99 log_echo "+++ +++ +++ CREATING VO USER CERTS ON ROOT NODE +++ +++ +++"

1. 99 log_echo "+++ +++ +++ CREATING VO USER CERTS ON ROOT NODE +++ +++ +++"
2. 100 vouser="susanna";
3. 101 vopwd="lateralus";
4. 102 vouser_name="susanna";
5. 103 vouser_lname="martinelli";
6. 104 voname="exampleVO";
7. 105 void="2c0e8cb2-4453-46fe-85b7-74874e76e7c2";
8. 106 voorg="cnr";
9. 107 vomail="a.b@cnr.it";
10. 108 keypass="afoopassphrase";
11. 109 exec_node ${headnode} volife_run.sh -create-user ${vouser} ${vopwd} ${vouser_name} ${vouser_lname} ${voorg} ${vomail};
12. 110 exec_node ${headnode} volife_run.sh -approve-user ${vouser};
13. 111 exec_node ${headnode} volife_run.sh -add-user ${voname} ${vouser};
14. 112 echo "[*] trying to obtain the certs with get-xos-cert";
15. 113 exec_node ${headnode} get-xos-cert ${headnode}:6730 ${voname} group1 -u ${vouser} -p ${vopwd} -P ${keypass} -K /etc/xos/truststore/private/cda.key;
16. 114
17. 115 echo;
18. 116 log_echo "+++ +++ +++ RETRIEVING AND COPYING VO USER CERTS TO ALL NODES +++ +++ +++"
19. 117 scp ${SSH_OPTS} root@${headnode}:/root/.xos/truststore/certs/user.crt .;
20. 118
21. 119 for node in ${nodes_list}; do
22. 120 echo "[*] Copying vo user certificates to ${node}... ";
23. 121 exec_node ${node} mkdir -p /root/.xos/truststore/{certs,private};
24. 122 scp ${SSH_OPTS} user.crt root@${node}:/root/.xos/truststore/certs/;
25. 123 done
26. 124
27. 125 #restarting all running services on all machines
28. 126 echo;
29. 127 log_echo "+++ +++ +++ RESTARTING XOSD +++ +++ +++"
30. 128 for node in ${nodes_list}; do
31. 129 ok_echo "xosd on ${node}";
32. 130 exec_node ${node} service -f xosd restart;
33. 131 done
34. 132
35. 133 echo;
36. 134 log_echo "+++ +++ +++ CHEKING POLICIES FOR VO +++ +++ +++"
37. 135 #for i in 1 2; do
38. 136 policy_check=1;
39. 137 while [[ ${policy_check} -eq 1 ]]; do
40. 138 echo "[*] Running xos-policy-admin-set...";
41. 139 exec_node ${headnode} xos-policy-admin-set -uidmax 60500 -uidmin 60000 -gidmax 60500 -gidmin 60000;
42. 140 echo "[*] Running xos-policy-admin-am...";
43. 141 exec_node ${headnode} xos-policy-admin-am -vo ${void} --force;
44. 142 echo "[*] Running xos-policy-admin-gm...";
45. 143 exec_node ${headnode} xos-policy-admin-gm -vo ${void} --force;
46. 144 echo "[*] Running xos-policy-admin-chk...";
47. 145 exec_node ${headnode} xos-policy-admin-chk -pem /root/.xos/truststore/certs/user.crt;
48. 146 policy_check=$?;
49. 147 done
50. 148
51. 149 #adding resources of all nodes to the VO
52. 150 echo;
53. 151 log_echo "+++ +++ +++ ADDING RESOURCES TO THE VO +++ +++ +++"
54. 152 echo "[*] Adding the RCA to the VO...";
55. 153 exec_node ${headnode} rca_vo a ${void};
56. 154 #for node in ${nodes_list}; do
57. 155 # echo "[*] Adding resources of ${node}...";
58. 156 # exec_node ${headnode} rca_resource_vo a ${void} ${node}:60000;
59. 157 #done;
60. 158 #for node in ${nodes_list}; do
61. 159 # echo "[*] Confirming resources of ${node}...";
62. 160 # exec_node ${node} rca_resource_vo c ${void};
63. 161 # exec_node ${node} mv /etc/xos/truststore/certs/incoming/attrcert${void}* /etc/xos/truststore/certs/;
64. 162 # exec_node ${node} c_rehash /etc/xos/truststore/certs;
65. 163 #done;
66. 164 for node in ${nodes_list}; do
67. 165 echo "[*] Adding resources of ${node}...";
68. 166 exec_node ${node} mkdir -p /etc/xos/truststore/certs/incoming;
69. 167 exec_node ${node} chmod 0777 /etc/xos/truststore/certs/incoming;
70. 168 exec_node ${node} rca_request;
71. 169 exec_node ${node} rca_resource_vo a ${void};
72. 170 exec_node ${node} mv /etc/xos/truststore/certs/incoming/attrcert${void}* /etc/xos/truststore/certs/;
73. 171 exec_node ${node} c_rehash /etc/xos/truststore/certs;
74. 172 done;