summaryrefslogtreecommitdiffstats
path: root/conf/CA/README.txt
blob: e34f9fd2f0ee83704290d052fbfec30f02cfad0f (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57

#!/bin/bash
#########
#  ============LICENSE_START====================================================
#  org.onap.aaf
#  ===========================================================================
#  Copyright (c) 2017 AT&T Intellectual Property. All rights reserved.
#  ===========================================================================
#  Licensed under the Apache License, Version 2.0 (the "License");
#  you may not use this file except in compliance with the License.
#  You may obtain a copy of the License at
#
#       http://www.apache.org/licenses/LICENSE-2.0
#
#  Unless required by applicable law or agreed to in writing, software
#  distributed under the License is distributed on an "AS IS" BASIS,
#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
#  See the License for the specific language governing permissions and
#  limitations under the License.
#  ============LICENSE_END====================================================
##
# NOTE: This README is "bash" capable.  bash README.txt
#
# create simple but reasonable directory structure
mkdir -p private certs newcerts
chmod 700 private
chmod 755 certs newcerts
touch index.txt
echo '01' > serial

echo "IMPORTANT: If for any reason, you kill this process, type 'stty sane'"
echo "Enter the PassPhrase for your Key: "
`stty -echo`
#read PASSPHRASE
PASSPHRASE=HunkyDoryDickoryDock
`stty echo`

# Create a regaular rsa encrypted key
openssl genrsa -aes256 -out private/ca.ekey -passout stdin 4096 << EOF
$PASSPHRASE
EOF

# Move to a Java readable time, not this one is NOT Encrypted.
openssl pkcs8 -in private/ca.ekey -topk8 -nocrypt -out private/ca.key -passin stdin << EOF
$PASSPHRASE
EOF
chmod 400 private/ca.key private/ca.ekey

# Generate a CA Certificate
openssl req -config openssl.conf \
      -key private/ca.key \
      -new -x509 -days 7300 -sha256 -extensions v3_ca \
      -out certs/ca.crt << EOF
$PASSPHRASE
EOF

# All done, print result
openssl x509 -text -noout -in certs/ca.crt
on> <parent> <groupId>org.onap.policy.clamp</groupId> <artifactId>clamp-packages</artifactId> <version>6.4.0-SNAPSHOT</version> </parent> <artifactId>policy-clamp-tarball</artifactId> <name>${project.artifactId}</name> <description>[${project.parent.artifactId}]</description> <dependencies> <dependency> <groupId>org.onap.policy.clamp</groupId> <artifactId>policy-clamp-runtime-acm</artifactId> <version>${project.version}</version> </dependency> <dependency> <groupId>org.onap.policy.clamp.participant</groupId> <artifactId>policy-clamp-participant-impl-policy</artifactId> <version>${project.version}</version> </dependency> <dependency> <groupId>org.onap.policy.clamp.participant</groupId> <artifactId>policy-clamp-participant-impl-kubernetes</artifactId> <version>${project.version}</version> </dependency> <dependency> <groupId>org.onap.policy.clamp.participant</groupId> <artifactId>policy-clamp-participant-impl-http</artifactId> <version>${project.version}</version> </dependency> <dependency> <groupId>org.onap.policy.clamp.participant</groupId> <artifactId>policy-clamp-acm-element-impl</artifactId> <version>${project.version}</version> </dependency> </dependencies> <build> <plugins> <plugin> <groupId>org.apache.maven.plugins</groupId> <artifactId>maven-assembly-plugin</artifactId> <executions> <execution> <id>generate-complete-tar</id> <phase>package</phase> <goals> <goal>single</goal> </goals> <configuration> <descriptors> <descriptor>src/main/package/tarball/assembly.xml</descriptor> </descriptors> <finalName>${project.artifactId}-${project.version}</finalName> </configuration> </execution> </executions> </plugin> </plugins> </build> </project>