From 8d5eb937f99fd18398401f3f744eb85775293e23 Mon Sep 17 00:00:00 2001
From: Matthew Harmsen <mharmsen@redhat.com>
Date: Thu, 6 Dec 2012 14:23:21 -0800
Subject: Implemented ability to utilize an external CA

* TRAC Ticket #231 - Dogtag 10: Update PKI Deployment to handle external CA
---
 base/deploy/src/scriptlets/initialization.py | 22 +++++++++++++++-------
 1 file changed, 15 insertions(+), 7 deletions(-)

(limited to 'base/deploy/src/scriptlets/initialization.py')

diff --git a/base/deploy/src/scriptlets/initialization.py b/base/deploy/src/scriptlets/initialization.py
index a0298f740..ba678cc27 100644
--- a/base/deploy/src/scriptlets/initialization.py
+++ b/base/deploy/src/scriptlets/initialization.py
@@ -41,13 +41,21 @@ class PkiScriptlet(pkiscriptlet.AbstractBasePkiScriptlet):
             config.pki_log.info(log.SKIP_INITIALIZATION_SPAWN_1, __name__,
                                 extra=config.PKI_INDENTATION_LEVEL_1)
             return self.rv
-        config.pki_log.info(log.INITIALIZATION_SPAWN_1, __name__,
-                            extra=config.PKI_INDENTATION_LEVEL_1)
-        # verify that this type of "subsystem" does NOT yet
-        # exist for this "instance"
-        util.instance.verify_subsystem_does_not_exist()
-        # detect and avoid any namespace collisions
-        util.namespace.collision_detection()
+        else:
+            config.pki_log.info(log.INITIALIZATION_SPAWN_1, __name__,
+                                extra=config.PKI_INDENTATION_LEVEL_1)
+            if master['pki_subsystem'] == "CA" and\
+               config.str2bool(master['pki_external_step_two']):
+                # verify that this type of "subsystem" currently EXISTS
+                # for this "instance" (External CA Step 2)
+                util.instance.verify_subsystem_exists()
+                master['pki_skip_installation'] = "True";
+            else:
+                # verify that this type of "subsystem" does NOT yet
+                # exist for this "instance"
+                util.instance.verify_subsystem_does_not_exist()
+                # detect and avoid any namespace collisions
+                util.namespace.collision_detection()
         # initialize 'uid' and 'gid'
         util.identity.add_uid_and_gid(master['pki_user'], master['pki_group'])
         # establish 'uid' and 'gid'
-- 
cgit