epistemophiliac/fabric-samples
1
0
Fork 0
mirror of https://github.com/hyperledger/fabric-samples.git synced 2026-06-17 07:25:10 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Improve logging for test-network-nano-bash CA

Browse source 
Make the CA script logging more readable for users
trying to understand the fabric-ca-client commands.

Print the actual command to the log and remove the
debug logging which adds noise.

Signed-off-by: David Enyeart <enyeart@us.ibm.com>
This commit is contained in:
David Enyeart 2025-04-14 17:55:53 -04:00 committed by Tatsuya Sato
parent b82a309d91
commit 5fa5abbbcf
1 changed files with 30 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

34
test-network-nano-bash/ca/ca_utils.sh
View file

@ -12,6 +12,8 @@
createEnrollment() { createEnrollment() {
echo "createEnrollment $1 $2 $3 $4 $5 $6"
local port=$1 # port of the CA used for creating the enrollment local port=$1 # port of the CA used for creating the enrollment
local username=$2 # username of the registered user on the CA local username=$2 # username of the registered user on the CA
local password=$3 # password of the registered user on the CA local password=$3 # password of the registered user on the CA
@ -19,19 +21,27 @@ createEnrollment() {
local component_dir=$5 # path of the component, this will be the directory where the artifacts will be created local component_dir=$5 # path of the component, this will be the directory where the artifacts will be created
local tlscert=$6 # tls cert for connecting to the CA local tlscert=$6 # tls cert for connecting to the CA
set -x
# Enroll the identity # Enroll the identity
fabric-ca-client enroll -d -u https://${username}:${password}@localhost:${port} --caname ca --mspdir "${component_dir}/msp" --tls.certfiles $tlscert
fabric-ca-client enroll -u https://${username}:${password}@localhost:${port} --caname ca --mspdir "${component_dir}/msp" --tls.certfiles $tlscert
if [ $? -ne 0 ]; then if [ $? -ne 0 ]; then
echo "fabric-ca-client admin enroll failed, make sure CA service is available. Exiting..." echo "fabric-ca-client admin enroll failed, make sure CA service is available. Exiting..."
exit 1 exit 1
fi fi
{ set +x; } 2>/dev/null
# Rename private key to mimic cryptogen # Rename private key to mimic cryptogen
find ${component_dir} -type f -name '*_sk' | sed -e 'p;s/\(.*\)\/\(.*\)$/\1\/priv_sk/' | xargs -n2 mv -v find ${component_dir} -type f -name '*_sk' | sed -e 'p;s/\(.*\)\/\(.*\)$/\1\/priv_sk/' | xargs -n2 mv -v
# Rename the cacert to mimic cryptogen # Rename the cacert to mimic cryptogen
mv ${component_dir}/msp/cacerts/localhost-${port}-ca.pem ${component_dir}/msp/cacerts/ca.${orgname:+$orgname.}example.com-cert.pem mv ${component_dir}/msp/cacerts/localhost-${port}-ca.pem ${component_dir}/msp/cacerts/ca.${orgname:+$orgname.}example.com-cert.pem
echo "\n\n"
} }
###################################################################################### ######################################################################################
@ -43,6 +53,8 @@ createEnrollment() {
createMSP() { createMSP() {
echo "createMSP $1 $2 $3"
local caname=$1 # name of the ca (ordererca, org1ca, org2ca) local caname=$1 # name of the ca (ordererca, org1ca, org2ca)
local orgname=$2 # name of the org (org1, org2) Ordering Org is blank local orgname=$2 # name of the org (org1, org2) Ordering Org is blank
local org_dir=$3 # directory of the organizatio local org_dir=$3 # directory of the organizatio
@ -55,6 +67,8 @@ createMSP() {
cp data_ca/${caname}/tlsca/ca-cert.pem ${org_dir}/msp/tlscacerts/tlsca.${orgname:+$orgname.}example.com-cert.pem cp data_ca/${caname}/tlsca/ca-cert.pem ${org_dir}/msp/tlscacerts/tlsca.${orgname:+$orgname.}example.com-cert.pem
awk -v cacert_name="ca.${orgname:+$orgname.}example.com-cert" '{gsub(/ca.example.com-cert/,cacert_name)}1' ca/config.yaml > ${org_dir}/msp/config.yaml awk -v cacert_name="ca.${orgname:+$orgname.}example.com-cert" '{gsub(/ca.example.com-cert/,cacert_name)}1' ca/config.yaml > ${org_dir}/msp/config.yaml
echo "\n\n"
} }
###################################################################################### ######################################################################################
@ -67,6 +81,8 @@ createMSP() {
registerAndEnroll() { registerAndEnroll() {
echo "registerAndEnroll $1 $2 $3 $4 $5 $6 $7 $8"
local port=$1 # port of the CA used for creating the enrollment local port=$1 # port of the CA used for creating the enrollment
local username=$2 # username of the user to register on the CA local username=$2 # username of the user to register on the CA
local password=$3 # password of the user to register on the CA local password=$3 # password of the user to register on the CA
@ -82,20 +98,24 @@ registerAndEnroll() {
local attrs="" local attrs=""
fi fi
set -x
# Register the username # Register the username
fabric-ca-client register -d -u https://localhost:${port} --id.name ${username} --id.secret ${password} --id.type ${type} --id.attrs "${attrs}" --caname ca --tls.certfiles $tlscert --mspdir "${org_dir}/ca/msp" fabric-ca-client register -u https://localhost:${port} --id.name ${username} --id.secret ${password} --id.type ${type} --id.attrs "${attrs}" --caname ca --tls.certfiles $tlscert --mspdir "${org_dir}/ca/msp"
if [ $? -ne 0 ]; then if [ $? -ne 0 ]; then
echo "fabric-ca-client register failed, make sure CA service is available. Exiting..." echo "fabric-ca-client register failed, make sure CA service is available. Exiting..."
exit 1 exit 1
fi fi
# Enroll the identity # Enroll the identity
fabric-ca-client enroll -d -u https://${username}:${password}@localhost:${port} --caname ca --mspdir "${component_dir}/msp" --tls.certfiles $tlscert fabric-ca-client enroll -u https://${username}:${password}@localhost:${port} --caname ca --mspdir "${component_dir}/msp" --tls.certfiles $tlscert
if [ $? -ne 0 ]; then if [ $? -ne 0 ]; then
echo "fabric-ca-client enroll failed, make sure CA service is available. Exiting..." echo "fabric-ca-client enroll failed, make sure CA service is available. Exiting..."
exit 1 exit 1
fi fi
{ set +x; } 2>/dev/null
# Rename private key to mimic cryptogen # Rename private key to mimic cryptogen
find ${component_dir} -type f -name '*_sk' | sed -e 'p;s/\(.*\)\/\(.*\)$/\1\/priv_sk/' | xargs -n2 mv -v find ${component_dir} -type f -name '*_sk' | sed -e 'p;s/\(.*\)\/\(.*\)$/\1\/priv_sk/' | xargs -n2 mv -v
@ -108,13 +128,17 @@ registerAndEnroll() {
# If this is a peer or orderer type then create a TLS cert # If this is a peer or orderer type then create a TLS cert
if [ "$type" = "peer" ] || [ "$type" = "orderer" ]; then if [ "$type" = "peer" ] || [ "$type" = "orderer" ]; then
set -x
# Enroll the TLS cert # Enroll the TLS cert
fabric-ca-client enroll -d -u https://${username}:${password}@localhost:${port} --caname tlsca --mspdir "${component_dir}/tls" --tls.certfiles $tlscert --csr.hosts 'localhost,127.0.0.1' fabric-ca-client enroll -u https://${username}:${password}@localhost:${port} --caname tlsca --mspdir "${component_dir}/tls" --tls.certfiles $tlscert --csr.hosts 'localhost,127.0.0.1'
if [ $? -ne 0 ]; then if [ $? -ne 0 ]; then
echo "fabric-ca-client TLS enroll failed, make sure CA service is available. Exiting..." echo "fabric-ca-client TLS enroll failed, make sure CA service is available. Exiting..."
exit 1 exit 1
fi fi
{ set +x; } 2>/dev/null
# Rename private key to mimic cryptogen # Rename private key to mimic cryptogen
find ${component_dir} -type f -name '*_sk' | sed -e 'p;s/\(.*\)\/\(.*\)$/\1\/priv_sk/' | xargs -n2 mv -v find ${component_dir} -type f -name '*_sk' | sed -e 'p;s/\(.*\)\/\(.*\)$/\1\/priv_sk/' | xargs -n2 mv -v
@ -128,6 +152,8 @@ registerAndEnroll() {
fi fi
echo "\n\n"
} }