<html>
  <head>

    <meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    <tt>Please review and provide an ACK for the attached patch.<br>
      <br>
      This patch attempts to continue implementation of the PKI
      Deployment Framework based upon the revised filesystem layout
      documented here:<br>
    </tt>
    <ul>
      <li><tt><a class="moz-txt-link-freetext"
href="http://pki.fedoraproject.org/wiki/PKI_Instance_Deployment#CA_.2F_KRA_.2F_OCSP_.2F_RA_.2F_TKS_.2F_TPS">http://pki.fedoraproject.org/wiki/PKI_Instance_Deployment#CA_.2F_KRA_.2F_OCSP_.2F_RA_.2F_TKS_.2F_TPS</a></tt></li>
    </ul>
    <tt>The following patch adds/corrects functionality of the existing
      PKI Deployment Framework including (but not limited to):<br>
    </tt>
    <ul>
      <li><tt>Completed the following six 'scriptlets':<br>
          Dogtag 10: Python 'initialization.py' Installation Scriptlet<br>
                 (<a class="moz-txt-link-freetext" href="https://fedorahosted.org/pki/ticket/147">https://fedorahosted.org/pki/ticket/147</a>)<br>
          Dogtag 10: Python 'instance_layout.py' Installation Scriptlet<br>
                 (<a class="moz-txt-link-freetext" href="https://fedorahosted.org/pki/ticket/75">https://fedorahosted.org/pki/ticket/75</a>)<br>
          Dogtag 10: Python 'webserver_layout.py' Installation Scriptlet<br>
                 (<a class="moz-txt-link-freetext" href="https://fedorahosted.org/pki/ticket/140">https://fedorahosted.org/pki/ticket/140</a>)<br>
          Dogtag 10: Python 'subsystem_layout.py' Installation Scriptlet<br>
                 (<a class="moz-txt-link-freetext" href="https://fedorahosted.org/pki/ticket/141">https://fedorahosted.org/pki/ticket/141</a>)<br>
          Dogtag 10: Python 'war_explosion.py' Installation Scriptlet<br>
                 (<a class="moz-txt-link-freetext" href="https://fedorahosted.org/pki/ticket/76">https://fedorahosted.org/pki/ticket/76</a>)<br>
          Dogtag 10: Python 'finalization.py' Installation Scriptlet<br>
                 (<a class="moz-txt-link-freetext" href="https://fedorahosted.org/pki/ticket/148">https://fedorahosted.org/pki/ticket/148</a>)</tt></li>
      <li><tt>Created numerous PKI deployment helper utilities.</tt></li>
      <li><tt>Augmented logging to provide indentation.</tt></li>
      <li><tt>Generated logic for installation 'manifest'.</tt></li>
      <li><tt>Tested logic using '--dry_run' option and '-p' prefix
          options.</tt></li>
      <li><tt>Per initial review, removed numerous "constants" and
          consolidated logic into "master" dictionary.</tt></li>
      <li><tt>Corrected the following ticket:<br>
          Dogtag 10: Fix 'build_dogtag_pki' script to account for
          'pki-deploy' RPM<br>
                 (<a class="moz-txt-link-freetext" href="https://fedorahosted.org/pki/ticket/138">https://fedorahosted.org/pki/ticket/138</a>)<br>
                 Resolves Bugzilla Bug #810047 - build_dogtag_pki fails
          with requirements for pki-deploy<br>
                 (<a class="moz-txt-link-freetext" href="https://bugzilla.redhat.com/show_bug.cgi?id=810047">https://bugzilla.redhat.com/show_bug.cgi?id=810047</a>)</tt></li>
      <li><tt>Created the following three 'scriptlets' as 'NOT YET
          IMPLEMENTED' place-holders:<br>
          Dogtag 10: Python 'security_databases.py' Installation
          Scriptlet<br>
                 (<a class="moz-txt-link-freetext" href="https://fedorahosted.org/pki/ticket/136">https://fedorahosted.org/pki/ticket/136</a>)<br>
          Dogtag 10: Python 'slot_assignment.py' Installation Scriptlet<br>
                 (<a class="moz-txt-link-freetext" href="https://fedorahosted.org/pki/ticket/146">https://fedorahosted.org/pki/ticket/146</a>)<br>
          Dogtag 10: Python 'configuration.py' Configuration Scriptlet<br>
                 (<a class="moz-txt-link-freetext" href="https://fedorahosted.org/pki/ticket/137">https://fedorahosted.org/pki/ticket/137</a>)<br>
        </tt></li>
    </ul>
    <tt>After being installed, this code can be tested by running the
      following command-line examples (as 'root' or 'sudo'):<br>
    </tt>
    <ul>
      <li><tt>mkdir /tmp/pki</tt></li>
      <li><tt>sudo pkispawn -s CA -p /tmp/pki -v --dry_run</tt></li>
      <li><tt>sudo pkispawn -s CA -p /tmp/pki -v</tt></li>
      <li><tt>sudo pkispawn -s CA -p /tmp/pki -u -v --dry_run</tt></li>
      <li><tt>sudo pkispawn -s CA -p /tmp/pki -u -v<br>
        </tt> </li>
      <li><tt>sudo pkidestroy -s CA -p /tmp/pki -v --dry_run</tt></li>
      <li><tt>sudo pkidestroy -s CA -p /tmp/pki -v<br>
        </tt> </li>
    </ul>
    <p><tt>This code ONLY affects the un-released 'pki-deploy' package,
        so check-in of these changes should not harm the existing source
        in any way.<br>
      </tt> </p>
    <p><tt>NOTE:  After receiving an ACK for these changes, I will
        update my horribly out-of-date working repo located at:<br>
      </tt> </p>
    <ul>
      <li><tt><a class="moz-txt-link-freetext"
            href="http://fedorapeople.org/gitweb/mharmsen/public_git/pki.git">http://fedorapeople.org/gitweb/mharmsen/public_git/pki.git</a></tt></li>
    </ul>
    <tt>Thanks in advance,<br>
      -- Matt</tt>
  </body>
</html>