\
+ javassist\
+ jettison\
+ tomcatjss\
+ perl-File-Slurp\
+ perl-XML-LibXML\
+ perl-Crypt-SSLeay\
+ eclipse\
+ @development-tools\
+ fedora-packager
+
+# resteasy
+yum install -y\
+ apache-commons-cli\
+ apache-mime4j\
+ bea-stax\
+ bouncycastle\
+ bouncycastle-mail\
+ cglib\
+ codehaus-parent\
+ dnsjava\
+ glassfish-jaxb\
+ glassfish-jaxb-api\
+ google-guice\
+ httpcomponents-client\
+ httpcomponents-core\
+ httpunit\
+ jackson\
+ jboss-web\
+ jcip-annotations\
+ istack-commons\
+ scannotation\
+ snakeyaml\
+ glassfish-fi\
+ txw2\
+ jetty-version-maven-plugin\
+ maven\
+ maven-checkstyle-plugin\
+ maven-compiler-plugin\
+ maven-deploy-plugin\
+ maven-install-plugin\
+ maven-javadoc-plugin\
+ maven-jaxb2-plugin\
+ maven-plugin-cobertura\
+ maven-pmd-plugin\
+ maven-resources-plugin\
+ maven-site-plugin\
+ maven-source-plugin\
+ maven-surefire-plugin\
+ maven-surefire-report-plugin
+
diff --git a/scripts/ds-create.sh b/scripts/ds-create.sh
new file mode 100755
index 0000000..3dd2709
--- /dev/null
+++ b/scripts/ds-create.sh
@@ -0,0 +1,11 @@
+#!/bin/sh -x
+
+setup-ds.pl --silent --\
+ General.FullMachineName=`hostname`\
+ General.SuiteSpotUserID=nobody\
+ General.SuiteSpotGroup=nobody\
+ slapd.ServerPort=389\
+ slapd.ServerIdentifier=`hostname -s`\
+ slapd.Suffix=dc=example,dc=com\
+ slapd.RootDN="cn=Directory Manager"\
+ slapd.RootDNPwd=Secret123\
diff --git a/scripts/ds-install.sh b/scripts/ds-install.sh
new file mode 100755
index 0000000..be2b4d7
--- /dev/null
+++ b/scripts/ds-install.sh
@@ -0,0 +1,16 @@
+#!/bin/sh -x
+
+yum install -y\
+ 389-ds-base\
+ 389-adminutil\
+ 389-admin-console\
+ 389-admin-console-doc\
+ 389-console\
+ 389-dsgw\
+ 389-ds-console\
+ 389-ds-console-doc\
+ 389-ds-base-libs\
+ 389-admin\
+ 389-ds\
+ 389-ds-base-devel\
+
diff --git a/scripts/ds-remove.sh b/scripts/ds-remove.sh
new file mode 100755
index 0000000..af37b40
--- /dev/null
+++ b/scripts/ds-remove.sh
@@ -0,0 +1,3 @@
+#!/bin/sh -x
+
+remove-ds.pl -f -i slapd-`hostname -s`
diff --git a/scripts/ds-restart.sh b/scripts/ds-restart.sh
new file mode 100755
index 0000000..84719c4
--- /dev/null
+++ b/scripts/ds-restart.sh
@@ -0,0 +1,3 @@
+#!/bin/sh -x
+
+systemctl restart dirsrv@`hostname -s`.service
diff --git a/scripts/ds-start.sh b/scripts/ds-start.sh
new file mode 100755
index 0000000..62bba44
--- /dev/null
+++ b/scripts/ds-start.sh
@@ -0,0 +1,3 @@
+#!/bin/sh -x
+
+systemctl start dirsrv@`hostname -s`.service
diff --git a/scripts/ds-stop.sh b/scripts/ds-stop.sh
new file mode 100755
index 0000000..ce3c11e
--- /dev/null
+++ b/scripts/ds-stop.sh
@@ -0,0 +1,3 @@
+#!/bin/sh -x
+
+systemctl stop dirsrv@`hostname -s`.service
diff --git a/scripts/ds-uninstall.sh b/scripts/ds-uninstall.sh
new file mode 100755
index 0000000..0ab5a13
--- /dev/null
+++ b/scripts/ds-uninstall.sh
@@ -0,0 +1,15 @@
+#!/bin/sh -x
+
+rpm -ev 389-ds-base\
+ 389-adminutil\
+ 389-admin-console\
+ 389-admin-console-doc\
+ 389-console\
+ 389-dsgw\
+ 389-ds-console\
+ 389-ds-console-doc\
+ 389-ds-base-libs\
+ 389-admin\
+ 389-ds\
+ 389-ds-base-devel\
+
diff --git a/scripts/kra-configure.sh b/scripts/kra-configure.sh
new file mode 100755
index 0000000..f2c481f
--- /dev/null
+++ b/scripts/kra-configure.sh
@@ -0,0 +1,58 @@
+#!/bin/sh -x
+
+PKI_DEV_SRC=`cd .. ; pwd`
+
+PASSWORD=Secret123
+PIN=`grep preop.pin= /var/lib/pki-kra/conf/CS.cfg | awk -F= '{ print $2; }'`
+
+CERTS=$PKI_DEV_SRC/certs/kra
+rm -rf $CERTS
+mkdir -p $CERTS
+
+pkisilent ConfigureDRM \
+ -cs_hostname `hostname` \
+ -cs_port 10443 \
+ -preop_pin "$PIN" \
+ -client_certdb_dir "$CERTS" \
+ -client_certdb_pwd "$PASSWORD" \
+ -token_name "internal" \
+ -sd_hostname `hostname` \
+ -sd_admin_port 9443 \
+ -sd_ssl_port 9443 \
+ -sd_agent_port 9443 \
+ -sd_admin_name "caadmin" \
+ -sd_admin_password "$PASSWORD" \
+ -domain_name "Example Domain" \
+ -subsystem_name "Data Recovery Manager" \
+ -ldap_host "localhost" \
+ -ldap_port "389" \
+ -base_dn "ou=kra,dc=example,dc=com" \
+ -db_name "example.com-pki-kra" \
+ -bind_dn "cn=Directory Manager" \
+ -bind_password "$PASSWORD" \
+ -remove_data true \
+ -key_type rsa \
+ -key_size 2048 \
+ -signing_algorithm SHA256withRSA \
+ -drm_transport_cert_subject_name "CN=DRM Transport Certificate,OU=pki-kra,O=Example Domain" \
+ -drm_storage_cert_subject_name "CN=DRM Storage Certificate,OU=pki-kra,O=Example Domain" \
+ -drm_server_cert_subject_name "CN=$HOSTNAME,OU=pki-kra,O=Example Domain" \
+ -drm_subsystem_cert_subject_name "CN=DRM Subsystem Certificate,OU=pki-kra,O=Example Domain" \
+ -drm_audit_signing_cert_subject_name "CN=DRM Audit Signing Certificate,OU=pki-kra,O=Example Domain" \
+ -ca_hostname `hostname` \
+ -ca_port 9180 \
+ -ca_ssl_port 9443 \
+ -backup_fname "$CERTS/kra-server-certs.p12" \
+ -backup_pwd "$PASSWORD" \
+ -admin_user "kraadmin" \
+ -agent_name "kraadmin" \
+ -admin_email "kraadmin@example.com" \
+ -admin_password "$PASSWORD" \
+ -agent_key_size 2048 \
+ -agent_key_type rsa \
+ -agent_cert_subject "CN=kraadmin,UID=kraadmin,E=kraadmin@example.com,O=Example Domain"
+
+echo $PASSWORD > "$CERTS/password.txt"
+PKCS12Export -d "$CERTS" -o "$CERTS/kra-client-certs.p12" -p "$CERTS/password.txt" -w "$CERTS/password.txt"
+
+systemctl restart pki-krad@pki-kra.service
diff --git a/scripts/kra-console.sh b/scripts/kra-console.sh
new file mode 100755
index 0000000..d2d68d0
--- /dev/null
+++ b/scripts/kra-console.sh
@@ -0,0 +1,3 @@
+#!/bin/sh -x
+
+pkiconsole https://`hostname`:10443/kra
diff --git a/scripts/kra-create.sh b/scripts/kra-create.sh
new file mode 100755
index 0000000..1472faf
--- /dev/null
+++ b/scripts/kra-create.sh
@@ -0,0 +1,23 @@
+#!/bin/sh -x
+
+PKI_SRC=`cd ../.. ; pwd`/pki
+
+pkicreate -pki_instance_root=/var/lib \
+ -pki_instance_name=pki-kra \
+ -subsystem_type=kra \
+ -secure_port=10443 \
+ -unsecure_port=10180 \
+ -tomcat_server_port=10701 \
+ -user=pkiuser \
+ -group=pkiuser \
+ -audit_group=pkiaudit \
+ -redirect conf=/etc/pki-kra \
+ -redirect logs=/var/log/pki-kra \
+ -verbose
+
+ln -s /usr/share/tomcat6/bin /var/lib/pki-kra/bin
+ln -s /usr/share/tomcat6/lib /var/lib/pki-kra/lib
+rm -f /var/lib/pki-kra/webapps/kra/WEB-INF/lib/pki-*
+ln -s $PKI_SRC/pki/build/classes /var/lib/pki-kra/webapps/kra/WEB-INF/classes
+
+systemctl restart pki-krad@pki-kra.service
diff --git a/scripts/kra-remove.sh b/scripts/kra-remove.sh
new file mode 100755
index 0000000..71d7b85
--- /dev/null
+++ b/scripts/kra-remove.sh
@@ -0,0 +1,5 @@
+#!/bin/sh -x
+
+pkiremove -pki_instance_root=/var/lib\
+ -pki_instance_name=pki-kra\
+ -force
diff --git a/scripts/kra-restart.sh b/scripts/kra-restart.sh
new file mode 100755
index 0000000..914945c
--- /dev/null
+++ b/scripts/kra-restart.sh
@@ -0,0 +1,3 @@
+#!/bin/sh -x
+
+systemctl restart pki-krad@pki-kra.service
diff --git a/scripts/kra-start.sh b/scripts/kra-start.sh
new file mode 100755
index 0000000..a66efc5
--- /dev/null
+++ b/scripts/kra-start.sh
@@ -0,0 +1,3 @@
+#!/bin/sh -x
+
+systemctl start pki-krad@pki-kra.service
diff --git a/scripts/kra-stop.sh b/scripts/kra-stop.sh
new file mode 100755
index 0000000..1927603
--- /dev/null
+++ b/scripts/kra-stop.sh
@@ -0,0 +1,3 @@
+#!/bin/sh -x
+
+systemctl stop pki-krad@pki-kra.service
diff --git a/scripts/theme-build.sh b/scripts/theme-build.sh
new file mode 100755
index 0000000..9767dfa
--- /dev/null
+++ b/scripts/theme-build.sh
@@ -0,0 +1,13 @@
+#!/bin/sh -x
+
+PKI_SRC=`cd ../.. ; pwd`/pki
+
+cd $PKI_SRC
+
+rm -rf packages
+mkdir packages
+
+./pki/scripts/compose_dogtag_pki_theme_packages rpms
+
+rm -rf packages.theme
+mv packages packages.theme
diff --git a/scripts/theme-install.sh b/scripts/theme-install.sh
new file mode 100755
index 0000000..fd77e7b
--- /dev/null
+++ b/scripts/theme-install.sh
@@ -0,0 +1,5 @@
+#!/bin/sh -x
+
+PKI_SRC=`cd ../.. ; pwd`/pki
+
+rpm -ivh $PKI_SRC/packages.theme/RPMS/noarch/*.rpm
diff --git a/scripts/theme-uninstall.sh b/scripts/theme-uninstall.sh
new file mode 100755
index 0000000..6c90aed
--- /dev/null
+++ b/scripts/theme-uninstall.sh
@@ -0,0 +1,10 @@
+#!/bin/sh -x
+
+rpm -ev dogtag-pki-ca-theme\
+ dogtag-pki-kra-theme\
+ dogtag-pki-tps-theme\
+ dogtag-pki-tks-theme\
+ dogtag-pki-console-theme\
+ dogtag-pki-ra-theme\
+ dogtag-pki-common-theme\
+ dogtag-pki-ocsp-theme\
generated by cgit (git 2.34.1) at 2024-04-24 22:24:58 +0000