Update to 2021-12-01 19:13

2025-08-11 19:16:56 +02:00 · 2021-12-01 19:13:34 +01:00
commit 4c4556c660
2153 changed files with 60999 additions and 0 deletions
--- a/roles/openxpki/templates/config.d/realm/crypto.yaml.j2
+++ b/roles/openxpki/templates/config.d/realm/crypto.yaml.j2
@@ -0,0 +1,37 @@
+type:
+  certsign: signer-key
+  datasafe: vault-key
+  scep: scep-key
+
+token:
+  default:
+    backend: OpenXPKI::Crypto::Backend::OpenSSL
+    key: {{ pki_root_dir }}/etc/ssl/[% PKI_REALM %]/[% ALIAS %].pem
+    engine: OpenSSL
+    engine_section: ''
+    engine_usage: ''
+    key_store: OPENXPKI
+    shell: /usr/bin/openssl
+    wrapper: ''
+    randfile: {{ pki_root_dir }}/data/rand
+    secret: default
+
+  signer-key:
+    inherit: default
+
+  vault-key:
+    inherit: default
+
+  scep-key:
+    inherit: default
+    backend: OpenXPKI::Crypto::Tool::SCEP
+    shell: /usr/bin/openca-scep
+
+secret:
+  default:
+    label: Default secret group of this realm
+    export: 0
+    method: literal
+    value: '{{ pki_secret }}'
+    cache: daemon
+