I have modified warnExpiring in the way below. Now for an expiring certificate
always a mail is sent. If the certificate does not contain a mail address, it
is looked for one in the corresponding CSR. As last try the
service_mail_account is used.
Would be nice, if a similar feature will be included in the official release.
*** /home/esn/openca-0.9.2.1/src/common/lib/cmds/warnExpiring 2004-10-05
15:17:26.000000000 +0200
--- /magwien/openca/testCA/lib/cmds/warnExpiring 2005-08-29
21:45:04.000000000 +0200
***************
*** 47,52 ****
--- 47,58 ----
"__SERIAL__", $key)."<br>\n" if $DEBUG;
my $email = $cert->getParsed()->{EMAILADDRESS};
+ unless ($email) {
+ my $csr_serial = $cert->getParsed()->{HEADER}->{CSR_SERIAL};
+ my $csr = $db->getItem( DATATYPE=>'ARCHIVED_REQUEST',
KEY=>$csr_serial );
+ $email = $csr->getParsed()->{HEADER}->{ADDITIONAL_ATTRIBUTE_EMAIL};
+ $email ||= $service_email;
+ }
my $cn = $cert->getParsed()->{DN_HASH}->{CN}[0];
my $subject = $cert->getParsed()->{DN};
my $expires = $cert->getParsed()->{NOTAFTER};
Mit freundlichen Grüßen
D.I. Michael Gsandtner
Magistrat der Stadt Wien, MA 14 - ADV Referat EG1
A 1082 Wien, Rathausstraße 1
Email: [EMAIL PROTECTED]
Telefon: +43 1 4000 91640
-------------------------------------------------------
SF.Net email is Sponsored by the Better Software Conference & EXPO
September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
_______________________________________________
OpenCA-Devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-devel
