#119 Document key/cert file owner and mode options
Merged 4 years ago by rcritten. Opened 4 years ago by rcritten.
rcritten/certmonger owner_docs  into  master

@@ -211,6 +211,14 @@ 

  \fB\-v\fR

  Be verbose about errors.  Normally, the details of an error received from

  the daemon will be suppressed if the client can make a diagnostic suggestion.

+ \fB\-o\fR OWNER, --key-owner=OWNER

+ After generation set the owner on the private key file or database to OWNER.

+ \fB\-m\fR MODE, --key-perms=MODE

+ After generation set the file permissions on the private key file or database to MODE.

+ \fB\-O\fR OWNER, --cert-owner=OWNER

+ After generation set the owner on the certificate file or database to OWNER.

+ \fB\-M\fR MODE, --cert-perms=MODE

+ After generation set the file permissions on the certificate file or database to MODE.

  

  .SH NOTES

  Locations specified for key and certificate storage need to be

@@ -145,6 +145,14 @@ 

  \fB\-v\fR

  Be verbose about errors.  Normally, the details of an error received from

  the daemon will be suppressed if the client can make a diagnostic suggestion.

+ \fB\-o\fR OWNER, --key-owner=OWNER

+ After generation set the owner on the private key file or database to OWNER.

+ \fB\-m\fR MODE, --key-perms=MODE

+ After generation set the file permissions on the private key file or database to MODE.

+ \fB\-O\fR OWNER, --cert-owner=OWNER

+ After generation set the owner on the certificate file or database to OWNER.

+ \fB\-M\fR MODE, --cert-perms=MODE

+ After generation set the file permissions on the certificate file or database to MODE.

  

  .SH BUGS

  Please file tickets for any that you find at https://fedorahosted.org/certmonger/

@@ -181,6 +181,14 @@ 

  \fB\-v\fR

  Be verbose about errors.  Normally, the details of an error received from

  the daemon will be suppressed if the client can make a diagnostic suggestion.

+ \fB\-o\fR OWNER, --key-owner=OWNER

+ After generation set the owner on the private key file or database to OWNER.

+ \fB\-m\fR MODE, --key-perms=MODE

+ After generation set the file permissions on the private key file or database to MODE.

+ \fB\-O\fR OWNER, --cert-owner=OWNER

+ After generation set the owner on the certificate file or database to OWNER.

+ \fB\-M\fR MODE, --cert-perms=MODE

+ After generation set the file permissions on the certificate file or database to MODE.

  

  .SH NOTES

  Locations specified for key and certificate storage need to be

file modified
+12
@@ -4902,6 +4902,10 @@ 

  		N_("  -a	NSS database in which to store the CA's certificates\n"),

  		N_("  -w	try to wait for the certificate to be issued\n"),

  		N_("  -v	report all details of errors\n"),

+ 		N_("  -o OWNER	owner information for private key\n"),

+ 		N_("  -m MODE	file permissions for private key\n"),

+ 		N_("  -O OWNER	owner information for certificate\n"),

+ 		N_("  -M MODE	file permissions for certificate\n"),

  		NULL,

  	};

  	const char *start_tracking_help[] = {
@@ -4952,6 +4956,10 @@ 

  		N_("  -a	NSS database in which to store the CA's certificates\n"),

  		N_("  -w	try to wait for the certificate to be issued\n"),

  		N_("  -v	report all details of errors\n"),

+ 		N_("  -o OWNER	owner information for private key\n"),

+ 		N_("  -m MODE	file permissions for private key\n"),

+ 		N_("  -O OWNER	owner information for certificate\n"),

+ 		N_("  -M MODE	file permissions for certificate\n"),

  		NULL,

  	};

  	const char *stop_tracking_help[] = {
@@ -5024,6 +5032,10 @@ 

  		N_("  -a	NSS database in which to store the CA's certificates\n"),

  		N_("  -w	try to wait for the certificate to be issued\n"),

  		N_("  -v	report all details of errors\n"),

+ 		N_("  -o OWNER	owner information for private key\n"),

+ 		N_("  -m MODE	file permissions for private key\n"),

+ 		N_("  -O OWNER	owner information for certificate\n"),

+ 		N_("  -M MODE	file permissions for certificate\n"),

  		NULL,

  	};

  	const char *rekey_help[] = {

The owner and permission options were available but not
documented either on the command-line or in the man page.

Affects request, resubmit and start-tracking commands.

https://bugzilla.redhat.com/show_bug.cgi?id=1549585

rebased onto 8c4ace5

4 years ago

Pull-Request has been merged by rcritten

4 years ago