From 318852575ceb8c42e8844b673c2422a38b6f60f4 Mon Sep 17 00:00:00 2001
From: "Endi S. Dewata" <edewata@redhat.com>
Date: Mon, 16 Nov 2015 15:45:08 +0100
Subject: Added scripts for external CA.

---
 scripts/external-step1.cfg | 7 ++-----
 scripts/external-step1.sh  | 9 +++++++++
 scripts/external-step2.cfg | 8 +++-----
 scripts/external-step2.sh  | 5 +++++
 4 files changed, 19 insertions(+), 10 deletions(-)
 create mode 100755 scripts/external-step1.sh
 create mode 100755 scripts/external-step2.sh

(limited to 'scripts')

diff --git a/scripts/external-step1.cfg b/scripts/external-step1.cfg
index c381ae5..967289c 100644
--- a/scripts/external-step1.cfg
+++ b/scripts/external-step1.cfg
@@ -12,12 +12,9 @@ pki_client_pkcs12_password=Secret123
 pki_ds_base_dn=dc=ca,dc=example,dc=com
 pki_ds_database=ca
 pki_ds_password=Secret123
-pki_security_domain_name=EXAMPLE
+pki_security_domain_name=EXTERNAL
 pki_token_password=Secret123
 
 pki_external=True
-pki_external_csr_path=/tmp/ca.csr
-pki_external_ca_cert_chain_path=/tmp/external.crt
-pki_external_ca_cert_path=/tmp/ca.crt
 pki_external_step_two=False
-#pki_ca_signing_subject_dn=cn=CA Signing,ou=External,o=example.com
+pki_external_csr_path=/tmp/ca_signing.csr
diff --git a/scripts/external-step1.sh b/scripts/external-step1.sh
new file mode 100755
index 0000000..5f7676c
--- /dev/null
+++ b/scripts/external-step1.sh
@@ -0,0 +1,9 @@
+#!/bin/sh -x
+
+mkdir -p build
+
+rm -f /tmp/ca_signing.csr
+rm -f /tmp/ca_signing.crt
+rm -f /tmp/external.crt
+
+pkispawn -v -f external-step1.cfg -s CA 2>&1 | tee build/external-step1.log
diff --git a/scripts/external-step2.cfg b/scripts/external-step2.cfg
index 6b9d395..2092c48 100644
--- a/scripts/external-step2.cfg
+++ b/scripts/external-step2.cfg
@@ -12,12 +12,10 @@ pki_client_pkcs12_password=Secret123
 pki_ds_base_dn=dc=ca,dc=example,dc=com
 pki_ds_database=ca
 pki_ds_password=Secret123
-pki_security_domain_name=EXAMPLE
+pki_security_domain_name=EXTERNAL
 pki_token_password=Secret123
 
 pki_external=True
-pki_external_csr_path=/tmp/ca.csr
-pki_external_ca_cert_chain_path=/tmp/external.crt
-pki_external_ca_cert_path=/tmp/ca.crt
 pki_external_step_two=True
-#pki_ca_signing_subject_dn=cn=CA Signing,ou=External,o=example.com
+pki_external_ca_cert_chain_path=/tmp/external.crt
+pki_external_ca_cert_path=/tmp/ca_signing.crt
diff --git a/scripts/external-step2.sh b/scripts/external-step2.sh
new file mode 100755
index 0000000..78f9c9d
--- /dev/null
+++ b/scripts/external-step2.sh
@@ -0,0 +1,5 @@
+#!/bin/sh -x
+
+mkdir -p build
+
+pkispawn -v -f external-step2.cfg -s CA 2>&1 | tee build/external-step2.log
-- 
cgit