Introducing new PKI management

admin/main.go

@@ -13,6 +13,7 @@ import (
 	"text/template"
 
 	"srs.epita.fr/fic-server/admin/api"
+	"srs.epita.fr/fic-server/admin/pki"
 	"srs.epita.fr/fic-server/admin/sync"
 	"srs.epita.fr/fic-server/libfic"
 	"srs.epita.fr/fic-server/settings"
@@ -68,6 +69,12 @@ func main() {
 	localImporterSymlink := false
 
 	// Read paremeters from environment
+	if v, exists := os.LookupEnv("FICCA_PASS"); exists {
+		pki.SetCAPassword(v)
+	} else {
+		log.Println("WARNING: no password defined for the CA, will use empty password to secure CA private key")
+		log.Println("WARNING:    PLEASE DEFINED ENVIRONMENT VARIABLE: FICCA_PASS")
+	}
 	if v, exists := os.LookupEnv("FICCLOUD_URL"); exists {
 		cloudDAVBase = v
 	}
@@ -82,6 +89,7 @@ func main() {
 	var bind = flag.String("bind", "127.0.0.1:8081", "Bind port/socket")
 	var dsn = flag.String("dsn", fic.DSNGenerator(), "DSN to connect to the MySQL server")
 	var baseURL = flag.String("baseurl", "/", "URL prepended to each URL")
+	flag.StringVar(&pki.PKIDir, "pki", "./PKI", "Base directory where found PKI scripts")
 	flag.StringVar(&StaticDir, "static", "./htdocs-admin/", "Directory containing static files")
 	flag.StringVar(&api.TeamsDir, "teams", "./TEAMS", "Base directory where save teams JSON files")
 	flag.StringVar(&settings.SettingsDir, "settings", settings.SettingsDir, "Base directory where load and save settings")
@@ -122,6 +130,9 @@ func main() {
 	if fic.FilesDir, err = filepath.Abs(fic.FilesDir); err != nil {
 		log.Fatal(err)
 	}
+	if pki.PKIDir, err = filepath.Abs(pki.PKIDir); err != nil {
+		log.Fatal(err)
+	}
 	if api.TeamsDir, err = filepath.Abs(api.TeamsDir); err != nil {
 		log.Fatal(err)
 	}
@@ -139,7 +150,7 @@ func main() {
 		baseURL = &tmp
 	}
 
- 	log.Println("Opening database...")
+	log.Println("Opening database...")
 	if err := fic.DBInit(*dsn); err != nil {
 		log.Fatal("Cannot open the database: ", err)
 	}