Bug #2957: Change postinst of dataone-cn-os-core to install different server certs per environment - Infrastructure - DataONE Tasks

Bug #2957

Change postinst of dataone-cn-os-core to install different server certs per environment

Added by Robert Waltz over 12 years ago. Updated over 12 years ago.

Status:

Closed

Priority:

High

Assignee:

Robert Waltz

Category:

d1_cn_buildout

Target version:

Sprint-2012.25-Block.4.1

Start date:

2012-06-15

Due date:

% Done:

100%

Milestone:

CCI-1.0.2

Product Version:

Story Points:

Sprint:

Description

postgres needs this too....

History

#1 Updated by Robert Waltz over 12 years ago

Milestone changed from CCI-1.0.1 to CCI-1.0.2

The new dataone cert is copied to /etc/ssl/certs/_.dataone.org.crt when upgrading from the stable channel, while the test cert is installed while upgrading from the unstable channel.

need to copy /etc/ssl/certs/_.dataone.org.crt from cn-dev to sandbox machines, copy the cert into /var/lib/postgresql/8.4/main as the server crt.

I also needed to modify /etc/apache2/sites-available/cn-ssl to set SSLCertificateChainFile to /etc/ssl/certs/gd_intermediate_bundle.crt

strangely /var/local/dataone/ca seemed to be alright??

Make a change to postinst such that all environments can be supported.

#2 Updated by Robert Waltz over 12 years ago

Target version changed from Sprint-2012.23-Block.3.4 to Sprint-2012.25-Block.4.1

#3 Updated by Robert Waltz over 12 years ago

Priority changed from Normal to High

#4 Updated by Robert Waltz over 12 years ago

Status changed from New to Closed

Also available in: Atom PDF

Project

General

Profile

Infrastructure

Issues

Custom queries