diff options
author | Matthew Harmsen <mharmsen@redhat.com> | 2013-10-15 17:55:05 -0700 |
---|---|---|
committer | Matthew Harmsen <mharmsen@redhat.com> | 2013-10-15 17:59:23 -0700 |
commit | 47c77a67d67cb443070137fd9b8d64955d499089 (patch) | |
tree | 12b7588f34a80a74c000e77b19017ec941ad5231 /base/server/scripts | |
parent | 618be8bd7e9488a325789232c94aad109f9b6803 (diff) | |
download | pki-47c77a67d67cb443070137fd9b8d64955d499089.tar.gz pki-47c77a67d67cb443070137fd9b8d64955d499089.tar.xz pki-47c77a67d67cb443070137fd9b8d64955d499089.zip |
Stand-alone DRM
* TRAC Ticket #667 - provide option for ca-less drm install
Diffstat (limited to 'base/server/scripts')
-rw-r--r-- | base/server/scripts/operations | 40 |
1 files changed, 40 insertions, 0 deletions
diff --git a/base/server/scripts/operations b/base/server/scripts/operations index 6d5ee1476..d2b666a5a 100644 --- a/base/server/scripts/operations +++ b/base/server/scripts/operations @@ -672,6 +672,39 @@ get_pki_configuration_definitions() fi fi + # If ${pki_subsystem} is a DRM or OCSP, check to see if + # it is either a Stand-alone DRM or a Stand-alone OCSP + # + # NOTE: Ignore errors when the '<pki>.standalone' parameter + # is not present as this is most likely a legacy instance! + # + pki_standalone="" + if [ "${pki_subsystem}" == "DRM" ] ; then + line=`grep -e '^[ \t]*kra.standalone[ \t]*=' ${PKI_SUBSYSTEM_CONFIGURATION_FILE}` + if [ "${line}" != "" ] ; then + pki_standalone=`echo "${line}" | sed -e 's/^[^=]*[ \t]*=[ \t]*\(.*\)/\1/' -e 's/[ \t]*$//'` + if [ "${pki_standalone}" == "true" ] ; then + # Set a fixed value for "${pki_standalone}" + pki_standalone="(Stand-alone)" + else + # Reset "${pki_standalone}" to be empty + pki_standalone="" + fi + fi + elif [ "${pki_subsystem}" == "OCSP" ] ; then + line=`grep -e '^[ \t]*ocsp.standalone[ \t]*=' ${PKI_SUBSYSTEM_CONFIGURATION_FILE}` + if [ "${line}" != "" ] ; then + pki_standalone=`echo "${line}" | sed -e 's/^[^=]*[ \t]*=[ \t]*\(.*\)/\1/' -e 's/[ \t]*$//'` + if [ "${pki_standalone}" == "true" ] ; then + # Set a fixed value for "${pki_standalone}" + pki_standalone="(Stand-alone)" + else + # Reset "${pki_standalone}" to be empty + pki_standalone="" + fi + fi + fi + # Always obtain this PKI instance's "registered" # security domain information pki_security_domain_name="" @@ -737,6 +770,13 @@ get_pki_configuration_definitions() # data="${pki_hierarchy} ${pki_subsystem}" fi + elif [ "${pki_standalone}" != "" ] ; then + # Possible Values: + # + # "DRM (Stand-alone)" + # "OCSP (Stand-alone)" + # + data="${pki_subsystem} ${pki_standalone}" else # Possible Values: # |