A tool to retrieve user credentials from ESGF. It have one graphic interface and another command line interface.
JDK or OpenJDK 6 and upper versions
A) Standard jar -> getESGFCredentials-0.1.jar 476.4 KB new
B) MultiLib jar -> getESGFCredentialsMultLib-0.1.jar 2.3 MB new
Other versions..
$ java -jar getESGFCredentials-0.0.2.jar --help esgf-getcredentials. Usage: esgf-getcredentials esgf-getcredentials (-o <openid> | --openid <openid>) [options] esgf-getcredentials (-h | --help) esgf-getcredentials --version Options: -o <openid> --openid <openid> OpenID endpoint from where myproxy information can be gathered. -p --password <password> OpenID passphrase. --output <path> Path of folder where the retrieved certificates will be stored[default: /home/terryk/.esg]. -w --writeall Generate all credentials files. The files generated are the same files generated with opts: --credentials --cacertspem --cacertsjks --cacerts --jkskeystore --jcekskeystore -b --bootstrap To bootstrapping certificates in myproxy service. --credentials Write user certificate and private key in pem format. --cacertspem Write trust CA certificates in pem format. --cacertsjks Write trust CA certificates in JKS keystore format. --cacerts Write trust CA certificates in a folder. --keystorejks Write JKS keystore file. This keystore contains certificate, certificate chain and private key of user --keystorejceks Write JCEKS keystore file. This keystore contains certificate, certificate chain and private key of user -d --debug Turn debugging info on. -h --help Show this screen. --version Show version.
java -jar getESGFCredentials-0.0.2.jar -o <openid> -p <password> --credentials --cacerts --cacertsjks
java -jar getESGFCredentials-0.0.2.jar -o <openid> -p <password> --credentials --cacertspem --cacertsjks
java -jar getESGFCredentials-0.0.2.jar -o <openid> -p <password> --keystorejks --cacertsjks
java -jar getESGFCredentials-0.0.2.jar -o <openid> -p <password> --credentials --cacertspem
java -jar getESGFCredentials-0.0.2.jar -o <openid> -p <password> --credentials
java -jar getESGFCredentials-0.0.2.jar -o <openid> -p <password> --credentials --cacerts --cacertspem --output <path>
java -jar getESGFCredentials-0.0.2.jar
You can select your IdP provider in the top drop-down list
If your IdP provider isn't in the list of providers. Select "Custom OpenID URL", with this option the GUI interface change to be able write OpenID URL's[BR?
You can select in "Generate" section what output files will be generated in the output folder.
| credentials.pem | It's a pem file that contains the x509 user certificate and the RSA private key |
| keystore (JKS type) | It's a keystore in format JKS which is build with x509 certificates, RSA keys and CA's certificates |
| keystore (JCEKS type) | It's a keystore in format JCEKS which is build with x509 certificates, RSA keys and CA's certificates |
| esgf-truststore | It's a keystore in format JKS which is build with CA's certificates |
| certificates | It's a directory with CA's certificate files and policy files |
| ca-certs.pem | It's a pem file with all CA's certificates |
1.You can select the myproxy client library in the "Select Lib" section
Click on "retrieve credentials" button. If all goes well a success message is shown. However, if some error happens then the error is showed in the box bellow
?https://github.com/SantanderMetGroup/esgf-getcredentials