Thomas Preud'homme
519303988c
[ssl_mgmt] Set ownership and rights of keycert
2014-11-04 23:02:27 +00:00
Thomas Preud'homme
d991b290bf
[ssl_mgmt] Install cert before taking its hash
...
Install the certificate before taking the fingerprint of the installed
certificate for mailing the administrators.
2014-11-04 21:19:51 +00:00
Thomas Preud'homme
72c930a8b8
[ssl_mgmt] Sign email sent to notifiedUsers
2014-05-19 23:21:20 +08:00
Thomas Preud'homme
39da9a23b6
[ssl_mgmt] group cmd to set ownership+rights
2014-05-11 15:03:55 +08:00
Thomas Preud'homme
3a7e4edaeb
[ssl_mgmt] Only set ownership & rights if gen ok
...
Only set ownership and rights if generated file are not corrupted and
certificate match the private key.
2014-05-11 15:03:55 +08:00
Thomas Preud'homme
7c3cb1e960
[ssl_mgmt] Exit if missing file or rights
2014-05-11 15:03:55 +08:00
Thomas Preud'homme
7bc13c2c89
[ssl_mgmt] Add some sanity checks
...
Check openssl can read both certificate and key and that they match each
other.
2014-05-11 15:03:54 +08:00
Thomas Preud'homme
b1acbe2a70
[ssl_mgmt] Send all warning echo to stderr
...
Fix echos introduced 2 commits ago with parts of the messages sent to
stdout and the other parts to stderr.
2014-05-05 23:40:05 +08:00
Thomas Preud'homme
7510335e26
[ssl_mgmt] Change default to sane values
...
Now that our installation was migrating to saner places, change default
values.
2014-05-05 22:33:06 +08:00
Thomas Preud'homme
92962f6168
[ssl_mgmt] Fix copying of user/group ownership
2014-05-04 23:26:29 +08:00
Thomas Preud'homme
4f51528611
[ssl_mgmt] Send email with new fingerprints
2014-05-03 21:32:11 +08:00
Thomas Preud'homme
27630ea277
Add simple test infrastructure
2014-05-03 21:30:46 +08:00
Thomas Preud'homme
b1b4251233
[ssl_mgmt] Fail instead of sudo if rights not ok
2014-05-03 17:54:35 +08:00
Thomas Preud'homme
8bf95f40af
[ssl_mgmt] Stop hardcoding path
...
Replace hardcoded paths by a bunch of variables with default values and
that can be set from a configuration file. This should make testing much
more easy.
2014-05-03 17:54:31 +08:00
Thomas Preud'homme
1035fb13ac
[ssl_mgmt] Comment out extensions with empty value
2014-04-29 22:22:57 +08:00
Thomas Preud'homme
0f52180d60
[ssl_mgmt] Fix subject alternative name detection
2014-03-09 21:00:24 +08:00
Thomas Preud'homme
8deba57b8d
[ssl_mgmt] Add option to avoid overwrite
2014-03-09 20:39:36 +08:00
Thomas Preud'homme
9f7a2c6c06
[ssl_mgmt] Add comments to functions missing one
2014-03-09 20:39:36 +08:00
Thomas Preud'homme
c76bf20637
[ssl_mgmt] Alert user if no overwrite occur
2014-03-09 20:39:36 +08:00
Thomas Preud'homme
2674b4341d
[ssl_mgmt] copy access right from existing file
2014-03-09 20:39:36 +08:00
Thomas Preud'homme
1309f7d718
[ssl_mgmt] Fix support for empty field values
2014-03-09 20:39:36 +08:00
Thomas Preud'homme
6a92f1c01c
[ssl_mgmt] Only overwrite openssl.cnf when ready
2014-03-09 20:29:24 +08:00
Thomas Preud'homme
b080b227a2
[ssl_mgmt] Fix usage of EDITOR
2014-03-09 20:29:24 +08:00
Thomas Preud'homme
cd637fbbfa
[ssl_mgmt] Allow to specify a cert file
2014-03-09 20:29:22 +08:00
Thomas Preud'homme
d6f92888a8
[ssl_mgmt] Add option to only generate openssl.cnf
2014-03-09 20:28:46 +08:00
Thomas Preud'homme
e428424cf0
[ssl_mgmt] Change pattern delimiter: s/#/@/
2014-03-09 20:06:50 +08:00
Thomas Preud'homme
2b6d07e80b
Add ssl_mgmt script
2012-02-20 17:23:51 +01:00