-
Notifications
You must be signed in to change notification settings - Fork 12
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Update concepts_onboarding_checklist.md
Updated below : - Updated info about howto run script on Ubuntu with DN_template.conf argument - Updated info about GPG key global signing added output to use actual long pub key while signing . - correction in tags ( made identical all numbers)
- Loading branch information
Showing
1 changed file
with
30 additions
and
6 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -117,7 +117,8 @@ This repository contains the template for building [onboarding](https://github.c | |
| - You must adapt the following default certificate parameter of [DN_template.cnf](https://github.com/WorldHealthOrganization/tng-participant-template/blob/main/scripts/certgen/DN_template.cnf) file which will used in gen_all_certs.sh to your needs: | ||
|
|
||
| - Configuration Template for Certificate Generation, Modify for your own needs | ||
| - Configuration Template for Certificate Generation, Modify for your own needs in DN_template.cnf file as it will | ||
| used argumnet while running the script "gen_all_certs.sh". | ||
|
|
||
| ``` | ||
| export OSSL_COUNTRY_NAME="XC" | ||
|
|
@@ -130,12 +131,18 @@ This repository contains the template for building [onboarding](https://github.c | |
| > Note: OSSL_COUNTRY_NAME should be ISO 2 letter name of the country mapped to the name used in repository. | ||
| - Then execute the script. It will generate all certificates and keys in a subfolder named by current datetime. | ||
| - While execution of the "gen_all_certs.sh" script, Please provie script agrument "DN_template.cnf" file which | ||
| conisit of required county info to generate all required certificates (TLS,SCA,UP) | ||
|
|
||
|
|
||
|
|
||
| ``` | ||
| For Mac | ||
| For Mac/Unix | ||
| cd scripts/certgen | ||
| ./gen_all_certs.sh | ||
| ./gen_all_certs.sh DN_template.cnf | ||
| zsh ./gen_all_certs.sh DN_template.cnf ## If you are using Ubuntu OS | ||
|
|
||
| For Windows: | ||
| cd scripts/certgen | ||
|
|
@@ -336,11 +343,28 @@ Please be aware that RSA is NOT RECOMMENDED for the DSC and if you want to use R | |
| ``` | ||
| gpg --list-key | ||
| ``` | ||
| ``` | ||
| Output | ||
| gpg --list-key | ||
| /home/test/.gnupg/pubring.kbx | ||
| ----------------------------- | ||
| pub rsa4096 2024-09-19 [SC] | ||
| CD822874C7862BA4BB6B950E40CC62009D9A00B0 | ||
| uid [ultimate] Test User1 (This GPG Key is for XXC test Country) <[email protected]> | ||
| sub rsa4096 2024-09-19 [E] | ||
| ``` | ||
| **Note**: The PUB ID in above output is CD822874C7862BA4BB6B950E40CC62009D9A00B0 , In your case you need to | ||
| replace with << replace with your Pub ID >> with your actual GPG public key ID to configure Git to use a GPG | ||
| key for signing commits or tags in next command. | ||
| - Configure the signing key to be used globally for Git commits and tag | ||
| ``` | ||
| git config --global user.signingkey A715A10BB59020ACCDCDFC4C620C4824F921A7F4 | ||
| git config --global user.signingkey << replace with your Pub ID >> | ||
| ``` | ||
| - Retrieve the current GPG signing key configured for Git | ||
| ``` | ||
|
|
@@ -364,13 +388,13 @@ Please be aware that RSA is NOT RECOMMENDED for the DSC and if you want to use R | |
| - Create a signed Git tag with a message | ||
| ``` | ||
| git tag -s v1.01 -m 'my signed 1.9 tag' | ||
| git tag -s v1.2 -m 'my signed 1.2 tag' | ||
| ``` | ||
| - Displays the details of a specific tag | ||
| ``` | ||
| git show v1.8 | ||
| git show v1.2 | ||
| ``` | ||
| - Pushes all the local tags to the remote repository | ||
|
|
||