From 47a93b16c1b7b520c24d89ead3ba134bc4570ecd Mon Sep 17 00:00:00 2001 From: arajnor99 <153087310+arajnor99@users.noreply.github.com> Date: Fri, 11 Oct 2024 14:01:05 +0530 Subject: [PATCH] Update concepts_onboarding_checklist.md Updated below : - Updated info about howto run script on Ubuntu with DN_template.conf argument - Updated info about GPG key global signing added output to use actual long pub key while signing . - correction in tags ( made identical all numbers) --- .../concepts_onboarding_checklist.md | 36 +++++++++++++++---- 1 file changed, 30 insertions(+), 6 deletions(-) diff --git a/input/pagecontent/concepts_onboarding_checklist.md b/input/pagecontent/concepts_onboarding_checklist.md index 17d8053d9..5540675da 100644 --- a/input/pagecontent/concepts_onboarding_checklist.md +++ b/input/pagecontent/concepts_onboarding_checklist.md @@ -117,7 +117,8 @@ This repository contains the template for building [onboarding](https://github.c - You must adapt the following default certificate parameter of [DN_template.cnf](https://github.com/WorldHealthOrganization/tng-participant-template/blob/main/scripts/certgen/DN_template.cnf) file which will used in gen_all_certs.sh to your needs: -- Configuration Template for Certificate Generation, Modify for your own needs +- Configuration Template for Certificate Generation, Modify for your own needs in DN_template.cnf file as it will + used argumnet while running the script "gen_all_certs.sh". ``` export OSSL_COUNTRY_NAME="XC" @@ -130,12 +131,18 @@ This repository contains the template for building [onboarding](https://github.c > Note: OSSL_COUNTRY_NAME should be ISO 2 letter name of the country mapped to the name used in repository. - Then execute the script. It will generate all certificates and keys in a subfolder named by current datetime. +- While execution of the "gen_all_certs.sh" script, Please provie script agrument "DN_template.cnf" file which + conisit of required county info to generate all required certificates (TLS,SCA,UP) + ``` - For Mac + For Mac/Unix cd scripts/certgen - ./gen_all_certs.sh + ./gen_all_certs.sh DN_template.cnf + + zsh ./gen_all_certs.sh DN_template.cnf ## If you are using Ubuntu OS + For Windows: cd scripts/certgen @@ -336,11 +343,28 @@ Please be aware that RSA is NOT RECOMMENDED for the DSC and if you want to use R ``` gpg --list-key ``` + + ``` + Output + gpg --list-key + /home/test/.gnupg/pubring.kbx + ----------------------------- + + pub rsa4096 2024-09-19 [SC] + CD822874C7862BA4BB6B950E40CC62009D9A00B0 + uid [ultimate] Test User1 (This GPG Key is for XXC test Country) + sub rsa4096 2024-09-19 [E] + ``` + **Note**: The PUB ID in above output is CD822874C7862BA4BB6B950E40CC62009D9A00B0 , In your case you need to + replace with << replace with your Pub ID >> with your actual GPG public key ID to configure Git to use a GPG + key for signing commits or tags in next command. + - Configure the signing key to be used globally for Git commits and tag ``` - git config --global user.signingkey A715A10BB59020ACCDCDFC4C620C4824F921A7F4 + git config --global user.signingkey << replace with your Pub ID >> ``` + - Retrieve the current GPG signing key configured for Git ``` @@ -364,13 +388,13 @@ Please be aware that RSA is NOT RECOMMENDED for the DSC and if you want to use R - Create a signed Git tag with a message ``` - git tag -s v1.01 -m 'my signed 1.9 tag' + git tag -s v1.2 -m 'my signed 1.2 tag' ``` - Displays the details of a specific tag ``` - git show v1.8 + git show v1.2 ``` - Pushes all the local tags to the remote repository