summaryrefslogtreecommitdiffstats
path: root/base/common/shared/webapps/pki/admin/console/config/databasepanel.vm
blob: 1747101107fc7e32a2058b51e2922ab34e0c77a1 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
<!-- --- BEGIN COPYRIGHT BLOCK ---
     This program is free software; you can redistribute it and/or modify
     it under the terms of the GNU General Public License as published by
     the Free Software Foundation; version 2 of the License.

     This program is distributed in the hope that it will be useful,
     but WITHOUT ANY WARRANTY; without even the implied warranty of
     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
     GNU General Public License for more details.

     You should have received a copy of the GNU General Public License along
     with this program; if not, write to the Free Software Foundation, Inc.,
     51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.

     Copyright (C) 2007 Red Hat, Inc.
     All rights reserved.
     --- END COPYRIGHT BLOCK --- -->

<SCRIPT type="text/JavaScript">
function myOnLoad() {
}

function performPanel() {
    with (document.forms[0]) {
        submit();
    }
}
</SCRIPT>
Please provide information to an existing Fedora Directory Server that can be used as the internal database for this instance. <a href="javascript:toggle_details();">[Details]</a>
<SCRIPT type="text/JavaScript">
function toggle_details()
{
  d = document.getElementById('details');
  if (d.style.display == "block") {
    d.style.display="none";
  } else {
    d.style.display="block";
  }
}
</script>
<div id=details style="display: none;">
<p>
Each instance needs access to a Fedora Directory Server instance to store requests and records. Each PKI instance may create its own associated internal database, or may share an existing internal database. To share an existing internal database instance, a PKI instance would only need to establish a unique distinguished name (DN) using the field entitled <b>Base DN</b> and a unique database name using the field entitled <b>Database</b>. 
#if ($clone == "clone")
<p>
<p>
Replication agreements between the master and clone database instances may be customized.  If no master and replication ports are provided, then replication will occur on the same ports used by the Certificate Sever instances to communicate with the directory server.  If these ports are LDAPS ports, then the replication traffic will be SSL encrypted.  It is still possible to require the replication traffic to be SSL encrypted on the non-SSL port by selecting TLS for Replication Security.  In order for this operation to be successful though, the database instances must be SSL enabled before continuing beyond this panel.
#end
</div>
<p>
<i>Note: If the Fedora Directory Server is at a remote host, it is highly recommended that SSL should be used.</i>
<br/>
#if ($errorString != "")
<img src="/pki/images/icon_crit_update.gif">&nbsp;<font color="red">$errorString</font>
#end
<br/>                                                                            

    <table class="details">
      <tr>
        <th>Host:</th>
        <td><input type="text" size="40" name="host" value="$hostname" /></td>
      </tr>
            
      <tr>
        <th>Port:</th>
                                
        <td><input type="text" size="40" name="port" value="$portStr" />  
            <input type="CHECKBOX" NAME="secureConn">SSL
        </td>
      </tr>       
      <tr>
        <th>Base DN:</th>
#if ($clone == "clone")
        <td><input type="text" size="40" name="basedn" value="$basedn" readonly/></td>
#else 
        <td><input type="text" size="40" name="basedn" value="$basedn" /></td>
#end
      </tr>
      <tr>
        <th>Database:</th>

        <td><input type="text" size="40" name="database" value="$database"  /></td>
      </tr>
      <tr>
        <th>Bind DN:</th>
        <td><input type="text" size="40" name="binddn" value="$binddn" /></td>
      </tr>
      <tr>
        <th>Bind Password:</th>

        <td><input type="password" size="40" name="__bindpwd" value="$bindpwd" autocomplete="off" /></td>
      </tr>
    </table>
    <input type="hidden" name="display" value=$displayStr />
    <input type="CHECKBOX" NAME="removeData">Remove the existing data from the <b>Base DN</b> shown above.<p>

#if ($clone == "clone")

    #set ($check_none="")
    #set ($check_tls="")
    #set ($check_ssl="")
    #if ($replicationSecurity == "TLS") #set ($check_tls="CHECKED")
    #elseif ($replicationSecurity == "SSL") #set ($check_ssl="CHECKED")
    #else #set ($check_none="CHECKED") #end

    <table class="details" >
      <tr><th>Replication Details</th></tr>
      <tr>
        <th>Master Replication Port:</th>
        <td><input type="text" size="40" name="masterReplicationPort" value="$masterReplicationPort" /></td>
      </tr>

      <tr>
        <th>Clone Replication Port:</th>
        <td><input type="text" size="40" name="cloneReplicationPort" value="$cloneReplicationPort" /></td>
      </tr>

      <tr>
        <th>Replication Security:</th>
        <td>
            <input type="radio" name="replicationSecurity" value="None" $check_none />None</input>
            <input type="radio" name="replicationSecurity" value="TLS"  $check_tls  />TLS</input>
            <input type="radio" name="replicationSecurity" value="SSL"  $check_ssl  />SSL</input>
        </td>
      </tr>
      <p>
#end

    <div align="right">
      <hr />
      &nbsp;
    </div>