Changes

Fedora Arm Secondary Architecture/Koji Certificates

32 bytes added, 16:23, 17 April 2010

no edit summary

[[Category:Fedora ARM Secondary Architecture]][[Category:SBR600]]

~~So after reading and tweaking sample openssl code and config here:~~= Goal =

~~http~~To create the certificates for the Koji farm. = Resources = * [[:fedora:~~//fedoraproject.org/wiki/~~Koji/ServerHowTo]] = Scripts =

I managed to break the code down into 2 separate peices. One for making the CA and one for making the certs for the different users. Now the way my cert script differs from the original is that it uses the variables passed to it as the default commonName in the ssl.cnf file.

== Script 1: cascript ==

caname=koji

user=$1

-out ${caname}_ca_cert.crt -extensions v3_ca

== Script 2: certscript ==

caname=koji

user=$1

mv ssl2.cnf confs/${user}-ssl.cnf

= Using the Scripts = == Using the cascript ==

== Using the certscript ==

For example, when executing my script to create a cert for a new user...lets say "kojiuser1":

Chris Tyler

Bureaucrats, Administrators

1,885

edits

CDOT Wiki β

Changes

Fedora Arm Secondary Architecture/Koji Certificates

CDOT Wiki ^β