Exit routine processing for the PKI Services CGIs

For the end-user functions except VERIFY, the PKI Services web application CGIs support calling an installation-provided exit routine. The exit routine can perform tasks such as:
  • Provide additional authorization checking
  • Validate and change parameters
  • Capture certificates for further processing
  • Recover a passphrase that is used in a certificate request

Start of changeIf the exit routine exists, it must be a UNIX executable program residing in the file system, and it must have appropriate permission assigned. To specify the exit routine, the UNIX programmer sets the _PKISERV_EXIT environment variable in the web server's environment variables file. The environmental variable may also be added to the web server's configuration file (httpd.conf) by using the SetEnv HTTP Directive. On input, it receives standard UNIX parameters (that is, argc and argv []). It communicates back to PKISERV through the return code and by writing to STDOUT.End of change

Parent topic: Customizing with installation exit routines