From: Michal Banka <michal.banka@nokia.com>
Date: Fri, 2 Oct 2020 12:35:30 +0000 (+0200)
Subject: Update certs expiration date
X-Git-Tag: 1.6.0^0
X-Git-Url: https://gerrit.onap.org/r/gitweb?a=commitdiff_plain;h=refs%2Fchanges%2F79%2F113479%2F1;p=vnfsdk%2Frefrepo.git

Update certs expiration date

PROBLEM: By default certs were generated with 30 days of
expiration days from image build date. When no new releases
were made during that time certs were loosing validity and
caused problems.

SOLUTION: Updated generation process to set 730 days (2 years)
until expiration date for new certs.
Updated subject of new certs.

Change-Id: I933cbbd1f80d824913cddbe19fc65988643d2282
Signed-off-by: Michal Banka <michal.banka@nokia.com>
Issue-ID: VNFSDK-650
---

diff --git a/vnfmarket-be/deployment/docker/docker-refrepo/src/main/docker/certgen.sh b/vnfmarket-be/deployment/docker/docker-refrepo/src/main/docker/certgen.sh
index 5c038dd4..1d9df3a4 100755
--- a/vnfmarket-be/deployment/docker/docker-refrepo/src/main/docker/certgen.sh
+++ b/vnfmarket-be/deployment/docker/docker-refrepo/src/main/docker/certgen.sh
@@ -16,8 +16,8 @@
 # limitations under the License.
 #
 
-openssl req -nodes -newkey rsa:2048 -keyout example.key -out example.csr -subj "/C=IN/ST=Bangalore/L=Bangalore/O=Global Security/OU=ONAP/CN=example.com"
-openssl x509 -req -in example.csr -signkey example.key -out cert.crt
+openssl req -nodes -newkey rsa:2048 -keyout example.key -out example.csr -subj "/C=US/O=ONAP/OU=OSAAF/CN=intermediateCA_9/"
+openssl x509 -req -in example.csr -signkey example.key -days 730 -out cert.crt
 cp -p cert.crt /etc/nginx/ssl/
 cp -p example.key /etc/nginx/ssl/cert.key
 chmod 644 /etc/nginx/ssl/cert.crt