Feature #4977
openndncert-client: non-interactive mode
0%
Description
Allow ndncert-client
to be run non-interactively by providing all configuration choices and certificate parameters on the command line and/or in a configuration file.
Updated by Zhiyi Zhang over 5 years ago
One question is how to let the user type in PIN code after it runs the command-line tool?
I assume it still needs some interaction?
Updated by Davide Pesavento over 5 years ago
The issue description clearly says "configuration choices and certificate parameters", it says nothing about PIN entry or any other challenge. Moreover, you cannot have a general rule for challenges, since their interaction requirements are highly dependent on the specific challenge type. Some (but not all) challenges are inherently interactive. In any case, that's outside the scope of this issue.
Updated by Zhiyi Zhang about 5 years ago
Here is a design:
The user will be asked to
- read the client config, figuring out the ca-name he wants and required probe-info
- run the ndncert-client with parameters (i)ca-name, (ii)probe-info, (iii)expected validity (has default value) period time
- run another command-line tool ndncert-client-challenge when the PIN code or whatever things are obtained and fetch the certificate back.
A database/file directory will be used to keep the state of ongoing applications.