Open main menu

CDOT Wiki β

Changes

Fedora Arm Secondary Architecture/Koji Certificates

32 bytes added, 16:23, 17 April 2010
no edit summary
[[Category:Fedora ARM Secondary Architecture]][[Category:SBR600]]
So after reading and tweaking sample openssl code and config here:= Goal =
httpTo create the certificates for the Koji farm. = Resources = * [[:fedora://fedoraproject.org/wiki/Koji/ServerHowTo]] = Scripts =
I managed to break the code down into 2 separate peices. One for making the CA and one for making the certs for the different users. Now the way my cert script differs from the original is that it uses the variables passed to it as the default commonName in the ssl.cnf file.
== Script 1: cascript ==
caname=koji
user=$1
-out ${caname}_ca_cert.crt -extensions v3_ca
== Script 2: certscript ==
caname=koji
user=$1
mv ssl2.cnf confs/${user}-ssl.cnf
= Using the Scripts = == Using the cascript ==
== Using the certscript ==
For example, when executing my script to create a cert for a new user...lets say "kojiuser1":