Wallet Location and Password Prompt

[RichardSoule]

Daniel,

Great project.

Some thoughts:

Wallet Location

It would be great if the wallet was created in $ORACLE_BASE/admin/[dbname]/ssl_wallet (for instance /u01/app/oracle/admin/orcl/ssl_wallet)

Over the years I've found that it is pretty easy for folks to get 'lost' between the various wallets and where they are. Every Oracle database ships with the xdb_wallet directory in the same spot, so I've been putting my wallets there with a separate directory for each:

/u01/app/oracle/admin/orcl/ssl_wallet
/u01/app/oracle/admin/orcl/tde_wallet
/u01/app/oracle/admin/orcl/opc_wallet
/u01/app/oracle/admin/orcl/xdb_wallet <-- Oracle puts this here.

Now, instead of a generic 'wallet' directory, you know what each wallet is for, and you'll reduce the chances of someone putting their TDE keys and the SSL certs into the same wallet (which, at least back in the 12.2 days) would work... until you bounced the instance, and then nothing would work.

Wallet Password

I'd much rather have the script prompt for a wallet password...

I'd love to be able to fork the project and make the above changes, but I'm unable to fork DOAG stuff. Or I could contribute here...

[Dani3lSun]

Hi @RichardSoule
the script was designed to work in every location, so no matter where you drop it, it creates an wallet in that folder...
If you want more flexibility just create a parent script which calls this script...I also do this in my docker build scripts:
https://github.com/Dani3lSun/docker-db-apex-dev/blob/master/scripts/install_ca_wallet.sh

For the password thing, yeah this is a good idea to pass in a parameter for the password, if not provided a password is generated...
Right now you could just create a _pwd.txt by your own inside of the wallet folder. The scripts checks if the file exists and uses the password from the text file...