Epoptes

Certificate / key dir is not configurable

Bug #1400807 reported by Frank Schütte on 2014-12-09

10

This bug affects 2 people

Affects		Status	Importance	Assigned to	Milestone
	Epoptes	Invalid	Undecided	Unassigned

Bug Description

Hallo,
I like epoptes. It is fast and easy to use.

I administer a school network with multiple computer labs. So the group teachers is maintained on a server and it would make configuration of computers much easier, if I could use a network share to host the certificates public and the keys private for the teachers group.

I created a patch for this. I'm not sure if this is the correct way to submit my request and my patch.

Please consider including the patch into epoptes.

Greetings,
Frank Schütte

Tags:

Revision history for this message

Frank Schütte (f-schuette) wrote on 2014-12-09:

#1

Patch, that makes certificate and key path configurable Edit (4.3 KiB, text/plain)

Revision history for this message

Fotis Tsamis (ftsamis) wrote on 2015-04-16:

#2

Hi, thanks for the patch,
why aren't you just using symlinks instead?
You can symlink /etc/epoptes to a directory of your choice, even if it is network-mounted.

For example, in all the client computers,
rm -rf /etc/epoptes
ln -s /media/network-share/epoptes /etc/epoptes

Changed in epoptes:
status:	New → Incomplete

Revision history for this message

Frank Schütte (f-schuette) wrote on 2015-04-17:

#3

Hi,
I have 4 computer labs with different keys and the installation is the same on all epoptes clients/servers. A link would not work because the network filesystem is not mounted. Later on the filesystem is mounted as user and the access rights are too restricted.
That's why I use the variable.
It would help my work as admin in a school environment.

Revision history for this message

Fotis Tsamis (ftsamis) wrote on 2015-04-18:

#4

> A link would not work because the network filesystem is not mounted.
> Later on the filesystem is mounted as user and the access rights are too restricted.

Where is the filesystem mounted as user?
Is it mounted on the same dir for all users, or the path is different per user?
E.g. is it mounted on /media/network-share,
or on /home/$USER/network-share?

In the first case, the symlink will work even if the share is mounted on login.
If it depends on $USER, yeah symlinks won't help there.

But then you would need to dynamically specify the epoptes certificate location too, on user login.
Are you using a script for that? If so, can you paste the lines that set SERVERKEY and SERVERCRT?

Revision history for this message

Frank Schütte (f-schuette) wrote on 2015-04-18:

#5

Hallo Fotis,
you are right.
The symlink points to a general location like /home/share/teachers/... and it works
to create the symlink even though the file and intermediate dirs are not available.

My patch is not needed.
Please close this issue.

Thank you for your help.

Bye,
Frank

Revision history for this message

Fotis Tsamis (ftsamis) wrote on 2015-04-18:

#6

Marking as invalid as commented on #5.

Changed in epoptes:
status:	Incomplete → Invalid

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Patches

Patch, that makes certificate and key path configurable Edit

Add patch

Remote bug watches

Bug watches keep track of this bug in other bug trackers.