Compare revisions

b08e2629 · b08e2629 · b08e2629 · b08e2629 · b08e2629 · b08e2629
--- a/warden_ra/README.ejbca
+++ b/warden_ra/README.ejbca
+EJBCA backend for Warden 3.# Registration Authority
+===================================================
+
+Introduction
+------------
+
+EJBCA_ is an open source CA management software. To use this backend
+with Warden RA, you need to have it already installed and running.
+Tested with EJBCA_ 3.9.
+
+.. _EJBCA: https://www.ejbca.org/
+
+
+Configuration
+-------------
+
+    Options for "Registry: EjbcaRegistry" section.
+
+    url: EJBCA API URL, for example "https://ejbca.example.org/ejbca/ejbcaws/ejbcaws?wsdl"
+    cert: certificate for authentication to EJBCA, defaults to "warden_ra.cert.pem"
+    key: key for authentication to EJBCA, defaults to "warden_ra.key.pem"
+    ca_name: name of the CA, dedicated for Warden, defaults to "Example CA"
+    certificate_profile_name: name of the EJBCA certificate profile, defaults to "Example"
+    end_entity_profile_name: name of the EJBCA entity profile, defaults to "Example EE"
+    subject_dn_template: template for the DN generation, defaults to "DC=cz,DC=example-ca,DC=warden,CN=%s"
+    username_suffix: suffix, which will be added to EJBCA entities, defaults to "@warden"
+
+
+------------------------------------------------------------------------------
+
+Copyright (C) 2017 Cesnet z.s.p.o
--- a/warden_ra/README.openssl
+++ b/warden_ra/README.openssl
--- a/warden_ra/apache22.conf
+++ b/warden_ra/apache22.conf
+SSLEngine on
+
+SSLVerifyClient optional
+SSLOptions +StdEnvVars +ExportCertData
+
+SSLCertificateFile      /opt/warden_server/cert.pem
+SSLCertificateKeyFile   /opt/warden_server/key.pem
+SSLCACertificateFile    /opt/warden_server/chain_TERENA_SSL_CA_3.pem
+
+WSGIScriptAlias /warden_ra /opt/warden-ra/warden_ra.wsgi
+
+<Directory /opt/warden-ra/warden_ra.wsgi>
+    Order allow,deny
+    Allow from all
+</Directory>
--- a/warden_ra/apache24.conf
+++ b/warden_ra/apache24.conf
+SSLEngine on
+
+SSLVerifyClient optional
+SSLOptions +StdEnvVars +ExportCertData
+
+SSLCertificateFile      /opt/warden_server/cert.pem
+SSLCertificateKeyFile   /opt/warden_server/key.pem
+SSLCACertificateFile    /opt/warden_server/chain_TERENA_SSL_CA_3.pem
+
+WSGIScriptAlias /warden_ra /opt/warden-ra/warden_ra.wsgi
+
+<Directory /opt/warden-ra/warden_ra.wsgi>
+    Require all granted
+</Directory>
--- a/warden_ra/ejbcaws.py
+++ b/warden_ra/ejbcaws.py
--- a/warden_ra/openssl.cnf.example
+++ b/warden_ra/openssl.cnf.example
--- a/warden_ra/warden_apply.sh
+++ b/warden_ra/warden_apply.sh
--- a/warden_ra/warden_ra.cfg.dist
+++ b/warden_ra/warden_ra.cfg.dist
+{
+    "Log": {
+        "filename": "/var/log/warden_ra.log",
+        "level": "info"
+    },
+    "Registry": {
+
+// Example configuration for OpenSSL CA backend
+//        "type": "OpenSSLRegistry",
+//        "base_dir": "/var/spool/example-ca",
+//        "subject_dn_template": "DC=cz,DC=example-ca,DC=warden,CN=%s"
+
+// Example configuration for EJBCA backend
+//        "type": "EjbcaRegistry",
+//        "url": "https://ejbca.example.org/ejbca/ejbcaws/ejbcaws?wsdl",
+//        "cert": "warden_ra.cert.pem",
+//        "key": "warden_ra.key.pem",
+//        "ca_name": "Example CA",
+//        "certificate_profile_name": "Example",
+//        "end_entity_profile_name": "Example EE",
+//        "subject_dn_template": "DC=cz,DC=example-ca,DC=warden,CN=%s",
+//        "username_suffix": "@warden"
+
+    }
+}
--- a/warden_ra/warden_ra.py
+++ b/warden_ra/warden_ra.py
--- a/warden_ra/warden_ra.wsgi
+++ b/warden_ra/warden_ra.wsgi
--- a/warden_server/LICENSE
+++ b/warden_server/LICENSE
--- a/warden3/warden_server/README
+++ b/warden3/warden_server/README
--- a/warden_server/README.test
+++ b/warden_server/README.test
--- a/warden3/warden_server/apache.conf
+++ b/warden3/warden_server/apache.conf
--- a/warden_server/apache24.conf.dist
+++ b/warden_server/apache24.conf.dist
--- a/warden3/warden_server/catmap_mysql.json
+++ b/warden3/warden_server/catmap_mysql.json
--- a/warden3/warden_server/tagmap_mysql.json
+++ b/warden3/warden_server/tagmap_mysql.json
--- a/warden_server/test_warden_server.py
+++ b/warden_server/test_warden_server.py
--- a/warden3/warden_server/warden_3.0.sql
+++ b/warden3/warden_server/warden_3.0.sql
--- a/warden3/warden_server/warden_server.cfg
+++ b/warden3/warden_server/warden_server.cfg
No results found