[LON-CAPA-cvs] cvs: loncom / CrCA.pl
raeburn
raeburn at source.lon-capa.org
Sun May 14 15:11:47 EDT 2023
raeburn Sun May 14 19:11:47 2023 EDT
Modified files:
/loncom CrCA.pl
Log:
- Script to create a Certificate Authority (CA) for a LON-CAPA cluster.
- policy section: localityName requirement set to "supplied"
- req section: set default key, message digest and prompt
- call close() after writing opensslca.conf file.
Index: loncom/CrCA.pl
diff -u loncom/CrCA.pl:1.5 loncom/CrCA.pl:1.6
--- loncom/CrCA.pl:1.5 Sun May 14 18:44:57 2023
+++ loncom/CrCA.pl Sun May 14 19:11:47 2023
@@ -2,7 +2,7 @@
# The LearningOnline Network with CAPA
# Script to create a Certificate Authority (CA) for a LON-CAPA cluster.
#
-# $Id: CrCA.pl,v 1.5 2023/05/14 18:44:57 raeburn Exp $
+# $Id: CrCA.pl,v 1.6 2023/05/14 19:11:47 raeburn Exp $
#
# Copyright Michigan State University Board of Trustees
#
@@ -258,6 +258,7 @@
[ loncapa_policy ]
commonName = supplied
+localityName = supplied
stateOrProvinceName = supplied
countryName = supplied
emailAddress = supplied
@@ -272,6 +273,10 @@
[ req ]
default_bits = 2048
+default_md = sha256
+default_keyfile = $dir/lonca/private/cakey.pem
+
+prompt = no
distinguished_name = loncapa_ca
x509_extensions = loncapa_ca_extensions
@@ -294,7 +299,7 @@
END
-
+ close($fh);
} else {
print 'Error: failed to wtite to '."$dir/lonca/opensslca.conf. Exiting.\n";
exit;
More information about the LON-CAPA-cvs
mailing list