Integrate AAF certificate and CA truststore
This installs a server certificate with CN: dbc.api.simpledemo.onap.org
which is probably good for the heat integration environment.
Also, the container truststore is updated with the AAFRootCA
so that Bus Controller can be a client to other ONAP components with
AAF provided certificates.
Change-Id: I158929dd86fa550f964fab18eb8e975cde8062d8
Signed-off-by: dglFromAtt <dgl@research.att.com>
Issue-ID: DMAAP-435
diff --git a/misc/dmaapbc b/misc/dmaapbc
index c63fcee..5254108 100644
--- a/misc/dmaapbc
+++ b/misc/dmaapbc
@@ -43,13 +43,15 @@
else
echo "Not creating $APP_ROOT/ok_to_exit"
fi
- # comment out till certs are available
- #if [ ! -f $APP_ROOT/misc/cert-client-init.sh ]
- #then
- # echo "Did not find $APP_ROOT/misc/cert-client-init.sh to append to truststore"
- # exit 1
- #fi
- #$APP_ROOT/misc/cert-client-init.sh
+
+ if [ ! -f $APP_ROOT/misc/cert-client-init.sh ]
+ then
+ echo "Did not find $APP_ROOT/misc/cert-client-init.sh to append to truststore"
+ exit 1
+ fi
+ $APP_ROOT/misc/cert-client-init.sh
+ . misc/havecert.tmpl > etc/havecert
+ chmod +x etc/havecert
. misc/dmaapbc.properties.tmpl > etc/dmaapbc.properties
. misc/PolicyEngineApi.properties.tmpl > config/PolicyEngineApi.properties
set +x
@@ -71,14 +73,13 @@
fi
cd $APP_ROOT
-# disable until we use certs
-# if etc/havecert
-# then
+ if etc/havecert
+ then
echo >/dev/null
-# else
-# echo No certificate file available. Cannot start
-# exit 0
-# fi
+ else
+ echo No certificate file available. Cannot start
+ exit 0
+ fi
PIDS=`pids`
if [ "$PIDS" != "" ]
then