Description of problem: When you install a new server instance, and configure it using the web-based UI, the system finishes by printing this message in the browser window: Restart the server on the command line by typing "/etc/init.d/pki-ca restart". After performing this restart, the server should become operational. It should probably ask the user to type: /sbin/service pki-ca restart Version-Release number of selected component (if applicable): 1.0.0 How reproducible: Always
Before this gets changed, we must be sure that "service" exists on Solaris as well.
Actually, the change will be to fix the velocity template to encode the proper command.
Raising priority of this for the following reason: Since the introduction of "SELinux", it is no longer possible to perform a command-line start of Apache modules (e. g. - TPS & RA) if the user attempts to execute these from a non-root directory. For example: cd /home/larry (running as root) /etc/init.d/pki-tps restart Stopping pki-tps: [ OK ] Starting pki-tps: [FAILED] The log states that the process was unable to change to the "/home/larry" directory at the end, and therefore, the process did not start. However, performing the following succeeds: cd /home/larry (running as root) /sbin/service pki-tps restart Stopping pki-tps: [ OK ] Starting pki-tps: [ OK ] PKI service(s) are available at https://glyph.dsdev.sjc.redhat.com:7889 NOTE: "cd /etc/init.d" first prior to running this command will succeed because "/etc/init.d" is owned by root. Since "service" does not exist on Solaris 9, the velocity templates will need to be "changeable" programmatically.
Created attachment 333917 [details] pki/base changes
Created attachment 333919 [details] pki/dogtag changes
attachment (id=333917) attachment (id=333919) + awnuk
% svn status | grep -v ^$ | grep -v ^P | grep -v ^X | grep -v ^? M dogtag/tps-ui/shared/docroot/tps/admin/console/config/donepanel.vm M dogtag/common-ui/shared/admin/console/config/donepanel.vm M dogtag/ra-ui/shared/docroot/ra/admin/console/config/donepanel.vm M base/common/src/com/netscape/cms/servlet/csadmin/DonePanel.java M base/setup/pkicreate M base/ra/lib/perl/PKI/RA/DonePanel.pm M base/tps/lib/perl/PKI/TPS/DonePanel.pm %svn commit Sending base/common/src/com/netscape/cms/servlet/csadmin/DonePanel.java Sending base/ra/lib/perl/PKI/RA/DonePanel.pm Sending base/setup/pkicreate Sending base/tps/lib/perl/PKI/TPS/DonePanel.pm Sending dogtag/common-ui/shared/admin/console/config/donepanel.vm Sending dogtag/ra-ui/shared/docroot/ra/admin/console/config/donepanel.vm Sending dogtag/tps-ui/shared/docroot/tps/admin/console/config/donepanel.vm Transmitting file data ....... Committed revision 270.
FYI: When not run as 'root', the following messages appear: /sbin/service pki-ca restart pki-ca: unrecognized service /etc/init.d/pki-ca restart bash: /etc/init.d/pki-ca: Permission denied The old-style "/etc/init.d/<instance>" name was clear about the problem, while the new "/sbin/service" is unclear. Therefore, the "DonePanel" of each subsystem was further enhanced with the following text: "As 'root', restart the server on the command line . . ."
Created attachment 334025 [details] pkiremove diffs
Created attachment 334026 [details] dogtag spec files
attachment (id=334025) attachment (id=334026) +awnuk
% svn status | grep -v ^$ | grep -v ^P | grep -v ^X | grep -v ^? M dogtag/tps-ui/dogtag-pki-tps-ui.spec M dogtag/common/pki-common.spec M dogtag/setup/pki-setup.spec M dogtag/ra/pki-ra.spec M dogtag/common-ui/dogtag-pki-common-ui.spec M dogtag/tps/pki-tps.spec M dogtag/ra-ui/dogtag-pki-ra-ui.spec M base/setup/pkiremove % svn commit Sending base/setup/pkiremove Sending dogtag/common/pki-common.spec Sending dogtag/common-ui/dogtag-pki-common-ui.spec Sending dogtag/ra/pki-ra.spec Sending dogtag/ra-ui/dogtag-pki-ra-ui.spec Sending dogtag/setup/pki-setup.spec Sending dogtag/tps/pki-tps.spec Sending dogtag/tps-ui/dogtag-pki-tps-ui.spec Transmitting file data ........ Committed revision 274.
Verified. After configuration of all subsystems: /sbin/service pki-ca restart /sbin/service pki-ra restart /sbin/service pki-tks restart /sbin/service pki-tps restart /sbin/service pki-ocsp restart /sbin/service pki-kra restart