enolfc/voms-setup.sh

## voms-setup.sh
#!/bin/bash

# Global setup of voms for ELIXIR VO

brew install fetch-crl voms

# Trust anchors
sudo mkdir -p /etc/grid-security/certificates

# CAs to download: Classic and IOTA (RCAuth)
CA_BUNDLE="https://dist.eugridpma.info/distribution/igtf/current/accredited/igtf-preinstalled-bundle-classic.tar.gz https://dist.eugridpma.info/distribution/igtf/current/accredited/igtf-preinstalled-bundle-iota.tar.gz"

for CA in $CA_BUNDLE; do
    curl -s $CA | sudo tar -xz -C /etc/grid-security/certificates
done

# Update the crls
sudo /usr/local/sbin/fetch-crl -v

# VOMS .lsc files
sudo mkdir -p /etc/grid-security/vomsdir/vo.elixir-europe.org

sudo tee /etc/grid-security/vomsdir/vo.elixir-europe.org/voms1.grid.cesnet.cz.lsc << EOF
/DC=org/DC=terena/DC=tcs/C=CZ/ST=Hlavni mesto Praha/L=Praha 6/O=CESNET/CN=voms1.grid.cesnet.cz
/C=NL/ST=Noord-Holland/L=Amsterdam/O=TERENA/CN=TERENA eScience SSL CA 3
EOF

sudo tee /etc/grid-security/vomsdir/vo.elixir-europe.org/voms2.grid.cesnet.cz.lsc << EOF
/DC=org/DC=terena/DC=tcs/C=CZ/ST=Hlavni mesto Praha/L=Praha 6/O=CESNET/CN=voms2.grid.cesnet.cz
/C=NL/ST=Noord-Holland/L=Amsterdam/O=TERENA/CN=TERENA eScience SSL CA 3
EOF

# VOMS configuration
sudo tee /etc/vomses << EOF
"vo.elixir-europe.org" "voms2.grid.cesnet.cz" "15032" "/DC=org/DC=terena/DC=tcs/C=CZ/ST=Hlavni mesto Praha/L=Praha 6/O=CESNET/CN=voms2.grid.cesnet.cz" "vo.elixir-europe.org"
"vo.elixir-europe.org" "voms1.grid.cesnet.cz" "15032" "/DC=org/DC=terena/DC=tcs/C=CZ/ST=Hlavni mesto Praha/L=Praha 6/O=CESNET/CN=voms1.grid.cesnet.cz" "vo.elixir-europe.org"
EOF
	#!/bin/bash

	# Global setup of voms for ELIXIR VO

	brew install fetch-crl voms

	# Trust anchors
	sudo mkdir -p /etc/grid-security/certificates

	# CAs to download: Classic and IOTA (RCAuth)
	CA_BUNDLE="https://dist.eugridpma.info/distribution/igtf/current/accredited/igtf-preinstalled-bundle-classic.tar.gz https://dist.eugridpma.info/distribution/igtf/current/accredited/igtf-preinstalled-bundle-iota.tar.gz"

	for CA in $CA_BUNDLE; do
	curl -s $CA \| sudo tar -xz -C /etc/grid-security/certificates
	done

	# Update the crls
	sudo /usr/local/sbin/fetch-crl -v

	# VOMS .lsc files
	sudo mkdir -p /etc/grid-security/vomsdir/vo.elixir-europe.org

	sudo tee /etc/grid-security/vomsdir/vo.elixir-europe.org/voms1.grid.cesnet.cz.lsc << EOF
	/DC=org/DC=terena/DC=tcs/C=CZ/ST=Hlavni mesto Praha/L=Praha 6/O=CESNET/CN=voms1.grid.cesnet.cz
	/C=NL/ST=Noord-Holland/L=Amsterdam/O=TERENA/CN=TERENA eScience SSL CA 3
	EOF

	sudo tee /etc/grid-security/vomsdir/vo.elixir-europe.org/voms2.grid.cesnet.cz.lsc << EOF
	/DC=org/DC=terena/DC=tcs/C=CZ/ST=Hlavni mesto Praha/L=Praha 6/O=CESNET/CN=voms2.grid.cesnet.cz
	/C=NL/ST=Noord-Holland/L=Amsterdam/O=TERENA/CN=TERENA eScience SSL CA 3
	EOF

	# VOMS configuration
	sudo tee /etc/vomses << EOF
	"vo.elixir-europe.org" "voms2.grid.cesnet.cz" "15032" "/DC=org/DC=terena/DC=tcs/C=CZ/ST=Hlavni mesto Praha/L=Praha 6/O=CESNET/CN=voms2.grid.cesnet.cz" "vo.elixir-europe.org"
	"vo.elixir-europe.org" "voms1.grid.cesnet.cz" "15032" "/DC=org/DC=terena/DC=tcs/C=CZ/ST=Hlavni mesto Praha/L=Praha 6/O=CESNET/CN=voms1.grid.cesnet.cz" "vo.elixir-europe.org"
	EOF