Enabled certificate publishing from command-line

Instead of defining environment variables for push server URL-s the URL-s are now fetched from openssl.cnf instead.
2025-09-10 23:41:04 +00:00 · 2015-10-26 21:50:10 +01:00
parent 42916a7ccc
commit 3012d843a9
8 changed files with 29 additions and 28 deletions
--- a/certidude/templates/init.py
+++ b/certidude/templates/init.py
--- a/certidude/templates/openssl.cnf
+++ b/certidude/templates/openssl.cnf
@@ -19,7 +19,7 @@ crlDistributionPoints = {{crl_distribution_points}}
 emailAddress = {{email_address}}
 {% endif %}
 x509_extensions = {{slug}}_cert
-policy = poliy_{{slug}}
+policy = policy_{{slug}}

 # Certidude specific stuff, TODO: move to separate section?
 request_subnets = 10.0.0.0/8 192.168.0.0/16 172.168.0.0/16
@@ -28,6 +28,8 @@ admin_subnets = 127.0.0.0/8
 admin_users =
 inbox = {{inbox}}
 outbox = {{outbox}}
+publish_certificate_url = {{publish_certificate_url}}
+subscribe_certificate_url = {{subscribe_certificate_url}}

 [policy_{{slug}}]
 countryName = match
--- a/certidude/templates/uwsgi.ini
+++ b/certidude/templates/uwsgi.ini
@@ -12,13 +12,6 @@ callable = app
 chmod-socket = 660
 chown-socket = {{username}}:www-data
 buffer-size = 32768
-{% if push_server %}
-env = PUSH_PUBLISH={{push_server}}/publish/%(channel)s
-env = PUSH_SUBSCRIBE={{push_server}}/subscribe/%(channel)s
-{% else %}
-env = PUSH_PUBLISH=http://localhost/event/publish/%(channel)s
-env = PUSH_SUBSCRIBE=http://localhost/event/subscribe/%(channel)s
-{% endif %}
 env = LANG=C.UTF-8
 env = LC_ALL=C.UTF-8
 env = KRB5_KTNAME={{kerberos_keytab}}