cp scripts/domtool-reset-local /usr/local/sbin/
cp scripts/domtool-adduser /usr/local/bin/
cp scripts/domtool-addcert /usr/local/bin/
- cp scripts/domtool-addcert-daemon /usr/local/bin/
+ cp scripts/domtool-readdcerts /usr/local/bin/
cp scripts/domtool-addacl /usr/local/bin/
cp scripts/domtool-rmuser /usr/local/bin/
cp scripts/domtool-admin-sudo /usr/local/bin/
exit 1
fi
- KEYDIR=/afs/hcoop.net/common/etc/domtool/keys/$1
+ KEYDIR=/afs/hcoop.net/common/etc/domtool/keys/$USER
KEYFILE=$KEYDIR/key.pem
-CERTFILE=/afs/hcoop.net/common/etc/domtool/certs/$1.pem
+CERTFILE=/afs/hcoop.net/common/etc/domtool/certs/$USER.pem
NEWREQ=~/.newreq.pem
NEW=~/.new.pem
KEYIN=~/.keyin
-mkdir -p $KEYDIR
+mkdir $KEYDIR || echo Key directory already exists.
openssl genrsa -out $KEYFILE
chown -R domtool.domtool $KEYDIR
fs sa $KEYDIR $USER read
+++ /dev/null
-#!/bin/sh -e
-
-USER="$1"
-if test -z "$USER"; then
- echo Usage: domtool-addcert USERNAME
- exit 1
-fi
-
- KEYDIR=/afs/hcoop.net/common/etc/domtool/keys/$USER
- KEYFILE=$KEYDIR/key.pem
-CERTFILE=/afs/hcoop.net/common/etc/domtool/certs/$USER.pem
- NEWREQ=~/.newreq.pem
- NEW=~/.new.pem
- KEYIN=~/.keyin
-
-mkdir $KEYDIR || echo Already exists
-openssl genrsa -out $KEYFILE
-chown -R domtool.domtool $KEYDIR
-echo "." >$KEYIN
-echo "." >>$KEYIN
-echo "." >>$KEYIN
-echo "." >>$KEYIN
-echo "." >>$KEYIN
-echo "$USER" >>$KEYIN
-echo "$USER@hcoop.net" >>$KEYIN
-echo "" >>$KEYIN
-echo "" >>$KEYIN
-openssl req -new -key $KEYFILE -out $NEWREQ -days 365 <$KEYIN
-rm $KEYIN
-cat $NEWREQ $KEYFILE >$NEW
-rm $NEWREQ
-openssl ca -batch -config /etc/domtool/openssl.cnf -policy policy_anything -out $CERTFILE -infiles $NEW
-rm $NEW
-chown domtool.domtool $CERTFILE
--- /dev/null
+#!/bin/bash
+
+for i in `ls /afs/hcoop.net/common/etc/domtool/keys`; do
+ /usr/local/bin/domtool-addcert $i
+done;