HCoop
/
hcoop
/
domtool2.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
Per-host firewall rules
[hcoop/domtool2.git]
/
scripts
/
domtool-addcert
diff --git
a/scripts/domtool-addcert
b/scripts/domtool-addcert
index
3fb6b82
..
8d9e295
100755
(executable)
--- a/
scripts/domtool-addcert
+++ b/
scripts/domtool-addcert
@@
-6,17
+6,17
@@
if test -z "$USER"; then
exit 1
fi
exit 1
fi
- KEYDIR=/afs/hcoop.net/common/etc/domtool/keys/$
1
+ KEYDIR=/afs/hcoop.net/common/etc/domtool/keys/$
USER
KEYFILE=$KEYDIR/key.pem
KEYFILE=$KEYDIR/key.pem
-CERTFILE=/afs/hcoop.net/common/etc/domtool/certs/$
1
.pem
+CERTFILE=/afs/hcoop.net/common/etc/domtool/certs/$
USER
.pem
NEWREQ=~/.newreq.pem
NEW=~/.new.pem
KEYIN=~/.keyin
NEWREQ=~/.newreq.pem
NEW=~/.new.pem
KEYIN=~/.keyin
-mkdir
-p $KEYDIR
+mkdir
$KEYDIR || echo Key directory already exists.
openssl genrsa -out $KEYFILE
chown -R domtool.domtool $KEYDIR
openssl genrsa -out $KEYFILE
chown -R domtool.domtool $KEYDIR
-fs sa $KEYDIR $USER read
+fs sa $KEYDIR $USER read
|| echo This must be a server principal.
echo "." >$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN
echo "." >$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN