Module: VagrantPlugins::Certificates::Cap::Redhat::UpdateCertificateBundle

Defined in:: lib/vagrant-certificates/cap/redhat/update_certificate_bundle.rb

Overview

Capability for configuring the certificate bundle on Redhat.

Class Method Summary collapse

.update_certificate_bundle(m) ⇒ Object

Class Method Details

.update_certificate_bundle(m) ⇒ `Object`

# File 'lib/vagrant-certificates/cap/redhat/update_certificate_bundle.rb', line 9

def self.update_certificate_bundle(m)
  m.communicate.tap do |sh|
    if Redhat.legacy_certificate_bundle?(sh)
      sh.sudo(<<-SCRIPT)
BUNDLE=/etc/pki/tls/certs/ca-bundle.crt; 
PRIVATE=/etc/pki/tls/ca.private.crt; 
if ! [ "$(readlink $BUNDLE)" == "$PRIVATE" ]; then 
  find /etc/pki/tls/private -type f -exec cat {} \\; | cat $BUNDLE - > $PRIVATE ; 
fi
SCRIPT
      sh.sudo('/bin/ln -fsn /etc/pki/tls/ca.private.crt /etc/pki/tls/cert.pem')
      sh.sudo('/bin/ln -fsn /etc/pki/tls/ca.private.crt /etc/pki/tls/certs/ca-bundle.crt')
      sh.execute(<<-SCRIPT, shell: '/bin/bash', sudo: true)
if [ ! -z "$JAVA_HOME" ]; then \
find /etc/pki/tls/private -type f -exec $JAVA_HOME/bin/keytool -importcert \
 -trustcacerts -noprompt -storepass changeit \
 -keystore $JAVA_HOME/jre/lib/security/cacerts -file {} \\; \
else true; fi
      SCRIPT
    else
      sh.sudo('update-ca-trust enable')
      sh.sudo('update-ca-trust extract')
    end
  end
end

Module: VagrantPlugins::Certificates::Cap::Redhat::UpdateCertificateBundle

Overview

Class Method Summary collapse

Class Method Details

.update_certificate_bundle(m) ⇒ Object

.update_certificate_bundle(m) ⇒ `Object`