Make Container Config Strategy

[aaf/authz.git] / conf / CA / newca.sh

diff --git a/conf/CA/newca.sh b/conf/CA/newca.sh
deleted file mode 100644 (file)
index 5f49f38..0000000
--- a/conf/CA/newca.sh
+++ /dev/null
@@ -1,57 +0,0 @@
-#
-# NOTE: This README is "bash" capable.  bash README.txt
-#
-# create simple but reasonable directory structure
-mkdir -p private certs newcerts 
-chmod 700 private
-chmod 755 certs newcerts
-touch index.txt
-if [ ! -e serial ]; then
-  echo '01' > serial
-fi
-
-if [  "$1" == "" ]; then
-  CN=$1
-else
-  CN=RootCA
-fi
-
-echo "IMPORTANT: If for any reason, you kill this process, type 'stty sane'"
-echo "Enter the PassPhrase for your Key: "
-`stty -echo`
-read PASSPHRASE
-`stty echo`
-
-if [ ! -e /private/ca.ekey ]; then
-  # Create a regaular rsa encrypted key
-  openssl genrsa -aes256 -out private/ca.ekey -passout stdin 4096 << EOF
-$PASSPHRASE
-EOF
-fi
-
-if [ ! -e /private/ca.key ]; then
-  # Move to a Java/Filesystem readable key. Note that this one is NOT Encrypted.
-  openssl pkcs8 -in private/ca.ekey -topk8 -nocrypt -out private/ca.key -passin stdin << EOF
-$PASSPHRASE
-EOF
-fi
-chmod 400 private/ca.key private/ca.ekey
-
-
-if [ -e subject.aaf ]; then
-  SUBJECT="-subj /CN=$CN`cat subject.aaf`"
-else
-  SUBJECT=""
-fi
-
-# Generate a CA Certificate
-openssl req -config openssl.conf \
-      -key private/ca.key \
-      -new -x509 -days 7300 -sha256 -extensions v3_ca \
-      $SUBJECT \
-      -out certs/ca.crt 
-
-if [ -e certs/ca.crt ]; then
-  # All done, print result
-  openssl x509 -text -noout -in certs/ca.crt
-fi