Skip to content
This repository has been archived by the owner on Jan 4, 2021. It is now read-only.

(#623) Print CSR fingerprint in request_cert application #622

Merged
merged 1 commit into from
Jun 14, 2020
Merged

(#623) Print CSR fingerprint in request_cert application #622

merged 1 commit into from
Jun 14, 2020

Conversation

smortex
Copy link
Contributor

@smortex smortex commented Jun 12, 2020

With this change, the fingerprint of the CSR is print to the user when
running mco choria request_cert.

This fingerprint is also shown when running puppetserver ca list, the
idea is to make it easy to check the requests match on both sides when
new users are enrolled and we try to teach them best practices.

Sample output:

romain@marvin /tmp $ USER=bob mco choria request_cert --config client.cfg
Certificate /tmp/ssl/certs/bob.mcollective.pem has already been requested, attempting to retrieve it
Waiting up to 240 seconds for it to be signed

Key fingerprint: (SHA256) 44:84:F4:F8:88:7B:E4:97:9C:47:B6:3A:E1:36:C2:C6:D0:FF:DA:A9:23:B9:5D:62:74:C3:8D:3C:0C:1D:ED:FA

Attempting to download certificate /tmp/ssl/certs/bob.mcollective.pem: 0 / 24

@ripienaar
Copy link
Collaborator

nice, mind opening an issue and using the correct commit line?

Kind of moving to choria enroll but I guess this method will stay around a while

@smortex
(#623) Print CSR fingerprint in request_cert application
a20c5ca 
With this change, the fingerprint of the CSR is print to the user when
running `mco choria request_cert`.

This fingerprint is also shown when running `puppetserver ca list`, the
idea is to make it easy to check the requests match on both sides when
new users are enrolled and we try to teach them best practices.

Sample output:

```sh-session
romain@marvin /tmp $ USER=bob mco choria request_cert --config client.cfg
Certificate /tmp/ssl/certs/bob.mcollective.pem has already been requested, attempting to retrieve it
Waiting up to 240 seconds for it to be signed

Key fingerprint: (SHA256) 44:84:F4:F8:88:7B:E4:97:9C:47:B6:3A:E1:36:C2:C6:D0:FF:DA:A9:23:B9:5D:62:74:C3:8D:3C:0C:1D:ED:FA

Attempting to download certificate /tmp/ssl/certs/bob.mcollective.pem: 0 / 24
```
@smortex
Copy link
Contributor Author

smortex commented Jun 13, 2020

Done!

@ripienaar ripienaar changed the title Print CSR fingerprint in request_cert application (#623) Print CSR fingerprint in request_cert application Jun 14, 2020
@ripienaar ripienaar merged commit 4fa2dda into choria-legacy:master Jun 14, 2020
@ripienaar
Copy link
Collaborator

thank you

@smortex smortex deleted the print-csr-fingerprint branch June 14, 2020 21:32
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@smortex @ripienaar