fix 2970800 be able to run setup-local-client.sh twice without credential being invalid, added cleanup of old credentials

git-svn-id: https://svn.code.sf.net/p/xcat/code/xcat-core/trunk@5579 8638fb3e-16cb-4fca-ae20-7b5d299a9bcd
2010-03-25 12:05:56 +00:00 · 2010-03-25 12:05:56 +00:00 · edd1b63a43
commit edd1b63a43
parent f810d023dd
1 changed files with 8 additions and 2 deletions
--- a/xCAT-server/share/xcat/scripts/setup-local-client.sh
+++ b/xCAT-server/share/xcat/scripts/setup-local-client.sh
@ -18,7 +18,7 @@ fi
 if [ -z "$1" ]; then
  set `whoami`
 fi
-# if diretory is not supplied then just use home
+# if directory is not supplied then just use home
 if [ -z "$2" ]; then
   CNA="$*"
 #  getent doesn't exist on AIX
@ -43,6 +43,13 @@ if [ -e $USERHOME/.xcat ]; then
  fi
  rm -rf $USERHOME/.xcat
 fi
+# remove user from index
+echo $CNA
+index=`grep $CNA /etc/xcat/ca/index  |  cut -f4  2>&1`
+echo $index
+for id  in $index; do
+  openssl ca -config /etc/xcat/ca/openssl.cnf -revoke /etc/xcat/ca/certs/$id.pem
+done
 mkdir -p $USERHOME/.xcat
 cd $USERHOME/.xcat
 openssl genrsa -out client-key.pem 2048
@ -70,4 +77,3 @@ find $USERHOME/.xcat -type d -exec chmod 700 {} \;
 chmod 644 $USERHOME/.xcat/ca.pem
 chmod 755 $USERHOME/.xcat
 cd -
-