Progress on splitting certmaster and funcd

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Warning:  complicated developer content!  :)
As Adrian posted on IRC, Func is now operating (in levels of increasing workingness) with certmaster split out as a seperate package/library/application. This means we are making the certmaster tools seperate finally, so we can use certmaster for other projects without having to install Func and the Func modules. In the end, this means more usage for certmaster and also simplifing 
the Func codebase a little bit.

To get at this developmetn effort now, run the following versions:
* func from the "devel" branch, see the PatchProcess document alluded to earlier on how to check that out 
   * certmaster.git from Fedora Hosted Projects
"make install_hardest" is the best way to install both of these, and keep in mind the values of the configuration files and 
paths have changed slightly.

Note the new paths:
   /etc/pki/certmaster
   /var/lib/certmaster
With those versions, you will see that func no longer contains certmaster-ca, certmasterd, etc and these are part of the certmaster project.
There is an additional program "/usr/bin/certmaster-request" in certmaster.git.
This application is there to make a request to certmaster to get a cert. It uses /etc/certmaster/minion.conf -- note the path change from /etc/func/minion.conf -- which still exists but contains different contents. Certmaster request uses the very simple 
python module certmaster.request -- so that's how Func is calling it.
I will be updating the Wiki instructions on the certmaster Trac instance shortly -- we won't update content on the Func trac instance until it's a bit closer to release -- and certmaster is successfully in Fedora/EPEL as a seperate entity.
Install instructions will be just as short and it will be basically the same, so don't panic :)
We intend to tackle service/application-specific certs further down the road, right now certmaster-request requested certs are used by Func 
and all other applications.

Questions welcome!

--Michael

_______________________________________________
Func-list mailing list
Func-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/func-list
[Index of Archives]     [Fedora Users]     [Linux Networking]     [Fedora Legacy List]     [Fedora Desktop]     [Fedora SELinux]     [Big List of Linux Books]     [Yosemite News]     [KDE Users]

  Powered by Linux