conf/CA/deploy.sh

   1 # SED needs escaped slashes
   2 function escSlash {
   3   echo "${1//\//\\\/}"
   4 }
   5
   6 NS="$(cat ns.aaf)"
   7 DEPLOY_DIR=${PWD/\/CA/}
   8 read -p "AAF Config Directory: [$DEPLOY_DIR]: " input
   9 DEPLOY_DIR=${input:-$DEPLOY_DIR}
  10
  11 echo "Deploying to $DEPLOY_DIR"
  12
  13 APP_NAME="${DEPLOY_DIR##*/}"
  14 CA_CRT="CA_${APP_NAME^^}.crt"
  15 cp -v certs/ca.crt $DEPLOY_DIR/public/$CA_CRT
  16 sed -i.bak \
  17         -e "/cm_public_dir=.*/s//cm_public_dir=$(escSlash $DEPLOY_DIR/public)/" \
  18         -e "/cm_trust_cas=.*/s//cm_trust_cas=${CA_CRT}/" \
  19         $DEPLOY_DIR/etc/org.osaaf.aaf.cm.props
  20
  21 INT_DIR="intermediate_$(cat intermediate.serial)"
  22
  23 cp -v $INT_DIR/certs/ca.crt $DEPLOY_DIR/public/${APP_NAME^^}_SIGNER.crt
  24 SIGNER=${NS}.signer.p12
  25 cp -v $INT_DIR/aaf_$INT_DIR.p12 $DEPLOY_DIR/local/${SIGNER}
  26
  27 CADI="java -jar /opt/app/aaf/lib/aaf-cadi-core-*.jar"
  28 KEYFILE="$DEPLOY_DIR/local/org.osaaf.aaf.keyfile"
  29 if [ ! -f "$KEYFILE" ]; then
  30   echo $CADI keygen $KEYFILE
  31 fi
  32
  33 echo "Enter Issuer Key Password "
  34 read -s ISSUER_PASS
  35 ISSUER_PASS=$($CADI digest "$ISSUER_PASS" $KEYFILE)
  36 sed -i.bak \
  37         -e "/cm_ca.local=.*/s//cm_ca.local=org.onap.aaf.auth.cm.ca.LocalCA,$(escSlash $DEPLOY_DIR/local/$SIGNER);aaf_$INT_DIR;enc:$ISSUER_PASS/" \
  38         $DEPLOY_DIR/local/org.osaaf.aaf.cm.ca.props