properly add the fixture CA to CI system store

ruby-ldap · Aug 24, 2016 · 8ed4dca · 8ed4dca
1 parent 0a8c099
commit 8ed4dca
Showing 1 changed file with 5 additions and 4 deletions.
diff --git a/script/install-openldap b/script/install-openldap
@@ -48,9 +48,8 @@ chown -R openldap.openldap /var/lib/ldap
 rm -rf $TMPDIR
 
 # SSL
-export CA_CERT="/etc/ssl/certs/cacert.pem"
-export CA_KEY="/etc/ssl/private/cakey.pem"
-export CA_INFO="/etc/ssl/ca.info"
+export CA_CERT="/usr/local/share/ca-certificates/rubyldap-ca.crt"
+export CA_KEY="/etc/ssl/private/rubyldap-ca.key"
 
 # The self-signed fixture CA cert & key are generated by
 # `script/generate-fiuxture-ca` and checked into version control.
@@ -59,7 +58,9 @@ export CA_INFO="/etc/ssl/ca.info"
 
 cp "${SEED_PATH}/ca/cacert.pem" "${CA_CERT}"
 cp "${SEED_PATH}/ca/cakey.pem"  "${CA_KEY}"
-cp "${SEED_PATH}/ca/ca.info"    "${CA_INFO}"
+
+# actually add the fake CA to the system store
+update-ca-certificates
 
 # Make a private key for the server:
 certtool --generate-privkey \