diff --git a/api/api-iam/iam-external/src/main/config/iam-external-application-dev.yml b/api/api-iam/iam-external/src/main/config/iam-external-application-dev.yml
index abe06cc571c6f57069956664ace63721c182ed9b..e5c9e366e8cbcdfe073bdcc6f4a7235ce88d643f 100644
--- a/api/api-iam/iam-external/src/main/config/iam-external-application-dev.yml
+++ b/api/api-iam/iam-external/src/main/config/iam-external-application-dev.yml
@@ -23,11 +23,11 @@ server:
host:
port: 8083
ssl:
- key-store: src/main/config/iam-external.jks
- key-store-password: jkspasswd
- key-password: jkspasswd
- trust-store: src/main/config/truststore.jks
- trust-store-password: jkspasswd
+ key-store: src/main/config/keystore_iam-external.jks
+ key-store-password: changeme
+ key-password: changeme
+ trust-store: src/main/config/truststore_server.jks
+ trust-store-password: changeme
client-auth: need
management:
server:
diff --git a/api/api-iam/iam-external/src/main/config/keystore_iam-external.jks b/api/api-iam/iam-external/src/main/config/keystore_iam-external.jks
new file mode 100644
index 0000000000000000000000000000000000000000..42e7140afeb89e3aebce728d6c5a6247adb4317e
Binary files /dev/null and b/api/api-iam/iam-external/src/main/config/keystore_iam-external.jks differ
diff --git a/api/api-iam/iam-external/src/main/config/truststore.jks b/api/api-iam/iam-external/src/main/config/truststore.jks
deleted file mode 100644
index d2cdfd318a79ddc55c537ce5a6fb2eda9c4d1bbd..0000000000000000000000000000000000000000
Binary files a/api/api-iam/iam-external/src/main/config/truststore.jks and /dev/null differ
diff --git a/api/api-iam/iam-external/src/main/config/truststore_server.jks b/api/api-iam/iam-external/src/main/config/truststore_server.jks
new file mode 100644
index 0000000000000000000000000000000000000000..37c784f221833c11bd59aacb8d18f875c411da5e
Binary files /dev/null and b/api/api-iam/iam-external/src/main/config/truststore_server.jks differ
diff --git a/api/api-iam/iam-external/src/main/config/truststore_server.jks.old b/api/api-iam/iam-external/src/main/config/truststore_server.jks.old
new file mode 100644
index 0000000000000000000000000000000000000000..c25bb727ec4db42c6b9582f530209b6fc160ffff
Binary files /dev/null and b/api/api-iam/iam-external/src/main/config/truststore_server.jks.old differ
diff --git a/api/api-iam/iam-internal/src/main/config/iam-internal-application-dev.yml b/api/api-iam/iam-internal/src/main/config/iam-internal-application-dev.yml
index eef8723e0a0608f1aef07e847e69c640c12ccf66..1498a4078e6111d9a6d140eba2ecef423bbae95e 100644
--- a/api/api-iam/iam-internal/src/main/config/iam-internal-application-dev.yml
+++ b/api/api-iam/iam-internal/src/main/config/iam-internal-application-dev.yml
@@ -38,8 +38,8 @@ cas-client:
secure: true
ssl-configuration:
truststore:
- key-path: src/main/config/truststore.jks
- key-password: jkspasswd
+ key-path: src/main/config/truststore_server.jks
+ key-password: changeme
hostname-verification: false
cas.reset.password.url: /cas/extras/resetPassword?username={username}&firstname={firstname}&lastname={lastname}&language={language}&ttl=1day
diff --git a/api/api-iam/iam-internal/src/main/config/keystore_iam-internal.jks b/api/api-iam/iam-internal/src/main/config/keystore_iam-internal.jks
new file mode 100644
index 0000000000000000000000000000000000000000..a69c6518beffb7c89aef80a6f29e5bd2f4a5e1e4
Binary files /dev/null and b/api/api-iam/iam-internal/src/main/config/keystore_iam-internal.jks differ
diff --git a/api/api-iam/iam-internal/src/main/config/truststore.jks b/api/api-iam/iam-internal/src/main/config/truststore.jks
deleted file mode 100644
index 35f5ec5188054e6bfc5ed88899e60fb1ffa94798..0000000000000000000000000000000000000000
Binary files a/api/api-iam/iam-internal/src/main/config/truststore.jks and /dev/null differ
diff --git a/api/api-iam/iam-internal/src/main/config/truststore_server.jks b/api/api-iam/iam-internal/src/main/config/truststore_server.jks
new file mode 100644
index 0000000000000000000000000000000000000000..c25bb727ec4db42c6b9582f530209b6fc160ffff
Binary files /dev/null and b/api/api-iam/iam-internal/src/main/config/truststore_server.jks differ
diff --git a/api/api-security/security-internal/src/main/config/keystore_security-internal.jks b/api/api-security/security-internal/src/main/config/keystore_security-internal.jks
new file mode 100644
index 0000000000000000000000000000000000000000..63d49769361b66d1f6dd1e9f892505d30a886b01
Binary files /dev/null and b/api/api-security/security-internal/src/main/config/keystore_security-internal.jks differ
diff --git a/api/api-security/security-internal/src/main/config/truststore.jks b/api/api-security/security-internal/src/main/config/truststore.jks
deleted file mode 100644
index db3f539413799a1b2bde16b2f43ab3e7c1d3a773..0000000000000000000000000000000000000000
Binary files a/api/api-security/security-internal/src/main/config/truststore.jks and /dev/null differ
diff --git a/api/api-security/security-internal/src/main/config/truststore_server.jks b/api/api-security/security-internal/src/main/config/truststore_server.jks
new file mode 100644
index 0000000000000000000000000000000000000000..c25bb727ec4db42c6b9582f530209b6fc160ffff
Binary files /dev/null and b/api/api-security/security-internal/src/main/config/truststore_server.jks differ
diff --git a/cas/cas-server/src/main/config/cas-server-application-dev.yml b/cas/cas-server/src/main/config/cas-server-application-dev.yml
index debd006aac39b17a61c3784654bbd2e1f07664e4..2734630155b1178eb548f67f3173b8dafc7684f9 100644
--- a/cas/cas-server/src/main/config/cas-server-application-dev.yml
+++ b/cas/cas-server/src/main/config/cas-server-application-dev.yml
@@ -1,8 +1,8 @@
server:
ssl:
- key-store: file:src/main/config/cas-server.jks
- key-store-password: jkspasswd
- key-password: jkspasswd
+ key-store: file:src/main/config/keystore_cas-server.jks
+ key-store-password: changeme
+ key-password: changeme
host: dev.vitamui.com
port: 8080
@@ -15,12 +15,12 @@ iam-client:
secure: true
ssl-configuration:
keystore:
- key-path: src/main/config/cas-server.jks
- key-password: jkspasswd
+ key-path: src/main/config/keystore_cas-server.jks
+ key-password: changeme
type: JKS
truststore:
- key-path: src/main/config/truststore.jks
- key-password: jkspasswd
+ key-path: src/main/config/truststore_server.jks
+ key-password: changeme
hostname-verification: false
diff --git a/cas/cas-server/src/main/config/cas-server-application-recette.yml b/cas/cas-server/src/main/config/cas-server-application-recette.yml
index f278146d8e652e323ca0d97d0d19b2d01ab4a4b1..ce4fda56e618d368af5452711394d246742618a8 100644
--- a/cas/cas-server/src/main/config/cas-server-application-recette.yml
+++ b/cas/cas-server/src/main/config/cas-server-application-recette.yml
@@ -1,8 +1,8 @@
server:
ssl:
key-store: file:src/main/config/cas-server.jks
- key-store-password: jkspasswd
- key-password: jkspasswd
+ key-store-password: changeme
+ key-password: changeme
host: dev.vitamui.com
port: 8080
@@ -15,12 +15,12 @@ iam-client:
secure: true
ssl-configuration:
keystore:
- key-path: src/main/config/cas-server.jks
- key-password: jkspasswd
+ key-path: src/main/config/keystore_cas-server.jks
+ key-password: changeme
type: JKS
truststore:
- key-path: src/main/config/truststore.jks
- key-password: jkspasswd
+ key-path: src/main/config/truststore_server.jks
+ key-password: changeme
hostname-verification: false
diff --git a/cas/cas-server/src/main/config/keystore_cas-server.jks b/cas/cas-server/src/main/config/keystore_cas-server.jks
new file mode 100644
index 0000000000000000000000000000000000000000..556663f10346811223f119acbbe56d49ec2f9e57
Binary files /dev/null and b/cas/cas-server/src/main/config/keystore_cas-server.jks differ
diff --git a/cas/cas-server/src/main/config/truststore_server.jks b/cas/cas-server/src/main/config/truststore_server.jks
new file mode 100644
index 0000000000000000000000000000000000000000..c25bb727ec4db42c6b9582f530209b6fc160ffff
Binary files /dev/null and b/cas/cas-server/src/main/config/truststore_server.jks differ
diff --git a/deployment/assembly-mongo.xml b/deployment/assembly-mongo.xml
new file mode 100644
index 0000000000000000000000000000000000000000..3a78f5524559e0f8850941ee76c968f372c02ca5
--- /dev/null
+++ b/deployment/assembly-mongo.xml
@@ -0,0 +1,18 @@
+<assembly xmlns="http://maven.apache.org/ASSEMBLY/2.0.0"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="http://maven.apache.org/ASSEMBLY/2.0.0 http://maven.apache.org/xsd/assembly-2.0.0.xsd">
+ <id>mongo</id>
+ <formats>
+ <format>dir</format>
+ </formats>
+ <includeBaseDirectory>false</includeBaseDirectory>
+ <fileSets>
+ <fileSet>
+ <directory>../tools/docker/mongo/database_scripts/</directory>
+ <includes>
+ <include>**/*</include>
+ </includes>
+ <outputDirectory>./scripts/mongod/</outputDirectory>
+ </fileSet>
+ </fileSets>
+</assembly>
diff --git a/deployment/environments/certs/client-external/ca/README b/deployment/environments/certs/client-external/ca/README
new file mode 100644
index 0000000000000000000000000000000000000000..aea8d0c64326e531996e92d1b5783d8e0e83a2e2
--- /dev/null
+++ b/deployment/environments/certs/client-external/ca/README
@@ -0,0 +1 @@
+Put your external clients certificates' CA here (.crt)
\ No newline at end of file
diff --git a/deployment/environments/certs/client-external/ca/ca-intermediate.crt b/deployment/environments/certs/client-external/ca/ca-intermediate.crt
new file mode 100644
index 0000000000000000000000000000000000000000..6a43e560cb07cd3437d51a85f39ed1eb4683d7f6
--- /dev/null
+++ b/deployment/environments/certs/client-external/ca/ca-intermediate.crt
@@ -0,0 +1,137 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 2 (0x2)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-external
+ Validity
+ Not Before: May 5 09:13:44 2020 GMT
+ Not After : May 3 09:13:44 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_client-external
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:eb:26:d9:1e:69:fc:3d:e5:7d:ff:49:a7:53:4b:
+ 88:2f:bd:d7:1d:0a:54:c1:38:cb:8f:49:39:2b:82:
+ 81:ea:b4:d7:58:59:6a:89:fe:31:9b:9e:32:89:62:
+ db:99:89:1b:1d:6c:71:2c:55:1f:7c:b9:80:d6:04:
+ ce:4f:08:c3:f5:87:90:ea:1c:d7:5c:f1:fb:2c:52:
+ 9e:95:74:12:16:98:bf:d9:09:dc:24:eb:a7:f4:80:
+ dd:b6:3a:1c:43:dc:6d:71:26:a9:3b:35:21:02:39:
+ 50:83:30:44:26:03:b1:2b:46:c3:ee:ad:9a:c8:18:
+ 10:1a:80:8f:8b:89:45:27:91:ab:a5:dd:8e:c3:93:
+ a4:b9:22:56:70:0e:d6:ee:09:11:53:da:5d:09:35:
+ 43:68:0c:56:f9:66:91:5c:dc:a9:a9:c1:67:aa:79:
+ 17:64:2e:30:96:17:8e:2f:6f:f1:fe:20:38:42:03:
+ a5:55:1e:17:02:b5:62:59:63:bd:04:34:82:25:54:
+ 56:db:89:5f:a4:6c:af:1b:d2:03:32:98:7a:2d:e0:
+ 25:5a:8b:3b:f2:5f:38:8e:78:44:d0:6c:df:d2:29:
+ 2b:51:8e:5b:ad:80:01:52:83:b9:a1:dd:83:3f:38:
+ b9:37:2d:5e:a8:46:29:b7:75:fe:8a:a8:0f:42:01:
+ b9:61:c2:cc:b8:44:b8:cf:50:8c:e8:65:ef:0f:0a:
+ e7:52:4a:5d:46:e1:14:76:72:a9:11:47:46:cb:3b:
+ 81:4c:db:7c:49:42:ac:84:e5:0e:46:2a:6f:04:87:
+ 02:33:f7:76:af:38:86:fa:c3:e4:10:57:b0:6d:90:
+ 02:5f:75:18:03:c0:4d:52:34:9a:03:c1:7b:a1:d9:
+ ad:0e:ac:00:a2:a1:02:69:6d:7c:81:5a:4f:d0:9f:
+ 71:b7:86:60:d5:35:7d:6d:38:d2:b6:63:96:ae:04:
+ 60:a9:96:0f:55:77:bb:54:a6:bb:51:81:68:1a:d3:
+ 94:b6:bd:3e:37:2e:f9:40:d1:52:20:8a:5c:0d:8f:
+ a8:6c:c0:72:bf:b8:c8:c9:7d:e5:ee:a6:ee:09:15:
+ d2:a4:a1:12:2a:c1:a1:eb:be:c1:fa:c0:b3:02:9b:
+ 83:3c:35:6f:f5:7e:1b:68:64:3a:5e:ee:5f:c6:c0:
+ 47:2b:21:c7:b6:06:9d:56:2e:be:43:fb:5e:aa:1a:
+ 38:55:41:9a:67:06:da:5b:77:b7:4f:1b:9e:39:59:
+ 74:fc:d5:39:5c:dd:2e:c4:58:76:97:1c:41:41:dd:
+ 27:2c:f2:8a:3d:ab:99:1b:39:2a:9e:b3:61:af:58:
+ 14:04:cd:f9:51:f9:cd:d3:84:eb:b1:33:6d:58:b3:
+ 23:ec:a1
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Intermediate
+ X509v3 Subject Key Identifier:
+ 79:40:DE:1C:BE:4E:6F:37:00:94:B1:23:B1:2F:44:D5:C4:3E:7A:EF
+ X509v3 Authority Key Identifier:
+ keyid:33:AC:54:7E:E9:5B:9C:62:4A:FF:3E:17:3E:F9:EA:C6:3E:6C:C4:83
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-external
+ serial:01
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:0
+ X509v3 Issuer Alternative Name:
+ <EMPTY>
+
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 13:2f:f3:16:55:a3:c7:42:30:80:71:45:7f:9a:8b:8c:cd:e2:
+ 39:27:44:b2:46:a0:90:6c:36:13:bc:0e:99:34:b3:0f:a0:b6:
+ 85:ba:ef:f5:53:b5:63:e7:b0:64:16:ed:be:dd:9c:08:41:7c:
+ 74:a5:6d:0b:12:0a:bf:e2:e3:28:dd:1d:d7:a9:42:a2:f8:bb:
+ 0d:0d:ae:45:a2:f3:a7:c7:22:bd:d3:80:b2:fe:41:af:79:31:
+ 13:c7:78:cf:5a:ea:3e:f9:a7:04:ed:86:32:c9:2e:93:46:af:
+ 03:f4:fd:2b:96:2f:6b:9c:9a:a5:db:3b:b9:6b:24:03:5b:21:
+ 96:40:9a:fa:f0:25:a1:52:5d:5a:e5:bc:8d:18:3f:54:c3:f1:
+ f5:c8:e1:3e:52:5b:fc:ee:ea:64:0e:67:be:80:d6:38:76:de:
+ cb:dc:dd:3f:3f:5e:37:8c:d4:af:0b:f7:74:39:6c:42:68:34:
+ a4:94:23:6c:dc:07:d9:5d:8e:61:08:bc:6b:4f:cc:81:69:f3:
+ 1f:66:81:80:0e:ba:80:a2:9a:65:1e:ea:73:0b:0e:74:35:0e:
+ ad:dc:66:14:f7:2b:9e:09:b8:ed:df:a1:e1:16:3a:cb:af:d0:
+ 5d:1c:5d:fb:f9:9a:e2:a5:a3:14:f5:70:3e:a9:79:f5:2a:81:
+ 7e:6c:b2:0d:61:31:de:38:5a:8a:1e:f3:d4:60:04:6b:5a:bf:
+ 6f:de:dc:09:d0:6d:3e:51:7a:c3:5c:fb:66:a3:6d:ce:51:8d:
+ d9:7d:74:17:63:8d:7a:b0:bd:b3:41:1e:fd:d2:74:c9:40:08:
+ 65:d3:73:5c:41:d1:a4:ff:f9:ee:e2:41:be:5b:fe:7c:b3:f1:
+ d0:71:26:9f:9d:7f:b2:5d:ac:89:c4:04:04:d0:a6:ec:6d:37:
+ 55:60:b2:d6:ff:36:fd:ad:0b:ba:13:9a:88:c0:73:80:fb:76:
+ 51:6c:83:00:13:32:81:29:ab:1c:ea:75:8e:60:74:73:79:40:
+ 5a:fd:c5:48:a0:4b:6e:54:59:31:10:a6:7e:67:c3:a2:f6:37:
+ 5f:72:d9:4d:26:f5:eb:1a:47:41:87:33:e8:3d:06:e2:67:b4:
+ 2a:ca:96:41:3f:f0:28:e8:d6:9a:4f:b2:a2:3b:4e:86:2b:16:
+ 98:3d:e4:da:3e:28:53:88:b3:cd:5e:d5:6d:2a:90:eb:d5:98:
+ cb:95:3c:8f:c2:4b:a8:13:c7:65:0b:4e:72:3d:0c:fa:f2:5b:
+ 10:47:60:22:23:16:d3:7f:df:13:c4:a3:6f:05:0b:e6:cb:a1:
+ 12:8c:b6:b8:e1:c8:03:98:e0:ac:53:8d:dd:63:cd:1c:58:ab:
+ b7:50:44:65:8e:46:fe:80
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/client-external/ca/ca-root.crt b/deployment/environments/certs/client-external/ca/ca-root.crt
new file mode 100644
index 0000000000000000000000000000000000000000..2e7c092a03a59a393163f504a5d0b49166551b5e
--- /dev/null
+++ b/deployment/environments/certs/client-external/ca/ca-root.crt
@@ -0,0 +1,128 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 1 (0x1)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-external
+ Validity
+ Not Before: May 5 09:13:42 2020 GMT
+ Not After : May 3 09:13:42 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-external
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:d3:fb:5a:dc:49:69:f0:40:e5:90:7c:e1:2e:c3:
+ ef:53:92:3d:83:c2:06:53:c7:bb:e2:ec:ee:bc:a1:
+ 09:d5:a5:04:71:fe:c6:01:7f:7c:2a:88:7c:42:1d:
+ 57:29:54:28:7c:e0:c9:ae:63:ad:28:21:f2:fc:34:
+ 86:3a:67:8a:a8:59:9f:24:e2:07:0f:ef:87:27:27:
+ 92:b5:21:5d:19:29:7a:35:3e:be:db:d1:0c:22:25:
+ db:28:f8:6a:9a:03:35:56:18:90:27:09:01:7f:b5:
+ 80:b8:bd:f0:ff:7b:ed:f7:f4:33:94:6d:ca:1d:94:
+ b9:69:e1:42:28:bb:f2:51:dc:01:e0:02:f0:96:1e:
+ e0:c8:33:41:79:d5:fe:7d:55:9c:cd:9b:58:49:f6:
+ ac:0f:e2:c8:fc:75:4c:0d:a8:a7:f0:3d:97:07:d4:
+ 7f:17:90:dc:16:ee:df:de:76:5c:ce:f1:42:c9:17:
+ 5f:ae:82:31:b0:97:1c:4f:b0:bb:32:e4:a1:5e:85:
+ d0:0b:fb:85:d5:3f:2b:86:b3:5a:aa:2a:37:8e:17:
+ a4:67:0a:33:3f:b5:74:93:48:1a:62:37:65:44:45:
+ 5b:18:b6:47:58:de:90:0a:7b:86:39:49:3e:ce:fa:
+ 11:c6:ec:5f:d4:c6:e2:4d:a3:04:1e:96:87:04:d3:
+ cf:a6:5e:01:a8:f3:30:dc:a5:40:b1:5e:a3:42:53:
+ 29:55:58:20:f5:f5:19:00:0f:49:60:16:77:bc:f2:
+ 4a:16:8f:38:79:21:8a:ce:78:1a:60:9c:e0:e9:c1:
+ d7:4a:3e:05:10:f5:8f:e6:f1:a3:85:c1:a2:32:56:
+ 5b:4e:7d:5a:3a:a1:3c:61:ae:5e:68:e4:69:97:72:
+ 3d:38:5e:75:b9:06:e3:b6:f9:02:52:df:b4:87:d5:
+ fb:8e:99:c6:a6:1b:ca:95:e4:4e:22:27:25:cf:7d:
+ 2c:8b:fa:9c:42:49:d7:37:0e:1e:07:cc:e0:67:c7:
+ 8e:9e:cf:53:bc:c7:f5:8d:89:0a:e8:06:cb:48:6e:
+ b6:d0:c9:98:50:2b:43:82:4e:36:02:74:9e:e6:54:
+ e0:c4:f3:49:be:b0:45:60:46:71:3c:8f:10:7f:59:
+ c8:85:9a:70:b0:a2:a2:63:d0:b2:8c:41:fa:4a:75:
+ b7:36:18:b1:86:7b:1e:06:34:1e:59:37:76:c5:f0:
+ bb:77:b0:25:7c:13:0a:14:32:67:d9:b5:eb:f5:a4:
+ 74:cc:5e:c9:68:1c:bc:0e:ce:1a:ed:ab:82:2a:67:
+ f6:fa:6c:5e:a6:b6:e4:24:0c:f6:86:bb:ee:0a:b9:
+ 6f:8e:df:5d:90:82:e2:22:f3:d1:bc:2b:44:fe:fc:
+ 6f:87:8f
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Root
+ X509v3 Subject Key Identifier:
+ 33:AC:54:7E:E9:5B:9C:62:4A:FF:3E:17:3E:F9:EA:C6:3E:6C:C4:83
+ X509v3 Authority Key Identifier:
+ keyid:33:AC:54:7E:E9:5B:9C:62:4A:FF:3E:17:3E:F9:EA:C6:3E:6C:C4:83
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:1
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 7f:6e:7e:db:76:f9:9b:9b:9d:d1:82:c3:de:69:da:3f:57:60:
+ 0b:ac:24:c3:99:b5:4c:c8:99:73:c3:c4:63:4b:37:b9:4d:51:
+ fe:88:fc:e2:42:6e:26:3d:8c:1e:7c:83:19:ce:ec:5b:55:7d:
+ 1e:01:93:00:99:8a:19:28:49:55:18:f8:c8:fd:66:ad:04:6c:
+ 7e:54:19:81:d9:30:53:68:41:be:ba:f6:1d:c6:23:18:88:99:
+ 98:33:0c:52:14:5f:95:04:17:4b:0b:9b:0f:ae:7f:f9:77:00:
+ c8:0e:2c:b1:4f:5a:95:23:6f:2b:f8:8b:9d:8f:48:ef:9e:1e:
+ 68:fe:41:4b:43:f3:77:23:d4:71:f5:ee:4f:5a:bc:53:9c:39:
+ 26:83:d4:61:37:f0:af:a9:3e:b8:b2:f6:47:d7:e4:87:ba:42:
+ 68:67:fe:c2:1b:b6:d7:95:c4:af:ed:74:ba:6a:60:38:f8:91:
+ 26:52:f3:1a:3c:db:80:af:80:6b:c2:5d:fa:00:53:90:ee:ab:
+ 41:9d:ec:58:d1:96:66:aa:10:3b:a2:fa:a2:f6:30:25:76:6f:
+ 92:02:0a:d0:da:21:f8:36:9c:1a:4a:f3:56:5e:ae:fa:93:42:
+ c2:e6:18:6f:62:84:5d:f7:ae:d2:d8:31:2a:ef:99:18:9e:3a:
+ b7:4c:0e:2b:ef:c3:38:27:79:cd:8f:03:03:3c:26:91:4e:f6:
+ 6a:aa:96:65:f6:02:b0:e4:c6:0e:a9:3c:2a:78:e1:9b:a2:ed:
+ d5:64:a8:c3:94:9a:a7:7f:ba:48:61:b8:0e:6f:e7:74:e4:75:
+ 00:c0:2f:df:da:70:d6:a2:3d:0e:de:f8:ff:97:b0:36:18:13:
+ a5:ea:fa:6f:6b:f1:b9:29:6a:24:38:d8:4f:0c:75:56:0d:95:
+ dd:a5:8f:0c:19:a0:4f:64:cb:6a:54:cc:3b:07:57:d8:c4:1b:
+ 32:65:ed:b1:8f:b7:c2:48:13:41:55:03:c4:7d:9f:71:a3:99:
+ ba:cd:23:71:0c:c8:c6:73:48:c1:7e:91:2c:a4:74:a8:e2:42:
+ c3:f5:d6:02:03:12:de:95:94:9c:5a:cd:e6:a4:d1:d2:1a:b0:
+ 98:6f:23:15:b2:4d:f4:ca:76:07:b5:da:3d:0c:7b:50:fd:1f:
+ 7d:84:8e:0f:84:b6:f1:20:bd:58:b8:78:5e:be:67:4c:2b:fa:
+ 74:f5:32:60:96:9a:09:e3:03:72:7b:4f:bf:71:9f:4b:37:7c:
+ 47:93:df:b7:02:10:ca:29:eb:d3:f2:bb:05:75:15:b4:85:96:
+ 9c:6a:bc:7f:93:1d:81:16:61:a0:bb:09:3f:e3:92:09:8f:62:
+ 91:4e:43:ea:64:a9:07:57
+-----BEGIN CERTIFICATE-----
+MIIF9TCCA92gAwIBAgIBATANBgkqhkiG9w0BAQsFADB1MQswCQYDVQQGEwJmcjEM
+MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEQMA4GA1UECgwHdml0YW11aTEU
+MBIGA1UECwwLYXV0aG9yaXRpZXMxIDAeBgNVBAMMF2NhX3Jvb3RfY2xpZW50LWV4
+dGVybmFsMB4XDTIwMDUwNTA5MTM0MloXDTMwMDUwMzA5MTM0MlowdTELMAkGA1UE
+BhMCZnIxDDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxEDAOBgNVBAoMB3Zp
+dGFtdWkxFDASBgNVBAsMC2F1dGhvcml0aWVzMSAwHgYDVQQDDBdjYV9yb290X2Ns
+aWVudC1leHRlcm5hbDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBANP7
+WtxJafBA5ZB84S7D71OSPYPCBlPHu+Ls7ryhCdWlBHH+xgF/fCqIfEIdVylUKHzg
+ya5jrSgh8vw0hjpniqhZnyTiBw/vhycnkrUhXRkpejU+vtvRDCIl2yj4apoDNVYY
+kCcJAX+1gLi98P977ff0M5Rtyh2UuWnhQii78lHcAeAC8JYe4MgzQXnV/n1VnM2b
+WEn2rA/iyPx1TA2op/A9lwfUfxeQ3Bbu3952XM7xQskXX66CMbCXHE+wuzLkoV6F
+0Av7hdU/K4azWqoqN44XpGcKMz+1dJNIGmI3ZURFWxi2R1jekAp7hjlJPs76Ecbs
+X9TG4k2jBB6WhwTTz6ZeAajzMNylQLFeo0JTKVVYIPX1GQAPSWAWd7zyShaPOHkh
+is54GmCc4OnB10o+BRD1j+bxo4XBojJWW059WjqhPGGuXmjkaZdyPThedbkG47b5
+AlLftIfV+46ZxqYbypXkTiInJc99LIv6nEJJ1zcOHgfM4GfHjp7PU7zH9Y2JCugG
+y0huttDJmFArQ4JONgJ0nuZU4MTzSb6wRWBGcTyPEH9ZyIWacLCiomPQsoxB+kp1
+tzYYsYZ7HgY0Hlk3dsXwu3ewJXwTChQyZ9m16/WkdMxeyWgcvA7OGu2rgipn9vps
+Xqa25CQM9oa77gq5b47fXZCC4iLz0bwrRP78b4ePAgMBAAGjgY8wgYwwFgYJYIZI
+AYb4QgENBAkWB0NBIFJvb3QwHQYDVR0OBBYEFDOsVH7pW5xiSv8+Fz756sY+bMSD
+MB8GA1UdIwQYMBaAFDOsVH7pW5xiSv8+Fz756sY+bMSDMBIGA1UdEwEB/wQIMAYB
+Af8CAQEwCwYDVR0PBAQDAgEGMBEGCWCGSAGG+EIBAQQEAwICBDANBgkqhkiG9w0B
+AQsFAAOCAgEAf25+23b5m5ud0YLD3mnaP1dgC6wkw5m1TMiZc8PEY0s3uU1R/oj8
+4kJuJj2MHnyDGc7sW1V9HgGTAJmKGShJVRj4yP1mrQRsflQZgdkwU2hBvrr2HcYj
+GIiZmDMMUhRflQQXSwubD65/+XcAyA4ssU9alSNvK/iLnY9I754eaP5BS0PzdyPU
+cfXuT1q8U5w5JoPUYTfwr6k+uLL2R9fkh7pCaGf+whu215XEr+10umpgOPiRJlLz
+GjzbgK+Aa8Jd+gBTkO6rQZ3sWNGWZqoQO6L6ovYwJXZvkgIK0Noh+DacGkrzVl6u
++pNCwuYYb2KEXfeu0tgxKu+ZGJ46t0wOK+/DOCd5zY8DAzwmkU72aqqWZfYCsOTG
+Dqk8Knjhm6Lt1WSow5Sap3+6SGG4Dm/ndOR1AMAv39pw1qI9Dt74/5ewNhgTper6
+b2vxuSlqJDjYTwx1Vg2V3aWPDBmgT2TLalTMOwdX2MQbMmXtsY+3wkgTQVUDxH2f
+caOZus0jcQzIxnNIwX6RLKR0qOJCw/XWAgMS3pWUnFrN5qTR0hqwmG8jFbJN9Mp2
+B7XaPQx7UP0ffYSOD4S28SC9WLh4Xr5nTCv6dPUyYJaaCeMDcntPv3GfSzd8R5Pf
+twIQyinr0/K7BXUVtIWWnGq8f5MdgRZhoLsJP+OSCY9ikU5D6mSpB1c=
+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/client-external/clients/customer_x/customer_x.crt b/deployment/environments/certs/client-external/clients/customer_x/customer_x.crt
new file mode 100644
index 0000000000000000000000000000000000000000..c344ca74d28866f1eb4318559ead6855a9026671
--- /dev/null
+++ b/deployment/environments/certs/client-external/clients/customer_x/customer_x.crt
@@ -0,0 +1,138 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 4 (0x4)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_client-external
+ Validity
+ Not Before: May 5 11:44:25 2020 GMT
+ Not After : May 5 11:44:25 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=customer_x
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:9c:ef:bc:79:7f:77:69:4d:1b:c6:9f:25:a8:d1:
+ 2e:d8:4a:09:02:5d:89:8a:a4:c4:eb:c8:36:7f:1a:
+ e9:16:07:e7:08:7b:76:7b:8c:9e:25:8a:a8:e1:5c:
+ 80:99:15:ad:5c:29:98:ac:a7:5d:9d:23:c9:16:54:
+ 74:fc:d0:ba:2b:7e:ed:8a:60:11:9d:3d:ea:a7:34:
+ 4f:03:8b:5e:7d:a7:22:e4:b0:50:f1:6f:0b:c8:60:
+ b9:61:35:dd:f1:27:ef:3d:ee:b2:f8:0c:8f:df:b7:
+ dd:1f:9d:67:9f:5b:cf:bc:9e:82:16:08:cd:81:41:
+ 4b:c9:3c:10:7c:10:1f:29:14:53:0d:bc:67:15:de:
+ 52:c0:78:d5:05:ae:29:43:67:1e:21:e0:6f:9f:bd:
+ db:af:c0:0a:f8:e2:13:e4:24:f2:45:4e:b9:40:69:
+ 06:4f:74:5b:68:fb:dd:4f:e2:10:14:cc:fb:57:13:
+ a6:1f:b9:3a:9f:9f:e0:a5:30:df:3b:81:88:97:5b:
+ 8b:f9:a9:77:a0:a4:96:52:7d:14:1e:7b:de:93:6d:
+ 71:a6:a8:0c:5c:f5:a5:66:54:d0:e0:57:fd:d2:ce:
+ 0d:c0:2f:f6:20:76:86:d4:8a:da:0d:5a:11:09:bb:
+ 06:68:39:31:c9:c3:95:a6:49:a7:68:54:0d:1a:ff:
+ 0e:c2:19:51:4a:c9:48:bf:51:fe:e7:e1:fe:c7:fc:
+ 62:22:bd:91:83:9d:e9:f8:41:ca:47:97:3f:1f:17:
+ ba:5b:35:98:fc:62:95:77:f9:ed:70:87:9a:d6:0d:
+ 29:51:97:45:89:a8:0a:c4:80:21:2c:35:07:e4:7d:
+ 0a:4d:85:6a:b4:1e:37:15:65:4e:57:38:f4:1c:0b:
+ d7:96:23:2e:ca:c3:00:90:b9:9d:f2:8d:f2:5e:81:
+ 7c:09:80:70:77:18:7f:a1:c5:77:30:2b:c9:72:a4:
+ 48:fb:d7:47:6c:ad:1a:d4:be:06:3d:19:98:94:7b:
+ 39:64:06:ae:aa:d3:d2:c7:a4:a4:5f:15:e9:34:28:
+ 09:54:d7:2b:c1:38:57:aa:54:0b:67:db:06:b4:49:
+ 44:8f:fe:2d:b4:08:b1:82:0d:3b:aa:d2:a3:ca:8a:
+ 3d:ba:bc:16:ab:1b:49:2e:10:41:e0:1a:b8:64:6f:
+ 7f:ba:56:9d:47:60:7f:63:7d:79:22:4b:da:db:15:
+ 70:7a:af:3d:16:57:60:ed:e7:06:f3:cd:66:c0:4f:
+ 68:be:66:ca:48:fb:97:bd:92:c0:4c:2d:e7:f7:2c:
+ 8f:00:15:b6:4d:a0:55:f9:9c:df:59:de:2c:42:bf:
+ 11:a2:fa:f0:92:ee:cd:c5:8d:32:2d:dc:87:47:2c:
+ 29:4d:df
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ Certificat Client SSL
+ X509v3 Subject Key Identifier:
+ 42:F9:82:F1:31:2B:CE:2E:21:E3:74:11:ED:C3:8D:46:B4:B3:1A:CE
+ X509v3 Authority Key Identifier:
+ keyid:79:40:DE:1C:BE:4E:6F:37:00:94:B1:23:B1:2F:44:D5:C4:3E:7A:EF
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-external
+ serial:02
+
+ X509v3 Issuer Alternative Name:
+ <EMPTY>
+
+ X509v3 Basic Constraints: critical
+ CA:FALSE
+ X509v3 Key Usage:
+ Digital Signature
+ Netscape Cert Type:
+ SSL Client
+ X509v3 Extended Key Usage:
+ TLS Web Client Authentication
+ Signature Algorithm: sha256WithRSAEncryption
+ 60:46:8d:b4:3b:92:1c:a3:d1:2d:8f:a6:71:f4:68:ce:df:3f:
+ 87:06:52:d9:ce:b7:d0:d2:cb:4b:fb:0e:b6:8d:ea:94:95:77:
+ 5b:57:5b:e6:bc:ea:61:b8:f7:ab:8a:f3:1c:30:89:77:47:05:
+ d6:e4:1d:1e:7a:47:7d:d2:e4:3f:50:03:6a:b7:93:3f:c5:ef:
+ 2c:ee:8b:81:45:30:34:5a:11:c9:5b:a4:1a:d5:c5:5b:c3:66:
+ ba:88:74:e5:55:14:4f:86:7b:a8:e2:5d:89:1d:c7:cd:b7:25:
+ 35:08:39:21:9f:34:54:90:92:7c:a0:3d:85:cf:ec:38:d8:7a:
+ 0b:18:39:b1:89:bb:e9:98:81:b6:3e:4e:09:54:bd:d8:89:90:
+ 2a:42:af:40:95:db:84:0d:f8:ca:5f:c5:8b:a8:29:56:0e:06:
+ 57:45:0b:4c:64:44:56:ad:ee:d5:26:05:3c:9f:a6:3a:e4:6c:
+ e4:e1:91:58:43:a8:23:3f:14:da:24:16:31:94:a8:87:4f:a9:
+ 8f:6a:ef:37:06:21:3e:2a:3d:53:fd:0d:14:f6:92:2d:06:75:
+ 8e:89:47:b9:d8:21:da:a9:b8:8c:4d:59:5c:4e:41:d5:f0:8c:
+ 78:64:f4:ba:2d:aa:04:91:c9:85:5c:7e:eb:ed:10:d5:f6:53:
+ 29:9e:79:64:f8:9b:76:49:df:d9:15:e9:8a:c3:2e:ab:ae:7b:
+ e7:e9:83:00:77:0c:df:b8:6d:05:41:b3:80:fa:bf:1f:31:82:
+ 91:e5:81:f7:8f:4c:01:6c:e1:88:b3:e3:ba:a3:8f:32:ac:1a:
+ d5:b9:67:93:16:ad:28:9a:93:0f:e6:25:b0:cd:62:d5:69:ea:
+ dd:33:70:c1:54:1c:7f:da:cd:8e:fd:17:30:ed:97:be:ba:dd:
+ 69:a3:63:72:a9:d4:c0:58:3e:fb:d1:8a:ca:97:aa:a5:77:fb:
+ 2f:0a:63:8a:5f:ad:4d:9c:53:5b:55:41:2b:71:47:76:95:6d:
+ 5f:fa:6a:99:19:b9:fe:18:3c:f9:32:de:2f:d5:7c:07:63:62:
+ cb:50:13:5e:38:04:68:c4:aa:15:3c:45:b5:c5:3a:cf:ed:ea:
+ 38:9a:5b:d6:26:c3:45:9f:da:d8:6d:61:b4:1c:b9:99:e5:07:
+ 49:31:75:cd:dc:a8:5a:90:13:47:18:8d:59:55:65:ec:61:4d:
+ 3e:d6:1a:07:f0:2e:12:5b:f2:5e:1c:42:d4:4f:ed:6a:ba:60:
+ f7:6d:e3:da:61:a7:d8:32:7b:5c:b6:5b:f4:69:42:cb:14:69:
+ 3b:b6:f8:a1:3b:00:6d:54:0d:fc:28:70:7c:94:3a:ff:f0:e1:
+ b3:81:65:1d:c3:bc:c5:45
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/client-external/clients/customer_x/customer_x.key b/deployment/environments/certs/client-external/clients/customer_x/customer_x.key
new file mode 100644
index 0000000000000000000000000000000000000000..6fb9bdd9e2aed713236c189e5be09588be715877
--- /dev/null
+++ b/deployment/environments/certs/client-external/clients/customer_x/customer_x.key
@@ -0,0 +1,54 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----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+-----END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/environments/certs/client-external/clients/external/README b/deployment/environments/certs/client-external/clients/external/README
new file mode 100644
index 0000000000000000000000000000000000000000..76fbc5ce99c841e0766741a613f2874ae87aefb7
--- /dev/null
+++ b/deployment/environments/certs/client-external/clients/external/README
@@ -0,0 +1 @@
+Put your external client public certificates here (.crt)
\ No newline at end of file
diff --git a/deployment/environments/certs/client-iam-internal/ca/ca-intermediate.crt b/deployment/environments/certs/client-iam-internal/ca/ca-intermediate.crt
deleted file mode 100644
index ffe0d489ea534bc4f64e679930d992c35cf22828..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/client-iam-internal/ca/ca-intermediate.crt
+++ /dev/null
@@ -1,137 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 331 (0x14b)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-iam-internal
- Validity
- Not Before: Dec 12 10:42:48 2019 GMT
- Not After : Dec 9 10:42:48 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_client-iam-internal
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:a9:56:f2:c1:8a:9f:37:97:14:65:e6:ff:30:55:
- 90:af:17:d4:a2:b7:4c:00:42:51:e9:1f:80:c3:27:
- 01:6a:b4:ca:58:20:1a:cf:46:8c:04:c6:0e:b3:23:
- de:1d:c0:84:2a:d5:a8:18:53:d8:93:7b:4c:4f:5c:
- c7:8c:95:2c:3e:da:0f:74:2c:e1:9d:06:41:d9:a9:
- d5:5a:d9:14:cc:15:2b:50:50:ea:d2:c6:23:50:63:
- 02:05:3d:9e:8a:c2:47:45:73:9c:c2:ae:18:c9:c5:
- b5:7b:cb:8b:11:b1:69:3e:8d:e3:37:4b:37:c4:ad:
- 59:65:53:4c:19:e2:f1:6f:d1:a0:ac:74:4a:f1:52:
- 26:72:7d:91:a5:1f:1f:ef:07:f1:08:db:48:e2:77:
- d5:36:ea:db:d6:e9:8f:9a:67:e4:fa:c8:ce:49:cb:
- de:4a:09:f7:5a:ed:16:ce:02:c5:46:09:7b:0f:50:
- 7c:74:db:09:b9:16:b5:5f:f2:e0:6b:b3:9c:7e:c5:
- 4c:22:60:de:ce:3d:49:ca:21:f2:01:be:8e:9c:7c:
- b3:b7:c6:64:2c:10:00:25:34:ce:79:d6:3c:89:a5:
- 87:5a:ec:4d:57:dd:f4:a5:cf:4a:67:ed:fd:46:ad:
- 03:7d:9e:1a:99:88:06:57:0f:ae:e8:8e:1f:c1:72:
- 92:34:75:4a:0b:fa:d2:b5:9a:24:82:4a:b2:9b:21:
- 1b:cc:d4:72:bd:cb:5b:dd:1c:61:b9:41:83:33:6b:
- 91:8a:44:11:bf:e5:9d:41:0a:d6:cf:e5:4d:1f:b4:
- 96:ed:0a:d7:ef:68:f7:99:62:4b:9a:82:a4:54:8c:
- 35:0e:9a:b2:12:05:df:3c:00:59:05:c2:8b:ac:a8:
- 94:ba:5a:63:50:a6:ed:67:3e:53:b3:ee:ba:92:75:
- 54:b3:ac:21:f9:68:8f:0c:14:f2:bc:0d:a4:20:5e:
- 1d:de:af:1c:04:4c:84:6d:e4:23:04:24:91:3f:5d:
- 82:39:7d:27:52:b0:e6:b5:2b:34:bb:96:07:2e:8f:
- c5:60:4c:79:4e:40:5a:fd:0d:4a:32:e8:3d:09:01:
- a3:16:20:78:3d:1d:03:56:ba:a2:53:6e:e1:65:42:
- 5e:7b:fa:77:8a:c9:50:a7:ea:3c:5c:da:75:25:a6:
- 43:d8:50:bc:5d:96:65:09:41:e9:9d:c3:44:8f:6c:
- 9a:dd:aa:c2:08:2d:7b:23:07:b4:a6:1a:23:e8:03:
- 28:71:91:74:f6:7e:e9:f6:5f:2c:bf:c2:c4:62:21:
- cd:b6:13:30:31:74:ae:1b:e0:ef:92:77:f0:87:08:
- f3:38:f6:69:fd:b9:b4:88:4e:14:4b:2c:b8:e9:e2:
- 53:ab:1f
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Intermediate
- X509v3 Subject Key Identifier:
- 43:5B:E8:68:7B:38:34:7D:3A:D3:0A:A3:6B:6D:A5:A9:1F:A0:DF:79
- X509v3 Authority Key Identifier:
- keyid:B9:5C:ED:B2:87:11:1B:A1:ED:A1:BE:57:E1:83:8B:92:88:35:99:2B
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam-internal
- serial:01:4A
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:0
- X509v3 Issuer Alternative Name:
- <EMPTY>
-
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 7f:fb:ea:e3:24:b6:34:28:6f:9e:58:39:d4:ea:71:ee:ac:8a:
- cd:15:a5:85:67:f6:eb:88:3b:a6:67:4d:89:62:b9:1a:5b:31:
- f5:1e:be:fb:a5:1c:5d:93:6b:7c:39:a2:20:88:6d:0d:c7:33:
- 1e:52:39:39:38:c1:84:76:b7:96:3b:05:df:c4:7e:3a:c5:42:
- f6:ab:ad:28:f2:e5:6f:3f:46:f2:5a:38:eb:5a:1b:0c:c1:aa:
- 0e:cd:7d:d7:18:ed:70:68:6e:ec:f3:e1:11:b3:b3:06:96:2d:
- a1:d6:1f:e1:59:43:f8:47:ba:a5:bf:5a:46:3b:f6:23:c1:48:
- 95:6a:39:2e:49:6f:18:0f:95:ab:36:35:8d:fe:95:d4:2f:2c:
- 82:1c:21:14:11:cd:69:50:f5:24:56:90:7e:16:79:81:55:42:
- 84:2c:b6:86:b4:7b:a6:4c:ef:b1:2e:d5:22:1e:87:cc:84:82:
- 9b:bf:99:07:71:a4:32:e0:55:61:4c:f3:e2:32:a3:ab:c0:80:
- 5d:dd:5d:21:a6:ee:45:60:b6:d9:eb:b0:7b:28:28:4f:ea:90:
- 82:36:71:cb:da:dc:72:15:fc:51:28:02:95:61:4f:76:96:e4:
- ad:49:c5:76:24:16:33:98:ae:85:ed:4c:7b:fe:dc:9b:b1:95:
- 20:99:97:0f:5c:6f:94:6c:01:5f:f2:f7:1d:bc:12:cc:ca:d8:
- 94:32:2b:65:16:81:f1:e5:d8:9f:1a:70:bf:eb:28:25:a6:5f:
- a1:b2:04:ad:7a:17:19:98:61:1e:08:83:81:0f:ef:3e:56:d8:
- 1b:49:b5:40:c6:fe:2f:eb:b2:32:33:45:07:7b:2c:8e:79:ec:
- a1:72:e6:48:b1:6d:fc:ea:d9:30:69:d1:d3:2a:ac:03:17:6f:
- c6:8d:e1:ee:5c:88:53:c5:3e:77:bb:7a:b6:46:e7:1c:27:7e:
- a3:1c:00:95:22:3a:66:d5:6a:b6:9d:ce:6b:e3:67:98:9e:57:
- 77:6e:b5:48:7b:50:5d:b6:16:63:0d:7b:d9:a9:33:0d:56:c8:
- 32:5c:c0:f4:82:da:02:19:0f:ce:c4:34:47:5e:ea:3a:af:13:
- d7:d1:b4:79:2a:66:67:84:3e:d3:af:3f:1a:1c:e3:22:f6:cf:
- 39:ad:79:90:0c:f4:8a:48:cf:42:0f:85:b8:7e:41:3b:21:31:
- 60:76:31:39:3a:e1:a1:17:fb:b8:ea:1a:4d:55:ac:ad:92:6d:
- c8:5f:b7:07:37:2a:c4:ab:f7:28:05:84:aa:77:1f:60:81:a0:
- 44:e4:f1:49:f8:49:48:02:e2:2c:ca:e7:10:a7:c7:22:67:19:
- 0d:5f:80:fa:6f:a9:47:63
------BEGIN CERTIFICATE-----
-MIIGmzCCBIOgAwIBAgICAUswDQYJKoZIhvcNAQELBQAwdzELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEkMCIGA1UEAwwbY2Ffcm9vdF9jbGllbnQtaWFt
-LWludGVybmFsMB4XDTE5MTIxMjEwNDI0OFoXDTI5MTIwOTEwNDI0OFowfzELMAkG
-A1UEBhMCZnIxDDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoM
-BXZpdGFtMRQwEgYDVQQLDAthdXRob3JpdGllczEsMCoGA1UEAwwjY2FfaW50ZXJt
-ZWRpYXRlX2NsaWVudC1pYW0taW50ZXJuYWwwggIiMA0GCSqGSIb3DQEBAQUAA4IC
-DwAwggIKAoICAQCpVvLBip83lxRl5v8wVZCvF9Sit0wAQlHpH4DDJwFqtMpYIBrP
-RowExg6zI94dwIQq1agYU9iTe0xPXMeMlSw+2g90LOGdBkHZqdVa2RTMFStQUOrS
-xiNQYwIFPZ6KwkdFc5zCrhjJxbV7y4sRsWk+jeM3SzfErVllU0wZ4vFv0aCsdErx
-UiZyfZGlHx/vB/EI20jid9U26tvW6Y+aZ+T6yM5Jy95KCfda7RbOAsVGCXsPUHx0
-2wm5FrVf8uBrs5x+xUwiYN7OPUnKIfIBvo6cfLO3xmQsEAAlNM551jyJpYda7E1X
-3fSlz0pn7f1GrQN9nhqZiAZXD67ojh/BcpI0dUoL+tK1miSCSrKbIRvM1HK9y1vd
-HGG5QYMza5GKRBG/5Z1BCtbP5U0ftJbtCtfvaPeZYkuagqRUjDUOmrISBd88AFkF
-wousqJS6WmNQpu1nPlOz7rqSdVSzrCH5aI8MFPK8DaQgXh3erxwETIRt5CMEJJE/
-XYI5fSdSsOa1KzS7lgcuj8VgTHlOQFr9DUoy6D0JAaMWIHg9HQNWuqJTbuFlQl57
-+neKyVCn6jxc2nUlpkPYULxdlmUJQemdw0SPbJrdqsIILXsjB7SmGiPoAyhxkXT2
-fun2Xyy/wsRiIc22EzAxdK4b4O+Sd/CHCPM49mn9ubSIThRLLLjp4lOrHwIDAQAB
-o4IBJzCCASMwHgYJYIZIAYb4QgENBBEWD0NBIEludGVybWVkaWF0ZTAdBgNVHQ4E
-FgQUQ1voaHs4NH060wqja22lqR+g33kwgaIGA1UdIwSBmjCBl4AUuVztsocRG6Ht
-ob5X4YOLkog1mSuhe6R5MHcxCzAJBgNVBAYTAmZyMQwwCgYDVQQIDANpZGYxDjAM
-BgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UECwwLYXV0aG9yaXRp
-ZXMxJDAiBgNVBAMMG2NhX3Jvb3RfY2xpZW50LWlhbS1pbnRlcm5hbIICAUowEgYD
-VR0TAQH/BAgwBgEB/wIBADAJBgNVHRIEAjAAMAsGA1UdDwQEAwIBBjARBglghkgB
-hvhCAQEEBAMCAgQwDQYJKoZIhvcNAQELBQADggIBAH/76uMktjQob55YOdTqce6s
-is0VpYVn9uuIO6ZnTYliuRpbMfUevvulHF2Ta3w5oiCIbQ3HMx5SOTk4wYR2t5Y7
-Bd/EfjrFQvarrSjy5W8/RvJaOOtaGwzBqg7NfdcY7XBobuzz4RGzswaWLaHWH+FZ
-Q/hHuqW/WkY79iPBSJVqOS5JbxgPlas2NY3+ldQvLIIcIRQRzWlQ9SRWkH4WeYFV
-QoQstoa0e6ZM77Eu1SIeh8yEgpu/mQdxpDLgVWFM8+Iyo6vAgF3dXSGm7kVgttnr
-sHsoKE/qkII2ccva3HIV/FEoApVhT3aW5K1JxXYkFjOYroXtTHv+3JuxlSCZlw9c
-b5RsAV/y9x28EszK2JQyK2UWgfHl2J8acL/rKCWmX6GyBK16FxmYYR4Ig4EP7z5W
-2BtJtUDG/i/rsjIzRQd7LI557KFy5kixbfzq2TBp0dMqrAMXb8aN4e5ciFPFPne7
-erZG5xwnfqMcAJUiOmbVaradzmvjZ5ieV3dutUh7UF22FmMNe9mpMw1WyDJcwPSC
-2gIZD87ENEde6jqvE9fRtHkqZmeEPtOvPxoc4yL2zzmteZAM9IpIz0IPhbh+QTsh
-MWB2MTk64aEX+7jqGk1VrK2Sbchftwc3KsSr9ygFhKp3H2CBoETk8Un4SUgC4izK
-5xCnxyJnGQ1fgPpvqUdj
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/client-iam-internal/ca/ca-root.crt b/deployment/environments/certs/client-iam-internal/ca/ca-root.crt
deleted file mode 100644
index c9e3f1cad50a5a7a775af5b452f44db516f96281..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/client-iam-internal/ca/ca-root.crt
+++ /dev/null
@@ -1,128 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 330 (0x14a)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-iam-internal
- Validity
- Not Before: Dec 12 10:42:47 2019 GMT
- Not After : Dec 9 10:42:47 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-iam-internal
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:aa:f4:98:52:78:df:cb:73:49:33:de:d2:44:4e:
- d8:23:64:b9:d5:0c:a4:7f:49:56:58:f7:61:2e:ce:
- e6:c1:be:16:4d:2c:79:17:5b:ab:12:f8:a6:75:62:
- f9:3a:d4:fa:00:e4:5c:2d:b3:8a:40:87:b1:03:c3:
- ae:28:c3:af:bd:2f:c3:36:ed:90:76:16:68:92:df:
- 41:94:52:e7:78:0b:a6:f4:5f:1a:b0:84:8f:ed:50:
- ea:0f:5c:6b:b0:89:16:ee:4d:fc:96:1f:42:2d:28:
- 03:63:e2:06:b2:0f:fa:2f:7d:d6:88:6a:6e:a1:c4:
- ef:1a:f6:8c:94:03:e5:3a:75:d6:d6:97:ba:11:1c:
- 55:c8:1d:1c:2e:f8:1a:5a:52:eb:7e:79:2f:36:ec:
- e9:54:c1:40:bc:e6:b1:18:8f:f7:65:80:9c:4f:55:
- c5:01:9a:30:fa:db:2e:8a:0f:f9:f1:67:63:d5:ec:
- de:7c:23:f9:93:89:56:84:7c:32:6f:fc:ab:71:8e:
- a4:79:45:7b:a4:80:1d:e2:ed:4c:e7:74:ad:96:73:
- 78:06:30:1c:f8:79:9a:04:81:a9:00:dd:5b:5a:26:
- cb:65:62:9f:f0:8d:09:ce:02:2f:7f:95:9d:01:9d:
- 0b:aa:17:e2:4d:80:aa:31:c1:35:59:31:b4:07:05:
- ae:1a:72:49:ea:2f:a9:23:62:68:04:a2:f9:2a:d5:
- b4:98:c7:9b:e6:e5:e3:d2:7d:05:9f:fa:3d:1c:c8:
- d3:d1:2c:d1:db:76:58:03:ba:31:ea:b8:a3:f3:83:
- cb:d2:2d:66:b5:89:9f:94:25:d7:84:ed:8c:30:16:
- 8c:f0:68:f8:ef:ea:86:0b:e8:f2:0c:93:d5:94:dd:
- 78:15:5a:66:bf:b5:91:23:b6:f8:e2:12:f7:22:06:
- 10:03:74:c0:ac:a7:85:df:26:98:dd:53:27:cc:15:
- 71:58:bf:23:9a:c0:99:46:04:70:13:bd:0f:e0:11:
- a4:62:1b:4c:9a:95:7b:05:71:57:9b:0a:1e:72:47:
- 6a:49:84:43:7a:6e:d2:66:14:7a:7a:2f:f1:c3:66:
- cd:e6:af:e7:49:2d:2e:1b:d2:58:38:38:a9:ce:ef:
- 3c:fa:97:a0:a2:b2:20:93:bb:f3:de:aa:68:d0:bb:
- 12:c9:e4:bf:59:a1:d7:48:a2:8b:8d:07:08:11:d9:
- fb:1f:0f:42:6b:90:64:b3:f7:aa:86:5f:fb:06:2e:
- 32:45:b6:4b:bc:91:c7:e6:cc:d3:3d:0f:04:49:6a:
- e2:a5:c0:84:03:25:3b:64:0f:b6:bc:2c:c4:97:9b:
- 06:11:56:a0:73:34:af:f7:ae:16:7f:82:b7:be:cf:
- 00:a7:2f
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Root
- X509v3 Subject Key Identifier:
- B9:5C:ED:B2:87:11:1B:A1:ED:A1:BE:57:E1:83:8B:92:88:35:99:2B
- X509v3 Authority Key Identifier:
- keyid:B9:5C:ED:B2:87:11:1B:A1:ED:A1:BE:57:E1:83:8B:92:88:35:99:2B
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:1
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 2a:b4:7d:3b:6e:06:d7:02:e7:b0:08:ae:63:42:85:7c:65:27:
- 27:49:35:fe:df:71:54:b3:fd:48:fc:9d:62:c6:ec:d6:dd:fc:
- 58:0c:be:7a:8c:e4:0d:1f:bc:0b:0f:ee:1e:19:a1:06:b3:99:
- c5:7a:3d:b5:d2:2c:10:dd:2e:23:4f:35:6c:5d:16:39:54:0f:
- 92:75:1e:dd:eb:b0:97:6f:7e:c3:2d:47:a9:fc:ae:b0:ad:3e:
- f0:41:bb:0e:2a:e8:73:f0:70:d5:9c:cd:77:a5:64:3c:5e:89:
- 8f:b0:11:b4:bc:27:a7:39:ef:03:88:3f:7a:14:26:f8:79:f1:
- ec:98:c9:2e:67:1e:0a:65:6b:2a:66:d7:09:61:88:58:59:5a:
- 78:bc:01:2b:a3:f5:05:43:da:68:69:02:4b:de:f7:49:ea:91:
- 68:5b:85:12:1d:d9:6f:6d:6a:a3:68:ea:cc:88:7d:61:71:37:
- bb:0a:de:5f:ff:bd:1a:03:bb:1b:36:c5:87:b8:b0:e2:bd:4e:
- a1:60:3c:20:a1:b2:44:9c:ce:0f:46:21:ed:4f:53:b6:d6:6d:
- a3:1d:0b:e1:0f:6b:93:94:f4:32:0f:55:c2:bf:fd:51:af:79:
- 13:14:57:f0:68:ea:68:d3:01:4e:88:1c:6d:4a:d5:f1:c3:f6:
- fc:82:f3:f4:8f:b1:c7:c0:8f:fb:34:02:31:e3:d9:48:54:b6:
- 3e:44:4d:6b:4a:53:83:9c:c1:7b:75:60:cb:9e:11:23:c8:9a:
- 12:09:3c:5b:08:9e:3b:ac:b6:64:cb:60:cc:e2:83:1c:ff:cd:
- 59:a7:0e:36:3c:d6:2f:35:d0:4d:40:ab:b3:fd:3a:57:d2:2a:
- 87:7f:de:4f:9d:2a:11:19:35:0f:7c:d0:23:98:a5:67:f5:60:
- 16:f6:3a:83:a8:f4:3f:8a:50:f3:1c:6d:ea:eb:ed:1f:24:94:
- 60:ca:d5:b7:a3:4e:f8:de:8a:a9:bb:f8:02:68:cd:18:11:7b:
- 4f:4e:fb:09:5e:00:0a:f7:61:c2:c6:7a:7a:66:8b:01:99:9a:
- 36:fd:d9:31:7b:dd:4f:38:a8:b6:36:e0:77:44:92:5d:eb:f6:
- 73:c3:56:ac:fb:ab:fc:3f:1d:a1:82:8f:c2:f2:55:73:c2:5f:
- a6:55:23:0f:3d:85:0b:96:c8:d5:e4:a8:aa:fa:b4:d3:05:a2:
- cf:e1:a5:95:18:5e:7e:13:44:cf:be:c5:34:d1:e2:b7:69:9a:
- f6:e3:85:6a:82:12:a6:5f:08:ad:4e:e9:ee:63:a1:73:7c:cd:
- 35:8c:e8:27:1d:1b:46:34:e7:ae:36:4a:7a:fb:3f:e5:9c:71:
- 64:39:90:8f:d9:ed:93:2b
------BEGIN CERTIFICATE-----
-MIIF+jCCA+KgAwIBAgICAUowDQYJKoZIhvcNAQELBQAwdzELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEkMCIGA1UEAwwbY2Ffcm9vdF9jbGllbnQtaWFt
-LWludGVybmFsMB4XDTE5MTIxMjEwNDI0N1oXDTI5MTIwOTEwNDI0N1owdzELMAkG
-A1UEBhMCZnIxDDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoM
-BXZpdGFtMRQwEgYDVQQLDAthdXRob3JpdGllczEkMCIGA1UEAwwbY2Ffcm9vdF9j
-bGllbnQtaWFtLWludGVybmFsMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKC
-AgEAqvSYUnjfy3NJM97SRE7YI2S51Qykf0lWWPdhLs7mwb4WTSx5F1urEvimdWL5
-OtT6AORcLbOKQIexA8OuKMOvvS/DNu2QdhZokt9BlFLneAum9F8asISP7VDqD1xr
-sIkW7k38lh9CLSgDY+IGsg/6L33WiGpuocTvGvaMlAPlOnXW1pe6ERxVyB0cLvga
-WlLrfnkvNuzpVMFAvOaxGI/3ZYCcT1XFAZow+tsuig/58Wdj1ezefCP5k4lWhHwy
-b/yrcY6keUV7pIAd4u1M53StlnN4BjAc+HmaBIGpAN1bWibLZWKf8I0JzgIvf5Wd
-AZ0LqhfiTYCqMcE1WTG0BwWuGnJJ6i+pI2JoBKL5KtW0mMeb5uXj0n0Fn/o9HMjT
-0SzR23ZYA7ox6rij84PL0i1mtYmflCXXhO2MMBaM8Gj47+qGC+jyDJPVlN14FVpm
-v7WRI7b44hL3IgYQA3TArKeF3yaY3VMnzBVxWL8jmsCZRgRwE70P4BGkYhtMmpV7
-BXFXmwoeckdqSYRDem7SZhR6ei/xw2bN5q/nSS0uG9JYODipzu88+pegorIgk7vz
-3qpo0LsSyeS/WaHXSKKLjQcIEdn7Hw9Ca5Bks/eqhl/7Bi4yRbZLvJHH5szTPQ8E
-SWripcCEAyU7ZA+2vCzEl5sGEVagczSv964Wf4K3vs8Apy8CAwEAAaOBjzCBjDAW
-BglghkgBhvhCAQ0ECRYHQ0EgUm9vdDAdBgNVHQ4EFgQUuVztsocRG6Htob5X4YOL
-kog1mSswHwYDVR0jBBgwFoAUuVztsocRG6Htob5X4YOLkog1mSswEgYDVR0TAQH/
-BAgwBgEB/wIBATALBgNVHQ8EBAMCAQYwEQYJYIZIAYb4QgEBBAQDAgIEMA0GCSqG
-SIb3DQEBCwUAA4ICAQAqtH07bgbXAuewCK5jQoV8ZScnSTX+33FUs/1I/J1ixuzW
-3fxYDL56jOQNH7wLD+4eGaEGs5nFej210iwQ3S4jTzVsXRY5VA+SdR7d67CXb37D
-LUep/K6wrT7wQbsOKuhz8HDVnM13pWQ8XomPsBG0vCenOe8DiD96FCb4efHsmMku
-Zx4KZWsqZtcJYYhYWVp4vAEro/UFQ9poaQJL3vdJ6pFoW4USHdlvbWqjaOrMiH1h
-cTe7Ct5f/70aA7sbNsWHuLDivU6hYDwgobJEnM4PRiHtT1O21m2jHQvhD2uTlPQy
-D1XCv/1Rr3kTFFfwaOpo0wFOiBxtStXxw/b8gvP0j7HHwI/7NAIx49lIVLY+RE1r
-SlODnMF7dWDLnhEjyJoSCTxbCJ47rLZky2DM4oMc/81Zpw42PNYvNdBNQKuz/TpX
-0iqHf95PnSoRGTUPfNAjmKVn9WAW9jqDqPQ/ilDzHG3q6+0fJJRgytW3o0743oqp
-u/gCaM0YEXtPTvsJXgAK92HCxnp6ZosBmZo2/dkxe91POKi2NuB3RJJd6/Zzw1as
-+6v8Px2hgo/C8lVzwl+mVSMPPYULlsjV5Kiq+rTTBaLP4aWVGF5+E0TPvsU00eK3
-aZr244VqghKmXwitTunuY6FzfM01jOgnHRtGNOeuNkp6+z/lnHFkOZCP2e2TKw==
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/client-iam-internal/clients/iam-external/iam-external.crt b/deployment/environments/certs/client-iam-internal/clients/iam-external/iam-external.crt
deleted file mode 100644
index 2176c69b4751e667a2a8ab90f2c124e59517312d..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/client-iam-internal/clients/iam-external/iam-external.crt
+++ /dev/null
@@ -1,138 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 337 (0x151)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_client-iam-internal
- Validity
- Not Before: Dec 19 12:46:13 2019 GMT
- Not After : Dec 18 12:46:13 2022 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, CN=iam-external
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:b6:d0:c4:91:00:ad:3f:f6:7f:ab:b4:c3:1f:57:
- 9e:bf:36:6c:dd:1c:1d:46:b4:06:ef:6d:e7:41:32:
- 99:2a:07:f9:ae:ba:03:26:b2:35:ab:49:20:fe:e1:
- 69:25:54:3e:4d:12:0c:58:65:19:bf:e9:3e:c3:1e:
- 38:8f:f3:d3:be:36:45:73:5e:7f:9c:1c:a6:68:76:
- eb:33:96:e6:ed:64:58:ce:30:c4:d4:5c:88:90:c5:
- b7:c6:07:bf:ab:f1:66:e5:71:4e:ac:e7:5e:96:5c:
- 5c:27:9c:95:4b:5e:a1:7a:98:55:24:2c:cd:64:e5:
- 6d:ac:4a:d1:1c:fe:30:e2:8c:e5:1c:68:0a:8c:91:
- 40:b6:e0:4b:32:a4:43:4a:dd:f0:ba:e9:25:85:cc:
- 15:07:08:6c:61:7a:a5:5d:f5:1e:9f:f2:b5:cc:b4:
- 13:c3:24:25:5b:d0:94:36:d8:60:fa:8f:d3:4c:93:
- 00:fc:2f:bd:6b:4f:c1:66:5c:99:b3:e3:90:f2:4c:
- 3c:bf:1d:ee:a1:3c:3a:77:e4:80:19:66:97:6f:b3:
- 18:87:4c:92:ba:1c:98:e5:e3:f0:0e:45:e2:8f:7a:
- bb:c7:16:33:8f:dc:a9:a7:92:55:f2:62:39:34:61:
- 81:6e:8a:d1:21:41:33:54:cb:df:d7:9c:0e:8d:67:
- 32:5b:cd:d0:56:84:00:91:f2:44:f8:5f:61:aa:13:
- 47:2c:8b:51:be:e5:f7:04:ad:bb:45:29:1c:8e:b7:
- ee:cc:99:34:38:79:54:20:58:1f:08:3d:1e:48:86:
- 33:3d:68:73:ae:7b:1e:46:a6:32:35:13:de:e1:12:
- fb:fd:36:a9:83:b0:bd:2f:da:1b:58:9c:30:a0:e2:
- 2d:ba:21:8a:75:58:72:83:82:fc:97:8e:10:95:ee:
- d8:31:68:7d:e7:51:09:75:87:93:aa:75:36:49:2f:
- ef:54:49:b4:ac:dc:96:51:87:06:02:e0:af:13:9a:
- 79:5a:71:c4:4b:4e:98:04:70:9b:f7:09:64:fb:1f:
- d8:19:e7:4d:ea:4f:51:fc:57:ee:25:04:aa:b6:14:
- 56:95:c0:55:d5:c0:94:08:aa:81:b4:56:da:32:e0:
- 19:05:1c:8e:f0:38:b9:04:bc:83:71:c8:e0:9c:8d:
- 50:84:56:dc:0a:00:fd:f2:cb:e1:31:4f:2e:1f:39:
- 63:d8:78:e0:7d:e5:5f:5c:ff:a3:86:96:5f:48:4e:
- f6:ef:75:a7:a2:91:3d:8e:0f:5a:30:23:61:64:6c:
- 73:3d:84:81:9d:f5:01:7e:31:40:00:d8:47:f9:99:
- 73:83:0b:82:e5:84:72:32:01:a0:e3:41:6c:41:1e:
- 4f:a2:4f
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- Certificat Client SSL
- X509v3 Subject Key Identifier:
- 62:45:C8:1F:16:06:0E:9C:39:1B:BF:EF:6C:A5:75:B3:FA:D1:BC:F8
- X509v3 Authority Key Identifier:
- keyid:43:5B:E8:68:7B:38:34:7D:3A:D3:0A:A3:6B:6D:A5:A9:1F:A0:DF:79
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam-internal
- serial:01:4B
-
- X509v3 Issuer Alternative Name:
- <EMPTY>
-
- X509v3 Basic Constraints: critical
- CA:FALSE
- X509v3 Key Usage:
- Digital Signature
- Netscape Cert Type:
- SSL Client
- X509v3 Extended Key Usage:
- TLS Web Client Authentication
- Signature Algorithm: sha256WithRSAEncryption
- 95:6a:90:61:d8:59:17:5f:3e:f5:0e:2b:3a:1c:a3:43:60:44:
- 32:97:1b:21:57:60:d8:d9:1b:b0:f5:c5:b5:68:1d:02:6b:d3:
- 46:34:76:ce:c9:3c:70:df:59:f5:24:0a:da:fe:ea:c4:a3:11:
- 1f:12:19:04:4d:80:a8:cf:a7:9e:cd:9a:a7:b4:fd:8c:6d:61:
- a7:64:17:fe:25:5a:af:dc:4d:4d:93:a5:16:9a:8a:8f:24:ae:
- 4b:d9:18:91:7c:4e:fb:fc:45:ad:a8:9b:af:03:ef:ef:de:91:
- 3b:92:47:e7:91:c7:6d:3d:8f:a7:5e:a5:4e:46:3d:88:97:39:
- 3b:92:3e:12:c7:77:83:4a:60:3d:5a:84:88:00:c9:56:d1:b7:
- ee:f8:3d:e5:31:0e:6f:85:d1:55:73:66:96:e7:fb:54:ba:1d:
- 2b:45:46:73:e7:c5:f8:b9:86:40:2f:85:2f:49:77:1b:93:6a:
- c2:7d:84:81:02:bd:f6:2b:b2:03:a9:1a:1f:3e:b9:27:4e:53:
- 26:28:e7:c6:f4:0f:39:fb:6c:c1:96:f7:33:b7:42:5b:ab:4f:
- b6:f3:fa:c7:85:e5:58:7b:98:2f:c5:d8:c1:77:b3:2a:c5:71:
- b8:96:4d:76:0a:89:02:ec:eb:d9:6a:27:34:e8:90:3c:58:85:
- c0:a0:27:7e:99:3b:3b:d8:9e:9e:88:21:4b:28:ba:e8:39:e3:
- ff:8e:83:9a:e3:46:c1:e3:7e:45:08:9c:c0:4f:d3:b9:84:68:
- 59:f8:b1:26:bf:a9:0d:fd:59:0d:9a:be:b7:ec:50:8d:26:da:
- 26:a0:fe:1f:03:d5:6d:8f:06:af:eb:8e:fb:8c:d4:40:bf:44:
- 4a:22:52:e8:07:5a:d7:31:14:54:1d:ae:8d:83:e5:3b:d3:51:
- 7a:77:8a:73:7a:b6:ee:11:71:4e:87:27:d4:d8:b2:3d:f0:dd:
- 10:bc:9b:47:0b:bc:18:15:90:64:ef:0c:c8:91:3e:d6:2d:fd:
- c9:4e:4d:15:51:35:b3:9f:1f:e5:8d:b2:a7:c2:54:57:67:49:
- 83:d2:b3:9f:ca:bd:fc:19:de:50:f2:e1:62:ab:d4:fd:83:1e:
- c2:74:7e:ae:31:77:b7:8c:3c:83:65:25:9a:8d:ea:62:b4:a8:
- e6:74:7c:b7:a4:c6:f1:1b:6b:7d:79:a5:43:69:db:01:cb:a4:
- 34:6f:52:bb:6d:85:9b:19:b3:3a:37:b5:4f:67:c0:04:68:4d:
- 8c:23:da:4c:ca:7c:3f:91:78:bc:dc:e6:cb:aa:e2:ed:62:a3:
- 5c:8c:2a:6f:43:42:0c:b6:1d:61:36:66:71:51:eb:c5:45:e4:
- 81:4b:db:7a:f8:b5:48:c8
------BEGIN CERTIFICATE-----
-MIIGizCCBHOgAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwfzELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEsMCoGA1UEAwwjY2FfaW50ZXJtZWRpYXRlX2Ns
-aWVudC1pYW0taW50ZXJuYWwwHhcNMTkxMjE5MTI0NjEzWhcNMjIxMjE4MTI0NjEz
-WjBSMQswCQYDVQQGEwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEO
-MAwGA1UECgwFdml0YW0xFTATBgNVBAMMDGlhbS1leHRlcm5hbDCCAiIwDQYJKoZI
-hvcNAQEBBQADggIPADCCAgoCggIBALbQxJEArT/2f6u0wx9Xnr82bN0cHUa0Bu9t
-50EymSoH+a66AyayNatJIP7haSVUPk0SDFhlGb/pPsMeOI/z0742RXNef5wcpmh2
-6zOW5u1kWM4wxNRciJDFt8YHv6vxZuVxTqznXpZcXCeclUteoXqYVSQszWTlbaxK
-0Rz+MOKM5RxoCoyRQLbgSzKkQ0rd8LrpJYXMFQcIbGF6pV31Hp/ytcy0E8MkJVvQ
-lDbYYPqP00yTAPwvvWtPwWZcmbPjkPJMPL8d7qE8OnfkgBlml2+zGIdMkrocmOXj
-8A5F4o96u8cWM4/cqaeSVfJiOTRhgW6K0SFBM1TL39ecDo1nMlvN0FaEAJHyRPhf
-YaoTRyyLUb7l9wStu0UpHI637syZNDh5VCBYHwg9HkiGMz1oc657HkamMjUT3uES
-+/02qYOwvS/aG1icMKDiLbohinVYcoOC/JeOEJXu2DFofedRCXWHk6p1Nkkv71RJ
-tKzcllGHBgLgrxOaeVpxxEtOmARwm/cJZPsf2BnnTepPUfxX7iUEqrYUVpXAVdXA
-lAiqgbRW2jLgGQUcjvA4uQS8g3HI4JyNUIRW3AoA/fLL4TFPLh85Y9h44H3lX1z/
-o4aWX0hO9u91p6KRPY4PWjAjYWRscz2EgZ31AX4xQADYR/mZc4MLguWEcjIBoONB
-bEEeT6JPAgMBAAGjggE8MIIBODAkBglghkgBhvhCAQ0EFxYVQ2VydGlmaWNhdCBD
-bGllbnQgU1NMMB0GA1UdDgQWBBRiRcgfFgYOnDkbv+9spXWz+tG8+DCBogYDVR0j
-BIGaMIGXgBRDW+hoezg0fTrTCqNrbaWpH6DfeaF7pHkwdzELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEkMCIGA1UEAwwbY2Ffcm9vdF9jbGllbnQtaWFt
-LWludGVybmFsggIBSzAJBgNVHRIEAjAAMAwGA1UdEwEB/wQCMAAwCwYDVR0PBAQD
-AgeAMBEGCWCGSAGG+EIBAQQEAwIHgDATBgNVHSUEDDAKBggrBgEFBQcDAjANBgkq
-hkiG9w0BAQsFAAOCAgEAlWqQYdhZF18+9Q4rOhyjQ2BEMpcbIVdg2NkbsPXFtWgd
-AmvTRjR2zsk8cN9Z9SQK2v7qxKMRHxIZBE2AqM+nns2ap7T9jG1hp2QX/iVar9xN
-TZOlFpqKjySuS9kYkXxO+/xFraibrwPv796RO5JH55HHbT2Pp16lTkY9iJc5O5I+
-Esd3g0pgPVqEiADJVtG37vg95TEOb4XRVXNmluf7VLodK0VGc+fF+LmGQC+FL0l3
-G5Nqwn2EgQK99iuyA6kaHz65J05TJijnxvQPOftswZb3M7dCW6tPtvP6x4XlWHuY
-L8XYwXezKsVxuJZNdgqJAuzr2WonNOiQPFiFwKAnfpk7O9ienoghSyi66Dnj/46D
-muNGweN+RQicwE/TuYRoWfixJr+pDf1ZDZq+t+xQjSbaJqD+HwPVbY8Gr+uO+4zU
-QL9ESiJS6Ada1zEUVB2ujYPlO9NReneKc3q27hFxTocn1NiyPfDdELybRwu8GBWQ
-ZO8MyJE+1i39yU5NFVE1s58f5Y2yp8JUV2dJg9Kzn8q9/BneUPLhYqvU/YMewnR+
-rjF3t4w8g2Ulmo3qYrSo5nR8t6TG8RtrfXmlQ2nbAcukNG9Su22FmxmzOje1T2fA
-BGhNjCPaTMp8P5F4vNzmy6ri7WKjXIwqb0NCDLYdYTZmcVHrxUXkgUvbevi1SMg=
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/client-iam-internal/clients/iam-external/iam-external.key b/deployment/environments/certs/client-iam-internal/clients/iam-external/iam-external.key
deleted file mode 100644
index b69bee4525e2186ab7e61c5d31a37becec4e9d23..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/client-iam-internal/clients/iam-external/iam-external.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIBcFse3mhmTgCAggA
-MBQGCCqGSIb3DQMHBAj1O0AFZpxYMASCCUiJ8R63LjFiIdFSFEEXBOTJcDoXdpDU
-qXh/sX83yweU3NIGXq3QMzI/YeCD++J2/OS46CXk/DrvtusCBycZ27G4y4/5E+kx
-cx8VOJ7nPTVt1ZgvjsYpQQRp2hQqy9/oaNS7no+grRpqXCk+q8mmfTIISk6mSYmN
-E0YoBB3ZcO6HezeDmeD/tUiYE9Y52OsR2UOw0B+xhWpMHDDrXJMfRQjPBRMjNoMK
-BmUezqvBbVaOJ7ORW+sKzhwWZwyGlxCh9uY/S+HqMt2sxFKklrudEXITSObY1FZz
-7dlpsAzbyMv1wL3H86NmWaFrOYB5MyvGUEi3j437RAUeoS8An/Lt7UFt2xHJlAnh
-NFT3QrSM6RhPhBTXaiNYGVyTB06a0+EBmYn+tcAVmqkpGnN1N/W07/9r9wxcUh/m
-SUKP6dfOZ8elAd9TjRNZHSYVTpZjC8htdNliLxd34xzKfHOxyum1gk3N7VtwvRwL
-3el595FNOXe0aFgxVATtxmtn2myBnreQOY3R6Ax6SgTpVMbe7swD4+cNX3waqxK2
-aEZOXx+em2UEhwVBkZXPz0jyxfyH61PnYS0CrpTIHQrxF8N6F3hzCBD++VR71zXm
-4+wfJj58ebrReuVjyQ+XOpJkCkK7Xo5cOOOH81vGEJA6PEhIZdQUTieykFxiow14
-+/auwYUO13PrrkXKITEEDABFCeRHCSyjDIs0jG60Io1X89TD5J3N0avZd9nFYJTB
-JQ+fbV36vSpzymJ2E8x94jIzDwffQqelgZGZV7PUaxMiPg7X3zwwd6Ul2I9N0Xd5
-DK80rTsgCOro7L2LwiFITlK/PEX4m0UiVkDpasUMkwFtZSAVEPqM8Mi9chqf3usK
-CFEL/jWuZWRVbYjLJxEyC+EVpHIvjzS67QJjncm1BDjWzFtEFCpyAnhnlF9FFu9A
-dNlJjdA0/uCACpIF07JEv6vmrUHVXOJEVLCZE49sdu6tyi40E1eJzmEA9/vECEcb
-U5OClotlZN1JAYkfWzLnn7obVWADgzyOJej2u2X0fwlTjgx8BqIBevJTFfG7uZaB
-6r9cLEAIZPmJjYJAFsdrWqpOQp40TCACoZxqMAJXmZTp45+PC1Qlv7NeX8pKcoAi
-HHDSehb2hu5lGrgvUB0RnC9NlUWwUtmJMtElfK1J2mYqMgDj30LmOvwhB5xyvt5L
-BzhYgCZ1ujQG4Tfh15Zr+M+68HkwzHOatL3xATpEPe8VEtYbDJh7sMpjNUnSbdzT
-LG9lA1cDCf+mF5ziprEGslPsxzSK41oMRvwyJ31j/KTxiErcVrER4v51vMDed2ja
-jOQYN/RP/vsIZHZmHR3KRWSKOo5WyHRvD7eS72nUbFZHzkcDW9UvvEC7MyBW+BSC
-XnUVm5nwMYgKehe24CF4gv0nvsoJviiUH4h54WNUhYbzIvHilo9PoQuFlbDBufU4
-AXAGZRllXdSHJquTtFt0xTjGIZzJ2iCFGmqIaVI4RpKd8RboOzyKVyFIV8J8D06y
-BUopyPV3OmTKogUK7WLHwEAwvJ/oYLSqIYn5iTH20JSGj4wEYcco7N0WHhyxUalx
-DwoWTMxyOHTY1SXiYCWAK6UjoHvwl+a+lJlg+qad2vr+oS+9kMnGAlmqxRHa6IAa
-nQI6SfB6WB03Nu5WD5isZtvwTuLmxezKENQQMJfpwm8FA0des+UMsvUHM/kKfQTz
-1xpyBcmwGzkRfx0a3rZUaRxej8Ad+spSXFjoFeG53X+mFbeFgwdjgR4XBYSk0I/I
-HDdujkRULCY3XfORXVyT3WT5RH9GhcwO05Y8Dgvy4z+9YJfnBijEofDuQxjEhcZ/
-3sBEijjT7UL2hpHU7Nj/nF2EHe1jHNAWeJc1LRgqVs83aD1y3r/WNnGMFN3OHJNg
-A1LIqn+BwxLXtiWjV/Nz9En38HZosdtO5f3gMevjP14R4Ja3WNhuXodQsFoeylHW
-i2HNC7bzicmL9HPbm2Q0cbhC9iN+cGBeSO+wAEq8Kg3xVLK9rq9/EsHzaVx8BYpN
-qTmR6i3I/tQJaJy/nXIehcM9haQ4dPqXgSe2ryS/xehnaRn8T2BP11nXxCnds8tB
-hWbpPolDF61XmN8z8ftRX6JTrjgE5srjjybEE3VoRzBLW+ulWVP7yak3xsNpmzEH
-1RfpfytTeXzlfqnEYqjQAwFqj0pJN6TbNhyUnjK6LHJvJbEwKpinA+EUE5eYkgTq
-Jz9ctKpkjWTgy9nFw1o+S5H9Fe1XMC3WzpW+zUkwuAawBExVpYo5JHs6ybLE3fZF
-zMe3T6Bfok36T9yNh+dAX8yDwHJxDWnFhiqTrZfqJf/f/ZapGxzV2ZCwNTOfi37H
-MpUka9K21qNUDHctZw8+bzoMUQL8QwmbH/oTkI+8YtwfZto/RpWut+wNGW49Kaay
-EbYAg0lH0A12+7I+783AGANNaVYE4Nuf1Ur3+MZkmHHwqW21q3rv+OZSZ7xMJewo
-Qvc+ECmCxaJRDSKgJffkD7go6eNn88vNMuRnoHX0d2B2Ijy9Ta3+bcG2KQDLYxsm
-u86KAjUnnK/lCZBxtO7+6bzceMLdyW/NQ1w32++7iIr7t7p3MKx/gz0QHF+yYUws
-QKovDYILPv6YHgf+lHD78hLVqvjbaAvo68W7IRRE+cXsdXe7g+TWqapNg7RltnOq
-Byb9q4IWhaCvdRvl5/YdCOegG2BVrbqpEkYzk4qhiYxdyctpOsUFPSYv/U250Ej3
-A3dqqhRnXfOLA3rKtYyhJnxKx8FiNweOSgSro1fO1KYZsItKZXQXwADi4+usbETu
-4SMZG7LCHm9U+9X8tFKbB6eAdx/O9vmVUUGgzaon2LRqR4Uwns5z5auQP8/QUtD0
-z9TsyAMogF8HQaplMQzT4RI3vyApieyBDsXdxraBJwsZNhm1htBCHeebJGgYu+YW
-9Hbe5+mTtY+xzpfJfurmw0Wc3y1e6dNG8LvGNYk6QIiYpdGCyB75xAVt6GbFL2X0
-hrU7G+Cz8P/xwknxwcI9YASzx3CPpvahCBm5TxOm5/bnDJtJg2b08pCtkFPKEQ19
-23Xos7hgIgYY6A3QG0dxZzmkUAaFmpW51Xu7A8w0pxitcekRe1xrl0UkibHt0a0g
-luBGyfbZfC8ouyTCiQiFRH8C/+eqArujx89Uh6oADlaewq/nq0Ib2c5o6nZK6xAa
-2uo=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/environments/certs/client-iam-internal/clients/reverse/reverse.crt b/deployment/environments/certs/client-iam-internal/clients/reverse/reverse.crt
deleted file mode 100644
index 51148c20121c2acc5ebe0cad4ec5a2aef13664f1..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/client-iam-internal/clients/reverse/reverse.crt
+++ /dev/null
@@ -1,138 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 334 (0x14e)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_client-iam-internal
- Validity
- Not Before: Dec 16 10:45:25 2019 GMT
- Not After : Dec 15 10:45:25 2022 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, CN=reverse
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:a0:c1:c7:90:8c:18:f6:aa:22:3c:3f:7e:83:51:
- f5:58:0b:ee:ed:60:8d:7b:c2:80:a7:c5:19:1a:64:
- 53:81:d5:a9:11:f0:f3:46:c7:88:f3:49:6b:66:22:
- 46:8b:70:61:72:28:0d:dd:06:77:4f:1e:df:1b:0a:
- 04:1c:3a:8b:23:d3:48:80:e7:89:03:7d:bd:fa:2b:
- f2:1b:37:ef:80:35:74:d5:6a:65:23:b6:19:18:c3:
- 59:90:86:e0:b8:3a:de:5f:1a:fe:b2:b3:a5:9a:37:
- 54:ae:6e:43:8d:23:b8:51:d5:06:82:2c:44:d5:bf:
- 92:e3:a6:c6:19:52:53:a1:17:6d:c0:ad:b0:c3:da:
- d0:82:5e:c4:90:ea:d9:03:25:8d:da:a3:3d:dd:88:
- ac:86:e9:2d:58:ec:c1:f2:2f:6a:8b:92:30:9b:82:
- 51:06:d2:aa:65:c5:72:93:55:7a:76:c3:e8:e0:7d:
- bb:ea:49:8c:85:2c:af:d4:ba:b1:0f:7b:0b:b4:88:
- ea:cb:8f:eb:e2:e5:bb:00:dd:92:3e:89:3f:37:92:
- 65:7e:68:42:fd:3b:94:12:a8:9f:13:fc:fa:ca:eb:
- b6:68:c7:61:34:b0:01:62:73:69:ea:30:ac:0d:3d:
- 0c:64:24:04:0f:a9:7c:d9:72:5f:b1:63:fa:25:a9:
- 1b:dd:d9:43:f4:ff:e8:50:d4:26:f8:cf:3c:b1:eb:
- 95:0e:a2:42:73:a7:ac:00:5d:01:ad:a1:fb:0a:b9:
- 4b:8d:08:b2:53:d1:82:fd:93:63:47:d0:dd:7e:fc:
- b5:3e:ae:f4:8d:d3:81:fb:89:6d:39:d9:2c:26:6c:
- 93:70:78:fb:9d:c0:fc:7c:8c:6e:2e:c3:e7:6d:01:
- 02:58:dc:92:46:b8:b5:2e:e6:81:4f:28:7c:13:0e:
- 29:35:35:2b:bc:26:35:34:49:9f:7a:fc:5b:c4:84:
- 49:e1:5d:08:48:5a:9b:3b:d5:28:2c:6a:56:89:2f:
- 5e:ac:91:60:03:a5:99:5c:e0:67:80:af:ee:45:82:
- 8d:96:3a:e0:f6:2d:90:19:7e:b7:81:79:b1:bd:5d:
- e5:f3:ae:ae:6b:88:12:5d:f7:75:fe:65:d7:5a:08:
- 9e:66:64:6f:75:f8:f9:d7:44:11:a9:be:35:5a:b1:
- b9:e2:b4:bb:4b:4f:f1:68:e7:ac:04:03:f7:d4:bf:
- 4a:64:9c:4e:40:c5:bd:29:8a:37:0e:ff:02:e6:d2:
- 90:ab:be:37:72:51:dd:c0:47:91:f2:fd:8d:97:7d:
- da:a8:f1:3a:da:bc:45:9e:5c:33:1a:b9:19:1c:57:
- 6d:89:06:8e:23:74:e4:71:98:38:0d:8c:87:5f:5a:
- e4:4a:b5
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- Certificat Client SSL
- X509v3 Subject Key Identifier:
- 8E:94:5B:49:6B:30:50:9E:AF:07:5C:C0:8B:B5:A9:56:32:18:B5:8B
- X509v3 Authority Key Identifier:
- keyid:43:5B:E8:68:7B:38:34:7D:3A:D3:0A:A3:6B:6D:A5:A9:1F:A0:DF:79
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam-internal
- serial:01:4B
-
- X509v3 Issuer Alternative Name:
- <EMPTY>
-
- X509v3 Basic Constraints: critical
- CA:FALSE
- X509v3 Key Usage:
- Digital Signature
- Netscape Cert Type:
- SSL Client
- X509v3 Extended Key Usage:
- TLS Web Client Authentication
- Signature Algorithm: sha256WithRSAEncryption
- 99:70:e7:49:8b:2f:27:b6:d6:73:d5:ed:b5:b1:2c:4b:88:7e:
- c1:73:41:9a:b2:89:b2:54:dc:6a:3b:7f:1e:29:19:96:7e:04:
- bb:16:77:3b:87:07:aa:04:78:e1:bf:fc:ef:0e:1d:2f:73:99:
- 91:36:86:a1:fd:13:eb:54:29:83:d6:67:08:7a:84:d0:b3:d6:
- a3:c3:81:d8:bd:fb:ca:bf:1d:ed:fe:37:2c:44:7e:f1:e5:50:
- 41:70:f6:2f:b8:98:92:60:4a:2e:42:17:d3:4e:31:dd:eb:cd:
- 2c:5a:6e:b5:7d:51:53:76:78:36:10:69:8a:64:3d:d8:7b:6b:
- a0:74:91:d5:01:b9:3f:f4:50:be:04:34:ae:7f:0c:24:7b:6f:
- 5c:78:ce:c0:17:6d:a4:42:a7:8e:ce:fc:b5:68:ec:a0:4c:46:
- 52:e5:f1:69:15:61:8a:6e:5a:7f:93:07:62:cb:dc:26:80:65:
- 7f:72:ad:c6:0d:c0:c7:90:37:b5:f3:69:bd:15:b6:b4:e9:67:
- 85:53:7d:42:9f:1d:3e:1b:f6:bf:b7:d2:1e:23:80:61:8d:94:
- 9a:bb:72:f0:b9:87:c3:2c:b1:6a:9c:cd:ac:ae:f7:e2:5d:ae:
- 89:27:78:55:d0:d9:f9:7d:db:c9:23:2f:a1:1a:4b:2f:f0:2d:
- 4b:14:b3:93:6a:85:9f:d0:7b:db:eb:f2:02:d8:42:ca:dc:c2:
- e9:3e:51:43:fd:b5:0a:76:eb:f4:ea:68:b6:a4:71:52:62:63:
- 70:8f:f0:ae:f8:62:86:c3:af:24:ee:ce:13:8d:a7:24:8e:42:
- 94:3a:d8:c7:31:bf:45:40:b3:44:f3:d5:88:ad:c5:0d:61:0d:
- f3:52:29:9d:22:25:a5:73:6a:84:e6:f7:5e:51:24:0a:81:c1:
- 37:73:62:67:bc:59:f8:0e:5c:b9:65:b2:87:76:8a:28:b2:88:
- 5c:4d:82:3e:7f:65:f9:8d:ec:a2:27:37:76:4b:31:81:43:48:
- 03:f3:f0:03:60:06:38:ae:39:e7:9b:f1:cf:63:49:ec:f1:93:
- 4d:12:39:a8:7e:4a:07:2d:d4:92:5f:ec:75:f5:fe:29:66:2c:
- cf:f4:df:75:75:20:ca:16:5a:88:1f:9d:93:4a:77:12:ce:95:
- cf:15:7c:3f:66:63:6d:a3:bc:3e:53:71:05:cc:2e:c8:f1:77:
- de:89:a3:38:77:95:df:c1:f5:5f:75:21:44:68:14:92:e8:0e:
- c6:27:1f:07:03:d8:27:6f:fd:fc:fa:4e:00:07:98:0d:2a:10:
- 94:2e:49:74:70:61:36:16:ed:cc:52:1d:08:e5:45:e7:63:6b:
- 78:2c:82:57:57:52:57:9b
------BEGIN CERTIFICATE-----
-MIIGhjCCBG6gAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwfzELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEsMCoGA1UEAwwjY2FfaW50ZXJtZWRpYXRlX2Ns
-aWVudC1pYW0taW50ZXJuYWwwHhcNMTkxMjE2MTA0NTI1WhcNMjIxMjE1MTA0NTI1
-WjBNMQswCQYDVQQGEwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEO
-MAwGA1UECgwFdml0YW0xEDAOBgNVBAMMB3JldmVyc2UwggIiMA0GCSqGSIb3DQEB
-AQUAA4ICDwAwggIKAoICAQCgwceQjBj2qiI8P36DUfVYC+7tYI17woCnxRkaZFOB
-1akR8PNGx4jzSWtmIkaLcGFyKA3dBndPHt8bCgQcOosj00iA54kDfb36K/IbN++A
-NXTVamUjthkYw1mQhuC4Ot5fGv6ys6WaN1SubkONI7hR1QaCLETVv5LjpsYZUlOh
-F23ArbDD2tCCXsSQ6tkDJY3aoz3diKyG6S1Y7MHyL2qLkjCbglEG0qplxXKTVXp2
-w+jgfbvqSYyFLK/UurEPewu0iOrLj+vi5bsA3ZI+iT83kmV+aEL9O5QSqJ8T/PrK
-67Zox2E0sAFic2nqMKwNPQxkJAQPqXzZcl+xY/olqRvd2UP0/+hQ1Cb4zzyx65UO
-okJzp6wAXQGtofsKuUuNCLJT0YL9k2NH0N1+/LU+rvSN04H7iW052SwmbJNwePud
-wPx8jG4uw+dtAQJY3JJGuLUu5oFPKHwTDik1NSu8JjU0SZ96/FvEhEnhXQhIWps7
-1SgsalaJL16skWADpZlc4GeAr+5Fgo2WOuD2LZAZfreBebG9XeXzrq5riBJd93X+
-ZddaCJ5mZG91+PnXRBGpvjVasbnitLtLT/Fo56wEA/fUv0pknE5Axb0pijcO/wLm
-0pCrvjdyUd3AR5Hy/Y2Xfdqo8TravEWeXDMauRkcV22JBo4jdORxmDgNjIdfWuRK
-tQIDAQABo4IBPDCCATgwJAYJYIZIAYb4QgENBBcWFUNlcnRpZmljYXQgQ2xpZW50
-IFNTTDAdBgNVHQ4EFgQUjpRbSWswUJ6vB1zAi7WpVjIYtYswgaIGA1UdIwSBmjCB
-l4AUQ1voaHs4NH060wqja22lqR+g33mhe6R5MHcxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxJDAiBgNVBAMMG2NhX3Jvb3RfY2xpZW50LWlhbS1pbnRl
-cm5hbIICAUswCQYDVR0SBAIwADAMBgNVHRMBAf8EAjAAMAsGA1UdDwQEAwIHgDAR
-BglghkgBhvhCAQEEBAMCB4AwEwYDVR0lBAwwCgYIKwYBBQUHAwIwDQYJKoZIhvcN
-AQELBQADggIBAJlw50mLLye21nPV7bWxLEuIfsFzQZqyibJU3Go7fx4pGZZ+BLsW
-dzuHB6oEeOG//O8OHS9zmZE2hqH9E+tUKYPWZwh6hNCz1qPDgdi9+8q/He3+NyxE
-fvHlUEFw9i+4mJJgSi5CF9NOMd3rzSxabrV9UVN2eDYQaYpkPdh7a6B0kdUBuT/0
-UL4ENK5/DCR7b1x4zsAXbaRCp47O/LVo7KBMRlLl8WkVYYpuWn+TB2LL3CaAZX9y
-rcYNwMeQN7Xzab0VtrTpZ4VTfUKfHT4b9r+30h4jgGGNlJq7cvC5h8MssWqczayu
-9+JdrokneFXQ2fl928kjL6EaSy/wLUsUs5NqhZ/Qe9vr8gLYQsrcwuk+UUP9tQp2
-6/TqaLakcVJiY3CP8K74YobDryTuzhONpySOQpQ62Mcxv0VAs0Tz1YitxQ1hDfNS
-KZ0iJaVzaoTm915RJAqBwTdzYme8WfgOXLllsod2iiiyiFxNgj5/ZfmN7KInN3ZL
-MYFDSAPz8ANgBjiuOeeb8c9jSezxk00SOah+Sgct1JJf7HX1/ilmLM/033V1IMoW
-WogfnZNKdxLOlc8VfD9mY22jvD5TcQXMLsjxd96Jozh3ld/B9V91IURoFJLoDsYn
-HwcD2Cdv/fz6TgAHmA0qEJQuSXRwYTYW7cxSHQjlRedja3gsgldXUleb
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/client-iam-internal/clients/reverse/reverse.key b/deployment/environments/certs/client-iam-internal/clients/reverse/reverse.key
deleted file mode 100644
index 7db0d45d58dee0066add3f4da23d3c22b3890ad4..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/client-iam-internal/clients/reverse/reverse.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIqyfNOAH/RuQCAggA
-MBQGCCqGSIb3DQMHBAh5kYzHVr1gtQSCCUgKnuogXmhx65ma25v6m9iAHrF9Ld6r
-2t5pokTrLTK3/tGKYZs6wYr9BnRxhbGW8h9culPxxxRtrnQ0SPiERDrh8H5nP7Qb
-vRPaefCa3J66wlHbUNXY23veXnxaSgLXKYS6b09VfbPW//GXyc7ASL4tGvYvC+p1
-tEgfJ1tsH6CoEAOWjdsTQgC1YRAHKzjQDQ0aKowH1AUeE/+9od+SLbWUgMr7zyao
-LmYWlncVtq5JIy1PmXT7fg6gVrSa1yyfZCedLhXAsCpRuV42hiHYUjTgBkQCodhc
-k0sSA5AWvXi2jli0+oTp+jBWf8oZKidMZ8rSUmEFTuDloL4tSXvMIPH6KGFxLVR9
-KjrhIgm+gbndxVfWyz9u8cxez4tdwinKBElIfCbdx7lqaPttmUSct5DG/i46Cb8d
-HfsLSX3OS5Nfu9dYvK+KhTzWF72Exmkd+jwHtgbXjQUv3FZN4sHF0gLLKsA1i3gJ
-yxUDIbq3d8LlXaaG0bS/weQxvMilEO2dw71y3fgeuFVPnD/4v3LduvfyaqTvz9Fh
-Jy5m/68u6/otChRvLIfe9qaRPopHuLxvveA/BSpkfgkZXNQf1XmOm21pNJ8LW+v1
-QZijcO86Xf15N+RN/EHT5Dfm8CrWEOvZE6DgP+pMMseBSosYEo3Wbs1vA3oGUA9I
-YVoBP0OGYGqWMEwciRlhpOH6/fhuQvUiB+ZETcOot8I8Kw9PT4uhI5Hp6TUGJKZ9
-Wulh5eu29wVp+oWF4/7LZZpQh3xkZa8xrpihmkdfql+LbcYeUX9XY0sVfJ88bh1V
-xCTUBMNVrAsOyApuZkDCXciioHrlkJ6U96bjJbhgyQJiUBgspwUrKS25JuXtq5e+
-vy171mea6Ti11oSets2Tgh0fyDInytV+vYDpCRZG9r7BQrNjAhfmLOwOQ1/DlZW4
-bqNMlnu9vLd0kFNx90jEB6NejjX5azPyxsa806Ls3X4t/0T2w7UDOXBLX2s0bnFf
-H8KqNp4RS+wO31CjAKMwkT4hY45TQt0FfDU+R9Qc6daTJb0jpz4gbYTjETIt6F3p
-fKipCinZu/KY0H3UO28NvJ7xmLW/xPFoPyEgeFjZkzu8775dTP6s8G/i+5px93K8
-lMIZ4mGNqlSAZgpzjQ8oQl06IDZXhM3vA3pqXPyyQKmeUf4gixh5CaqK+D/IUao0
-/mp6jm1WM+wXMczhrHS2HAAorABQAChIWcuaCs2KJwsdF/WcdofTnpI0qMZagjX+
-4jyINZaciY8IMLploBn9Bg230+7ZAuD/KOof0TY8UhgtH3N1QbKywrkpLvtOBrms
-2hgQ11lPe3AoODtL3Kuf7voFfG11RJAhdQp5T+nrpvv9WFC4IEvltjoxf2d3wz+t
-sSED/zYXUkvBxDsJsANjaOa17OG0Ac7iDzRt1I/2SFiHGWkJ3t3+GzUpchYjzml6
-D5liOgZBd8qsp7sEU1dibqbZryIRNzkDwCBPBwXuH8DWkIu8tF1zDd85HN070Nz+
-LZE0j94qdUjTeC8sg3bkEgL3/BowHcKnw5PM+OZhhLYnJbZpy3If1U0SiThnp1EF
-TGONiyEs/xKY5x7BcmWzboPY4wMpJAZyBcMmCJcoeXBAAc5M0qGjuY0o6NzGnSYd
-u14OjEuo/8lsNU/tjUec7tAqIpq9q/fUCc7SeNn0UbO5g6KY11hvFVkcOkj0wWmH
-jSMp95Wj6Pe6ow8AvRvYvfSMZvT1+6LKeMIUGRJ/5SWzDcGx18N54C+9x25r7R6i
-Uh2y0QxJ3uRA+TRpGcdpYifwcPqlmRVL8LighEBF3D52r1T+PI2zYDmhd+RxkS6O
-N6FPrVTGaYrx3GBXX/DEBBMhOosj6cMgyrXrYG5+3yHsEc79y7u1EA0PlKkEcxz8
-eZqTFfW+Am2Faci4FRyeheMW5SJ0j7AIksO2sNfLs6RIm6HV8cDlkD8Zj04cHnpS
-dQGEWWd/049oX5DKQwGmgo4m6e6Nicam4nGz5XPvVbKbXXBcpCarXxMuu9uzFVsf
-xdw8+Hj0DzDGEHi4YGwpfOrtdZyQoMnKmlExTWL1odQahtgkBTXeWIeX+XW3xe3F
-oCnd3FOEimOxdtpGh42zKJ0+TzL8YRisG9JYfJrNDMhi/ITIsRdz7oZ/n9lSoeq/
-SHIfdKD4lkSuusVdAUqABaW/3wFY08/UoQrkFAw+Zbzpmm0OMepmwg/1OIQxojWK
-u1XNrmPK3AG6asEaP3fJacwRgG1bGfb0lX3MRCWVV7mVu1wJJlsucmagLiyx4FQJ
-1Y/U0aosyylybZwROKJODY1KRNljWIBAsLaTQFxR4QuFAunZnyShCPNaTFnSMmVI
-WlB+0tXVIomcP4VgOL1pdnvVeqd3fvLSsNDzmyAuL0OUJynzS8KBCdXVUoxWNj0z
-1/Rj4xgtbMs/CpdEBjbZ5I1/uoUhLroAf1KW81kexk7+9GC8teqOtQNAm2Ay/l6D
-U4AFHOZ45tRvnRPnTFdw8rG7ewGj64wlCSTdwwiqaD3vOR8OtRSoXw76EnRVakko
-KJ3vWbCqukX/5RnqigVjGVqlK3pAUIBICyjG6yDt90uVkjNkY/Bnhviv3Ge+2sFU
-v2JUiaY64oh2O/D20YXfsUT0Gv2F6Sfwu73eL0nerZSQTu7IHuSnl2dcw5SUbqLn
-/ZcpVhw3Q5/l7kvdiJwggf7JkYbAERjt5ZUgKn6VJQQkBE7WDguCoy/owrt2wA4/
-PuU3tnfeQlykJUMYTmav1ZB6Q3AgIkrvNGGxlno9+6aJ9NanpBaC8C8y5JLg+jCV
-v3318VrpIIiprvp18Pz7fQDCdW6iDV+VrguOWzBXGB0pY6MhOwOPhO6/HTxQCzyO
-gwlwxQPr+iTRwfrykc0N1DnwOTnhE0fti4XZkH6xz1Tb/2W3qcep4rCywMek54af
-fuPdBYfMV1zsLuqTHmYPhvIvz996nMq1n/TNXUAnqQS0WhcAziSfI3XZgTSk1HZ3
-VUfGJXW0G0ln8gOrWZp/JbKfzqKUPtDUXr0AmJ2l0tDJVfxcxFOV/aiZax09axsA
-7sGxz0MI5+pG3B5c9d3XGVYeJNKBfjlkQZ3NpNyloomdCc4I2Rw7EBoxargPYFAu
-7sWbHeVUcfO+L6wbdS+2lroMc2Wazrh61Oj6qepkMrhkRMNf+99KtTF3cXTuKx9A
-uhE=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/environments/certs/client-iam/ca/ca-intermediate.crt b/deployment/environments/certs/client-iam/ca/ca-intermediate.crt
deleted file mode 100644
index b89ab7a4dfd04f426db9d2e889b7990d42b5ecb7..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/client-iam/ca/ca-intermediate.crt
+++ /dev/null
@@ -1,136 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 333 (0x14d)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-iam
- Validity
- Not Before: Dec 12 10:42:46 2019 GMT
- Not After : Dec 9 10:42:46 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_client-iam
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:d0:0d:94:2f:89:71:05:49:bb:cd:54:4a:a9:8b:
- 96:41:92:03:ea:2f:3b:77:84:e1:2e:4a:8b:75:96:
- 57:b8:7e:ed:bf:53:49:d6:73:6e:02:7f:cd:f8:dd:
- 7c:9c:c4:a2:9f:d7:ce:50:23:f7:be:00:af:0e:50:
- ef:2f:cb:f6:0d:e2:57:58:21:e4:9e:3d:16:f5:1e:
- 31:70:09:ca:0e:df:2d:59:1f:de:e1:d0:d4:fd:c9:
- d9:a5:5f:ec:08:b0:d1:08:6e:46:58:49:33:0a:17:
- 39:53:9a:e3:83:9c:10:18:a5:55:b0:7a:69:1f:8d:
- 9a:da:00:ec:2f:c9:5e:28:b5:65:69:16:8c:10:a9:
- 3d:c7:f7:04:5b:4a:00:5e:27:06:c5:a4:7e:fe:0c:
- 65:57:a5:ea:cd:b1:61:9b:37:74:06:e8:9e:23:08:
- 2c:31:e3:fb:d7:80:5f:1e:ad:d4:ea:3b:a3:5a:c3:
- 00:61:bc:ba:15:fa:c8:4f:cd:df:39:c9:6e:e6:72:
- 8d:cc:de:ea:ed:39:05:10:31:fb:96:8f:6f:b2:71:
- b2:28:37:2e:23:fc:0e:06:5c:cb:34:f0:6a:72:67:
- 64:a3:34:18:0e:68:0d:d6:df:22:fd:f6:b7:d2:28:
- eb:c0:f1:ea:7f:80:5d:91:89:ea:4d:69:da:35:d0:
- ff:6d:76:c4:bb:44:9d:fe:aa:c4:38:55:b2:e9:7e:
- 3b:79:e6:6c:32:f5:59:12:11:9c:e9:19:ba:c4:62:
- 8a:2f:f8:a3:67:c9:cb:58:99:a4:8b:cf:03:1f:f3:
- 35:dd:0a:16:55:20:3b:b4:dd:9e:1f:1e:d6:5f:9e:
- 4c:62:c7:85:21:8c:2f:c5:e1:08:dc:be:ba:ea:5b:
- 68:9d:82:8a:0b:47:e8:60:53:73:4c:0a:3d:92:76:
- d4:b0:22:4e:2d:a4:b5:5b:f5:ec:bb:ab:24:24:76:
- 90:a0:37:54:78:7c:5a:e0:29:e8:1b:44:2b:6f:75:
- 23:bf:a2:18:38:44:1e:a2:d1:28:92:d2:d3:a6:2f:
- 28:7d:0e:ce:1c:ab:a6:aa:71:5c:aa:34:cb:84:b7:
- 29:d5:b3:fa:77:c2:8b:15:60:11:7e:59:2e:0d:f4:
- 2c:2b:e8:c0:4d:79:1f:1b:0f:58:40:6d:4c:fd:4b:
- 7e:4e:e4:8a:3b:45:0c:c2:04:56:7c:1b:50:83:0e:
- ad:af:87:e2:17:a3:06:42:d5:47:47:8e:e4:1b:d9:
- 6f:ec:56:c2:c1:b2:18:14:24:b6:61:9e:a9:7d:4a:
- 63:b6:2f:f0:39:8f:39:99:99:8f:64:4c:5a:cb:b5:
- 81:35:2c:f4:a9:70:bb:eb:5f:2c:53:ef:77:fd:17:
- 24:4c:17
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Intermediate
- X509v3 Subject Key Identifier:
- 7B:18:08:2E:95:8A:91:4C:77:F3:8C:25:18:0E:F3:91:60:4A:7B:D7
- X509v3 Authority Key Identifier:
- keyid:55:E4:84:92:4D:2F:90:1B:CE:E4:F2:3B:D0:81:D1:20:C4:0A:1B:DC
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
- serial:01:4C
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:0
- X509v3 Issuer Alternative Name:
- <EMPTY>
-
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 0d:2e:65:5c:00:6a:4d:d5:c1:11:ea:2c:27:c8:7b:c8:64:fd:
- 65:8a:ad:47:c2:25:e3:c7:ef:0a:92:4a:58:6e:d6:ce:13:0e:
- 65:b1:a1:7a:b0:dd:3a:16:96:59:c4:62:e1:4d:91:82:7a:be:
- cb:a1:4a:42:7a:1b:75:14:74:7e:13:fc:6f:17:72:6e:7a:fa:
- 61:5d:2b:c9:98:5b:14:eb:a0:30:98:26:f0:97:03:7c:9f:a6:
- 04:42:ec:ef:38:ea:ee:dd:cb:e9:58:1b:f5:f1:93:e2:19:a8:
- 17:8a:55:b2:4a:b9:aa:d1:d8:ed:0c:47:04:78:00:0c:44:1e:
- 6c:3b:dd:ca:71:4a:83:09:4a:e6:27:46:36:bf:0c:85:25:ee:
- 37:e8:02:13:01:05:5b:b8:a1:5a:04:c0:6a:b7:77:8f:5a:3e:
- d0:f6:af:1c:dd:35:86:40:10:6e:dd:bd:db:c2:ae:ac:65:b0:
- 2b:35:7a:92:bc:d1:07:c8:8a:ba:70:19:c6:18:0d:1f:4a:d0:
- 77:3b:e8:dd:9d:06:06:ac:8e:5f:b4:41:0a:49:88:d5:87:d8:
- c1:8b:25:8f:61:47:09:4e:e5:90:b0:a6:49:73:f9:9c:34:b6:
- f3:32:a8:1d:5e:de:47:c1:39:39:bf:3f:20:94:38:27:c8:85:
- 56:78:77:13:5f:f2:09:2c:59:d0:ad:d5:d2:0d:0b:de:3e:07:
- 66:1f:3c:0f:ae:58:69:83:e9:4c:f9:32:44:64:cb:49:ff:80:
- b7:36:f7:f0:58:15:cd:01:13:e3:7e:6d:80:1d:41:26:1e:10:
- 69:c7:73:43:23:51:e0:43:39:31:51:8c:0d:15:d0:c2:f8:73:
- 74:5c:8e:98:9c:e3:65:b5:3d:3e:c4:24:13:9c:ae:0d:c6:10:
- 62:f3:92:af:d7:99:e7:84:6f:73:1b:4f:5e:8d:bd:e9:62:81:
- 47:85:3e:7b:0f:20:07:b5:72:c5:d3:d4:82:96:32:d8:4e:12:
- dc:93:a0:76:b2:41:34:97:1d:09:b8:8f:c6:43:93:f8:7d:ba:
- f2:8f:81:db:c6:eb:0e:1c:6c:b1:2b:b0:74:ab:05:30:7c:00:
- d5:7b:4e:9e:96:27:a4:5c:c3:1c:bb:d2:13:d1:f8:05:b2:ed:
- e6:63:be:8b:63:80:9a:46:cb:34:1b:63:39:5f:4c:d1:14:5d:
- 2a:cd:8d:97:8c:c9:c1:44:93:33:57:f8:0f:12:a3:54:a4:9e:
- 1e:d6:d8:b2:b3:c9:07:5b:eb:a5:83:00:34:a8:e2:f9:98:4a:
- a5:cc:9b:fe:b3:4c:29:47:73:6f:de:c0:81:a4:a1:33:e6:05:
- ba:bd:69:69:3d:6c:e5:1c
------BEGIN CERTIFICATE-----
-MIIGgDCCBGigAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwbjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEbMBkGA1UEAwwSY2Ffcm9vdF9jbGllbnQtaWFt
-MB4XDTE5MTIxMjEwNDI0NloXDTI5MTIwOTEwNDI0NlowdjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEjMCEGA1UEAwwaY2FfaW50ZXJtZWRpYXRlX2Ns
-aWVudC1pYW0wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDQDZQviXEF
-SbvNVEqpi5ZBkgPqLzt3hOEuSot1lle4fu2/U0nWc24Cf8343XycxKKf185QI/e+
-AK8OUO8vy/YN4ldYIeSePRb1HjFwCcoO3y1ZH97h0NT9ydmlX+wIsNEIbkZYSTMK
-FzlTmuODnBAYpVWwemkfjZraAOwvyV4otWVpFowQqT3H9wRbSgBeJwbFpH7+DGVX
-perNsWGbN3QG6J4jCCwx4/vXgF8erdTqO6NawwBhvLoV+shPzd85yW7mco3M3urt
-OQUQMfuWj2+ycbIoNy4j/A4GXMs08GpyZ2SjNBgOaA3W3yL99rfSKOvA8ep/gF2R
-iepNado10P9tdsS7RJ3+qsQ4VbLpfjt55mwy9VkSEZzpGbrEYoov+KNnyctYmaSL
-zwMf8zXdChZVIDu03Z4fHtZfnkxix4UhjC/F4QjcvrrqW2idgooLR+hgU3NMCj2S
-dtSwIk4tpLVb9ey7qyQkdpCgN1R4fFrgKegbRCtvdSO/ohg4RB6i0SiS0tOmLyh9
-Ds4cq6aqcVyqNMuEtynVs/p3wosVYBF+WS4N9Cwr6MBNeR8bD1hAbUz9S35O5Io7
-RQzCBFZ8G1CDDq2vh+IXowZC1UdHjuQb2W/sVsLBshgUJLZhnql9SmO2L/A5jzmZ
-mY9kTFrLtYE1LPSpcLvrXyxT73f9FyRMFwIDAQABo4IBHjCCARowHgYJYIZIAYb4
-QgENBBEWD0NBIEludGVybWVkaWF0ZTAdBgNVHQ4EFgQUexgILpWKkUx384wlGA7z
-kWBKe9cwgZkGA1UdIwSBkTCBjoAUVeSEkk0vkBvO5PI70IHRIMQKG9yhcqRwMG4x
-CzAJBgNVBAYTAmZyMQwwCgYDVQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYD
-VQQKDAV2aXRhbTEUMBIGA1UECwwLYXV0aG9yaXRpZXMxGzAZBgNVBAMMEmNhX3Jv
-b3RfY2xpZW50LWlhbYICAUwwEgYDVR0TAQH/BAgwBgEB/wIBADAJBgNVHRIEAjAA
-MAsGA1UdDwQEAwIBBjARBglghkgBhvhCAQEEBAMCAgQwDQYJKoZIhvcNAQELBQAD
-ggIBAA0uZVwAak3VwRHqLCfIe8hk/WWKrUfCJePH7wqSSlhu1s4TDmWxoXqw3ToW
-llnEYuFNkYJ6vsuhSkJ6G3UUdH4T/G8Xcm56+mFdK8mYWxTroDCYJvCXA3yfpgRC
-7O846u7dy+lYG/Xxk+IZqBeKVbJKuarR2O0MRwR4AAxEHmw73cpxSoMJSuYnRja/
-DIUl7jfoAhMBBVu4oVoEwGq3d49aPtD2rxzdNYZAEG7dvdvCrqxlsCs1epK80QfI
-irpwGcYYDR9K0Hc76N2dBgasjl+0QQpJiNWH2MGLJY9hRwlO5ZCwpklz+Zw0tvMy
-qB1e3kfBOTm/PyCUOCfIhVZ4dxNf8gksWdCt1dINC94+B2YfPA+uWGmD6Uz5MkRk
-y0n/gLc29/BYFc0BE+N+bYAdQSYeEGnHc0MjUeBDOTFRjA0V0ML4c3Rcjpic42W1
-PT7EJBOcrg3GEGLzkq/XmeeEb3MbT16NveligUeFPnsPIAe1csXT1IKWMthOEtyT
-oHayQTSXHQm4j8ZDk/h9uvKPgdvG6w4cbLErsHSrBTB8ANV7Tp6WJ6Rcwxy70hPR
-+AWy7eZjvotjgJpGyzQbYzlfTNEUXSrNjZeMycFEkzNX+A8So1Sknh7W2LKzyQdb
-66WDADSo4vmYSqXMm/6zTClHc2/ewIGkoTPmBbq9aWk9bOUc
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/client-iam/ca/ca-root.crt b/deployment/environments/certs/client-iam/ca/ca-root.crt
deleted file mode 100644
index 072b7c5c8615ece8d13c50fc5d7e9b2e0b978d16..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/client-iam/ca/ca-root.crt
+++ /dev/null
@@ -1,128 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 332 (0x14c)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-iam
- Validity
- Not Before: Dec 12 10:42:44 2019 GMT
- Not After : Dec 9 10:42:44 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-iam
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:a5:7a:ce:c7:4f:58:c3:76:06:f5:59:6f:c3:0b:
- 86:95:c0:c7:68:dd:20:fa:a3:ea:4d:6a:8d:ff:f7:
- 0a:1c:a4:20:79:26:bf:d3:51:d9:2a:f4:6f:7c:7f:
- b6:5d:52:3c:cd:0c:db:44:3a:6a:b4:72:d0:c1:de:
- 58:ad:62:31:a4:46:1c:bb:76:b1:a7:46:5b:7b:e7:
- 98:55:be:27:1e:d3:f9:95:44:4b:c5:6e:e5:dd:d9:
- e2:79:ac:93:fe:dc:db:45:b8:0a:a4:eb:f4:3c:53:
- cb:3e:fb:2c:b9:0a:19:e2:9e:b6:0c:ca:b2:f3:1d:
- 08:27:fc:6c:23:54:91:66:c8:73:4e:7b:fe:2b:40:
- 4d:92:09:0b:2c:e1:db:a6:dc:50:6d:1a:e1:15:f2:
- 88:cc:39:ff:28:e6:32:c1:3e:7d:7b:ce:8f:0c:0f:
- d0:67:b1:c5:86:bc:48:ff:71:3f:bb:24:58:ec:d5:
- 68:c0:e6:78:ed:3c:75:8c:22:fa:56:df:f0:94:a6:
- 6f:21:34:90:dd:33:67:b2:e9:24:58:c6:6e:70:e3:
- 41:20:42:3e:c3:92:47:73:9b:88:82:dc:26:ba:0c:
- 96:d1:cf:3a:9c:19:20:74:ee:92:1e:17:8d:5c:9d:
- a9:30:d1:a9:c1:11:c3:cf:29:0f:4c:04:9f:a1:c7:
- 99:fc:0d:bd:2b:01:53:51:a8:3f:63:fe:a1:2f:95:
- 98:9a:22:35:99:db:c9:8c:2e:43:01:69:73:be:14:
- 59:1f:24:f3:26:46:fc:96:57:53:0b:7e:05:6b:c9:
- 62:75:1c:01:03:b6:28:a9:83:2b:04:4c:6c:b3:85:
- c7:79:13:8e:dd:00:97:7b:c9:a4:62:97:1f:be:b8:
- 4f:62:91:e7:b2:69:a7:f2:2c:6c:a5:b0:71:d8:d8:
- 7a:2b:08:27:87:34:9d:2f:8f:bc:b5:0c:ca:04:d7:
- 16:68:ef:84:7f:71:93:e7:95:d0:22:1d:81:1c:65:
- 47:51:ac:b9:e8:14:53:08:a2:9d:6c:26:d0:4b:0f:
- b2:99:ff:2a:81:3f:12:3b:26:b2:95:2b:98:be:3a:
- e8:5d:32:ff:8e:3c:eb:c6:f5:dc:51:44:90:97:52:
- 3a:5d:5e:0e:45:f9:ea:47:27:ef:49:b1:1e:e7:d1:
- b6:e7:0a:c9:f0:f1:38:a1:c9:7f:62:a5:43:4d:1f:
- 6f:46:9a:12:1d:40:86:49:12:46:45:e8:b6:7e:ff:
- 04:ea:cd:20:45:32:aa:5b:23:eb:97:b8:32:e9:6a:
- 21:61:aa:17:09:33:93:c7:ad:b5:db:7d:06:f1:86:
- ba:4b:18:4b:8d:74:72:22:24:5a:ad:b2:e2:65:4e:
- b0:2b:85
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Root
- X509v3 Subject Key Identifier:
- 55:E4:84:92:4D:2F:90:1B:CE:E4:F2:3B:D0:81:D1:20:C4:0A:1B:DC
- X509v3 Authority Key Identifier:
- keyid:55:E4:84:92:4D:2F:90:1B:CE:E4:F2:3B:D0:81:D1:20:C4:0A:1B:DC
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:1
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 9e:d6:ac:bd:5a:39:3a:f3:76:a0:f9:17:0c:d4:09:8f:7a:aa:
- 60:9d:31:37:a2:98:51:93:75:95:97:9b:bb:1d:b7:f5:bd:29:
- 82:16:bb:b2:2c:79:23:08:2a:e7:a9:fd:47:93:a5:22:7e:bd:
- 4c:07:08:4e:8f:c7:d3:ff:90:e5:6c:cd:b7:45:ed:cc:ad:ba:
- 93:31:cf:77:04:3f:44:60:39:94:73:0c:b6:38:5a:26:79:da:
- 6b:79:23:55:d6:a8:5d:be:1e:72:db:d6:b2:a9:1b:83:61:a2:
- 3d:ff:1f:2b:8a:57:40:30:62:73:a5:86:22:77:78:c2:1b:ab:
- 6c:cf:eb:ca:67:14:fe:88:9c:3d:0d:27:e4:04:2d:5f:b5:8f:
- 16:c7:16:f3:9c:39:00:ef:f0:a5:2f:a9:12:a9:3b:4c:10:1d:
- f3:72:13:c2:e0:6b:87:05:dd:04:48:31:1d:9e:81:36:1d:34:
- b5:73:a5:74:18:bb:ba:35:ac:fd:33:26:ac:66:77:05:5a:e4:
- 0a:f5:b1:7f:92:42:0f:6d:7d:ed:55:7f:28:ee:fc:00:db:48:
- 4b:10:e2:94:76:fb:00:d3:51:24:68:cd:af:f0:37:f6:12:92:
- 85:d1:46:37:5b:58:0b:46:17:42:c4:d2:93:cf:63:11:78:c6:
- fa:37:ea:c3:23:a8:85:b3:67:eb:f3:b6:9e:3d:26:81:5f:e6:
- 85:ca:b2:3d:44:64:62:61:7f:b4:d3:cd:43:97:62:2a:cf:64:
- 17:51:20:db:91:7f:33:5f:1d:af:13:21:63:91:66:a7:a9:13:
- cc:2e:b3:ec:05:d8:02:ff:c2:6a:71:ab:7d:c1:18:83:95:e9:
- fe:86:21:9c:7e:54:82:89:43:6c:c7:5e:32:1b:3c:a5:98:09:
- c7:67:89:4c:06:0a:40:d3:62:cb:ff:01:a1:a5:ae:2b:91:e2:
- c6:fc:3e:da:dc:dd:b2:03:35:f8:9c:89:85:ad:eb:e8:36:1d:
- 16:6a:d5:c8:96:bf:9f:19:7d:37:53:07:0d:bf:07:d1:f8:6c:
- e4:93:e1:c0:d4:4c:0e:1f:c0:7a:9f:8f:d0:0b:d5:7d:d9:d1:
- ed:f6:d0:58:4f:65:00:dc:ca:f1:7e:e0:76:3c:90:5e:c9:3b:
- 58:0b:54:28:0b:5c:03:05:56:70:73:d1:97:c8:d1:45:d1:a5:
- 4b:1e:d4:52:00:ca:53:e5:ac:7f:09:21:4f:24:dd:5f:fd:ed:
- c4:4a:79:f6:01:c7:02:8c:bf:58:a1:a8:ff:cb:8e:79:45:16:
- 46:e6:78:4a:3e:3d:a6:fc:40:9b:7d:77:6e:c2:61:97:c9:e8:
- b6:dc:16:fd:6e:49:11:09
------BEGIN CERTIFICATE-----
-MIIF6DCCA9CgAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwbjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEbMBkGA1UEAwwSY2Ffcm9vdF9jbGllbnQtaWFt
-MB4XDTE5MTIxMjEwNDI0NFoXDTI5MTIwOTEwNDI0NFowbjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEbMBkGA1UEAwwSY2Ffcm9vdF9jbGllbnQtaWFt
-MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApXrOx09Yw3YG9VlvwwuG
-lcDHaN0g+qPqTWqN//cKHKQgeSa/01HZKvRvfH+2XVI8zQzbRDpqtHLQwd5YrWIx
-pEYcu3axp0Zbe+eYVb4nHtP5lURLxW7l3dnieayT/tzbRbgKpOv0PFPLPvssuQoZ
-4p62DMqy8x0IJ/xsI1SRZshzTnv+K0BNkgkLLOHbptxQbRrhFfKIzDn/KOYywT59
-e86PDA/QZ7HFhrxI/3E/uyRY7NVowOZ47Tx1jCL6Vt/wlKZvITSQ3TNnsukkWMZu
-cONBIEI+w5JHc5uIgtwmugyW0c86nBkgdO6SHheNXJ2pMNGpwRHDzykPTASfoceZ
-/A29KwFTUag/Y/6hL5WYmiI1mdvJjC5DAWlzvhRZHyTzJkb8lldTC34Fa8lidRwB
-A7YoqYMrBExss4XHeROO3QCXe8mkYpcfvrhPYpHnsmmn8ixspbBx2Nh6KwgnhzSd
-L4+8tQzKBNcWaO+Ef3GT55XQIh2BHGVHUay56BRTCKKdbCbQSw+ymf8qgT8SOyay
-lSuYvjroXTL/jjzrxvXcUUSQl1I6XV4ORfnqRyfvSbEe59G25wrJ8PE4ocl/YqVD
-TR9vRpoSHUCGSRJGRei2fv8E6s0gRTKqWyPrl7gy6WohYaoXCTOTx621230G8Ya6
-SxhLjXRyIiRarbLiZU6wK4UCAwEAAaOBjzCBjDAWBglghkgBhvhCAQ0ECRYHQ0Eg
-Um9vdDAdBgNVHQ4EFgQUVeSEkk0vkBvO5PI70IHRIMQKG9wwHwYDVR0jBBgwFoAU
-VeSEkk0vkBvO5PI70IHRIMQKG9wwEgYDVR0TAQH/BAgwBgEB/wIBATALBgNVHQ8E
-BAMCAQYwEQYJYIZIAYb4QgEBBAQDAgIEMA0GCSqGSIb3DQEBCwUAA4ICAQCe1qy9
-Wjk683ag+RcM1AmPeqpgnTE3ophRk3WVl5u7Hbf1vSmCFruyLHkjCCrnqf1Hk6Ui
-fr1MBwhOj8fT/5DlbM23Re3MrbqTMc93BD9EYDmUcwy2OFomedpreSNV1qhdvh5y
-29ayqRuDYaI9/x8rildAMGJzpYYid3jCG6tsz+vKZxT+iJw9DSfkBC1ftY8Wxxbz
-nDkA7/ClL6kSqTtMEB3zchPC4GuHBd0ESDEdnoE2HTS1c6V0GLu6Naz9MyasZncF
-WuQK9bF/kkIPbX3tVX8o7vwA20hLEOKUdvsA01EkaM2v8Df2EpKF0UY3W1gLRhdC
-xNKTz2MReMb6N+rDI6iFs2fr87aePSaBX+aFyrI9RGRiYX+0081Dl2Iqz2QXUSDb
-kX8zXx2vEyFjkWanqRPMLrPsBdgC/8Jqcat9wRiDlen+hiGcflSCiUNsx14yGzyl
-mAnHZ4lMBgpA02LL/wGhpa4rkeLG/D7a3N2yAzX4nImFrevoNh0WatXIlr+fGX03
-UwcNvwfR+Gzkk+HA1EwOH8B6n4/QC9V92dHt9tBYT2UA3MrxfuB2PJBeyTtYC1Qo
-C1wDBVZwc9GXyNFF0aVLHtRSAMpT5ax/CSFPJN1f/e3ESnn2AccCjL9Yoaj/y455
-RRZG5nhKPj2m/ECbfXduwmGXyei23Bb9bkkRCQ==
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/client-iam/clients/reverse/reverse.crt b/deployment/environments/certs/client-iam/clients/reverse/reverse.crt
deleted file mode 100644
index 1dbe73ae6ff3abcd5de12e60cab574e96b328f3b..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/client-iam/clients/reverse/reverse.crt
+++ /dev/null
@@ -1,138 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 335 (0x14f)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_client-iam
- Validity
- Not Before: Dec 19 12:46:12 2019 GMT
- Not After : Dec 18 12:46:12 2022 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, CN=reverse
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:c9:70:c6:04:1f:c9:6f:6a:15:07:a0:09:a0:1b:
- a4:84:05:58:d6:f1:a2:87:af:c0:88:b0:29:48:3c:
- 4f:b1:d1:fc:20:44:72:99:26:56:13:58:da:fe:8d:
- 71:d9:2c:75:d2:ee:56:81:4e:12:12:51:86:86:f0:
- 1e:35:6a:5d:44:f7:b6:a0:33:39:14:4b:2f:38:b5:
- 72:27:2f:17:96:86:3b:05:8e:e9:ac:15:6b:3e:ed:
- c7:ad:fb:a3:b1:4c:dd:25:50:21:eb:47:20:3f:6b:
- e6:df:5d:5c:98:56:0d:ac:8f:be:b1:58:a5:c9:6d:
- a3:75:71:92:7e:5c:b2:2c:54:3f:7e:46:38:76:4a:
- df:16:55:56:e8:e3:53:fa:05:56:de:96:b0:82:67:
- 19:b4:b1:b4:20:37:bc:93:e7:e5:95:3c:20:4f:ce:
- 44:97:5f:0b:0d:b4:28:96:90:de:72:d3:66:3a:53:
- 36:9a:24:0d:0d:eb:34:6c:fa:96:59:16:a6:57:c0:
- 81:26:c6:15:65:b5:76:53:28:a3:dd:0a:d6:36:9d:
- b1:09:24:c2:81:f2:0d:d6:33:b8:d8:f7:de:ff:df:
- 09:69:02:ef:64:97:d1:e4:6e:fc:16:ab:a2:3f:79:
- a8:4c:5f:2b:43:ba:1e:c9:36:db:80:0a:6f:51:ab:
- d4:22:ae:c1:ed:89:e8:ef:0b:5e:ef:1d:07:6b:ac:
- 47:6e:44:88:2f:a5:34:ef:93:7a:2a:6a:05:50:0d:
- d7:d2:8c:2a:19:77:fb:90:7b:84:40:9c:10:d7:31:
- f2:c4:ab:6f:3e:46:1b:0d:06:db:19:52:5f:85:e0:
- fb:ac:34:0c:4a:9a:0c:49:07:42:25:91:b9:22:56:
- 5e:7e:7f:8f:df:e5:85:a4:b9:32:d6:6b:22:e7:83:
- 9f:38:4a:59:26:3b:22:32:1e:ea:86:a6:2a:df:21:
- 5c:e5:bc:89:ab:84:12:e4:3d:f7:33:2b:59:41:1b:
- 05:24:ef:57:50:d5:4f:3f:00:cf:dd:e1:ec:99:90:
- 08:77:11:00:09:1d:a1:f5:88:97:32:14:18:8d:5e:
- b2:77:fd:97:f2:25:53:4a:5a:bb:97:f1:5b:5f:22:
- bf:a4:99:69:b6:74:4a:26:54:35:a2:f2:4e:cd:fa:
- 19:e7:e7:ec:d7:5e:1d:2d:c0:fa:7e:66:d8:ea:bb:
- 3a:5f:b8:56:84:38:54:54:4d:5c:5b:f8:f2:dc:f9:
- be:b9:26:86:40:dd:14:57:9e:30:f8:2d:28:d7:30:
- b5:1f:9c:a3:a9:04:8b:90:c3:31:f2:42:bd:1c:3e:
- 60:9c:a2:db:85:5d:06:05:77:b6:ba:a8:62:7f:9d:
- 53:cd:c9
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- Certificat Client SSL
- X509v3 Subject Key Identifier:
- E1:AA:EA:97:14:33:BC:ED:79:6B:4B:A4:F1:A5:19:CB:DB:8A:49:46
- X509v3 Authority Key Identifier:
- keyid:7B:18:08:2E:95:8A:91:4C:77:F3:8C:25:18:0E:F3:91:60:4A:7B:D7
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
- serial:01:4D
-
- X509v3 Issuer Alternative Name:
- <EMPTY>
-
- X509v3 Basic Constraints: critical
- CA:FALSE
- X509v3 Key Usage:
- Digital Signature
- Netscape Cert Type:
- SSL Client
- X509v3 Extended Key Usage:
- TLS Web Client Authentication
- Signature Algorithm: sha256WithRSAEncryption
- 37:8b:66:eb:32:ed:40:7a:5d:21:59:f6:11:47:91:7f:c9:fd:
- d3:ce:8a:2f:42:ad:f9:ac:3e:2d:d5:f8:8e:80:54:0c:32:f3:
- 42:b1:ec:e2:9f:9e:27:52:17:86:66:94:3f:a6:3f:ed:c8:08:
- b5:de:b7:5a:d9:ec:eb:b5:25:c9:95:24:4b:88:4e:36:44:3c:
- 55:bc:5f:fe:56:74:31:e9:3f:c7:6b:1e:32:e5:63:aa:b6:94:
- 78:c7:dc:d0:27:a3:e6:d5:d4:db:ef:2a:48:b6:fe:e6:93:d3:
- d7:8e:38:fc:c7:b7:c2:fb:c9:83:0e:47:2a:84:9a:35:a6:07:
- 73:f1:ad:3f:5f:22:2f:09:19:9b:d3:74:55:4d:ec:bd:f0:e5:
- 2b:fe:2b:71:58:f7:aa:a4:a6:7c:bf:b7:24:ce:ea:96:86:51:
- 8e:f5:e0:c2:0b:0f:bc:58:97:78:ab:d2:12:27:c5:cf:20:f7:
- 34:2b:0c:08:38:22:86:81:18:7e:56:e8:d3:bc:22:ff:32:18:
- 70:10:b6:35:b7:42:55:59:71:41:e3:bc:cc:0f:f9:22:64:4c:
- 93:de:c8:86:88:84:fb:6d:01:8c:8d:2e:87:d2:7b:0d:75:b9:
- c3:1e:9f:aa:77:23:10:31:be:98:d2:fc:15:4c:ba:07:05:01:
- a4:3f:a4:b1:14:16:76:a0:c8:c4:c9:17:5f:74:c1:84:4b:76:
- 89:26:d7:b1:29:b5:49:98:5a:17:b4:db:4b:f8:09:3e:26:7a:
- 01:9d:59:3b:77:1e:bb:27:49:18:f2:8e:ce:63:8c:5e:8b:e9:
- 79:93:bc:91:61:25:38:a0:c4:d1:c7:cc:2b:bf:73:6b:c3:15:
- fe:df:ee:0a:2d:d1:07:ee:2f:4e:8a:11:d4:44:a1:26:4a:5a:
- f6:cf:c8:fe:9c:fc:e3:c3:f2:79:8b:8b:39:10:d5:b4:20:dc:
- 05:77:4c:37:e8:56:9a:0a:98:b7:ca:c7:b8:73:ce:b8:4b:12:
- e1:09:ab:18:47:59:8b:fd:2c:28:aa:ab:ef:c8:5d:c3:75:b1:
- d5:35:ed:ca:c4:35:7c:77:9d:d0:e2:93:56:7f:79:4c:c5:d8:
- 4b:c6:70:0e:f1:4c:86:b6:65:ef:fb:a2:27:6e:83:1e:40:08:
- 95:a3:14:af:4a:fb:c8:de:88:de:3d:d8:53:83:98:5b:d2:ba:
- 79:22:47:b6:11:38:99:6c:d8:99:4d:49:9e:07:0f:f6:ff:87:
- d0:1c:f2:a3:9e:4d:81:6b:d3:8e:f5:d6:08:c2:44:c0:68:6c:
- 32:09:1c:32:cb:aa:52:7c:b9:36:de:aa:53:63:b1:f6:54:4a:
- d4:42:71:8b:9c:ee:74:4e
------BEGIN CERTIFICATE-----
-MIIGdDCCBFygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwdjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEjMCEGA1UEAwwaY2FfaW50ZXJtZWRpYXRlX2Ns
-aWVudC1pYW0wHhcNMTkxMjE5MTI0NjEyWhcNMjIxMjE4MTI0NjEyWjBNMQswCQYD
-VQQGEwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwF
-dml0YW0xEDAOBgNVBAMMB3JldmVyc2UwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAw
-ggIKAoICAQDJcMYEH8lvahUHoAmgG6SEBVjW8aKHr8CIsClIPE+x0fwgRHKZJlYT
-WNr+jXHZLHXS7laBThISUYaG8B41al1E97agMzkUSy84tXInLxeWhjsFjumsFWs+
-7cet+6OxTN0lUCHrRyA/a+bfXVyYVg2sj76xWKXJbaN1cZJ+XLIsVD9+Rjh2St8W
-VVbo41P6BVbelrCCZxm0sbQgN7yT5+WVPCBPzkSXXwsNtCiWkN5y02Y6UzaaJA0N
-6zRs+pZZFqZXwIEmxhVltXZTKKPdCtY2nbEJJMKB8g3WM7jY997/3wlpAu9kl9Hk
-bvwWq6I/eahMXytDuh7JNtuACm9Rq9QirsHtiejvC17vHQdrrEduRIgvpTTvk3oq
-agVQDdfSjCoZd/uQe4RAnBDXMfLEq28+RhsNBtsZUl+F4PusNAxKmgxJB0Ilkbki
-Vl5+f4/f5YWkuTLWayLng584SlkmOyIyHuqGpirfIVzlvImrhBLkPfczK1lBGwUk
-71dQ1U8/AM/d4eyZkAh3EQAJHaH1iJcyFBiNXrJ3/ZfyJVNKWruX8VtfIr+kmWm2
-dEomVDWi8k7N+hnn5+zXXh0twPp+ZtjquzpfuFaEOFRUTVxb+PLc+b65JoZA3RRX
-njD4LSjXMLUfnKOpBIuQwzHyQr0cPmCcotuFXQYFd7a6qGJ/nVPNyQIDAQABo4IB
-MzCCAS8wJAYJYIZIAYb4QgENBBcWFUNlcnRpZmljYXQgQ2xpZW50IFNTTDAdBgNV
-HQ4EFgQU4arqlxQzvO15a0uk8aUZy9uKSUYwgZkGA1UdIwSBkTCBjoAUexgILpWK
-kUx384wlGA7zkWBKe9ehcqRwMG4xCzAJBgNVBAYTAmZyMQwwCgYDVQQIDANpZGYx
-DjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UECwwLYXV0aG9y
-aXRpZXMxGzAZBgNVBAMMEmNhX3Jvb3RfY2xpZW50LWlhbYICAU0wCQYDVR0SBAIw
-ADAMBgNVHRMBAf8EAjAAMAsGA1UdDwQEAwIHgDARBglghkgBhvhCAQEEBAMCB4Aw
-EwYDVR0lBAwwCgYIKwYBBQUHAwIwDQYJKoZIhvcNAQELBQADggIBADeLZusy7UB6
-XSFZ9hFHkX/J/dPOii9CrfmsPi3V+I6AVAwy80Kx7OKfnidSF4ZmlD+mP+3ICLXe
-t1rZ7Ou1JcmVJEuITjZEPFW8X/5WdDHpP8drHjLlY6q2lHjH3NAno+bV1NvvKki2
-/uaT09eOOPzHt8L7yYMORyqEmjWmB3PxrT9fIi8JGZvTdFVN7L3w5Sv+K3FY96qk
-pny/tyTO6paGUY714MILD7xYl3ir0hInxc8g9zQrDAg4IoaBGH5W6NO8Iv8yGHAQ
-tjW3QlVZcUHjvMwP+SJkTJPeyIaIhPttAYyNLofSew11ucMen6p3IxAxvpjS/BVM
-ugcFAaQ/pLEUFnagyMTJF190wYRLdokm17EptUmYWhe020v4CT4megGdWTt3Hrsn
-SRjyjs5jjF6L6XmTvJFhJTigxNHHzCu/c2vDFf7f7got0QfuL06KEdREoSZKWvbP
-yP6c/OPD8nmLizkQ1bQg3AV3TDfoVpoKmLfKx7hzzrhLEuEJqxhHWYv9LCiqq+/I
-XcN1sdU17crENXx3ndDik1Z/eUzF2EvGcA7xTIa2Ze/7oidugx5ACJWjFK9K+8je
-iN492FODmFvSunkiR7YROJls2JlNSZ4HD/b/h9Ac8qOeTYFr04711gjCRMBobDIJ
-HDLLqlJ8uTbeqlNjsfZUStRCcYuc7nRO
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/client-iam/clients/reverse/reverse.key b/deployment/environments/certs/client-iam/clients/reverse/reverse.key
deleted file mode 100644
index cd464e4b22e1a1849aae4579d97b2c3a479beb15..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/client-iam/clients/reverse/reverse.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIrVlhZBqIAhoCAggA
-MBQGCCqGSIb3DQMHBAhHCX6JOhGJdQSCCUj3mC8bO47QJM3qk8l62ihlqpoC7lcZ
-Z2u3a/B8YSp2drgxQBIFRTLYsdc4KYlNgPE/kprvujMnfhpkdZOVvVXnymwB7LXk
-MfMrZBkUxML5QsSZB8Z12OhUeTSWhms52/TcnW27H+W3s3W5B9MjM840qq67ze/L
-1io4mL5REPzC8wzntYTKKWTgzXxklx8pvz8I4w6VcGHZ34XNaTLugsv8Dxuwm6nK
-IVfwG7BuFbxc74BonIyczGdPQ2YgEvydpeJxdc2+yAggkWwpgH80UiC8D+eHoYO3
-G2haPFIi1HOuAmUOIQhtRRfjJRun0vje2+fsUmquYyRlxqKkwC0ePDg5j+f3nyG2
-Nc8/ekEHAXhJkKfDIsHRZTaB9w7w6HRHjyaCMD8OPjNsWX1sEaSmao3yiJVkAxmc
-rMt0nQ8JlLBml5QBc9y2iyML0N76LxYwD4lOK9X7y7mTXx8i8jV1MQtmq476Si3g
-2/Ne274eBFSLhb467I1Acl/e/6B8cX5khXs8GNl5Dg6Fq3GYTPJ01ShAWH5UPlsh
-DVL42yj381FhQSfihgGY7Nke66bVefFPQzgMGWqUhl0pYUKnnSuSF26H4nA9p2ef
-93LbZwawDlOV3MQ0GSRF6b0+oMTXQPHtVwkjtrXzC7vYQ3BMuv6Jt+wCMbcSR4W6
-ANjDxroVO2i0nfGmnZzO6Vg4osDFx7yhmqfWITNSuELNpiRHoB57f787J/8bFzbv
-lRKckutmHXRSmgBx8QDoC/+MUn+334yzG1d02LJLJghcx/Z4lvLJbGRSSPOHxUwu
-A4NiVNTEa2wacD/QrG707PpN6Eab6Jr+fXd0/1WtawSebPbibqkQEnbxFUatGyr2
-p5JJ1YaDAEQKrrm1j2sm+Z9Ja6qWn+gSeZtWSYzNF0UdyU9Ga285ihxlkAqfReIq
-qqfJRkcSb02J2rx+0nj5CVZLI/ETosprAQ0m4/uwhC2MYnGTpPiL6BKBTNrmbi+j
-tp07MhFhBID27Wt0hrYIPSmHwwmUKpGU19u9LyqRNqB5W5Gv6vhD/IGeQUt3rOSf
-c2aKjpENUApR13CawSpsIUm6mQXFGOMHT7feN5oGGbStod5pivYl6kpV6FclLlLN
-8frZyWzQ3UnJ0BtzB582pwGzsDUS2qxQD6a17OVpzNWhYg6BtgPz7FyM6UP7xGUD
-o9e8KPMEaw5HSU4vLOS+KW6Qj6paQDEmhOAOTVvyeHzy4XDt8w0u2F7neOXCzz4T
-fJhEkC+gULb0I4t0U25UHNQ1aSbfhxsh2dsWeCQlpOocoZawYdE2HVv4LRQXsPPc
-gkwnHZ24sVEDEuvU3SSE39ionIWYnqRZSvDakGO8nr9ijimbrDkxau/5NRzdHGlD
-yE87+fH2OkhIwySguOTYDusjyegf9SNpGMU9JO1gEF4papRnnZFYpPJS+/YF8o3w
-t22Xtr7+StXSKTNJEEHWjUYCkx+0uzbE5MupdclZoU8txqRi1K1BdVYhL59fnnoV
-UfeKEU0oFry7VVI8zDiUrkA071a2hgo3jcOnumrkaUkDmw6UpqSYPJ/lchx1kOWX
-YmeVtCTGnb8tets6EynIJ4n1oyHtiiYVQZLBfH1ei+GDxPRP24v4FRDkb/tM7JXH
-xAsVrZ+EzwUw8ixXtiZLeNi7OJc+e+xN1BaKkm+cLi81ls/gPlgygXFwofi8fKNE
-0ElAmnQS7OnIwooQfAGgpMKt4vlcmSsPWvGZv8c6j9UhxcqfhsqqgMqE2UKaoaDP
-W1gqdi4YbqI6d+0dP2z9J8LArUkI1cbYQuzWycMRuLBeoMacfC0ocWE2PkAOQvlY
-0OcIDnEpgQlEIYM41xSbT08nphN3v1PHEh05XzRgK+UV8acsD0dYNgzehgqAS9V2
-NORSjai0yTt3gLn7ILqdfv12X7nBS0PgIWmOQgR0f26STKr2crIzcTE7hnBLA8hh
-MlFNJJ9vCKzTlx9+DsUR/ssZxRY7zcl+avlq7IpcbAOQ+pwGVFb1CLgJg6ZFPRKj
-s0nr9z3EVCJ/0GbBjZofBFw4sJZuUWjiJzYA6iJb5zzYS0iyN3dLUytG/HeS8UBP
-PPuyBVAyjV1BoYlLd27rmzQ9WcxlGyJ53JE2827SpsqXfxKztMX9kFxWSqDDh1TS
-B29/hu1P9Zk6spEwjQKfcKsqxMimGQLgG/M5OKC5sttT0rZ4QbIouOazsZv0j3rF
-XDFWzxgMXZIWN8Ge6Z8b+XDJISbCGvwbq4GwV54GKtE1dW95sV4Fb2ALfCqrF3AQ
-nzQTYKVbqtQfchFEwOTSjwX6CBd6GNsZVjCwDaUFjlbhHXmrUWRZCQF7KlKBDz1+
-KDlDTnIbZHkHJRV1UYCK/D0L2LAxtKZnOrckhDzKDg63kJV0BsezqAt5wndSEzGx
-SBxxd50Ue/kQwchsInl6Y7cqcT+db/vIBidxwUfqhQuMN7kTQTSbd1J67IaCcCwk
-P97i1ZqlcfHlGozwiEbM4tz8nQp0Rx0YvyZvKH8iNIh/r2+/+4TYZUxCjsLZ3qbZ
-iRA4wltl9ANS9NJYnyQLpyIbVgxK/ndCDMWRXncpJrms2icM3OtRfey19VnW9Mqg
-2DK7qFarXjOQmtjf33hgzPjfWJmYn32daUj6ytcVD7e+CVOiGDx6CTaHtOV7ztkD
-FMIsQaOm/whEdr5bQHZbX66yUR2rjl72giRVnn0qvGyiQxdAIWbX4XHgbjGAsP37
-zMUoEvefgcuW1RZCoeS4G9Zd1H51cgmyHvEzv8Q5JkvB+5dCchB4Y8wx05gyGp/6
-i2b9KrCJEivvNorTAr6gBSEpjk+/mF6p7pE7MBCzWJaHYn+7q1piiEXlHOupEB6N
-6xJrceFX6mCNrl8uaKn97qpR1LsNpW2zJXP3rnv1tt+WONLbH7MJ3H2em8Nrj9Rq
-6f2EsWH0+3cpbQWj1Eq7fKYCyuAh8LTk/ATf7YQzWIgtYSEu2pw6R/VRt5K8s0QT
-Y+y8FyYGJzt8zmIOQshK5ub4OMxvuwqrFsdNGVfHHoBJ3hXRR0j+BK8iEPVJXwiL
-DMG7MK6Chm2ipA8Jf56GGsxY/+lcISsl+PEwssmw49pzvQDkhgBYiEd890a/qwuV
-kY5chY4wd1mWvqdv2THuKG6YXajYZe97kM5QdPykkMjlqWEmUBL6vfKhlP3vjhCx
-V58=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/environments/certs/client-vitam/ca/README b/deployment/environments/certs/client-vitam/ca/README
new file mode 100644
index 0000000000000000000000000000000000000000..ac249a873b2ab1d19247d739c9b709d157dc7883
--- /dev/null
+++ b/deployment/environments/certs/client-vitam/ca/README
@@ -0,0 +1 @@
+Put your Vitam certificates' CA here (.crt)
\ No newline at end of file
diff --git a/deployment/environments/certs/client-vitam/ca/ca-intermediate.crt b/deployment/environments/certs/client-vitam/ca/ca-intermediate.crt
new file mode 100644
index 0000000000000000000000000000000000000000..84f3df36be4f1106b83b01199b181a514dbd8d2e
--- /dev/null
+++ b/deployment/environments/certs/client-vitam/ca/ca-intermediate.crt
@@ -0,0 +1,136 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 2 (0x2)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-vitam
+ Validity
+ Not Before: May 5 09:13:49 2020 GMT
+ Not After : May 3 09:13:49 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_client-vitam
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:c8:b3:d4:10:7b:e4:45:87:e5:b8:45:dc:8b:49:
+ f0:16:2b:29:15:36:19:81:af:91:42:c3:16:c3:7e:
+ f9:32:f5:f5:07:7f:88:46:14:91:d2:8b:e6:69:34:
+ ba:57:5a:a8:50:82:c1:9f:63:29:1b:e8:e3:24:77:
+ 06:d6:88:76:4f:e5:41:dd:69:61:f0:d0:69:f2:dc:
+ 11:2c:85:92:9c:90:e6:dd:7f:a5:c9:d0:e3:47:06:
+ 9a:97:e5:77:3e:e5:2c:dc:4f:c2:b3:30:36:c0:82:
+ 0d:08:e7:3e:9c:12:5a:c5:f8:86:7c:b5:2d:0b:8f:
+ 18:6b:f8:d2:94:0e:24:f6:95:01:8f:50:94:49:13:
+ a0:25:80:35:7a:a8:84:c7:c3:8d:e8:29:07:57:7b:
+ ea:8a:0b:72:e0:b0:ab:a5:57:67:eb:d4:0c:92:d1:
+ 8b:d7:1f:e9:11:18:29:d7:f8:0c:63:3d:f9:6d:fa:
+ 34:4b:ba:43:6b:58:2c:cf:4a:a9:73:72:8b:d8:a5:
+ ca:88:04:78:ac:b0:43:18:2b:b6:03:b8:42:99:c9:
+ 1d:4f:ba:b3:08:43:51:dc:b2:03:c8:ca:43:f3:22:
+ ac:48:5f:71:ee:aa:de:d0:1b:15:b5:a6:78:f6:17:
+ b5:96:fd:aa:1c:58:55:9c:7a:18:03:36:7d:13:24:
+ d2:d2:f8:1c:81:d7:07:96:39:c3:d8:7a:eb:2e:bf:
+ bd:ee:77:65:d1:10:50:04:17:5c:00:79:67:4b:e5:
+ b7:d9:2c:c5:c5:91:9f:50:41:49:8c:1d:78:28:32:
+ 4d:49:82:4a:8d:a9:e5:f6:34:9c:6f:af:ed:5c:6b:
+ 30:11:c9:33:80:0e:00:94:3e:f9:d9:0a:56:91:ac:
+ a0:78:95:e2:2f:c6:7b:ab:05:fa:fc:e7:13:0e:ce:
+ 9e:75:0f:00:fa:f7:61:fe:f7:87:43:fc:d8:8a:05:
+ 35:d4:4b:c1:f5:71:1b:fc:f7:02:0f:ed:bd:10:4d:
+ 49:2e:a6:cb:bf:df:15:19:2e:ae:4c:8b:aa:cc:8f:
+ 4d:cd:ad:fc:09:85:7a:43:e0:1a:c5:5b:11:dc:44:
+ b5:b1:14:eb:88:1f:a1:90:87:46:fb:b5:bb:48:da:
+ 16:34:34:60:0e:49:5b:bb:92:a5:8e:76:94:5e:ef:
+ b6:d5:ef:01:22:ef:f6:1c:12:9c:86:ab:86:c6:87:
+ 94:57:08:a8:dc:c2:c0:de:a3:50:53:ba:56:bc:60:
+ 9f:e1:4d:63:98:12:9c:6a:df:7e:ac:7c:f1:d3:65:
+ 91:df:29:0a:bf:c2:aa:36:e2:16:85:b1:81:ff:85:
+ 87:c4:2e:1e:6f:44:49:04:de:d5:48:38:e8:a1:08:
+ f6:84:79
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Intermediate
+ X509v3 Subject Key Identifier:
+ 39:AE:EB:0E:A7:FA:47:3C:91:8C:08:24:D2:47:42:76:03:56:84:ED
+ X509v3 Authority Key Identifier:
+ keyid:06:FE:4C:68:B6:B0:FA:83:B5:FC:2D:9E:52:78:59:63:01:E0:8E:B9
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-vitam
+ serial:01
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:0
+ X509v3 Issuer Alternative Name:
+ <EMPTY>
+
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 01:4f:16:22:e7:c6:31:29:10:27:2a:a4:2c:a9:6b:9c:c6:f8:
+ 89:31:5e:5f:96:ea:c1:40:c2:0d:e0:6d:2f:48:54:bc:3d:e4:
+ ef:dd:ea:89:2e:13:a8:da:35:69:d7:44:54:ca:b3:27:9a:c6:
+ e1:d6:87:a9:76:23:be:be:07:17:f0:40:1a:91:f7:46:5b:d8:
+ a8:f6:aa:01:0f:af:b6:bd:63:1e:ee:b7:02:5a:1d:33:1d:85:
+ cc:ae:bf:12:6a:d8:33:d1:6d:69:03:97:59:64:2a:8b:b7:6a:
+ 85:1a:45:80:b9:c5:0d:16:29:47:67:93:cf:27:3d:36:65:64:
+ 90:0e:3e:f8:e4:33:1e:9b:bc:1e:e6:3a:8e:7b:d4:37:12:f3:
+ 0e:03:5b:2f:99:31:ef:ca:da:f5:e6:b7:cd:31:33:4c:5a:8c:
+ 37:5e:2a:e2:71:29:61:8b:3e:42:0e:f7:57:96:af:46:73:66:
+ c7:8f:9d:7e:b7:d2:89:0b:16:2f:cf:56:a6:87:47:a6:10:de:
+ ae:e7:83:75:46:fb:d7:e4:ed:39:c8:7e:f0:e5:2b:8d:f8:eb:
+ 92:7b:00:27:a9:f6:8e:28:9a:52:4f:93:65:45:df:31:5f:a4:
+ 73:23:59:0f:6c:dd:2c:50:24:d7:53:aa:d2:62:5e:b1:2e:99:
+ 5b:00:b8:e3:d3:4c:d6:69:66:0d:c4:f1:28:a5:13:02:f4:aa:
+ 7d:38:34:9f:58:86:19:84:02:01:22:98:2a:5d:88:e7:1d:ea:
+ 0d:4e:1c:bd:34:37:a6:6e:e4:26:68:1e:46:5c:6f:5c:08:5c:
+ b1:3d:42:50:ae:c3:9d:81:13:37:ec:97:9e:6a:01:8a:d3:a6:
+ c5:99:1d:1f:94:52:36:6a:57:db:86:4b:dd:05:1e:1b:95:b6:
+ 25:76:a7:69:75:ee:e3:6d:d2:2e:cd:7e:0c:2f:1e:e1:68:84:
+ a8:19:d6:da:bf:f8:4e:a9:21:ae:ca:da:af:f2:40:4e:4e:55:
+ f9:d8:d4:f2:98:6a:65:48:5d:84:b4:a5:3c:c2:bb:9a:06:a0:
+ df:2e:66:79:d4:da:7c:a2:93:5e:ac:c5:2c:53:46:77:60:1a:
+ 2a:7e:7d:1e:8f:9d:36:58:38:3a:6c:ec:6b:3e:2c:49:01:c6:
+ bc:cd:20:58:c6:f6:62:ac:7c:7a:62:ef:a0:3e:c9:50:72:45:
+ 15:3b:6e:09:4e:10:a8:b3:6a:ef:5d:29:83:db:7b:95:16:aa:
+ 43:0e:48:a6:57:79:d9:aa:43:ed:81:bf:ac:f2:0a:fa:5c:28:
+ c7:48:be:1c:07:a9:da:fa:5f:26:cd:63:33:d6:4b:41:90:4a:
+ 5c:b7:24:1d:50:42:27:c3
+-----BEGIN CERTIFICATE-----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==
+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/client-vitam/ca/ca-root.crt b/deployment/environments/certs/client-vitam/ca/ca-root.crt
new file mode 100644
index 0000000000000000000000000000000000000000..e18d3ac69a57465b949e97991ad03e9f1df916ec
--- /dev/null
+++ b/deployment/environments/certs/client-vitam/ca/ca-root.crt
@@ -0,0 +1,128 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 1 (0x1)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-vitam
+ Validity
+ Not Before: May 5 09:13:47 2020 GMT
+ Not After : May 3 09:13:47 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-vitam
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:c4:09:8e:5f:bb:7f:a5:f8:4e:28:02:67:b4:ed:
+ 09:a3:a6:ea:e7:28:8e:42:c7:16:0c:e8:57:fe:1d:
+ 0b:3b:a9:79:22:b3:32:05:a3:06:ad:f1:3f:b9:76:
+ 48:2c:e4:f4:93:a9:b6:30:d3:28:0d:de:b1:25:4a:
+ 5c:7b:32:cf:93:b4:e9:58:5e:c0:fe:f6:3d:4f:75:
+ f2:55:63:02:c8:52:f9:c0:2e:92:af:db:17:90:bc:
+ 65:28:ce:20:a0:6c:1a:14:4c:94:01:50:51:71:e7:
+ 0a:58:e2:7d:31:36:c7:10:92:d2:22:48:a2:81:fa:
+ 02:df:bd:71:4f:69:66:28:65:de:5e:63:5a:ef:3d:
+ 50:46:e3:2d:8e:b8:8f:23:ce:16:6d:40:31:42:60:
+ e5:f0:9b:f9:17:6f:ab:8a:46:5b:b4:e0:0d:1e:4d:
+ d6:d1:7f:f9:6b:44:2e:f3:0d:eb:fa:bd:9e:41:64:
+ 5f:de:5f:70:ae:81:77:9b:c6:c6:0c:42:c5:56:53:
+ cd:bb:8a:3d:73:65:f4:06:a6:59:34:23:33:fa:e4:
+ 78:53:34:e0:9b:82:6e:fd:79:2c:d4:56:59:6d:f3:
+ 19:a6:96:e6:3e:14:19:68:4b:03:b1:9d:38:a1:fc:
+ f8:f9:7a:9d:20:c0:d7:5d:eb:1d:01:06:61:2c:d6:
+ 1c:a6:11:94:25:80:c9:2d:fc:8b:fa:5b:e7:59:1f:
+ 90:2b:fe:de:ce:22:5e:26:d3:79:e6:21:39:e0:53:
+ 0c:0f:b9:22:00:59:e3:ed:54:9c:34:f4:ab:1e:45:
+ 4e:be:d1:b0:bf:10:b5:72:5a:dd:31:23:46:65:9f:
+ 1a:fd:6c:e5:bc:7a:fd:41:cc:1d:b1:e5:43:62:3a:
+ d5:f0:18:0d:8e:ef:28:62:f4:a8:41:03:b6:2a:6e:
+ c1:59:0c:a5:be:e5:a2:ab:ed:0f:a6:9c:bc:ac:b4:
+ 5b:6a:a0:3b:83:08:26:a0:f8:b0:f1:a6:ab:be:ed:
+ c4:ac:df:aa:0f:03:eb:43:48:fd:a7:78:e3:7b:4b:
+ 7d:40:d9:ac:cf:d4:94:8d:8d:8e:d6:2f:71:9c:81:
+ e9:65:2f:6e:57:6f:21:c2:fa:e1:18:1d:e1:69:ba:
+ 5b:4e:e9:db:12:39:be:01:7e:ed:de:52:28:a8:a5:
+ 59:26:1c:c5:f3:12:49:70:e4:7c:e0:dc:57:aa:38:
+ 0e:6d:af:76:87:19:d8:db:f6:e3:7f:cd:1b:9f:32:
+ 25:2e:ec:b0:b5:bb:65:64:ac:30:f5:7d:f5:cf:83:
+ aa:68:41:c8:ba:f0:b3:d9:6c:93:97:b3:89:91:b5:
+ b5:55:37:81:a9:9f:66:eb:c4:01:58:c0:d2:38:d0:
+ af:ce:f5
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Root
+ X509v3 Subject Key Identifier:
+ 06:FE:4C:68:B6:B0:FA:83:B5:FC:2D:9E:52:78:59:63:01:E0:8E:B9
+ X509v3 Authority Key Identifier:
+ keyid:06:FE:4C:68:B6:B0:FA:83:B5:FC:2D:9E:52:78:59:63:01:E0:8E:B9
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:1
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 0d:b6:01:e5:5f:47:4c:87:8e:0a:83:20:52:10:1e:00:c5:c7:
+ bc:da:36:2a:db:73:0e:78:ea:06:7d:97:30:77:68:51:34:ae:
+ d9:8a:ec:7e:f8:3a:aa:e4:15:59:ea:65:1e:84:47:77:03:0d:
+ 4e:43:b7:88:aa:94:35:de:14:cb:c4:6f:07:ef:f8:ff:cd:b8:
+ 18:60:c2:87:eb:23:2a:c2:c6:b4:16:15:24:ad:bb:2f:25:94:
+ a2:36:22:ac:10:61:d1:bb:14:de:bd:b5:f8:58:5e:1d:46:56:
+ f8:0f:7a:45:ea:ef:64:19:17:d6:ca:e3:d9:14:a2:b6:95:f9:
+ 5a:0a:f0:0b:0b:2b:bc:1c:85:6a:a1:39:47:d4:47:e5:91:d2:
+ 9d:82:1d:07:bd:34:fe:05:e7:60:97:77:65:9a:d8:1c:07:4a:
+ 5f:4a:f0:f4:f1:9d:44:6e:0e:ef:d9:ba:20:81:d9:99:d3:0a:
+ 0b:a9:f9:58:ee:de:6b:e2:13:9f:33:4c:2f:8f:03:49:ce:75:
+ 95:aa:de:b0:03:19:5a:ad:99:94:a5:3a:4a:dc:19:94:a3:62:
+ 3d:b3:14:f8:cd:37:42:e8:66:f7:e8:7e:0e:70:c7:be:3b:e9:
+ 04:1e:46:21:2e:8a:dc:13:d3:b3:be:74:77:dc:e9:20:95:ce:
+ 9b:28:0b:60:1f:7e:5a:ea:ea:7e:e3:d0:07:4a:21:0e:f0:9a:
+ 37:bb:98:03:bf:ed:46:b0:2c:6b:9c:19:1a:43:0e:22:62:21:
+ 59:69:b4:31:15:74:06:26:ba:02:83:85:3a:32:d7:71:6d:f9:
+ 95:80:44:d5:09:d4:4f:9c:e1:e9:8d:18:5f:54:89:82:ed:c7:
+ bd:77:66:c5:39:8e:53:60:4d:4f:bd:0b:56:58:5e:b9:9d:ec:
+ ce:48:13:21:74:37:3d:25:9f:e5:b7:40:b4:f0:13:52:a5:7e:
+ 8e:51:da:ce:3e:80:15:b3:a5:7a:39:2e:d8:c8:b0:96:6a:3d:
+ 2a:6a:e5:88:e5:e2:f7:a5:aa:3f:c5:dd:8b:49:9b:2f:04:39:
+ 12:4e:ad:9b:a7:26:be:11:c7:76:ff:85:1a:ac:45:77:aa:90:
+ 81:3e:e1:7d:d6:37:7a:ae:69:8d:4d:8a:bb:72:b4:8f:85:de:
+ b8:72:f2:55:65:cd:61:24:d3:8d:dc:99:54:38:d1:1f:c9:93:
+ d8:e8:da:0a:02:a3:d6:1a:fe:15:08:a4:9f:41:ab:22:c1:7d:
+ 27:29:fc:9b:f0:19:26:a6:73:19:a4:68:97:1d:d4:cf:27:38:
+ 18:26:4b:55:e2:cf:35:b6:cc:5f:dc:a6:5d:07:09:f8:1c:6a:
+ 59:bc:5d:a6:89:43:69:a4
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/client-vitam/clients/vitamui/README b/deployment/environments/certs/client-vitam/clients/vitamui/README
new file mode 100644
index 0000000000000000000000000000000000000000..7add3b44f8f1e83db4e03f7609a4acd1bd761362
--- /dev/null
+++ b/deployment/environments/certs/client-vitam/clients/vitamui/README
@@ -0,0 +1 @@
+Put your Vitam certificates here (.crt)
\ No newline at end of file
diff --git a/deployment/environments/certs/server/ca/ca-intermediate.crt b/deployment/environments/certs/server/ca/ca-intermediate.crt
index 248773c761ab54f596fb76d961d2987b6a597501..30823c0808eb0c9694392556753edc7551d04da5 100644
--- a/deployment/environments/certs/server/ca/ca-intermediate.crt
+++ b/deployment/environments/certs/server/ca/ca-intermediate.crt
@@ -1,136 +1,136 @@
Certificate:
Data:
Version: 3 (0x2)
- Serial Number: 485 (0x1e5)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_server
+ Serial Number: 2 (0x2)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_server
Validity
- Not Before: Dec 12 10:42:42 2019 GMT
- Not After : Dec 9 10:42:42 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_server
+ Not Before: May 5 09:13:40 2020 GMT
+ Not After : May 3 09:13:40 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
+ RSA Public-Key: (4096 bit)
Modulus:
- 00:c6:40:80:8f:e0:81:f9:ec:92:b5:af:60:5a:90:
- 58:a4:1f:e2:1c:ec:63:a5:1b:2c:7a:3a:e9:7c:a5:
- 52:27:d9:df:55:a8:93:47:7f:e6:0c:8a:ad:a3:2c:
- 52:a4:bb:38:06:4d:1d:43:56:de:19:7c:f3:28:02:
- f2:c6:8f:41:c0:a2:fe:78:65:c5:0e:88:3a:1b:34:
- 39:47:f1:9b:16:3a:68:b5:3f:b2:f9:99:81:3a:e8:
- b3:8b:d2:38:1e:77:ba:31:69:af:12:ca:ea:6a:bb:
- 28:01:ff:df:9f:2b:58:4e:fb:18:29:72:fb:63:30:
- f5:73:0e:61:d6:cc:7e:19:40:99:2c:45:fb:5e:51:
- 06:54:bf:0b:5f:6d:e7:d9:cd:b5:3a:ca:bb:20:37:
- 1e:8d:04:33:63:d9:64:47:2a:47:32:5f:1a:14:a8:
- af:b8:da:9b:f3:a7:b4:d5:41:ff:fc:49:20:62:ae:
- 69:a0:ad:37:fc:01:6c:f6:3d:12:53:5f:02:f0:3a:
- fb:1d:ac:3d:61:22:a9:e0:0e:cc:aa:a6:2b:45:d7:
- 1d:c4:a8:6d:04:18:ff:56:11:49:0d:80:8a:31:ab:
- ab:06:b7:fe:07:2b:64:18:0b:50:7e:9a:96:26:ed:
- e6:d5:9d:aa:33:fe:7b:4a:cd:ba:15:85:ad:bb:c5:
- c6:f1:0d:f2:20:71:72:a8:0b:f7:64:14:2d:3a:35:
- 04:8f:a7:68:f6:26:81:e3:68:17:ca:77:37:3b:6b:
- 81:68:05:55:64:6c:13:c0:a2:59:2d:62:2a:39:c5:
- 74:21:ed:95:ba:38:80:65:b2:99:e2:f7:97:80:9c:
- 23:2b:07:79:84:97:b2:5a:c0:db:97:6a:81:3c:ce:
- 4a:0b:3e:fd:fe:9b:6d:29:6b:f4:20:50:ba:a7:77:
- 6c:26:54:22:e0:81:6e:56:3c:cf:e3:a9:8f:8c:cd:
- 91:e1:bc:7d:9c:c4:92:39:7e:01:12:9d:9b:06:93:
- f7:e1:0b:a8:35:2c:fb:16:24:11:a4:91:17:84:91:
- 0e:54:eb:3f:5d:8c:8a:78:f8:65:67:dd:08:c0:6a:
- 88:25:26:47:25:ab:28:09:1b:b0:ce:bd:21:20:f1:
- 73:65:2c:c9:e9:14:8e:cd:76:46:79:43:08:2e:ba:
- 96:ea:3e:05:31:81:4b:b2:eb:6f:0f:5b:54:6b:29:
- 0c:4a:91:a2:8e:99:62:a3:84:8e:3d:71:a9:01:35:
- 4d:08:49:59:84:62:9a:06:47:c8:ce:43:43:bd:9e:
- 88:d2:99:1c:aa:68:a5:31:b1:0b:88:3f:87:ff:7c:
- 8a:1e:1c:12:7b:85:02:aa:b9:6a:11:07:81:4c:50:
- 46:1b:a3
+ 00:cc:59:39:ae:1f:dc:0c:63:0c:cf:23:53:2f:b6:
+ 07:88:58:52:6f:f9:0a:e1:2d:b8:d2:e4:ef:3d:1e:
+ 1b:ca:be:36:80:e2:f4:08:c7:9a:37:2e:00:c2:46:
+ bd:8d:77:64:b3:3f:52:c6:fd:2d:2e:d1:d3:37:52:
+ 82:93:fa:7c:91:1f:70:11:23:e9:28:86:4e:2b:2b:
+ b2:db:c2:5a:48:e0:32:17:13:80:7e:f7:0c:1e:f8:
+ 0b:fb:69:aa:fe:7e:05:f9:d4:77:3f:b0:c2:fb:22:
+ f3:0b:fc:c4:c3:f5:ce:2a:0c:08:af:46:fb:0e:43:
+ e3:07:bd:42:10:d9:4f:d0:9f:65:1a:2d:f4:59:6b:
+ 0e:ec:b0:dd:08:c1:11:a0:aa:53:f1:84:56:57:54:
+ 6d:8b:2d:74:99:99:21:92:5f:a3:4f:57:22:09:4d:
+ 61:96:20:f5:24:3d:98:c1:d6:d9:aa:ed:81:d9:f7:
+ 99:50:d4:ad:e5:45:7b:d9:fb:cb:55:c8:5c:90:af:
+ 1e:9d:8e:71:1a:ce:d6:6a:7c:6f:9e:d8:08:dc:e6:
+ 58:1c:c2:ed:55:58:6f:a0:0e:7d:a3:5b:16:20:28:
+ 1c:9f:9f:10:63:ca:0d:b1:6d:42:ec:05:76:3c:32:
+ a5:ad:02:da:c5:87:a3:8c:c3:0d:c0:13:fd:df:5d:
+ 72:a4:9b:88:73:6f:17:b2:45:8c:a4:93:7b:1b:46:
+ a6:74:07:bf:28:51:fd:cd:20:d4:c5:6c:9a:50:09:
+ 0a:c9:93:84:e9:d4:fd:d2:d7:b7:12:72:5a:3e:0d:
+ fd:5f:e9:64:a5:39:de:96:ec:64:a9:d9:57:f0:31:
+ 35:1f:ea:c9:f8:48:da:2e:74:d8:9d:48:24:1c:af:
+ 37:9e:2a:f3:76:f2:1f:ee:89:9e:a3:81:e9:ef:c3:
+ 5d:d1:cf:b1:15:3d:16:4f:62:9d:da:7a:2f:39:d0:
+ 2b:0c:02:19:4e:d8:2e:cc:1d:1c:b2:31:68:ca:0d:
+ 6a:8d:71:44:18:06:82:cd:03:b2:a4:4b:89:6d:db:
+ 96:87:d1:c6:35:0b:f3:e1:3b:a9:18:ba:ca:91:e4:
+ 40:04:b0:43:0f:7d:1e:58:3f:53:3c:1b:ea:b4:ec:
+ 64:72:34:c0:56:6d:15:3a:07:95:93:15:85:f0:d3:
+ 6b:37:43:d4:ac:d3:a8:61:84:d2:9e:0e:66:93:8e:
+ 7f:96:96:f2:e6:40:a8:d9:3b:a7:bc:53:c8:bb:eb:
+ 0f:b5:34:ba:4c:0f:81:06:a5:54:fe:ad:1f:48:76:
+ 7a:a4:28:1b:42:6b:48:29:a5:bb:12:d1:c6:50:49:
+ 28:ea:96:f0:68:1b:d0:f3:e8:d4:1a:39:c6:f7:a5:
+ ff:dd:99
Exponent: 65537 (0x10001)
X509v3 extensions:
- Netscape Comment:
+ Netscape Comment:
CA Intermediate
- X509v3 Subject Key Identifier:
- 88:CD:41:D7:31:FE:AE:05:33:F5:D4:82:48:A4:0E:1A:9E:EE:BC:B8
- X509v3 Authority Key Identifier:
- keyid:C7:BD:36:FF:58:55:76:8D:DF:07:1F:6F:C8:79:3D:C3:25:DD:D9:80
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
- serial:01:E4
+ X509v3 Subject Key Identifier:
+ E8:D5:71:89:7A:D5:65:64:EC:77:74:B4:D3:93:32:E4:DA:FF:04:7E
+ X509v3 Authority Key Identifier:
+ keyid:57:A4:F9:F5:76:E1:14:88:0A:AB:3A:64:87:DA:A3:41:16:1C:59:DE
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_server
+ serial:01
X509v3 Basic Constraints: critical
CA:TRUE, pathlen:0
- X509v3 Issuer Alternative Name:
+ X509v3 Issuer Alternative Name:
<EMPTY>
- X509v3 Key Usage:
+ X509v3 Key Usage:
Certificate Sign, CRL Sign
- Netscape Cert Type:
+ Netscape Cert Type:
SSL CA
Signature Algorithm: sha256WithRSAEncryption
- 27:b2:fe:12:9c:5f:2f:59:9d:c9:f2:48:6b:7b:f3:07:20:74:
- 24:64:ce:75:9c:8c:01:f1:3d:aa:86:cd:21:f8:35:91:ee:9f:
- 27:3f:92:ab:4e:4f:81:c4:52:60:01:19:15:d8:bc:95:d6:a3:
- 2a:72:3b:32:06:f1:c3:b0:81:fc:06:4e:a6:4c:81:4b:a5:43:
- 23:5b:40:3e:a5:5c:2e:17:08:76:4d:d7:de:90:ad:98:ec:74:
- 5f:2d:6a:71:ec:99:cf:88:07:d9:90:55:44:f2:db:b4:cb:67:
- 1f:ee:b8:54:60:3e:61:5a:45:0b:06:60:05:ed:b3:bb:13:7d:
- 38:8c:51:a4:a0:6a:b7:88:c5:c1:70:11:44:a7:6c:e9:2b:83:
- 75:57:97:d2:16:d6:c0:15:ea:53:2e:56:b7:86:50:88:c3:3a:
- 9e:50:6b:f1:af:03:9e:56:8b:4e:e5:24:f8:0f:2d:00:d8:40:
- b7:04:18:3c:61:58:34:86:2b:ae:99:44:e7:58:34:02:05:ae:
- f9:fb:11:2f:4a:03:f4:7c:66:15:89:04:4c:e8:b1:e5:cf:71:
- 27:d0:fa:e0:52:a2:9b:f9:cf:7e:2b:bd:1d:04:a5:db:52:aa:
- 56:b8:62:b0:aa:a6:32:ac:88:37:e0:01:6a:1b:79:be:ba:7c:
- 20:95:8f:fa:87:26:70:a8:58:9d:93:1c:b1:c1:a2:3b:1e:bc:
- bb:0e:ef:9d:7d:3a:ac:b4:b8:8d:17:6c:b4:e2:e1:82:6c:1b:
- 79:8b:a1:e7:46:c0:0c:3f:c5:4c:3c:d1:84:40:bb:3c:84:48:
- aa:05:7a:2d:09:ad:55:e0:7e:3c:97:44:22:b4:73:80:5c:24:
- e9:5e:8a:0e:dd:1d:f8:3f:c9:f0:b9:93:a8:b6:b8:ea:20:1b:
- 8b:c3:49:87:0b:30:35:9c:d9:da:25:12:96:4a:cb:9a:b1:8e:
- fc:2a:14:eb:50:f9:dc:45:ed:67:85:f6:03:c9:22:57:7c:91:
- 7a:dd:50:eb:e1:e7:0d:5a:d4:4d:27:75:4e:c6:e8:c3:27:f3:
- da:2f:ea:b0:11:0b:1a:b6:9d:45:bc:ef:b3:7f:ae:aa:1a:d8:
- 7a:bd:1a:d9:01:3e:8f:a6:42:09:19:c1:d4:ae:83:8f:d8:fc:
- de:7d:47:7b:78:84:b9:53:44:68:21:c2:4a:94:e6:bf:69:d6:
- 89:d0:4c:54:14:be:cd:a1:b7:01:c9:ae:e5:37:41:49:a0:15:
- d1:0b:bd:40:1c:34:43:6c:72:ee:d0:73:95:2b:49:64:fb:69:
- 5c:77:4d:48:57:3b:7f:a3:9b:b8:1d:b6:e3:0c:34:b4:73:75:
- 0a:59:b4:14:fa:35:6d:2b
+ 29:55:c7:ca:ea:75:6e:e3:e0:d0:bf:7b:2b:bf:74:63:c1:a1:
+ ce:1a:c7:76:c9:bb:8a:ce:ad:74:d4:03:8b:b7:b3:68:26:83:
+ e9:35:40:84:d2:41:fc:44:96:90:19:16:97:c2:7a:7f:37:68:
+ 0d:46:6f:ea:0d:17:31:ac:83:d2:ae:3d:cd:a1:ab:22:34:71:
+ f6:8d:60:7c:24:66:a7:75:99:19:47:eb:ec:03:8f:7a:e8:01:
+ f9:df:70:93:b5:6e:57:e0:06:1f:ea:c4:cd:21:02:e9:14:39:
+ 42:31:8c:3d:0d:29:da:e4:d8:64:43:c8:5b:54:3d:e0:3c:c7:
+ 94:ea:1e:7d:ac:b0:21:2d:b5:74:77:64:56:8f:07:e3:47:68:
+ b2:62:f7:58:53:5d:b7:0f:70:59:93:c7:fc:8a:aa:a1:8e:a8:
+ 8f:6b:c0:a5:ab:7a:25:1f:2b:45:28:9e:49:a8:51:b3:26:63:
+ e9:dd:75:c6:1c:84:d5:45:1a:e8:21:a3:3d:79:ed:05:e1:84:
+ 39:28:c8:68:4c:02:18:45:e3:9b:5b:41:d1:ad:8a:4f:70:51:
+ ed:a2:13:cc:fd:9e:b9:81:0e:c0:a1:bf:f5:d1:fb:e7:28:2c:
+ 99:9e:3d:a6:4e:ce:90:d0:0a:da:26:71:ab:27:c0:f6:c4:fe:
+ 0c:bd:2c:36:6e:66:00:dc:1d:7d:26:46:4c:16:eb:4f:ad:6c:
+ c7:42:9f:b0:e1:1d:9f:49:a4:03:80:ea:ad:5c:87:b7:59:62:
+ 27:49:f5:d1:a4:c5:cf:50:2c:7e:75:bf:46:9a:3d:3a:79:63:
+ d4:7c:97:91:a5:b0:78:8b:f3:4a:36:91:d6:85:35:2b:10:77:
+ 90:36:7e:6c:a9:5f:84:78:51:99:44:60:46:91:78:48:7b:bb:
+ 42:07:c8:97:3b:e5:66:fc:7c:d4:86:22:8c:f5:c3:b2:a4:78:
+ 74:ae:59:b6:09:09:69:24:f0:c9:00:dd:82:35:25:72:ac:65:
+ 2c:4f:ba:7e:0c:13:25:41:d1:66:cd:5b:70:29:7c:6a:ea:3b:
+ 66:f1:19:fb:a9:bb:35:2d:07:d5:61:8d:b3:c3:01:96:cc:b0:
+ f8:5b:ae:ba:a6:af:9a:ca:be:39:4d:9c:b3:7c:ce:2e:b2:86:
+ eb:a1:e3:fb:4f:77:49:e0:bc:e8:e2:83:a3:0d:57:80:d8:4e:
+ d5:29:1b:77:f8:b1:18:05:9f:37:1a:c1:ca:8d:c9:9e:9f:38:
+ 99:8a:db:59:9e:ae:ce:15:66:ae:5b:0c:6f:0d:52:92:80:95:
+ c5:03:2f:47:94:66:29:1f:71:63:ac:89:ae:7f:5c:03:35:4e:
+ 36:44:95:d5:17:8e:3c:3b
-----BEGIN CERTIFICATE-----
-MIIGdDCCBFygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwajELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEXMBUGA1UEAwwOY2Ffcm9vdF9zZXJ2ZXIwHhcN
-MTkxMjEyMTA0MjQyWhcNMjkxMjA5MTA0MjQyWjByMQswCQYDVQQGEwJmcjEMMAoG
-A1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xFDASBgNV
-BAsMC2F1dGhvcml0aWVzMR8wHQYDVQQDDBZjYV9pbnRlcm1lZGlhdGVfc2VydmVy
-MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxkCAj+CB+eySta9gWpBY
-pB/iHOxjpRssejrpfKVSJ9nfVaiTR3/mDIqtoyxSpLs4Bk0dQ1beGXzzKALyxo9B
-wKL+eGXFDog6GzQ5R/GbFjpotT+y+ZmBOuizi9I4Hne6MWmvEsrqarsoAf/fnytY
-TvsYKXL7YzD1cw5h1sx+GUCZLEX7XlEGVL8LX23n2c21Osq7IDcejQQzY9lkRypH
-Ml8aFKivuNqb86e01UH//EkgYq5poK03/AFs9j0SU18C8Dr7Haw9YSKp4A7MqqYr
-RdcdxKhtBBj/VhFJDYCKMaurBrf+BytkGAtQfpqWJu3m1Z2qM/57Ss26FYWtu8XG
-8Q3yIHFyqAv3ZBQtOjUEj6do9iaB42gXync3O2uBaAVVZGwTwKJZLWIqOcV0Ie2V
-ujiAZbKZ4veXgJwjKwd5hJeyWsDbl2qBPM5KCz79/pttKWv0IFC6p3dsJlQi4IFu
-VjzP46mPjM2R4bx9nMSSOX4BEp2bBpP34QuoNSz7FiQRpJEXhJEOVOs/XYyKePhl
-Z90IwGqIJSZHJasoCRuwzr0hIPFzZSzJ6RSOzXZGeUMILrqW6j4FMYFLsutvD1tU
-aykMSpGijplio4SOPXGpATVNCElZhGKaBkfIzkNDvZ6I0pkcqmilMbELiD+H/3yK
-HhwSe4UCqrlqEQeBTFBGG6MCAwEAAaOCARowggEWMB4GCWCGSAGG+EIBDQQRFg9D
-QSBJbnRlcm1lZGlhdGUwHQYDVR0OBBYEFIjNQdcx/q4FM/XUgkikDhqe7ry4MIGV
-BgNVHSMEgY0wgYqAFMe9Nv9YVXaN3wcfb8h5PcMl3dmAoW6kbDBqMQswCQYDVQQG
-EwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0
-YW0xFDASBgNVBAsMC2F1dGhvcml0aWVzMRcwFQYDVQQDDA5jYV9yb290X3NlcnZl
-coICAeQwEgYDVR0TAQH/BAgwBgEB/wIBADAJBgNVHRIEAjAAMAsGA1UdDwQEAwIB
-BjARBglghkgBhvhCAQEEBAMCAgQwDQYJKoZIhvcNAQELBQADggIBACey/hKcXy9Z
-ncnySGt78wcgdCRkznWcjAHxPaqGzSH4NZHunyc/kqtOT4HEUmABGRXYvJXWoypy
-OzIG8cOwgfwGTqZMgUulQyNbQD6lXC4XCHZN196QrZjsdF8tanHsmc+IB9mQVUTy
-27TLZx/uuFRgPmFaRQsGYAXts7sTfTiMUaSgareIxcFwEUSnbOkrg3VXl9IW1sAV
-6lMuVreGUIjDOp5Qa/GvA55Wi07lJPgPLQDYQLcEGDxhWDSGK66ZROdYNAIFrvn7
-ES9KA/R8ZhWJBEzoseXPcSfQ+uBSopv5z34rvR0EpdtSqla4YrCqpjKsiDfgAWob
-eb66fCCVj/qHJnCoWJ2THLHBojsevLsO7519Oqy0uI0XbLTi4YJsG3mLoedGwAw/
-xUw80YRAuzyESKoFei0JrVXgfjyXRCK0c4BcJOleig7dHfg/yfC5k6i2uOogG4vD
-SYcLMDWc2dolEpZKy5qxjvwqFOtQ+dxF7WeF9gPJIld8kXrdUOvh5w1a1E0ndU7G
-6MMn89ov6rARCxq2nUW877N/rqoa2Hq9GtkBPo+mQgkZwdSug4/Y/N59R3t4hLlT
-RGghwkqU5r9p1onQTFQUvs2htwHJruU3QUmgFdELvUAcNENscu7Qc5UrSWT7aVx3
-TUhXO3+jm7gdtuMMNLRzdQpZtBT6NW0r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-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/ca/ca-root.crt b/deployment/environments/certs/server/ca/ca-root.crt
index 6972ec2f3fc7a7c2f6fa40fd51fc366df96d3ccb..27bd64a86e8e34d317dfc3f575186b23d91ba00a 100644
--- a/deployment/environments/certs/server/ca/ca-root.crt
+++ b/deployment/environments/certs/server/ca/ca-root.crt
@@ -1,128 +1,128 @@
Certificate:
Data:
Version: 3 (0x2)
- Serial Number: 484 (0x1e4)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_server
+ Serial Number: 1 (0x1)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_server
Validity
- Not Before: Dec 12 10:42:41 2019 GMT
- Not After : Dec 9 10:42:41 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_server
+ Not Before: May 5 09:13:39 2020 GMT
+ Not After : May 3 09:13:39 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_server
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
+ RSA Public-Key: (4096 bit)
Modulus:
- 00:c0:8c:d9:8e:fa:5c:84:34:43:32:a7:8e:b8:74:
- f1:52:da:97:73:ef:fd:3a:45:3d:bb:a9:94:28:41:
- f8:f9:1e:ab:c9:d9:00:ca:26:aa:ce:67:9f:f6:e7:
- 89:55:18:fd:1f:d9:7d:9f:fc:d9:5e:a8:b3:5d:23:
- e7:09:96:57:03:e0:61:36:e7:2c:5b:37:01:0d:0f:
- b9:1d:d5:5e:22:1f:c2:ed:fd:36:53:fc:12:60:e0:
- 46:52:b7:51:a4:12:aa:d1:ab:b8:c5:90:25:39:a5:
- 6d:43:3b:a6:a1:64:36:69:5c:56:9b:23:be:b6:f0:
- 7b:50:f8:a9:34:39:f0:2b:8f:db:e1:b0:64:8a:46:
- 14:2e:38:ba:01:90:1d:df:94:99:9e:f2:85:1c:52:
- 0f:8f:da:bd:0c:2f:fb:e1:ca:65:a3:10:6c:58:e8:
- 2d:1a:6d:28:f1:0f:98:5a:9e:f6:80:03:75:43:9b:
- 86:f3:6d:14:38:bf:e7:71:c2:e5:eb:67:d6:7f:19:
- e1:8f:b3:af:fc:d9:79:06:08:c5:69:02:f0:7e:79:
- ce:b8:b6:48:56:24:5a:d6:27:9f:bb:5c:c6:d8:ea:
- 22:2a:76:16:f6:64:a4:c6:29:43:73:28:cf:6a:00:
- 82:64:e0:3a:ac:a1:0b:e6:70:a0:92:d7:cc:a2:39:
- 79:8e:e6:d1:cb:f5:1b:ae:e9:3d:05:f3:71:c1:2a:
- 21:eb:b7:1f:9a:e3:5f:22:13:e9:2d:f1:e8:db:2c:
- 8b:81:a7:0d:d1:47:ed:5e:6b:54:e9:12:78:18:ad:
- b1:1e:7a:0b:e7:ef:7e:f6:fc:6d:ee:08:ae:19:c2:
- 6b:5a:3e:cb:36:1a:17:0a:09:7e:ad:b4:77:e0:30:
- 34:b3:8c:31:26:96:4b:ad:1a:d9:3c:df:cd:29:94:
- a7:93:3d:76:5d:a8:85:7f:22:be:93:ae:1c:af:63:
- 60:62:78:d8:d3:cd:40:8f:cd:14:80:07:bd:d6:f0:
- b1:0b:82:aa:d4:52:69:59:89:3b:e2:5a:c3:32:4a:
- 20:57:22:f9:67:59:25:f8:3a:e1:5b:b7:f9:0d:39:
- 1d:8f:70:ce:fb:fa:33:05:03:cb:75:18:5b:19:d6:
- 1d:e2:5c:9c:6a:6f:11:f3:d6:b0:ba:44:9c:bb:c1:
- 87:8b:b1:b7:a9:9d:0b:29:1d:39:0f:5a:2b:af:01:
- be:2f:73:b3:6c:9c:e0:eb:f7:ec:e7:9a:de:84:b4:
- 8a:10:a2:53:af:96:f4:20:c4:a8:22:86:8c:47:87:
- db:f2:64:e2:d4:80:03:4a:96:27:a2:fa:3a:8d:df:
- a0:1c:4a:46:f9:da:e3:2d:0e:2a:81:e6:e6:45:6d:
- 6c:3b:89
+ 00:da:6e:48:80:4f:ab:34:e3:22:05:d3:c2:09:d4:
+ 57:63:b0:93:ae:c2:89:69:0f:de:9f:14:27:41:e9:
+ d9:cd:97:12:50:a5:d2:5f:0f:57:7c:ef:be:0e:1e:
+ 7d:db:ae:d3:8a:2b:78:6e:87:f5:8d:ce:02:fd:2c:
+ 91:82:f9:72:4e:57:46:7a:50:65:0f:ff:e7:cd:cb:
+ d7:77:7f:53:7e:f0:3e:8e:3d:97:ab:e5:04:18:03:
+ 74:89:65:5a:de:3b:f8:b0:8a:90:96:4d:05:98:c3:
+ 91:e2:04:cb:30:e8:36:be:e6:52:7a:50:c0:0d:af:
+ 72:5b:f5:34:fb:f5:16:62:87:df:32:1e:6d:f6:33:
+ 08:0b:13:83:34:ff:92:77:4f:eb:76:ff:38:bf:62:
+ f9:29:d3:41:74:58:17:b2:37:3c:e8:45:f6:cc:cd:
+ e5:00:de:e1:7e:70:9d:d0:21:66:3b:99:1e:8c:72:
+ a5:68:95:74:0a:27:44:bf:4a:7e:44:35:2a:0c:49:
+ 23:44:86:3f:23:64:b6:3b:96:3a:4f:15:13:25:e0:
+ 2d:90:c8:ff:b2:ee:10:b4:c4:a9:97:5f:68:2e:77:
+ 9e:70:62:65:68:30:28:85:c2:9f:08:f5:c1:fe:7b:
+ 15:12:93:6d:58:d6:e6:3e:24:b5:6a:38:36:46:8f:
+ 35:8a:27:b2:0d:9e:aa:eb:92:ad:d9:08:d5:22:d5:
+ 35:d1:f6:3c:59:80:1c:0f:0f:72:98:3d:03:3c:c5:
+ e8:81:45:12:b3:8f:99:4a:06:f0:14:07:94:5a:43:
+ a3:88:8a:d4:d4:04:c4:bf:ab:ed:72:7d:ec:8b:bf:
+ 50:e2:96:32:6f:ad:1d:ed:42:22:00:2d:1e:ba:9d:
+ c7:c3:e1:31:75:a3:75:fe:40:db:4d:87:16:3e:b4:
+ 0a:dc:64:37:3d:73:92:7a:ed:b2:95:bc:eb:46:b6:
+ 7f:c5:e1:1d:ec:fb:e8:5b:35:35:81:a1:3a:af:9e:
+ a7:3c:26:b9:34:72:e4:3d:81:18:b0:45:fb:6f:8a:
+ 23:6b:d7:c2:af:a2:94:ed:f9:55:61:83:50:ad:5e:
+ d8:7f:45:32:1e:ba:c5:fc:c0:a9:ac:d2:5e:14:67:
+ 2d:45:b3:ec:7c:dc:ea:15:ff:cc:ec:41:a7:99:2e:
+ 60:0b:51:b9:7b:1b:a2:db:18:f4:f6:d3:88:9e:37:
+ 77:59:2b:b5:90:22:a1:86:04:f7:e6:11:53:05:13:
+ 56:17:ed:5a:1e:b8:40:57:18:4f:de:3d:27:c7:24:
+ d2:4f:42:b9:10:49:0a:07:47:5d:1f:cb:cf:eb:86:
+ ca:62:c9:50:74:fa:57:fe:f8:e7:15:41:ca:0f:89:
+ ae:7d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
- Netscape Comment:
+ Netscape Comment:
CA Root
- X509v3 Subject Key Identifier:
- C7:BD:36:FF:58:55:76:8D:DF:07:1F:6F:C8:79:3D:C3:25:DD:D9:80
- X509v3 Authority Key Identifier:
- keyid:C7:BD:36:FF:58:55:76:8D:DF:07:1F:6F:C8:79:3D:C3:25:DD:D9:80
+ X509v3 Subject Key Identifier:
+ 57:A4:F9:F5:76:E1:14:88:0A:AB:3A:64:87:DA:A3:41:16:1C:59:DE
+ X509v3 Authority Key Identifier:
+ keyid:57:A4:F9:F5:76:E1:14:88:0A:AB:3A:64:87:DA:A3:41:16:1C:59:DE
X509v3 Basic Constraints: critical
CA:TRUE, pathlen:1
- X509v3 Key Usage:
+ X509v3 Key Usage:
Certificate Sign, CRL Sign
- Netscape Cert Type:
+ Netscape Cert Type:
SSL CA
Signature Algorithm: sha256WithRSAEncryption
- 13:99:86:4c:dd:ea:44:ec:18:36:c1:c3:4b:98:b1:a3:1f:d7:
- 0e:04:f3:62:25:1f:07:ea:27:c2:26:79:76:2a:63:34:04:73:
- 86:5f:35:f9:f9:a8:aa:ba:45:5b:6f:c5:1c:44:25:f4:0d:64:
- 4d:16:f8:88:8b:db:17:8b:e8:22:24:d8:9a:5b:0c:5f:e5:6d:
- c4:e0:be:89:73:2a:3d:c7:56:2e:a7:c6:c2:4c:fa:29:9d:a7:
- 5d:b4:bb:eb:67:ce:ae:94:83:04:4a:52:e2:31:48:53:db:53:
- 54:11:2a:08:58:d3:9e:f5:ed:5a:9d:50:4a:cf:eb:e7:52:ae:
- bc:be:49:92:bc:dc:5b:ae:dc:6f:55:97:48:1d:fb:a9:35:e2:
- 5c:57:2f:41:8b:68:78:54:b6:58:01:75:ad:31:81:3a:fc:da:
- c2:41:59:51:00:12:e9:5c:94:45:84:f2:f8:fc:a8:c2:84:37:
- d4:12:e6:b0:a5:21:30:06:c8:45:bc:64:db:cd:da:a4:f8:4e:
- f5:5b:26:d3:9b:ed:88:a1:56:fc:99:bb:96:cd:03:e8:52:2f:
- 88:ed:c2:72:3f:0c:10:8a:b1:08:50:c1:bf:04:d6:65:90:62:
- 0a:9b:e8:61:e4:be:1a:ea:da:69:50:2f:01:87:5f:39:19:6e:
- fc:f8:4e:39:98:8d:c5:6b:c3:2e:df:1e:99:8c:31:cb:00:37:
- af:70:2b:12:dc:3b:c0:76:77:45:55:95:09:6e:74:f1:e6:8a:
- 08:af:bb:58:4f:45:4e:ef:77:b3:c3:7b:a4:5b:98:1b:e6:19:
- e3:ff:f7:14:98:95:85:89:f5:e2:ff:46:70:59:e0:a6:51:bc:
- 6d:e9:61:e9:74:26:67:3d:23:40:15:a3:d5:20:17:bb:47:74:
- 52:7e:a1:0f:b2:76:9f:e5:3b:60:c2:24:4e:2c:15:db:0b:cf:
- be:86:c5:f2:42:53:5e:ee:c4:73:d4:08:e4:22:df:65:26:d2:
- 42:90:2b:7d:13:a6:ab:52:a9:b1:61:37:d9:9f:e0:56:a9:7c:
- 42:55:f1:c5:fa:56:9a:fe:b0:08:19:30:77:ad:2c:d9:15:7e:
- db:10:3d:7a:58:e8:8f:b9:e0:1c:f2:27:0a:1f:bf:18:13:c8:
- 56:a3:ef:b3:eb:f9:d0:ad:b3:10:62:fe:91:02:64:0b:7b:9e:
- c7:f5:82:20:b0:d4:74:88:ed:29:62:ba:5d:ac:69:ea:df:e3:
- 82:b5:ff:47:81:66:1a:b4:d9:80:88:1a:6d:48:ff:db:07:2d:
- 68:c6:28:41:5e:da:04:df:37:f5:83:bb:77:f3:16:47:df:53:
- 8b:66:ad:ff:23:40:f0:a5
+ 17:49:1d:33:7b:48:e5:58:9b:b5:d5:85:50:3a:71:c6:81:6b:
+ 0c:62:c2:6e:b8:f8:b9:8f:9c:83:f2:c6:6d:f8:ca:bd:8f:e4:
+ 54:5f:5b:50:ef:05:4b:21:a0:96:4f:f2:4c:1d:1f:aa:19:05:
+ 8d:1c:86:7f:11:53:7c:21:66:66:05:8d:78:b3:da:53:da:9e:
+ cd:a3:af:7e:f9:59:93:a0:31:f4:25:37:c5:33:18:ed:eb:a7:
+ bb:35:9c:d5:1b:0e:83:11:9b:72:89:3f:c4:3d:7b:b7:d0:d7:
+ 0e:a2:fd:81:56:e6:11:3a:2d:e9:4e:bc:59:7a:b2:a5:7d:db:
+ 26:da:01:a2:95:df:84:02:68:36:04:c1:48:0b:54:92:a2:a8:
+ 6f:43:18:72:9c:eb:3d:b3:d4:73:34:c5:29:4a:4e:9b:4a:6a:
+ 43:06:16:4d:91:b6:85:a2:34:60:1f:4c:64:34:b6:ce:b4:b6:
+ 56:2b:76:19:72:f3:0b:d5:08:63:d1:ca:92:75:19:8a:13:8c:
+ 56:e1:20:69:28:58:79:ca:fc:59:e5:64:87:1f:58:7e:98:ba:
+ 36:b0:64:e8:fa:28:16:6f:0a:7c:b6:11:49:6f:4f:93:72:bb:
+ be:25:75:fa:5a:c9:c4:34:6d:32:8a:61:88:8a:f6:df:17:98:
+ 61:c5:bd:58:8f:30:eb:d6:03:75:92:a2:fe:2b:d2:76:87:55:
+ ca:9e:2a:de:e6:d5:34:67:68:1a:b1:47:90:28:73:ab:32:41:
+ 98:2a:13:15:e0:7a:9c:46:a4:af:e5:83:23:08:7a:9c:da:50:
+ 4e:a5:bf:4e:68:6d:84:2e:8e:e4:ab:94:0d:f1:1a:7e:dc:df:
+ 0f:ab:f8:f2:db:9b:2b:a1:4b:62:e7:38:23:25:d9:31:b8:4d:
+ 3d:4e:41:56:9d:f0:55:72:8c:fd:f6:4b:fd:93:b1:ec:8b:ae:
+ 50:1b:00:5c:35:ce:b0:da:55:82:01:86:dd:c1:06:51:ae:0b:
+ ef:fa:ed:e5:09:6a:32:ac:cc:7f:d5:b8:08:b6:9a:ba:4f:5b:
+ 52:3a:15:ee:ec:20:7a:dc:3e:05:69:58:14:af:dd:9c:df:6d:
+ 95:a5:39:05:24:a2:5e:06:71:23:2b:b6:61:d4:f0:46:1f:4c:
+ 52:df:5a:22:6a:ff:17:72:4b:f5:a6:89:40:bd:1c:e8:75:69:
+ e3:34:ab:2c:c3:3b:07:49:2c:f8:c8:47:72:dd:7e:2c:b9:52:
+ db:76:19:46:14:aa:64:ba:30:67:a9:4f:37:f8:7f:38:c8:4c:
+ 1f:21:0d:28:08:85:0d:8a:c2:ae:b8:64:35:f7:7f:1b:9d:c4:
+ b3:4c:6b:ef:29:29:38:e0
-----BEGIN CERTIFICATE-----
-MIIF4DCCA8igAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwajELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEXMBUGA1UEAwwOY2Ffcm9vdF9zZXJ2ZXIwHhcN
-MTkxMjEyMTA0MjQxWhcNMjkxMjA5MTA0MjQxWjBqMQswCQYDVQQGEwJmcjEMMAoG
-A1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xFDASBgNV
-BAsMC2F1dGhvcml0aWVzMRcwFQYDVQQDDA5jYV9yb290X3NlcnZlcjCCAiIwDQYJ
-KoZIhvcNAQEBBQADggIPADCCAgoCggIBAMCM2Y76XIQ0QzKnjrh08VLal3Pv/TpF
-PbuplChB+Pkeq8nZAMomqs5nn/bniVUY/R/ZfZ/82V6os10j5wmWVwPgYTbnLFs3
-AQ0PuR3VXiIfwu39NlP8EmDgRlK3UaQSqtGruMWQJTmlbUM7pqFkNmlcVpsjvrbw
-e1D4qTQ58CuP2+GwZIpGFC44ugGQHd+UmZ7yhRxSD4/avQwv++HKZaMQbFjoLRpt
-KPEPmFqe9oADdUObhvNtFDi/53HC5etn1n8Z4Y+zr/zZeQYIxWkC8H55zri2SFYk
-WtYnn7tcxtjqIip2FvZkpMYpQ3Moz2oAgmTgOqyhC+ZwoJLXzKI5eY7m0cv1G67p
-PQXzccEqIeu3H5rjXyIT6S3x6Nssi4GnDdFH7V5rVOkSeBitsR56C+fvfvb8be4I
-rhnCa1o+yzYaFwoJfq20d+AwNLOMMSaWS60a2TzfzSmUp5M9dl2ohX8ivpOuHK9j
-YGJ42NPNQI/NFIAHvdbwsQuCqtRSaVmJO+JawzJKIFci+WdZJfg64Vu3+Q05HY9w
-zvv6MwUDy3UYWxnWHeJcnGpvEfPWsLpEnLvBh4uxt6mdCykdOQ9aK68Bvi9zs2yc
-4Ov37Oea3oS0ihCiU6+W9CDEqCKGjEeH2/Jk4tSAA0qWJ6L6Oo3foBxKRvna4y0O
-KoHm5kVtbDuJAgMBAAGjgY8wgYwwFgYJYIZIAYb4QgENBAkWB0NBIFJvb3QwHQYD
-VR0OBBYEFMe9Nv9YVXaN3wcfb8h5PcMl3dmAMB8GA1UdIwQYMBaAFMe9Nv9YVXaN
-3wcfb8h5PcMl3dmAMBIGA1UdEwEB/wQIMAYBAf8CAQEwCwYDVR0PBAQDAgEGMBEG
-CWCGSAGG+EIBAQQEAwICBDANBgkqhkiG9w0BAQsFAAOCAgEAE5mGTN3qROwYNsHD
-S5ixox/XDgTzYiUfB+onwiZ5dipjNARzhl81+fmoqrpFW2/FHEQl9A1kTRb4iIvb
-F4voIiTYmlsMX+VtxOC+iXMqPcdWLqfGwkz6KZ2nXbS762fOrpSDBEpS4jFIU9tT
-VBEqCFjTnvXtWp1QSs/r51KuvL5JkrzcW67cb1WXSB37qTXiXFcvQYtoeFS2WAF1
-rTGBOvzawkFZUQAS6VyURYTy+PyowoQ31BLmsKUhMAbIRbxk283apPhO9Vsm05vt
-iKFW/Jm7ls0D6FIviO3Ccj8MEIqxCFDBvwTWZZBiCpvoYeS+GuraaVAvAYdfORlu
-/PhOOZiNxWvDLt8emYwxywA3r3ArEtw7wHZ3RVWVCW508eaKCK+7WE9FTu93s8N7
-pFuYG+YZ4//3FJiVhYn14v9GcFngplG8belh6XQmZz0jQBWj1SAXu0d0Un6hD7J2
-n+U7YMIkTiwV2wvPvobF8kJTXu7Ec9QI5CLfZSbSQpArfROmq1KpsWE32Z/gVql8
-QlXxxfpWmv6wCBkwd60s2RV+2xA9eljoj7ngHPInCh+/GBPIVqPvs+v50K2zEGL+
-kQJkC3uex/WCILDUdIjtKWK6Xaxp6t/jgrX/R4FmGrTZgIgabUj/2wctaMYoQV7a
-BN839YO7d/MWR99Ti2at/yNA8KU=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-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/cas-server.crt b/deployment/environments/certs/server/hosts/localhost/cas-server.crt
deleted file mode 100644
index 1e36ce328f7a78ea18f82437aa7f78b95462ce6d..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/cas-server.crt
+++ /dev/null
@@ -1,111 +0,0 @@
-Certificate:
- Data:
- Version: 1 (0x0)
- Serial Number: 514 (0x202)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_server
- Validity
- Not Before: Dec 19 12:45:52 2019 GMT
- Not After : Dec 18 12:45:52 2022 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, CN=cas-server.service.consul
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:bc:67:bf:1d:30:23:21:cd:ce:88:e6:9f:39:d8:
- 42:b8:b5:1c:7f:f5:e7:19:e7:8b:41:4a:c8:f0:51:
- f0:b3:a9:0f:4b:0c:c4:da:54:3c:22:21:0d:92:5a:
- 87:e1:91:07:3a:3a:bd:cd:d3:b7:6d:76:11:b9:94:
- 6e:1f:1a:12:63:8b:6b:4a:3e:6b:3f:89:67:b1:24:
- 87:6f:b0:09:0e:95:b0:3a:db:dd:d5:65:46:44:87:
- 37:8d:f4:aa:da:ee:04:41:f6:ab:5c:d1:11:aa:52:
- 72:44:0f:c9:5d:14:34:6a:43:fc:f1:c4:22:c5:8a:
- b8:b0:e2:2b:17:8c:8b:df:6f:cf:b5:7a:35:d0:32:
- b8:1f:f9:df:16:99:4c:3c:69:03:73:b9:73:71:ae:
- 65:2c:2b:95:04:45:06:46:30:93:63:e0:b7:4a:0e:
- 06:bf:28:65:e1:09:07:56:7f:7b:36:eb:12:ba:ad:
- ab:58:ec:eb:21:a2:34:15:29:24:f2:2e:bf:ae:82:
- 95:e4:37:f9:b5:0e:d9:4c:91:09:87:b5:fa:be:16:
- 4d:e6:e6:4f:a5:45:2d:d9:03:83:34:08:79:5f:36:
- 00:2c:14:2f:c3:31:69:31:a7:0a:63:3f:73:3c:f0:
- f5:d2:47:76:83:ea:ec:65:68:d3:7b:25:fe:f0:b3:
- 85:df:54:01:6d:97:df:1c:35:7b:5b:55:5f:96:78:
- d0:40:67:3f:c9:71:00:30:f9:00:6a:90:95:57:e4:
- 5c:76:fe:2a:c9:6d:94:61:de:5e:97:91:1c:77:65:
- de:fe:45:14:ed:a2:fb:ed:2b:07:3a:ba:9e:4a:97:
- 99:05:ee:40:b8:cb:38:f2:35:c4:e1:1d:07:5e:af:
- f5:e3:53:4c:50:1c:c2:68:37:9a:ec:45:61:38:cf:
- 73:de:b2:2a:97:af:b2:d2:3a:29:93:e1:40:78:7e:
- f3:f6:60:23:c7:79:9d:82:12:cf:72:c5:af:10:48:
- 45:9e:83:41:75:a4:21:0d:18:b1:f5:cf:ad:36:d9:
- a6:4d:2e:b6:74:84:61:3c:a4:fc:c9:34:55:2d:65:
- 56:47:80:67:3c:9d:1f:d5:9d:c7:3d:2c:fa:f1:36:
- 2a:5e:02:f1:c8:6d:37:96:c6:40:1a:03:87:69:53:
- a0:2a:2b:0b:22:58:33:8f:0e:10:7b:6f:81:cc:6f:
- c1:99:64:4a:df:f9:c9:3b:10:e3:92:f0:fe:a2:f1:
- bf:01:e2:98:79:bc:c7:a8:5b:e1:1a:43:f8:27:99:
- 4e:cc:fb:9f:79:d1:62:48:de:c7:41:a6:bd:61:c2:
- 15:09:47:ad:ee:b7:b1:90:ba:0b:7c:fa:56:f6:99:
- 91:a6:b5
- Exponent: 65537 (0x10001)
- Signature Algorithm: sha256WithRSAEncryption
- 22:47:21:31:52:26:5f:1d:a1:1b:17:b1:b5:91:02:b3:a6:a5:
- f8:6a:2a:d4:72:c6:78:22:f9:27:d1:08:9d:96:74:72:b8:5c:
- bc:8b:b4:6a:7c:35:e4:a5:49:09:be:99:a2:e7:08:58:10:99:
- 47:24:87:31:24:6b:e2:ea:39:55:6e:61:43:55:eb:da:9e:09:
- 7a:3d:ae:58:a2:3c:47:40:a7:5e:06:4c:c2:a7:45:c6:1e:e6:
- 98:ea:4d:8c:c6:72:17:a6:2b:61:39:7c:24:6e:82:51:04:2b:
- 6e:80:df:69:9f:d7:93:6d:d3:92:f3:b7:1b:73:6c:c2:ed:7e:
- cb:6f:06:d3:28:4d:a7:20:e3:f5:a2:37:0a:71:25:84:88:c3:
- 83:dd:f3:dc:eb:a8:95:4b:dd:9c:aa:a9:aa:8d:81:f1:b0:ee:
- 0e:ef:ad:3e:bc:5d:cd:d1:43:a3:61:f8:0f:bd:ef:fd:a3:74:
- 36:18:15:ef:5b:86:da:44:40:66:a7:cb:00:16:bb:fa:6a:01:
- fb:f0:bb:14:35:15:94:6d:5a:4c:e5:6d:33:33:d0:1e:5f:c5:
- 64:22:f4:2d:62:ea:71:45:56:90:36:97:1b:0a:b4:3e:b4:27:
- ca:53:65:fc:b0:66:c6:88:88:3e:10:41:ed:92:56:54:10:6e:
- ca:24:18:8e:65:88:04:3b:70:16:19:8f:5c:65:f4:5b:f7:af:
- 23:f2:32:e2:f5:dc:78:c0:e4:38:99:27:0b:41:e3:c7:d9:bd:
- 70:5f:5d:52:d6:e6:ed:d8:09:4b:33:f7:81:1b:76:d9:15:f8:
- 89:e5:ab:e3:91:6a:e2:37:2c:77:6a:b6:c4:66:4c:12:68:69:
- 75:da:4e:35:07:a2:18:a7:2c:a5:53:3e:c3:55:79:39:2b:62:
- 7c:dc:62:17:4f:4a:f5:c4:7a:4b:ab:a6:63:32:34:f5:4c:54:
- 47:67:5d:6f:2a:3d:b0:9d:d5:05:24:ea:1a:26:d1:e2:0f:44:
- e1:56:24:80:f2:b1:44:02:73:97:fe:29:c7:18:fd:cc:74:89:
- 10:5b:dd:84:af:d3:27:e3:28:d6:04:99:1b:e5:1e:ac:9c:d5:
- 0a:7f:f9:5e:50:4d:0b:f3:f5:ee:e4:6c:bb:45:4c:52:dd:23:
- 03:76:f8:48:fd:be:12:95:4d:6f:6b:7b:39:35:50:d4:fe:e8:
- 07:17:f4:e9:8c:1a:de:40:12:5a:04:f6:ee:a2:fe:8a:3b:9f:
- 60:e9:4b:13:99:62:b1:b1:c8:b2:e5:ff:f7:c8:4f:f3:83:ee:
- 5e:64:e3:cc:16:1c:88:02:a8:ce:89:69:fb:62:82:6b:ad:1a:
- 12:33:7e:d6:3a:46:52:c7
------BEGIN CERTIFICATE-----
-MIIFRjCCAy4CAgICMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NTUyWhcNMjIxMjE4MTI0NTUyWjBfMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xIjAg
-BgNVBAMMGWNhcy1zZXJ2ZXIuc2VydmljZS5jb25zdWwwggIiMA0GCSqGSIb3DQEB
-AQUAA4ICDwAwggIKAoICAQC8Z78dMCMhzc6I5p852EK4tRx/9ecZ54tBSsjwUfCz
-qQ9LDMTaVDwiIQ2SWofhkQc6Or3N07dtdhG5lG4fGhJji2tKPms/iWexJIdvsAkO
-lbA6293VZUZEhzeN9Kra7gRB9qtc0RGqUnJED8ldFDRqQ/zxxCLFiriw4isXjIvf
-b8+1ejXQMrgf+d8WmUw8aQNzuXNxrmUsK5UERQZGMJNj4LdKDga/KGXhCQdWf3s2
-6xK6ratY7OshojQVKSTyLr+ugpXkN/m1DtlMkQmHtfq+Fk3m5k+lRS3ZA4M0CHlf
-NgAsFC/DMWkxpwpjP3M88PXSR3aD6uxlaNN7Jf7ws4XfVAFtl98cNXtbVV+WeNBA
-Zz/JcQAw+QBqkJVX5Fx2/irJbZRh3l6XkRx3Zd7+RRTtovvtKwc6up5Kl5kF7kC4
-yzjyNcThHQder/XjU0xQHMJoN5rsRWE4z3PesiqXr7LSOimT4UB4fvP2YCPHeZ2C
-Es9yxa8QSEWeg0F1pCENGLH1z6022aZNLrZ0hGE8pPzJNFUtZVZHgGc8nR/Vncc9
-LPrxNipeAvHIbTeWxkAaA4dpU6AqKwsiWDOPDhB7b4HMb8GZZErf+ck7EOOS8P6i
-8b8B4ph5vMeoW+EaQ/gnmU7M+5950WJI3sdBpr1hwhUJR63ut7GQugt8+lb2mZGm
-tQIDAQABMA0GCSqGSIb3DQEBCwUAA4ICAQAiRyExUiZfHaEbF7G1kQKzpqX4airU
-csZ4Ivkn0QidlnRyuFy8i7RqfDXkpUkJvpmi5whYEJlHJIcxJGvi6jlVbmFDVeva
-ngl6Pa5YojxHQKdeBkzCp0XGHuaY6k2MxnIXpithOXwkboJRBCtugN9pn9eTbdOS
-87cbc2zC7X7LbwbTKE2nIOP1ojcKcSWEiMOD3fPc66iVS92cqqmqjYHxsO4O760+
-vF3N0UOjYfgPve/9o3Q2GBXvW4baREBmp8sAFrv6agH78LsUNRWUbVpM5W0zM9Ae
-X8VkIvQtYupxRVaQNpcbCrQ+tCfKU2X8sGbGiIg+EEHtklZUEG7KJBiOZYgEO3AW
-GY9cZfRb968j8jLi9dx4wOQ4mScLQePH2b1wX11S1ubt2AlLM/eBG3bZFfiJ5avj
-kWriNyx3arbEZkwSaGl12k41B6IYpyylUz7DVXk5K2J83GIXT0r1xHpLq6ZjMjT1
-TFRHZ11vKj2wndUFJOoaJtHiD0ThViSA8rFEAnOX/inHGP3MdIkQW92Er9Mn4yjW
-BJkb5R6snNUKf/leUE0L8/Xu5Gy7RUxS3SMDdvhI/b4SlU1va3s5NVDU/ugHF/Tp
-jBreQBJaBPbuov6KO59g6UsTmWKxsciy5f/3yE/zg+5eZOPMFhyIAqjOiWn7YoJr
-rRoSM37WOkZSxw==
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/cas-server.key b/deployment/environments/certs/server/hosts/localhost/cas-server.key
deleted file mode 100644
index 47bcce23586d3be31de6e2044c1a55139bc36595..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/cas-server.key
+++ /dev/null
@@ -1,52 +0,0 @@
------BEGIN PRIVATE KEY-----
-MIIJQgIBADANBgkqhkiG9w0BAQEFAASCCSwwggkoAgEAAoICAQC8Z78dMCMhzc6I
-5p852EK4tRx/9ecZ54tBSsjwUfCzqQ9LDMTaVDwiIQ2SWofhkQc6Or3N07dtdhG5
-lG4fGhJji2tKPms/iWexJIdvsAkOlbA6293VZUZEhzeN9Kra7gRB9qtc0RGqUnJE
-D8ldFDRqQ/zxxCLFiriw4isXjIvfb8+1ejXQMrgf+d8WmUw8aQNzuXNxrmUsK5UE
-RQZGMJNj4LdKDga/KGXhCQdWf3s26xK6ratY7OshojQVKSTyLr+ugpXkN/m1DtlM
-kQmHtfq+Fk3m5k+lRS3ZA4M0CHlfNgAsFC/DMWkxpwpjP3M88PXSR3aD6uxlaNN7
-Jf7ws4XfVAFtl98cNXtbVV+WeNBAZz/JcQAw+QBqkJVX5Fx2/irJbZRh3l6XkRx3
-Zd7+RRTtovvtKwc6up5Kl5kF7kC4yzjyNcThHQder/XjU0xQHMJoN5rsRWE4z3Pe
-siqXr7LSOimT4UB4fvP2YCPHeZ2CEs9yxa8QSEWeg0F1pCENGLH1z6022aZNLrZ0
-hGE8pPzJNFUtZVZHgGc8nR/Vncc9LPrxNipeAvHIbTeWxkAaA4dpU6AqKwsiWDOP
-DhB7b4HMb8GZZErf+ck7EOOS8P6i8b8B4ph5vMeoW+EaQ/gnmU7M+5950WJI3sdB
-pr1hwhUJR63ut7GQugt8+lb2mZGmtQIDAQABAoICAEvt08vDlqUM+Gub5he93EXs
-V6wKQjTiZ/DMXubbXxJI0+z/HGaRBBsNDxcofRKfDDafbdcBuC7ZIpOUCj1mmHqd
-uYOWXEqi6bMucZbFbyD9mqRd760Mv6DmjbEcJa9NtVGQQ8eISoJF798WLaThe65H
-8CzPSuQp3/0JaSx4a/aEbUVKF13s0t+wKARHi73c5JNC7g+mpQeEGO47kye+c+gQ
-rE2gEYAAm+5xYQ+vGM0tN8McMq4H7UsEv9C3YDhqNr3xys7K8EvTzCdbXGfhI0hw
-XLztnLOSicOn8ryJncCNVsxs5kLYKvjjxP/yllK9GZTBUDYh+1tzP6elzHTdJNoH
-A4VmQOtsQMYE22AFVk2tcG0ZGZf10faoOPGcg6EAqcY+8ongJ19jnB1im+lk9/Yv
-nS2I6vacTTZz+nrO4adZPC5QU651PZ+gKXW/B3nX39HzOIGdUm320v+lwO+eYMhs
-5go6b4tYKq/UWOi76tiT3YCxbsTKbPoAVUtTFZjMclEy7xgpVD/a71Q8INC6fwhp
-Jr2Y0iTX1od3FdaQzv5fTJ39TvSMGcSd1Q0aBhPbY6bbuZ1UC3Ub015+I+96wdz2
-v4+fMcY1Fr1Hi79SzfW0DHYmsaVpAQWQ+D+otogUlzUKQ+PlITiYZXgA71Qn2fxv
-L8nOWtGcK5wBuFYzwPQBAoIBAQDoyC+uwIgE8KnN9qWcQZvAygzZXtZR/08rftUB
-aT+PY3bJFJ2GHe+F9A+uisbHIoMKWmBuE/1l8VffNjNFmL6ZYSCVSIaPnlUpxAlw
-YbGu4vWM3xnyruXSJ1Q8+YsK1fWuGndXTdtApKN4/Uu4o6XlBlGMt/3a1tiM5I9A
-VgGDg9aK5Zu2to4A5aNLdtf9r60fOe8jzXXf5+VFL/LCw3fDrjbQe6UP5khGoUgg
-AbOSeBbbHu47k1kpgIsrsADLSsUPBWVBoP2n+GbBUDPefeKk/y47BiMX/IfeCO+R
-EDxn926z+J3Le40wYmiBeTQ4jVuUxvY/3Qt694nz4wn6KIb1AoIBAQDPMnP6WYg8
-rMoOAbnW86Y0GyUQN+1xNhnwbp5IcEZRUzdrOlJLmfLhSm+PYg7GUV95J+Cnxtop
-3/tavy92LD1k8mF/lth4H+h5gZ8u+Mzh23nFbC3rX5hqMf9/dcaXwScCKwjWxe8D
-PjnnzWD+jBjAH4sTXPo5JzzvgePdt3enhu3JI3YlQj0I/epF7qZMWTdz1JO/qBcf
-b/TGHAeLmR9CMLk3JifXawYHPp6Ga9wEggWEjssi/GhhSjJa7cfsWnewewIEfKAm
-WFjiCiylbgUs0gcIibr+heWoZYRdeUyrb4uMnXTEmfOIkqu46PDephJVxh9fZhpn
-xl5KJHIvc0jBAoIBAE4vTrSnPghKvP3MpftBngq20nIABIQt+G1ngCulKhADHFaV
-cgMl8tlPDCVXv0QLN3A2wsS2OhoPYbA7CCWMFBh4IvWBEpESYRBSI8l3RrKy0D6s
-gI6eZ9qaExUXy7er/YSopwTPxaCEq9NrYA94B7RQ1vsooT7rgnhwHB1DxeZiVaD5
-Vb+cuT1b4+jo1csDQmaGkue3jqvRu5PtcuAvvv4eeZK0tNAOTKBMc2ksqR+87hBS
-5zljWEM0RYo650lgp6dP7J6KcCgGqpyrT4CfT4yTmPeCLC9WRlwxLCXRCjjxRmF0
-U6uQp+9kXi1+hCeqcuQZn4P7vmti0Rb1XtiC3DECggEBALSJMaUh/iNgK26o8lTp
-WBhuzoyjLrFGgrOMrz5PFfYmnFNCLhLRwV+sjChTOKx0msvmg0mtasqx70HS9Hfz
-dEtRJsMVnOiOZPH6j8lN4LerlR8Ac8JzOUrO5eEZrkDsfCDXfowlS213+tyPh8RE
-Lgy5b2UfzqeeGOpYM0QtaIUAfJCV5Yvxe10qYccteplr43V59IM642rxEkbMhYaN
-lT8HVVtIU87P4iDN3zMhKESFRmmKQlXpuMmM7PNt3JWE/mU3yTo/nQvMTyYl12EN
-zFSRbK9z0wuTf9iLHBqWZse6Gc4cJHJp8lk984La9YYLDk7Oouds//UMU3wm5ZeS
-zAECggEAWS3ZgfficWn9sSdy1dtafU6nfV8v3wau6Nl7HYw3nAECBM1rnNnimYik
-mQSoAPp31EZYhnqAoXyOMkN/3F/VhOQqHnq8xd2vxImpJwPqLVymGcxqhUP1sWlB
-WQeYEyjDoFcn19CcFpIBxuiCX5X9PgpnkmzUo886tfZy/kmf91XgQAyCxqC7Du9q
-9hAi/pG3OTUcciEqu+AXQbXbCVwFUMR7Qf0teD+6OIA1YLLOakSnK8qIMeoxSOL6
-NldlRzJQuNsAdDFqRhF8QtkRqYjla4H1npIY8bc2DuDr/sjCV+yGRp6tU+Bof0qu
-ZonekJR6x+Deyndt3NlAtTtg6V+RCQ==
------END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/localhost/cas-server.pem b/deployment/environments/certs/server/hosts/localhost/cas-server.pem
deleted file mode 100644
index 5c8a5cf9647b6e007bee8cf17426da6eb7873b54..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/cas-server.pem
+++ /dev/null
@@ -1,31 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIFRjCCAy4CAgICMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NTUyWhcNMjIxMjE4MTI0NTUyWjBfMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xIjAg
-BgNVBAMMGWNhcy1zZXJ2ZXIuc2VydmljZS5jb25zdWwwggIiMA0GCSqGSIb3DQEB
-AQUAA4ICDwAwggIKAoICAQC8Z78dMCMhzc6I5p852EK4tRx/9ecZ54tBSsjwUfCz
-qQ9LDMTaVDwiIQ2SWofhkQc6Or3N07dtdhG5lG4fGhJji2tKPms/iWexJIdvsAkO
-lbA6293VZUZEhzeN9Kra7gRB9qtc0RGqUnJED8ldFDRqQ/zxxCLFiriw4isXjIvf
-b8+1ejXQMrgf+d8WmUw8aQNzuXNxrmUsK5UERQZGMJNj4LdKDga/KGXhCQdWf3s2
-6xK6ratY7OshojQVKSTyLr+ugpXkN/m1DtlMkQmHtfq+Fk3m5k+lRS3ZA4M0CHlf
-NgAsFC/DMWkxpwpjP3M88PXSR3aD6uxlaNN7Jf7ws4XfVAFtl98cNXtbVV+WeNBA
-Zz/JcQAw+QBqkJVX5Fx2/irJbZRh3l6XkRx3Zd7+RRTtovvtKwc6up5Kl5kF7kC4
-yzjyNcThHQder/XjU0xQHMJoN5rsRWE4z3PesiqXr7LSOimT4UB4fvP2YCPHeZ2C
-Es9yxa8QSEWeg0F1pCENGLH1z6022aZNLrZ0hGE8pPzJNFUtZVZHgGc8nR/Vncc9
-LPrxNipeAvHIbTeWxkAaA4dpU6AqKwsiWDOPDhB7b4HMb8GZZErf+ck7EOOS8P6i
-8b8B4ph5vMeoW+EaQ/gnmU7M+5950WJI3sdBpr1hwhUJR63ut7GQugt8+lb2mZGm
-tQIDAQABMA0GCSqGSIb3DQEBCwUAA4ICAQAiRyExUiZfHaEbF7G1kQKzpqX4airU
-csZ4Ivkn0QidlnRyuFy8i7RqfDXkpUkJvpmi5whYEJlHJIcxJGvi6jlVbmFDVeva
-ngl6Pa5YojxHQKdeBkzCp0XGHuaY6k2MxnIXpithOXwkboJRBCtugN9pn9eTbdOS
-87cbc2zC7X7LbwbTKE2nIOP1ojcKcSWEiMOD3fPc66iVS92cqqmqjYHxsO4O760+
-vF3N0UOjYfgPve/9o3Q2GBXvW4baREBmp8sAFrv6agH78LsUNRWUbVpM5W0zM9Ae
-X8VkIvQtYupxRVaQNpcbCrQ+tCfKU2X8sGbGiIg+EEHtklZUEG7KJBiOZYgEO3AW
-GY9cZfRb968j8jLi9dx4wOQ4mScLQePH2b1wX11S1ubt2AlLM/eBG3bZFfiJ5avj
-kWriNyx3arbEZkwSaGl12k41B6IYpyylUz7DVXk5K2J83GIXT0r1xHpLq6ZjMjT1
-TFRHZ11vKj2wndUFJOoaJtHiD0ThViSA8rFEAnOX/inHGP3MdIkQW92Er9Mn4yjW
-BJkb5R6snNUKf/leUE0L8/Xu5Gy7RUxS3SMDdvhI/b4SlU1va3s5NVDU/ugHF/Tp
-jBreQBJaBPbuov6KO59g6UsTmWKxsciy5f/3yE/zg+5eZOPMFhyIAqjOiWn7YoJr
-rRoSM37WOkZSxw==
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/iam-external.crt b/deployment/environments/certs/server/hosts/localhost/iam-external.crt
deleted file mode 100644
index 3d2683b7519ffd3ca9021c99eb48fcfdba4d3f34..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/iam-external.crt
+++ /dev/null
@@ -1,111 +0,0 @@
-Certificate:
- Data:
- Version: 1 (0x0)
- Serial Number: 517 (0x205)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_server
- Validity
- Not Before: Dec 19 12:46:00 2019 GMT
- Not After : Dec 18 12:46:00 2022 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, CN=iam-external.service.consul
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:99:8d:5f:dc:b1:d8:dc:28:b3:37:60:c8:f5:bf:
- bb:f9:e7:76:ce:22:79:1e:09:db:70:f6:7a:f1:a8:
- 04:65:1d:1a:28:24:7a:22:80:9f:3c:f4:56:b5:d0:
- 28:cb:10:73:40:aa:e9:59:8d:52:9e:0f:6d:73:90:
- a7:a4:71:28:29:f6:7c:b1:ea:c3:ba:54:d0:07:11:
- 79:1e:10:33:cf:a9:fc:82:da:9d:c3:ee:3a:33:69:
- 5b:d1:18:16:90:48:26:29:5a:03:3b:53:bd:e2:23:
- 0b:06:58:6a:cd:b7:27:7d:44:2d:fc:42:07:0c:03:
- a5:ca:0d:38:3b:98:b2:a2:19:e5:59:18:29:41:00:
- 07:5d:8a:16:37:a7:c6:5d:9d:d2:cd:4b:4c:88:04:
- 24:c5:02:38:24:59:a9:65:e3:76:a7:68:88:75:5d:
- 62:ce:0f:b5:50:f3:77:fb:21:8a:07:c7:c2:ab:e6:
- 07:42:13:64:cf:af:be:03:c0:93:4d:e0:fa:00:20:
- b1:72:56:f2:a7:8e:ae:80:79:34:e9:98:4e:77:36:
- 59:eb:84:bf:b0:16:ee:29:5b:4c:34:aa:19:ac:37:
- b1:0c:a3:7a:85:2a:56:18:b2:ef:04:fa:de:01:3d:
- 15:3f:0c:ff:de:6b:7b:dd:d5:a5:d5:10:2f:05:2e:
- 61:ec:6d:bf:81:ef:ee:30:76:47:ae:1e:9b:e1:33:
- 95:02:6c:66:84:d7:d6:dc:71:97:16:e5:ed:9a:5c:
- 9b:8d:69:a8:e0:ff:c9:30:8f:2f:a6:68:f9:7f:d6:
- db:97:81:b5:6a:6e:7f:c5:c5:c3:ec:96:1e:93:28:
- e2:3b:a0:cb:0f:4a:fe:57:59:fe:b2:85:e8:12:03:
- a0:dc:1a:5b:a3:0f:01:10:0b:0a:6c:b1:ac:59:8d:
- 10:6a:15:c8:08:32:2d:55:c5:23:f3:ee:92:3c:0c:
- ad:63:8c:da:bd:25:e9:06:18:d5:d0:2b:6b:d5:39:
- 20:af:7b:fe:24:21:24:02:96:03:81:91:9b:dc:24:
- df:67:95:71:b3:8e:eb:08:06:17:fc:fb:12:a2:41:
- 3b:f5:5e:52:b2:fb:41:37:d7:e2:1d:0a:ab:90:39:
- 5b:b1:3a:49:62:84:81:0d:26:6f:6b:86:53:ac:20:
- 69:8c:23:d0:4d:80:be:6b:43:09:fc:f2:d2:b2:7d:
- bd:68:7b:24:0f:90:84:c8:7b:28:e8:d7:dc:b5:b9:
- fa:d4:db:a4:32:47:ba:79:3d:84:52:44:04:3d:ea:
- 2a:8f:f1:0b:ab:2a:9e:d3:55:8b:a5:fe:3c:a6:29:
- d3:b8:b2:92:34:70:64:e3:77:f9:03:23:a1:3a:92:
- c6:16:9f
- Exponent: 65537 (0x10001)
- Signature Algorithm: sha256WithRSAEncryption
- 99:95:1b:2b:ed:e1:3d:8e:f4:df:41:fb:0e:12:c8:99:6f:ed:
- 1c:11:cd:19:f1:22:0e:76:41:0f:8f:12:b9:88:23:bb:e4:eb:
- 45:de:e5:a2:a2:75:2e:6c:9c:87:7c:ed:1e:dc:22:20:bb:80:
- 4c:90:e9:1e:f0:5a:f6:b5:c3:1f:e2:89:df:28:75:2f:81:8f:
- b4:b4:0e:8e:0b:8d:ef:6a:2a:57:df:14:18:de:74:c2:5b:17:
- 52:f7:b7:93:ec:0c:f9:e7:e0:48:9b:3c:46:19:46:84:2f:4a:
- 07:1f:3b:68:cb:32:93:0d:b6:ca:a8:a5:40:c1:a7:b7:f2:b2:
- 8a:65:19:a0:9c:65:75:af:d5:63:83:22:cf:d0:c7:f6:1e:af:
- 1e:75:39:26:6f:f2:a9:11:5f:f1:ea:ec:6a:8d:77:ac:45:ca:
- 29:e3:d9:26:dc:f9:41:38:7d:bd:da:88:f8:9f:d4:44:45:f3:
- e1:60:05:9d:74:e6:4b:19:ed:6c:b9:ee:68:a7:df:4b:94:56:
- 68:53:45:df:b6:58:df:e0:59:47:21:e4:80:b0:57:37:50:73:
- ca:c5:06:c1:84:95:84:b8:a5:b6:2b:80:dd:da:eb:ac:da:ea:
- fd:6a:93:f0:d1:33:36:66:8b:85:12:68:b1:e5:b5:40:31:13:
- 11:f7:d8:f5:5a:7c:0e:ea:b4:03:54:22:83:9c:ab:c8:fb:9e:
- a3:a0:c9:a1:86:36:26:35:b4:0f:2d:59:ea:da:63:68:7c:de:
- a8:cc:eb:3d:8f:ec:b2:9c:36:d8:cf:88:f8:24:09:fd:2b:9c:
- f2:3b:b6:8c:d1:47:f8:23:ce:b1:1f:e9:cd:3b:fc:cc:03:4e:
- 55:2e:06:bf:55:be:20:29:30:ad:83:45:e5:f1:bf:d8:43:9f:
- 39:84:dd:7c:e2:d8:ff:4d:5b:f1:66:64:93:71:ea:97:64:c1:
- 6e:05:0f:7d:ad:de:c4:79:1e:02:12:f7:be:82:ec:95:0b:28:
- d8:cf:51:2b:a1:ce:75:c1:97:ec:df:38:8c:ad:50:b8:51:b2:
- 18:29:16:6d:6e:7b:8d:62:be:af:4f:d3:ea:b2:07:c0:0b:fc:
- 23:f7:af:ba:75:ab:8a:0d:c9:98:57:a1:4e:91:1a:cb:e9:fa:
- ab:7f:02:b5:0e:ce:3c:1c:50:39:74:87:ca:71:66:26:91:e3:
- 59:71:55:f0:50:82:68:57:2e:92:e0:c2:d8:9c:52:df:12:5c:
- 2d:fb:9d:e7:ca:55:8a:89:22:f5:a3:38:f8:e3:9d:9a:51:3e:
- 44:40:40:d7:85:20:5e:ae:07:45:cd:2e:77:6e:9e:4c:21:bc:
- 87:0a:db:84:c4:6f:e2:c0
------BEGIN CERTIFICATE-----
-MIIFSDCCAzACAgIFMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NjAwWhcNMjIxMjE4MTI0NjAwWjBhMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xJDAi
-BgNVBAMMG2lhbS1leHRlcm5hbC5zZXJ2aWNlLmNvbnN1bDCCAiIwDQYJKoZIhvcN
-AQEBBQADggIPADCCAgoCggIBAJmNX9yx2NwoszdgyPW/u/nnds4ieR4J23D2evGo
-BGUdGigkeiKAnzz0VrXQKMsQc0Cq6VmNUp4PbXOQp6RxKCn2fLHqw7pU0AcReR4Q
-M8+p/ILancPuOjNpW9EYFpBIJilaAztTveIjCwZYas23J31ELfxCBwwDpcoNODuY
-sqIZ5VkYKUEAB12KFjenxl2d0s1LTIgEJMUCOCRZqWXjdqdoiHVdYs4PtVDzd/sh
-igfHwqvmB0ITZM+vvgPAk03g+gAgsXJW8qeOroB5NOmYTnc2WeuEv7AW7ilbTDSq
-Gaw3sQyjeoUqVhiy7wT63gE9FT8M/95re93VpdUQLwUuYextv4Hv7jB2R64em+Ez
-lQJsZoTX1txxlxbl7Zpcm41pqOD/yTCPL6Zo+X/W25eBtWpuf8XFw+yWHpMo4jug
-yw9K/ldZ/rKF6BIDoNwaW6MPARALCmyxrFmNEGoVyAgyLVXFI/PukjwMrWOM2r0l
-6QYY1dAra9U5IK97/iQhJAKWA4GRm9wk32eVcbOO6wgGF/z7EqJBO/VeUrL7QTfX
-4h0Kq5A5W7E6SWKEgQ0mb2uGU6wgaYwj0E2AvmtDCfzy0rJ9vWh7JA+QhMh7KOjX
-3LW5+tTbpDJHunk9hFJEBD3qKo/xC6sqntNVi6X+PKYp07iykjRwZON3+QMjoTqS
-xhafAgMBAAEwDQYJKoZIhvcNAQELBQADggIBAJmVGyvt4T2O9N9B+w4SyJlv7RwR
-zRnxIg52QQ+PErmII7vk60Xe5aKidS5snId87R7cIiC7gEyQ6R7wWva1wx/iid8o
-dS+Bj7S0Do4Lje9qKlffFBjedMJbF1L3t5PsDPnn4EibPEYZRoQvSgcfO2jLMpMN
-tsqopUDBp7fysoplGaCcZXWv1WODIs/Qx/Yerx51OSZv8qkRX/Hq7GqNd6xFyinj
-2Sbc+UE4fb3aiPif1ERF8+FgBZ105ksZ7Wy57min30uUVmhTRd+2WN/gWUch5ICw
-VzdQc8rFBsGElYS4pbYrgN3a66za6v1qk/DRMzZmi4USaLHltUAxExH32PVafA7q
-tANUIoOcq8j7nqOgyaGGNiY1tA8tWeraY2h83qjM6z2P7LKcNtjPiPgkCf0rnPI7
-tozRR/gjzrEf6c07/MwDTlUuBr9VviApMK2DReXxv9hDnzmE3Xzi2P9NW/FmZJNx
-6pdkwW4FD32t3sR5HgIS976C7JULKNjPUSuhznXBl+zfOIytULhRshgpFm1ue41i
-vq9P0+qyB8AL/CP3r7p1q4oNyZhXoU6RGsvp+qt/ArUOzjwcUDl0h8pxZiaR41lx
-VfBQgmhXLpLgwticUt8SXC37nefKVYqJIvWjOPjjnZpRPkRAQNeFIF6uB0XNLndu
-nkwhvIcK24TEb+LA
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/iam-external.key b/deployment/environments/certs/server/hosts/localhost/iam-external.key
deleted file mode 100644
index 9b262d6f24bda318f53251fea4b35dd8b0f5cea8..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/iam-external.key
+++ /dev/null
@@ -1,52 +0,0 @@
------BEGIN PRIVATE KEY-----
-MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQCZjV/csdjcKLM3
-YMj1v7v553bOInkeCdtw9nrxqARlHRooJHoigJ889Fa10CjLEHNAqulZjVKeD21z
-kKekcSgp9nyx6sO6VNAHEXkeEDPPqfyC2p3D7jozaVvRGBaQSCYpWgM7U73iIwsG
-WGrNtyd9RC38QgcMA6XKDTg7mLKiGeVZGClBAAddihY3p8ZdndLNS0yIBCTFAjgk
-Wall43anaIh1XWLOD7VQ83f7IYoHx8Kr5gdCE2TPr74DwJNN4PoAILFyVvKnjq6A
-eTTpmE53NlnrhL+wFu4pW0w0qhmsN7EMo3qFKlYYsu8E+t4BPRU/DP/ea3vd1aXV
-EC8FLmHsbb+B7+4wdkeuHpvhM5UCbGaE19bccZcW5e2aXJuNaajg/8kwjy+maPl/
-1tuXgbVqbn/FxcPslh6TKOI7oMsPSv5XWf6yhegSA6DcGlujDwEQCwpssaxZjRBq
-FcgIMi1VxSPz7pI8DK1jjNq9JekGGNXQK2vVOSCve/4kISQClgOBkZvcJN9nlXGz
-jusIBhf8+xKiQTv1XlKy+0E31+IdCquQOVuxOklihIENJm9rhlOsIGmMI9BNgL5r
-Qwn88tKyfb1oeyQPkITIeyjo19y1ufrU26QyR7p5PYRSRAQ96iqP8QurKp7TVYul
-/jymKdO4spI0cGTjd/kDI6E6ksYWnwIDAQABAoICAFx/Ev3ojA+i3MJBJQ0UIHHb
-gm+NyJPVsECN2WV0pqEaNMV1o7Tg8gtPzGPdLpWUJTkRO1vci6X2+SGiQ7oFCAKv
-HlI2bwzxRhbb6a+4Zt1zMk7IzjxWZuzNTKfZ8M2dCI/kTwoP2dQ888kwvbWJ3NnS
-ljjctU4BbH8YE4Wi6AhJvSQ8L62eDNHF+rgv8og2J+POth1BEb0zJwqOkEJ2EOWr
-THgWdwxV3g0TfHTksTcamCPgfwLIl/Obk8TC3nkNSsuE5h9QTP+uLWPqn3sPakTZ
-krUS1D2IspJrEq6uwKRDL/3DBGzvIcnjD6RaUh1A5GmEtSUQbh8lMa30/74JQKay
-XEGdETq0RZbCShU/vV6js6iBibrZDPRgHc0eGgdJcPFTDYP3N7rOnOeuLwUnmRyr
-1dtI04irwGP0o7iRq3+oS3ku2KDd+AV0yg1CSTadxz68IHqkd4LjTK26gY2zglHa
-M86M+F230TwAdGI5OxC6WD0ZqMmZgcN4ZU5aaDqrgXgRw0LQTPqfPVg2zx4geFSU
-T53BSDYfWckDJZJM8tNOc9oPsgPJ/9fYXWvSvNrCCULe2CEdwQN8CVdBV9YQSYKQ
-aYyYHua2Bqw0nkOrV3YH1R733G25S+xIERglCFiC123wCOMQZLSHBAAFFagETCrW
-jsXPzdEhiSNqjRj0nW9RAoIBAQDIgSn3eyOdNpmQ96I050APueQ4bDEoodCM0RNI
-si8QqlESf8RmdHD35wL+3iSQU3cDxpXBtUSy3Qy2HPf8UHz1NlPCb39U8EHec5JY
-IQd/1OiniB2x7dtyhv1YkYcTD4Mr/4j+Q+jxNnsD5dPxoCvGX7Fsu9/M2BYPgOPu
-a0BweGkn8vDkEW4MPEmOLsjKDTp1AXHRKBTOt04aUgaufFhJaE5oe4WjJuxX2wlt
-4Fi+CYMKkb8lSotSwgYifcKsUPTVpjcvR3Zp16dCy2pnDBn/W13HXcSf2S5N6+Y1
-DT15jCj0lZ+Ih8hMrHqP0J5GxWRfrw/ktGMt0Sf7eWwAGE47AoIBAQDEDWKIJ/xU
-DV1JHp0qa4XXLg8m4QLPND6FS+jGmC9dDWGP1oIjIWtTokacup9sZOtHbj51i7wI
-mbsfa1cw7B8rY/WsiCjWg8SY6uyV3vyt9l33phyYKGCydh6ut8shUjWnaR+5mIEY
-VS0u6J/q4hxW4//JtkDqQg51DpD8ReVO2XimSE6qT464RjZ5nPI2fPx3VTMT5Hcp
-qAYUkvimvO7o4FMHb9IuJqODeCrB4R6/SfXHPirT1wC5N+peZ2y86zbXfhIyvlk7
-jDz974nryC6wKYfUP/WZ6hoAxU6rWEl5m1l2dR4UgZeszLUrsoLz0vLk4ndJJYrj
-xlI3cWJ55F7tAoIBADzzFqDGa/MUb+YjgMl4Kn8dUQTdzqu9VLoZrDUDBU+Zln97
-G2bRqq2RKdX0DUVaOemJ6mgyBCojDAQoFjI6/WFFHH0Ui650QnGuzCPCFpeDTx3u
-QKif13+fDVBpHJhstMEhMrGoTx1UJFzw9laTC/uHh1W4XrXUUhBwa9lD/RizYbPl
-I9kQe1V41htEmYDiOIzs3X5pIrob+sABg0pzPhtCe+NC+UK5SEsEqH8gHZnXJmCG
-IYbifCuyE09Uz2K2UVbI6imTHanbBltFnpiokxaO3ZkHJgg5atwBA7/IwJE8TA7d
-lNtZ+0djfvZMwnBc/MAhZUFunF+HHxJQvMXinZUCggEAJNGus4tu5AouftD1C0Zu
-OF86ET8o2+kf5MDA0qs6GeutauoKPrbEBUzwnfaegijh1uRpboHzqlnUvq3WDiYK
-JIf9V42qvb65aU6VaAAczD78nsnfjOPoZRux33Y8++EImowvnRd7ByrX9XtSrTYR
-xG/FVgiYYGZPeMRnjjlCO3C0K+Zgf7O5RfpJuMU05+7JK1Ag65d4maYoniyL7iSF
-ac7XSQpDGs++3a3vucGhmKM3OVf/ixFR3XcW2Ovri/9QqV/P4x/Eel54Bei6qkFK
-I2NpUv9ADMveXk6v25YVFnWKc6jDIW7FIXrAe5hm54uyejHd3SrjzqssPaVZrTKq
-cQKCAQBJi0wWcmhlXX3HenHRaLNPhOTxLzyicRavphc6LlR8WbJ1+JU8mns89BWz
-RnlzELwKQiOhdvlYdP3/v3tNigjGDc1mwjojHBrQCdUrygg+9vxoSOGdW1WMYIKE
-Wb8F+be+eOwzuZ7DjjZxwrv+vUyUVY5Zif8gkdYCcavWPYUwHksRk6RCKVatuQAs
-vGybJH0bb9r1MUPXtZVVJqb5HXdZ1UjutTyrAfAOGF5srKiKLIWbX7r8UXm+NcrB
-q7kddE0DmlW3qLYjS6gOsVuvHyOHUveBi/4mAziy5huhU4d0r3VlUZnX8nCzWodt
-SJfImNI11FHkW9qwbV12SYkZAVgd
------END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/localhost/iam-external.pem b/deployment/environments/certs/server/hosts/localhost/iam-external.pem
deleted file mode 100644
index c4edb6b8f2d13365f141953c0b3449ef34093957..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/iam-external.pem
+++ /dev/null
@@ -1,31 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIFSDCCAzACAgIFMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NjAwWhcNMjIxMjE4MTI0NjAwWjBhMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xJDAi
-BgNVBAMMG2lhbS1leHRlcm5hbC5zZXJ2aWNlLmNvbnN1bDCCAiIwDQYJKoZIhvcN
-AQEBBQADggIPADCCAgoCggIBAJmNX9yx2NwoszdgyPW/u/nnds4ieR4J23D2evGo
-BGUdGigkeiKAnzz0VrXQKMsQc0Cq6VmNUp4PbXOQp6RxKCn2fLHqw7pU0AcReR4Q
-M8+p/ILancPuOjNpW9EYFpBIJilaAztTveIjCwZYas23J31ELfxCBwwDpcoNODuY
-sqIZ5VkYKUEAB12KFjenxl2d0s1LTIgEJMUCOCRZqWXjdqdoiHVdYs4PtVDzd/sh
-igfHwqvmB0ITZM+vvgPAk03g+gAgsXJW8qeOroB5NOmYTnc2WeuEv7AW7ilbTDSq
-Gaw3sQyjeoUqVhiy7wT63gE9FT8M/95re93VpdUQLwUuYextv4Hv7jB2R64em+Ez
-lQJsZoTX1txxlxbl7Zpcm41pqOD/yTCPL6Zo+X/W25eBtWpuf8XFw+yWHpMo4jug
-yw9K/ldZ/rKF6BIDoNwaW6MPARALCmyxrFmNEGoVyAgyLVXFI/PukjwMrWOM2r0l
-6QYY1dAra9U5IK97/iQhJAKWA4GRm9wk32eVcbOO6wgGF/z7EqJBO/VeUrL7QTfX
-4h0Kq5A5W7E6SWKEgQ0mb2uGU6wgaYwj0E2AvmtDCfzy0rJ9vWh7JA+QhMh7KOjX
-3LW5+tTbpDJHunk9hFJEBD3qKo/xC6sqntNVi6X+PKYp07iykjRwZON3+QMjoTqS
-xhafAgMBAAEwDQYJKoZIhvcNAQELBQADggIBAJmVGyvt4T2O9N9B+w4SyJlv7RwR
-zRnxIg52QQ+PErmII7vk60Xe5aKidS5snId87R7cIiC7gEyQ6R7wWva1wx/iid8o
-dS+Bj7S0Do4Lje9qKlffFBjedMJbF1L3t5PsDPnn4EibPEYZRoQvSgcfO2jLMpMN
-tsqopUDBp7fysoplGaCcZXWv1WODIs/Qx/Yerx51OSZv8qkRX/Hq7GqNd6xFyinj
-2Sbc+UE4fb3aiPif1ERF8+FgBZ105ksZ7Wy57min30uUVmhTRd+2WN/gWUch5ICw
-VzdQc8rFBsGElYS4pbYrgN3a66za6v1qk/DRMzZmi4USaLHltUAxExH32PVafA7q
-tANUIoOcq8j7nqOgyaGGNiY1tA8tWeraY2h83qjM6z2P7LKcNtjPiPgkCf0rnPI7
-tozRR/gjzrEf6c07/MwDTlUuBr9VviApMK2DReXxv9hDnzmE3Xzi2P9NW/FmZJNx
-6pdkwW4FD32t3sR5HgIS976C7JULKNjPUSuhznXBl+zfOIytULhRshgpFm1ue41i
-vq9P0+qyB8AL/CP3r7p1q4oNyZhXoU6RGsvp+qt/ArUOzjwcUDl0h8pxZiaR41lx
-VfBQgmhXLpLgwticUt8SXC37nefKVYqJIvWjOPjjnZpRPkRAQNeFIF6uB0XNLndu
-nkwhvIcK24TEb+LA
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/iam-internal.crt b/deployment/environments/certs/server/hosts/localhost/iam-internal.crt
deleted file mode 100644
index 3dbc745918602eca3cd9b9fdf4edcf39144a201e..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/iam-internal.crt
+++ /dev/null
@@ -1,111 +0,0 @@
-Certificate:
- Data:
- Version: 1 (0x0)
- Serial Number: 516 (0x204)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_server
- Validity
- Not Before: Dec 19 12:45:57 2019 GMT
- Not After : Dec 18 12:45:57 2022 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, CN=iam-internal.service.consul
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:df:8c:c9:1c:d2:21:65:8c:8c:e2:c3:f4:73:80:
- 4f:c9:09:83:33:7e:94:2f:f6:fc:ae:d6:b8:38:b6:
- 03:09:b8:23:4d:37:08:48:c1:2e:75:64:00:70:de:
- 04:c4:3c:fc:71:6d:69:da:5f:33:8f:94:e7:77:12:
- 68:41:ce:ed:30:13:91:c9:a8:9f:b4:28:0f:ea:db:
- 41:4c:7b:72:05:6c:81:4a:d4:e4:4a:c4:3f:70:11:
- 25:97:bb:29:4a:86:67:24:85:2f:8a:1d:86:da:1a:
- a8:d3:6b:6c:66:7f:b1:22:37:94:40:50:01:4b:69:
- 95:c7:b0:a4:41:96:ea:fa:62:b9:4c:d4:7e:47:11:
- 46:2c:67:53:f8:7b:31:11:84:a2:b0:f0:da:07:87:
- bf:f7:54:d2:82:d3:6a:02:f5:4a:bb:b1:60:60:c6:
- 8b:74:dc:70:05:62:ff:8b:50:78:e1:6c:3f:b1:e5:
- 62:83:35:c5:bf:79:d3:c1:a8:44:33:27:f9:08:b3:
- b8:ef:3e:05:98:57:d4:fc:6d:41:8e:4e:69:b3:cb:
- d9:66:4c:49:5c:4f:9a:ec:f0:a6:b5:58:be:9a:7a:
- b9:a6:dc:ec:33:bb:f8:e7:81:e8:84:06:4b:cb:31:
- 6a:3c:e7:90:29:b1:00:3b:77:7d:41:88:6f:07:9d:
- d0:c4:82:f3:d1:94:b8:87:51:21:90:b5:58:a8:44:
- 78:4f:00:88:b0:f4:f3:97:3a:42:f8:b8:f8:82:bb:
- e1:e1:03:a7:8b:02:d4:a0:5c:ca:e3:a3:90:80:5e:
- de:0e:ca:47:2a:76:10:be:ae:8a:11:ee:3d:d2:57:
- 95:a9:59:72:ec:7b:db:d9:9d:fe:c8:94:62:a3:75:
- 2f:4c:c2:a9:c5:d6:b6:e5:48:69:24:38:49:b4:eb:
- 3c:71:31:e1:64:be:a1:59:4f:03:8f:f4:99:49:b7:
- 5e:88:b9:0f:74:a4:00:27:5d:c9:dd:a5:f7:de:c6:
- f3:69:2e:ed:80:0d:e3:72:f7:76:0f:d0:85:76:25:
- ae:70:3c:7b:8a:23:b2:2f:e9:71:92:15:39:67:5d:
- b2:1a:f6:d2:e3:a3:f2:b3:f1:f0:34:4e:13:ef:e2:
- 9e:36:e8:d8:7a:c0:8c:41:63:06:f9:f5:40:8b:eb:
- 73:18:67:92:b9:9b:0d:a8:09:93:6a:a5:60:0b:e5:
- cb:59:b4:13:34:7f:68:22:5b:46:7a:26:01:7f:10:
- fc:cd:cc:ee:60:0b:52:3a:dd:4c:4a:3e:4f:2f:b3:
- a8:77:d8:fd:c1:76:a8:d6:2f:8e:9f:ca:2e:f9:97:
- 39:4e:95:8a:e9:7b:57:3c:a0:a4:83:62:29:f9:83:
- 3f:1e:47
- Exponent: 65537 (0x10001)
- Signature Algorithm: sha256WithRSAEncryption
- 66:c5:f9:0f:65:ad:d7:c5:de:0f:b4:79:2d:e6:01:ed:4f:0f:
- 3a:df:5a:01:ff:ba:7b:85:b3:45:51:ac:37:15:b9:34:0c:1f:
- 19:71:60:07:bf:76:18:25:8b:e3:bd:01:36:7a:4a:d4:eb:1d:
- 4f:b5:ed:4e:25:bd:a9:91:d0:8a:56:9c:a6:c2:13:66:89:75:
- 51:f8:71:9d:52:11:19:25:25:8f:e0:2e:5c:ec:4a:ff:8a:9a:
- a5:17:ca:2f:b9:b7:83:90:bb:d7:f2:d2:29:c0:33:35:bc:09:
- 50:e2:19:46:f1:53:91:7f:cc:f3:31:95:8d:b4:8e:e9:3d:93:
- 45:ee:ba:6e:9a:fd:be:bf:a2:d3:87:6e:8d:00:4e:37:05:88:
- 99:3b:14:8e:8e:81:da:e9:7f:f8:c8:f6:a7:ee:77:ea:ba:1a:
- 1e:5f:85:15:2e:3c:9a:8e:94:59:fc:1b:55:54:ed:08:db:36:
- f2:dc:bd:59:8c:81:6d:d0:cf:d3:34:e3:2e:4f:b3:bc:cd:e5:
- aa:7f:c7:54:7a:6c:24:88:7e:44:b0:be:a9:49:68:ca:52:8a:
- ac:32:54:bc:f4:4e:2c:05:f4:de:3b:4a:04:ed:3a:ef:23:ab:
- cd:74:73:55:00:c1:33:3f:ce:2a:4a:12:a1:8a:63:6d:01:67:
- d6:c6:62:0e:53:db:d0:1e:1e:d9:d8:13:08:fb:85:16:e1:e8:
- 3c:a5:c4:3a:3c:df:88:a0:a9:c8:ca:fb:26:4a:08:5c:a4:85:
- 38:ec:ea:9c:f4:2e:1c:45:d8:81:2c:6b:8e:49:f1:61:1f:c9:
- d7:71:3a:0f:22:4c:bf:f4:00:90:24:a3:9c:a2:16:ab:36:e8:
- 5c:44:d8:fb:36:b6:d1:90:47:23:8d:d4:d2:46:c5:62:0c:62:
- bc:b2:4e:ec:03:7a:21:87:ae:21:ae:f7:d5:74:e9:7d:0d:48:
- a8:9b:28:de:ba:31:28:a0:da:61:7e:94:ce:e9:10:a6:02:9d:
- f9:91:fe:ee:fc:cc:91:9c:88:76:55:00:98:d1:de:fc:e5:2f:
- b0:b3:27:a3:4a:a1:be:31:7a:b0:77:f0:1f:9f:b0:4e:3e:a9:
- a7:67:cb:e9:8d:d2:3b:98:ae:ab:3f:50:7d:20:e8:fc:cc:03:
- cf:33:94:7a:b7:fc:65:4f:f8:35:72:c8:41:7d:19:32:10:09:
- 59:62:25:ca:f4:f2:72:2f:ce:17:08:27:27:8e:3a:aa:b9:3d:
- 6c:41:03:b1:32:af:d3:9a:88:be:8c:6d:8f:0c:98:d3:33:71:
- fb:d3:8c:97:a4:82:7c:3d:6d:43:aa:47:a4:1f:05:fc:54:78:
- 06:4a:96:7f:63:dd:17:da
------BEGIN CERTIFICATE-----
-MIIFSDCCAzACAgIEMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NTU3WhcNMjIxMjE4MTI0NTU3WjBhMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xJDAi
-BgNVBAMMG2lhbS1pbnRlcm5hbC5zZXJ2aWNlLmNvbnN1bDCCAiIwDQYJKoZIhvcN
-AQEBBQADggIPADCCAgoCggIBAN+MyRzSIWWMjOLD9HOAT8kJgzN+lC/2/K7WuDi2
-Awm4I003CEjBLnVkAHDeBMQ8/HFtadpfM4+U53cSaEHO7TATkcmon7QoD+rbQUx7
-cgVsgUrU5ErEP3ARJZe7KUqGZySFL4odhtoaqNNrbGZ/sSI3lEBQAUtplcewpEGW
-6vpiuUzUfkcRRixnU/h7MRGEorDw2geHv/dU0oLTagL1SruxYGDGi3TccAVi/4tQ
-eOFsP7HlYoM1xb9508GoRDMn+QizuO8+BZhX1PxtQY5OabPL2WZMSVxPmuzwprVY
-vpp6uabc7DO7+OeB6IQGS8sxajznkCmxADt3fUGIbwed0MSC89GUuIdRIZC1WKhE
-eE8AiLD085c6Qvi4+IK74eEDp4sC1KBcyuOjkIBe3g7KRyp2EL6uihHuPdJXlalZ
-cux729md/siUYqN1L0zCqcXWtuVIaSQ4SbTrPHEx4WS+oVlPA4/0mUm3Xoi5D3Sk
-ACddyd2l997G82ku7YAN43L3dg/QhXYlrnA8e4ojsi/pcZIVOWddshr20uOj8rPx
-8DROE+/injbo2HrAjEFjBvn1QIvrcxhnkrmbDagJk2qlYAvly1m0EzR/aCJbRnom
-AX8Q/M3M7mALUjrdTEo+Ty+zqHfY/cF2qNYvjp/KLvmXOU6Viul7VzygpINiKfmD
-Px5HAgMBAAEwDQYJKoZIhvcNAQELBQADggIBAGbF+Q9lrdfF3g+0eS3mAe1PDzrf
-WgH/unuFs0VRrDcVuTQMHxlxYAe/dhgli+O9ATZ6StTrHU+17U4lvamR0IpWnKbC
-E2aJdVH4cZ1SERklJY/gLlzsSv+KmqUXyi+5t4OQu9fy0inAMzW8CVDiGUbxU5F/
-zPMxlY20juk9k0Xuum6a/b6/otOHbo0ATjcFiJk7FI6Ogdrpf/jI9qfud+q6Gh5f
-hRUuPJqOlFn8G1VU7QjbNvLcvVmMgW3Qz9M04y5Ps7zN5ap/x1R6bCSIfkSwvqlJ
-aMpSiqwyVLz0TiwF9N47SgTtOu8jq810c1UAwTM/zipKEqGKY20BZ9bGYg5T29Ae
-HtnYEwj7hRbh6DylxDo834igqcjK+yZKCFykhTjs6pz0LhxF2IEsa45J8WEfyddx
-Og8iTL/0AJAko5yiFqs26FxE2Ps2ttGQRyON1NJGxWIMYryyTuwDeiGHriGu99V0
-6X0NSKibKN66MSig2mF+lM7pEKYCnfmR/u78zJGciHZVAJjR3vzlL7CzJ6NKob4x
-erB38B+fsE4+qadny+mN0juYrqs/UH0g6PzMA88zlHq3/GVP+DVyyEF9GTIQCVli
-Jcr08nIvzhcIJyeOOqq5PWxBA7Eyr9OaiL6MbY8MmNMzcfvTjJekgnw9bUOqR6Qf
-BfxUeAZKln9j3Rfa
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/iam-internal.key b/deployment/environments/certs/server/hosts/localhost/iam-internal.key
deleted file mode 100644
index fbdffc02ff7f898c662e0322d3b4d7f728767c6c..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/iam-internal.key
+++ /dev/null
@@ -1,52 +0,0 @@
------BEGIN PRIVATE KEY-----
-MIIJQwIBADANBgkqhkiG9w0BAQEFAASCCS0wggkpAgEAAoICAQDfjMkc0iFljIzi
-w/RzgE/JCYMzfpQv9vyu1rg4tgMJuCNNNwhIwS51ZABw3gTEPPxxbWnaXzOPlOd3
-EmhBzu0wE5HJqJ+0KA/q20FMe3IFbIFK1ORKxD9wESWXuylKhmckhS+KHYbaGqjT
-a2xmf7EiN5RAUAFLaZXHsKRBlur6YrlM1H5HEUYsZ1P4ezERhKKw8NoHh7/3VNKC
-02oC9Uq7sWBgxot03HAFYv+LUHjhbD+x5WKDNcW/edPBqEQzJ/kIs7jvPgWYV9T8
-bUGOTmmzy9lmTElcT5rs8Ka1WL6aermm3Owzu/jngeiEBkvLMWo855ApsQA7d31B
-iG8HndDEgvPRlLiHUSGQtVioRHhPAIiw9POXOkL4uPiCu+HhA6eLAtSgXMrjo5CA
-Xt4OykcqdhC+rooR7j3SV5WpWXLse9vZnf7IlGKjdS9MwqnF1rblSGkkOEm06zxx
-MeFkvqFZTwOP9JlJt16IuQ90pAAnXcndpffexvNpLu2ADeNy93YP0IV2Ja5wPHuK
-I7Iv6XGSFTlnXbIa9tLjo/Kz8fA0ThPv4p426Nh6wIxBYwb59UCL63MYZ5K5mw2o
-CZNqpWAL5ctZtBM0f2giW0Z6JgF/EPzNzO5gC1I63UxKPk8vs6h32P3BdqjWL46f
-yi75lzlOlYrpe1c8oKSDYin5gz8eRwIDAQABAoICAQCzeqvpCMgpaLugQKVdqjHk
-fU+qI0FEdS8QDHJhjbhIsF8fWkS7bOYo973m4EnBaBlh0+99lJun9mwTzGKKG2GR
-DNUqq8h08wk8jQYTKrUzp5byhpQ3dvJbvliJRonzPI9I4el2IRiouWi8PW4NqQ2F
-JExRiipP6piHd8mYo1tK5cJR7fToh/ToJ5liUT3nC683ElhqXVIBeEd/I8/kSh3T
-LajsaduDWoxRttbmehhjG+7TnBAIuj5m6Z/axobi73/gvbKH2irR0gq9E9bjMw9o
-fAyyNiNcCsme2+Nsi7CUBF5TmuHE83D2JfWRMiDeJXFfLqcu4d4G4HtfBvPlkI4Q
-B7zM4LZ/fGHSRWX9rIRE2E++qsHo+TqOr8pbNvf0g4QQ1ba/XTlwiyV/QarvaWVY
-UplkwsfI9LRKRcYZ/gZVB4mtqhIaTFdiU39iEf5o70hb9P23v+HDjszRK4ws4ywa
-28OZr789OCmP4y9xJUjr5TLoBCZIPncyRePWH6HTiRDZhhBKCXKMSTaa6y4EPqVQ
-c+H/mWd3JBnKsRJNo4yeB1aKAjVYcO2pzMNK6VaHrhFkwj6rx51fEis7yjqVoVfv
-CEcv7k5RTBgxzhXVFKVlyQdkDes9h7Cr+UoOJmtn3HSiijZntrdc0nOCbo2yU2rn
-iL49h+xyQ7EXQ8RWwyV0sQKCAQEA9JLrbPsxswkuRvfAun8tHYvGQhR76/q83jfd
-NjoqOZUHHjKWr8RlV0fpnBqo/eEsH67EY2C60nNhKBBY9hT7NWavCC0StD/T7y4g
-L+vpEspykxF09OjwegAGS6GsekkpQye5/Zm/65b/+e6VdIU6lQkfgYNPwjFr5OWV
-8cJc0/1wFBulqL9uXU2OSyo5wXVsLkMdYMaxv6PtqrZ6WVqLtBi3E/ajWGfyQowZ
-Xn8B/6842FGFU14WA3SapG4UEncNP3KHi+VHP4COvd2mDa5PSkpUvs4jxKSsYeYR
-TcKbI9OPC0e2ttsMoTugDhzrE/OlJDdCTGKePflN+t0IVDFlKQKCAQEA6f5r4bX3
-o5svqkFNvOxiJnUttimcbTQnqV+4FjBuzKNuyI6cLm4Sp3g+NyzueCQ5oHgAWt+4
-F46GhlTSfeanU9L/myDfaye08JTZaHHhbYX6UsgpudeDhXCh9DN3e7FV1gu2p5Yb
-OWMVfhs2ORbC2qJPFy+hHnCWqzm2FRqa4p589DwAdi18CrXeD6ufWuwj/TlEleGE
-YERKoZxA9n/JOo30SPBC9WtblnuLCf9ksSaanJg3RfZ53AXLBRAqNQVRps7faaG4
-Fr3J5C6+w1Rx1LafY0NhayIN2OgCH9PwYt+ae2AF416CZDQKlEa3Bgb3na4tJ6Nf
-D+/Kb0bbnQTl7wKCAQADABprR9mgPKiYrklrAExpZGGWRfIPPxA6Ga1ZEPWbpzxj
-HnPCzEICBBvVkm4oTy7fZKF8Jp+kHU4/05OD0VYTnaLgEs178JyE/qfebqJ5XIpz
-S2+H4aOxm3Z4Tw9yoJsk+8PIXK6CEWQqiMbEmy3Qzj/Ysuezli+gq0BfqubAowdQ
-99XccBzGgEESov36ZZpiJuihW06q7zPnOD3gAsBcAUGduRTf7MaIEnftNNmtbVTh
-Mn7UOv9CI5gSFFeislszQBBxoupw2P7nTWTQHidS3f6UKKs/qlWDDfOAZLbKhbnn
-hYW0UJOjFrwr8CbiI8cO3q6tiTgvwnM2dKe5gLGhAoIBABPZD9+SZtIK3M0tQuHO
-jzjB4cG839bngKG+S8geDZfwGPqMFjVeAtkPuv9FIWkxcW3qH+WVanEdFs4YLc6e
-HP1gPWw0Kp9VO+TYS2SvnDaFEcmpzthDrpVIC4TCRNVKIoTIc5LdiauhevY6aqwH
-ATo4YEsQMDN7y1v0xjweCJtGZET3PfbIPuhNqutbXGYC976H+Aham7bqtAXnUh9W
-kYQU/G6fap6Un60xB4cukaTxKFY2FyIpGQcPurvQNjRPIjDrBUpZfFr5eEGRsX6y
-EAHCB90MnxvORKxsaZm3iYFphBoI+BbkMl07iNYw9V9egexvFMdy9SJN7bbopMI5
-4yMCggEBAIB3TiD6a1LilyzcuUF5mss8tVChzyoFtDMKx25cbyOY6eQROcgJ3DIe
-kiMCn4QqnYmyEDRjHv3dnlriKH86ylgBZI9mD3+Tl1eBkt6ng9hjrZyOKpz0vxWN
-EF6OCUjXALO8bKyxuOJshDZ27HkRuCdQ/rL64K9/H8XeT9LGcSrcfm6W/WgcSHIp
-Yp7fYa2mr4eh+jgKexz5DJg0CmqVH4bMNnhNAwhcy9KXc38JTqGal2sxkxMY5Ghs
-qTcFh60I9bTqjFEdln9lNmzdtTmLPt6iSKsCiYhjhCorAkDGeMXcgjApyZ4jCUY0
-USoQ9gwXpuTdErZrrQf9JwtNiC38sxY=
------END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/localhost/iam-internal.pem b/deployment/environments/certs/server/hosts/localhost/iam-internal.pem
deleted file mode 100644
index bf2c56d6cc2149ff9a087155e109e496110944f1..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/iam-internal.pem
+++ /dev/null
@@ -1,31 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIFSDCCAzACAgIEMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NTU3WhcNMjIxMjE4MTI0NTU3WjBhMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xJDAi
-BgNVBAMMG2lhbS1pbnRlcm5hbC5zZXJ2aWNlLmNvbnN1bDCCAiIwDQYJKoZIhvcN
-AQEBBQADggIPADCCAgoCggIBAN+MyRzSIWWMjOLD9HOAT8kJgzN+lC/2/K7WuDi2
-Awm4I003CEjBLnVkAHDeBMQ8/HFtadpfM4+U53cSaEHO7TATkcmon7QoD+rbQUx7
-cgVsgUrU5ErEP3ARJZe7KUqGZySFL4odhtoaqNNrbGZ/sSI3lEBQAUtplcewpEGW
-6vpiuUzUfkcRRixnU/h7MRGEorDw2geHv/dU0oLTagL1SruxYGDGi3TccAVi/4tQ
-eOFsP7HlYoM1xb9508GoRDMn+QizuO8+BZhX1PxtQY5OabPL2WZMSVxPmuzwprVY
-vpp6uabc7DO7+OeB6IQGS8sxajznkCmxADt3fUGIbwed0MSC89GUuIdRIZC1WKhE
-eE8AiLD085c6Qvi4+IK74eEDp4sC1KBcyuOjkIBe3g7KRyp2EL6uihHuPdJXlalZ
-cux729md/siUYqN1L0zCqcXWtuVIaSQ4SbTrPHEx4WS+oVlPA4/0mUm3Xoi5D3Sk
-ACddyd2l997G82ku7YAN43L3dg/QhXYlrnA8e4ojsi/pcZIVOWddshr20uOj8rPx
-8DROE+/injbo2HrAjEFjBvn1QIvrcxhnkrmbDagJk2qlYAvly1m0EzR/aCJbRnom
-AX8Q/M3M7mALUjrdTEo+Ty+zqHfY/cF2qNYvjp/KLvmXOU6Viul7VzygpINiKfmD
-Px5HAgMBAAEwDQYJKoZIhvcNAQELBQADggIBAGbF+Q9lrdfF3g+0eS3mAe1PDzrf
-WgH/unuFs0VRrDcVuTQMHxlxYAe/dhgli+O9ATZ6StTrHU+17U4lvamR0IpWnKbC
-E2aJdVH4cZ1SERklJY/gLlzsSv+KmqUXyi+5t4OQu9fy0inAMzW8CVDiGUbxU5F/
-zPMxlY20juk9k0Xuum6a/b6/otOHbo0ATjcFiJk7FI6Ogdrpf/jI9qfud+q6Gh5f
-hRUuPJqOlFn8G1VU7QjbNvLcvVmMgW3Qz9M04y5Ps7zN5ap/x1R6bCSIfkSwvqlJ
-aMpSiqwyVLz0TiwF9N47SgTtOu8jq810c1UAwTM/zipKEqGKY20BZ9bGYg5T29Ae
-HtnYEwj7hRbh6DylxDo834igqcjK+yZKCFykhTjs6pz0LhxF2IEsa45J8WEfyddx
-Og8iTL/0AJAko5yiFqs26FxE2Ps2ttGQRyON1NJGxWIMYryyTuwDeiGHriGu99V0
-6X0NSKibKN66MSig2mF+lM7pEKYCnfmR/u78zJGciHZVAJjR3vzlL7CzJ6NKob4x
-erB38B+fsE4+qadny+mN0juYrqs/UH0g6PzMA88zlHq3/GVP+DVyyEF9GTIQCVli
-Jcr08nIvzhcIJyeOOqq5PWxBA7Eyr9OaiL6MbY8MmNMzcfvTjJekgnw9bUOqR6Qf
-BfxUeAZKln9j3Rfa
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/reverse.crt b/deployment/environments/certs/server/hosts/localhost/reverse.crt
deleted file mode 100644
index 8b509a5194f69a4307fc7b1a60607f896d0febf9..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/reverse.crt
+++ /dev/null
@@ -1,111 +0,0 @@
-Certificate:
- Data:
- Version: 1 (0x0)
- Serial Number: 521 (0x209)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_server
- Validity
- Not Before: Dec 19 12:46:10 2019 GMT
- Not After : Dec 18 12:46:10 2022 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, CN=reverse.service.consul
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:a3:29:84:31:99:eb:a0:62:4c:57:07:01:3d:92:
- 2c:8e:c8:30:e2:b6:19:ed:5b:bb:c3:90:a9:75:c5:
- 0b:5b:b9:d6:de:a2:bc:88:98:f8:06:a1:70:a0:f2:
- fd:ae:99:54:ee:6d:be:fd:f5:54:4d:0c:56:82:fb:
- 5e:d3:1d:61:98:04:6b:b7:8e:87:c8:48:06:da:14:
- d1:4b:2c:de:40:d1:57:2a:d9:b9:b7:e7:ba:57:84:
- 24:28:29:54:de:72:ea:c6:d3:2c:4b:d2:28:9c:e8:
- b6:7f:ca:51:f9:89:5f:bf:e7:3c:01:1c:9b:f0:97:
- 2b:0f:c5:b8:0a:0a:62:88:a8:ff:be:fa:99:8b:b7:
- 1c:42:86:96:07:0c:c1:2e:d1:f1:f9:d7:2b:0c:a3:
- 6b:bc:95:9d:26:1c:2b:9a:b5:b4:a8:fc:4e:96:8f:
- c2:b5:ca:27:86:be:50:40:eb:d3:57:a7:fb:2e:76:
- 3e:fa:3b:86:19:09:48:e4:c4:5f:c7:58:b5:ad:b1:
- de:14:9a:13:8d:6f:9b:f7:19:3f:01:09:d3:8e:c0:
- ec:da:73:bd:59:ac:9c:b3:f1:92:2e:8f:32:9b:f2:
- 7b:f8:30:00:3f:48:d4:e5:18:3f:77:d8:fc:30:d6:
- e8:d8:29:64:e4:e7:7c:8f:46:b0:7c:d6:50:46:21:
- 3a:da:47:38:09:9e:f7:de:94:ef:82:9d:6b:c3:ba:
- 7c:42:8a:11:95:b0:00:ba:fc:6b:7b:a7:80:82:8a:
- 2b:02:81:fc:8d:ba:25:e9:ee:26:06:56:7a:af:3b:
- 68:25:51:5b:66:7a:31:ad:3c:3e:07:47:71:d9:2c:
- aa:f9:ff:e3:2a:a6:b2:4a:a4:74:1e:9b:51:b2:c4:
- 75:48:6d:28:60:97:47:f8:c8:e4:93:8f:3e:a2:e0:
- 95:a9:2f:8a:0d:21:9e:a1:0c:5d:d5:94:51:43:37:
- 57:c9:4b:df:a3:f6:78:da:56:21:e7:95:15:7a:03:
- 82:f6:e4:19:11:5b:89:1e:d6:5b:42:01:84:80:11:
- 78:80:d4:34:07:2a:83:90:9c:88:15:cf:13:4a:dc:
- 8f:7d:a2:b0:52:c8:98:43:38:e1:b1:9e:82:53:38:
- 2c:5b:95:63:71:e7:35:57:a1:c9:b8:e8:55:e1:b3:
- 5e:fd:e7:31:ce:f9:b5:91:96:58:f1:dd:bb:27:da:
- e3:87:e5:56:7c:2d:a9:de:aa:09:39:fb:56:0e:62:
- 83:ab:f8:36:ec:83:22:75:2a:19:eb:17:17:fb:a0:
- 66:c5:9d:75:b1:97:35:6f:0a:2f:9c:25:e4:ea:a3:
- 96:d8:d2:18:02:79:38:bf:7f:2d:b5:5e:61:62:d4:
- ec:72:0f
- Exponent: 65537 (0x10001)
- Signature Algorithm: sha256WithRSAEncryption
- 11:bb:62:d0:6d:22:4a:08:8c:5b:f8:21:ee:9d:e9:f5:af:90:
- aa:5f:22:37:31:fd:fb:52:9a:56:2d:c9:00:2e:08:c5:d3:30:
- 5f:39:59:22:89:01:ab:b5:a5:18:7e:e5:5e:39:ff:74:95:25:
- 97:78:da:f1:0b:f7:5e:2b:ab:af:26:06:53:8a:25:3c:e8:63:
- 00:5e:45:33:b0:67:3a:9f:de:60:17:37:eb:0b:af:a2:f8:f8:
- 30:f1:33:1d:b9:61:65:9f:fa:e8:90:c5:1c:fc:f3:c6:58:61:
- ae:a2:e2:54:00:4b:e9:1b:19:20:35:e8:30:37:25:1e:aa:e2:
- 36:f8:c3:12:4e:d0:8a:e2:d6:5d:a3:6c:e8:d1:da:df:e6:3d:
- f5:7a:78:56:c4:70:c7:20:f6:a0:d4:5f:81:d3:c8:d6:e1:7e:
- 9d:3e:cd:70:32:20:af:0a:43:c7:80:91:cf:01:f9:dd:9a:2f:
- e2:36:6f:f1:34:2b:58:20:9c:65:97:c4:85:a2:14:8c:72:a1:
- 85:5c:6c:56:74:4c:24:50:2a:4f:7f:f5:bf:ab:7f:95:cb:b4:
- a4:ec:ce:49:1b:0c:52:39:8f:56:e1:03:28:b1:86:c5:ce:21:
- 15:e5:38:b3:65:fe:12:5d:b2:47:a9:8f:ae:2f:10:6c:4f:8a:
- b9:45:20:69:04:62:5e:91:7d:2f:48:6e:57:41:b9:e8:2d:d3:
- 3c:dc:51:1a:6d:12:74:7f:b8:ef:0c:68:f4:15:1b:cd:83:f6:
- b1:fd:0b:0e:4b:c8:67:6b:e9:5e:a0:78:af:b3:40:c5:e0:6a:
- c8:48:75:91:aa:fe:1a:cd:f9:55:c2:6e:31:09:3d:72:de:34:
- 94:26:43:91:45:23:0e:9c:05:8d:8a:63:44:d4:bd:f0:3e:b1:
- b4:dc:63:50:64:78:20:32:21:3c:8c:e2:11:7c:e7:eb:75:ee:
- 2f:ac:23:9f:58:b6:b5:9e:19:96:a6:cd:de:a4:79:74:d2:13:
- 53:0d:01:e1:42:43:03:23:55:f3:90:da:1f:60:aa:df:b7:cd:
- bf:0e:41:28:58:66:c3:e8:71:97:5d:c6:8b:e6:8e:43:67:68:
- 26:5f:e1:b9:56:96:3c:9c:c9:73:0f:e9:53:e9:57:8d:ce:76:
- 19:48:08:25:5a:db:4b:af:88:ba:2d:45:f3:0f:a3:bd:d5:18:
- 93:0a:06:83:f1:f9:01:1e:78:1c:26:84:9a:ad:a0:17:e3:2c:
- 8e:6e:f9:02:c6:00:97:72:4d:c2:62:b6:3c:ac:86:6c:14:cf:
- 29:72:60:c5:0e:0e:d2:35:b1:c0:a2:40:0e:75:2f:87:3c:7f:
- c8:25:95:78:b3:d5:8e:b3
------BEGIN CERTIFICATE-----
-MIIFQzCCAysCAgIJMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NjEwWhcNMjIxMjE4MTI0NjEwWjBcMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xHzAd
-BgNVBAMMFnJldmVyc2Uuc2VydmljZS5jb25zdWwwggIiMA0GCSqGSIb3DQEBAQUA
-A4ICDwAwggIKAoICAQCjKYQxmeugYkxXBwE9kiyOyDDithntW7vDkKl1xQtbudbe
-oryImPgGoXCg8v2umVTubb799VRNDFaC+17THWGYBGu3jofISAbaFNFLLN5A0Vcq
-2bm357pXhCQoKVTecurG0yxL0iic6LZ/ylH5iV+/5zwBHJvwlysPxbgKCmKIqP++
-+pmLtxxChpYHDMEu0fH51ysMo2u8lZ0mHCuatbSo/E6Wj8K1yieGvlBA69NXp/su
-dj76O4YZCUjkxF/HWLWtsd4UmhONb5v3GT8BCdOOwOzac71ZrJyz8ZIujzKb8nv4
-MAA/SNTlGD932Pww1ujYKWTk53yPRrB81lBGITraRzgJnvfelO+CnWvDunxCihGV
-sAC6/Gt7p4CCiisCgfyNuiXp7iYGVnqvO2glUVtmejGtPD4HR3HZLKr5/+MqprJK
-pHQem1GyxHVIbShgl0f4yOSTjz6i4JWpL4oNIZ6hDF3VlFFDN1fJS9+j9njaViHn
-lRV6A4L25BkRW4ke1ltCAYSAEXiA1DQHKoOQnIgVzxNK3I99orBSyJhDOOGxnoJT
-OCxblWNx5zVXocm46FXhs1795zHO+bWRlljx3bsn2uOH5VZ8Laneqgk5+1YOYoOr
-+DbsgyJ1KhnrFxf7oGbFnXWxlzVvCi+cJeTqo5bY0hgCeTi/fy21XmFi1OxyDwID
-AQABMA0GCSqGSIb3DQEBCwUAA4ICAQARu2LQbSJKCIxb+CHunen1r5CqXyI3Mf37
-UppWLckALgjF0zBfOVkiiQGrtaUYfuVeOf90lSWXeNrxC/deK6uvJgZTiiU86GMA
-XkUzsGc6n95gFzfrC6+i+Pgw8TMduWFln/rokMUc/PPGWGGuouJUAEvpGxkgNegw
-NyUequI2+MMSTtCK4tZdo2zo0drf5j31enhWxHDHIPag1F+B08jW4X6dPs1wMiCv
-CkPHgJHPAfndmi/iNm/xNCtYIJxll8SFohSMcqGFXGxWdEwkUCpPf/W/q3+Vy7Sk
-7M5JGwxSOY9W4QMosYbFziEV5TizZf4SXbJHqY+uLxBsT4q5RSBpBGJekX0vSG5X
-QbnoLdM83FEabRJ0f7jvDGj0FRvNg/ax/QsOS8hna+leoHivs0DF4GrISHWRqv4a
-zflVwm4xCT1y3jSUJkORRSMOnAWNimNE1L3wPrG03GNQZHggMiE8jOIRfOfrde4v
-rCOfWLa1nhmWps3epHl00hNTDQHhQkMDI1XzkNofYKrft82/DkEoWGbD6HGXXcaL
-5o5DZ2gmX+G5VpY8nMlzD+lT6VeNznYZSAglWttLr4i6LUXzD6O91RiTCgaD8fkB
-HngcJoSaraAX4yyObvkCxgCXck3CYrY8rIZsFM8pcmDFDg7SNbHAokAOdS+HPH/I
-JZV4s9WOsw==
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/reverse.key b/deployment/environments/certs/server/hosts/localhost/reverse.key
deleted file mode 100644
index 84c6ec41102665fe0a55f4a50c96018db13e57e9..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/reverse.key
+++ /dev/null
@@ -1,52 +0,0 @@
------BEGIN PRIVATE KEY-----
-MIIJQgIBADANBgkqhkiG9w0BAQEFAASCCSwwggkoAgEAAoICAQCjKYQxmeugYkxX
-BwE9kiyOyDDithntW7vDkKl1xQtbudbeoryImPgGoXCg8v2umVTubb799VRNDFaC
-+17THWGYBGu3jofISAbaFNFLLN5A0Vcq2bm357pXhCQoKVTecurG0yxL0iic6LZ/
-ylH5iV+/5zwBHJvwlysPxbgKCmKIqP+++pmLtxxChpYHDMEu0fH51ysMo2u8lZ0m
-HCuatbSo/E6Wj8K1yieGvlBA69NXp/sudj76O4YZCUjkxF/HWLWtsd4UmhONb5v3
-GT8BCdOOwOzac71ZrJyz8ZIujzKb8nv4MAA/SNTlGD932Pww1ujYKWTk53yPRrB8
-1lBGITraRzgJnvfelO+CnWvDunxCihGVsAC6/Gt7p4CCiisCgfyNuiXp7iYGVnqv
-O2glUVtmejGtPD4HR3HZLKr5/+MqprJKpHQem1GyxHVIbShgl0f4yOSTjz6i4JWp
-L4oNIZ6hDF3VlFFDN1fJS9+j9njaViHnlRV6A4L25BkRW4ke1ltCAYSAEXiA1DQH
-KoOQnIgVzxNK3I99orBSyJhDOOGxnoJTOCxblWNx5zVXocm46FXhs1795zHO+bWR
-lljx3bsn2uOH5VZ8Laneqgk5+1YOYoOr+DbsgyJ1KhnrFxf7oGbFnXWxlzVvCi+c
-JeTqo5bY0hgCeTi/fy21XmFi1OxyDwIDAQABAoICAQCfnzcfm3ikAGa04Tp6dO24
-heslcIeu6YaozXarq6jwBMBMMKMHc7d6LShVnUNHM+SeGam3I/JkKkTcgXUEToMy
-yGhlPEBkVOq3IZSb2fpZKTQAzN5fJ4nqonEJBV5s/bnn56I3TxPCZfxcyp8l5BpT
-ULIoWEfKuOk81e61i/FXxxXkTaA3yl0QTECsBvNbjbMP/Eu2Yo49AZWrOfYCte9X
-PvbXXy9az7mZncg/qzaoU8NtcessvVz0U1wHyoH1MTkUA6XDO/US8nR/6if0KRva
-Va2iDYbaGv93H0cm25rka/aSGMu1HdiBhBZbdmFKmoVTLDPzqO/3720rxDLmWQ4L
-+zu10dbIMDNqmZS9BfAnfk0pkiLc75LyJ/PsQCuezeqingLhxW2NDf67nPoSnNLH
-QhCRdQubpwPH/Y1ueLLyXxVKo+9hGcada4Yu7RS6hJjSSqXpdyCOoG5HLkIovdf0
-pHgUirp5aojbNPD5En0rHck8xmUoTIcoQc3uUylfmM7NS70laRsiifqxAWB1pRag
-HIYSCfTdL71cv1g70CuiUFCzi+/FeDKppYdjaf/PrhTY68ADwlaqQ8NAIQXJXf69
-ChBAfSIAPAPnzRbsit3SjVC554Lb3D5nXPfPU77bJmtXLQ4III90UStOlIYOfy93
-3DdotCm/MUQhdrSWT2YhOQKCAQEA1iMzhvD/lG7gWFfL4NSuKt8rGm1nXo9CQUgq
-lyryhTc6Umsgqg5QXL930UAXH6HEkaczVjX8xrO40+KCI/omK69VCnCEWeqqE8Q6
-G3IbgoqZXf19nRWvnyezlo/xYYbz2bGCE1R9mu9mh/h308kdfIZkL5HB8d6w0g+h
-IZ+gJavSWFmNlfjSJu3RSWWX++PVU0yAghhnbjcqAW5p7S8941S7rJEV2es7ptAC
-m8B1v18rQJCDq0gd21b63gwT9th6Z4KXNxv+niM+gf14NFgywG5ni9UrC8Erz2wb
-Rvk22lbj4Kctq/GMcmLTK/29AFjnkziKPcHo2XdNW7Y3giYTUwKCAQEAww8vrb5Q
-OPuJrplapFmEo2hiRiYCwZWj31SFJcsiN2tu5a9wgBBGNtKIOgQnUk4V200pBoJA
-KfsYxmuecvwuythv2FWB2s3RBIbNU7CX+YoMpPo+K2SdsYEojkx/EWEvv+mXkPqE
-9o18+JFSlqtKkEYZulagEb1cis+kR8KqZh8mqWzvn19DEuD25ncx3dCKHVZl7Px9
-jo2f453Nx111d974RNxCDAtVChnre9HTxcio0IfIT/SEm+C+SajO25jp+IKiJvMY
-58tyWcsro9JFRVEQHczNSODnHgPoayUX/K+YruchXqXEB4ZSGC+i0GvBgCqhhAxI
-1YZ7Qq92Igpq1QKCAQATlOp8V4N3pl/7lCO/rpMytm+xnfmK6xzK7Xd/lVzSE8fQ
-i51UD7UHlja1ut+ic9+O1jRamNtBrGOldJwkABcHfaQQLVPdCRl+bz5FDj03xcba
-knivKbGCo1XH2eff3EBmUtYrQFmwFl5Q5sbGZii9H2j/9JtAq/WNcAJzGa7CYyD8
-FUxeP3+wMaUmyhSI4z+5u1AxFVw39vFvahJjryNAq5nx4N6Xq+wrh/AFICdkVaaV
-4+E2g4S/bwfH0GDu/MLMvmNnlbbF7UElD/GzD7GsaSws3FRwYbzI3gDsj5OVicaS
-35bMl20ZdLIM3souwvKCQvRZS2coo8E+Nr6Ct0qjAoIBAEDNscxqNuLHhrVwE3IY
-n31ed4/QnwfLfDb9MIMe2o5I7f327ExPm9Qo28NSj/HDKXXDS8byzPhliJSbOnf/
-Glif0YCw38RerntvgZW1TLhFye+hh7gI5G8NdvjXpzuR6zg6FfW/lR8IYKWAOkz+
-OXZ3I6MJloJuQ+mGFJEWtl/ZJ5IQNAfhsTn7bWuh2/pShyA6DQDP3bLXkHAhhDUg
-8p7Rf+/4sSSpOyZw+BAZ5N6HzLYC9mTB2rCi2PVF1PuV8N10IQUJrJONvr7gRe5W
-NFdUGCOeX/E/bulE6Rl3qGF1wScSeL6mGdtaH7oTUWcm9ZFsGF7zadsuo5LDEl86
-0MUCggEAZPIZn8IpDixB9QF0Asz8DA1W5QanLKEZ3WZtr17X6Q/6zFz7w5u5D2pl
-7xzVf+Sf7OSYD1Ye2lvpK14NcAvXlGvRuaKKzPKx+oSmVYC0Vkatw77TjDcLnKi+
-cC4uGMKBRmYJVREnXB8J1T0sXU0ne07F6g+d/6QXv2l+xOjFp8Zw0YoXjlBhXTYM
-/zjIDZgWzDQi+AKHIpcLIztK7FkvPT037tH86wkTmxIFY0tIq/c2RsNwnYuJxxvw
-PWoblv1J4OgMbqqynk1lRYBLe6WIpqBxbe0guG/ZzwvPc1v5XKz8itv9kKYUH0VX
-6IMIx8w7V4ZpEUrOyh8yeQaWN0Yamw==
------END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/localhost/reverse.pem b/deployment/environments/certs/server/hosts/localhost/reverse.pem
deleted file mode 100644
index e4238007d029a68c5ee0a2780c590141c327868d..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/reverse.pem
+++ /dev/null
@@ -1,31 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIFQzCCAysCAgIJMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NjEwWhcNMjIxMjE4MTI0NjEwWjBcMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xHzAd
-BgNVBAMMFnJldmVyc2Uuc2VydmljZS5jb25zdWwwggIiMA0GCSqGSIb3DQEBAQUA
-A4ICDwAwggIKAoICAQCjKYQxmeugYkxXBwE9kiyOyDDithntW7vDkKl1xQtbudbe
-oryImPgGoXCg8v2umVTubb799VRNDFaC+17THWGYBGu3jofISAbaFNFLLN5A0Vcq
-2bm357pXhCQoKVTecurG0yxL0iic6LZ/ylH5iV+/5zwBHJvwlysPxbgKCmKIqP++
-+pmLtxxChpYHDMEu0fH51ysMo2u8lZ0mHCuatbSo/E6Wj8K1yieGvlBA69NXp/su
-dj76O4YZCUjkxF/HWLWtsd4UmhONb5v3GT8BCdOOwOzac71ZrJyz8ZIujzKb8nv4
-MAA/SNTlGD932Pww1ujYKWTk53yPRrB81lBGITraRzgJnvfelO+CnWvDunxCihGV
-sAC6/Gt7p4CCiisCgfyNuiXp7iYGVnqvO2glUVtmejGtPD4HR3HZLKr5/+MqprJK
-pHQem1GyxHVIbShgl0f4yOSTjz6i4JWpL4oNIZ6hDF3VlFFDN1fJS9+j9njaViHn
-lRV6A4L25BkRW4ke1ltCAYSAEXiA1DQHKoOQnIgVzxNK3I99orBSyJhDOOGxnoJT
-OCxblWNx5zVXocm46FXhs1795zHO+bWRlljx3bsn2uOH5VZ8Laneqgk5+1YOYoOr
-+DbsgyJ1KhnrFxf7oGbFnXWxlzVvCi+cJeTqo5bY0hgCeTi/fy21XmFi1OxyDwID
-AQABMA0GCSqGSIb3DQEBCwUAA4ICAQARu2LQbSJKCIxb+CHunen1r5CqXyI3Mf37
-UppWLckALgjF0zBfOVkiiQGrtaUYfuVeOf90lSWXeNrxC/deK6uvJgZTiiU86GMA
-XkUzsGc6n95gFzfrC6+i+Pgw8TMduWFln/rokMUc/PPGWGGuouJUAEvpGxkgNegw
-NyUequI2+MMSTtCK4tZdo2zo0drf5j31enhWxHDHIPag1F+B08jW4X6dPs1wMiCv
-CkPHgJHPAfndmi/iNm/xNCtYIJxll8SFohSMcqGFXGxWdEwkUCpPf/W/q3+Vy7Sk
-7M5JGwxSOY9W4QMosYbFziEV5TizZf4SXbJHqY+uLxBsT4q5RSBpBGJekX0vSG5X
-QbnoLdM83FEabRJ0f7jvDGj0FRvNg/ax/QsOS8hna+leoHivs0DF4GrISHWRqv4a
-zflVwm4xCT1y3jSUJkORRSMOnAWNimNE1L3wPrG03GNQZHggMiE8jOIRfOfrde4v
-rCOfWLa1nhmWps3epHl00hNTDQHhQkMDI1XzkNofYKrft82/DkEoWGbD6HGXXcaL
-5o5DZ2gmX+G5VpY8nMlzD+lT6VeNznYZSAglWttLr4i6LUXzD6O91RiTCgaD8fkB
-HngcJoSaraAX4yyObvkCxgCXck3CYrY8rIZsFM8pcmDFDg7SNbHAokAOdS+HPH/I
-JZV4s9WOsw==
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/security-internal.crt b/deployment/environments/certs/server/hosts/localhost/security-internal.crt
deleted file mode 100644
index 3f404fc5efc275c89b5dcc7fb89b81d0e0358d14..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/security-internal.crt
+++ /dev/null
@@ -1,111 +0,0 @@
-Certificate:
- Data:
- Version: 1 (0x0)
- Serial Number: 515 (0x203)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_server
- Validity
- Not Before: Dec 19 12:45:55 2019 GMT
- Not After : Dec 18 12:45:55 2022 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, CN=security-internal.service.consul
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:aa:c3:f1:9c:ac:1d:fa:45:30:b5:03:57:5c:6e:
- ac:bf:80:af:05:cc:1b:4d:8c:a5:07:4d:cb:88:00:
- 5f:2c:c6:78:c8:a3:8d:95:98:1c:bf:c5:73:59:4c:
- 2d:a8:b4:83:88:fa:02:46:de:a2:54:39:42:0b:d8:
- e2:f4:38:df:81:45:bc:6b:09:65:8f:11:3d:43:90:
- 87:b6:35:4b:bc:8d:f1:ac:30:50:f6:a4:c6:e9:90:
- 57:cd:0d:7e:89:d6:22:cd:98:44:5f:88:9b:93:61:
- 43:e6:4c:48:16:4e:9e:68:df:2b:69:43:dc:15:30:
- 0e:74:d5:11:7e:f6:b7:a2:35:c4:a3:b0:e6:9c:9a:
- 83:da:cd:24:ab:0f:2f:7d:71:f4:45:1b:69:49:16:
- d4:c1:ae:d5:18:11:af:28:c7:a4:8b:71:2a:3b:13:
- 86:26:a1:15:b2:ba:32:f3:a5:1d:e4:98:40:29:9f:
- d5:c7:92:34:80:4c:cb:68:29:aa:6b:f6:7a:7b:3a:
- 12:fc:89:9b:00:b0:20:23:3a:3a:23:65:48:1c:0e:
- 4f:97:ed:d0:9a:c5:fb:1d:63:3a:08:b6:e9:d6:ff:
- aa:1d:90:0b:3d:ae:a7:fc:d9:27:5e:fb:98:dd:eb:
- ee:13:33:db:35:c7:a3:e1:40:07:19:6d:f4:61:c2:
- 03:a7:76:28:3c:2e:f5:8a:da:1d:3d:85:72:46:6e:
- 00:0c:21:96:2d:75:0f:e1:4b:18:72:ed:f6:30:c1:
- 02:27:b6:6c:d0:7b:29:08:51:22:35:89:b3:2d:d6:
- bd:b9:f8:bc:d1:2b:f8:1a:a3:ac:2b:1b:36:59:b4:
- 00:a8:31:cc:81:33:a2:59:91:47:30:6c:74:e0:73:
- 6e:07:4a:4c:2b:42:07:e5:9c:b6:7b:76:64:3f:d1:
- d6:b0:81:f9:17:ce:8f:7f:72:ac:bd:45:e7:a5:d7:
- bf:b5:aa:fb:7f:37:89:4e:94:54:a3:92:c0:7d:48:
- 9f:d7:54:ef:5c:7d:75:88:c8:41:19:e7:0a:a3:3b:
- 8c:23:93:7b:06:b7:92:8c:9d:fe:e7:8b:fb:8c:0c:
- ae:b5:c0:2c:09:dd:01:f7:18:f9:c3:29:dd:88:16:
- 97:ba:c0:a1:69:78:f8:b9:1b:4f:d0:cd:c3:ed:50:
- bd:2c:43:0e:18:31:c4:3b:b4:b5:fc:99:7a:8a:5c:
- db:3e:29:ef:f8:10:d7:06:a9:ec:58:a7:f7:c5:0e:
- 56:9f:37:ab:7f:9b:1d:b2:6e:36:ef:17:d6:ac:76:
- 65:1a:8d:34:5e:73:a8:e8:f3:d0:af:61:3f:68:35:
- 1a:ab:e2:70:9b:fd:a3:61:f9:ef:fe:17:b7:38:a7:
- 91:9a:c5
- Exponent: 65537 (0x10001)
- Signature Algorithm: sha256WithRSAEncryption
- 1c:8d:7e:c5:63:a6:c2:40:bb:62:e9:97:df:6f:ef:42:8a:c1:
- 11:db:a8:35:91:f7:b9:41:34:1d:f4:9c:35:5b:20:37:c9:ce:
- 93:97:70:20:b6:9c:f6:01:f4:03:17:3d:1c:4a:89:dd:75:45:
- 50:15:4c:8b:a9:86:7b:f1:64:dd:ef:67:54:c5:b2:1d:d8:06:
- e5:92:86:62:c1:0a:4a:13:5d:fe:51:28:24:36:fa:fd:c0:70:
- ed:98:dd:80:7a:2b:57:dc:58:d5:54:ce:fb:e5:bb:22:f9:63:
- d1:0a:5d:af:5e:ff:ab:b4:6b:0d:a7:38:e8:86:0e:c4:ea:f6:
- 80:1f:b3:c0:41:9b:b4:a4:b9:de:70:17:50:15:8e:5b:5d:ab:
- 92:9f:24:23:ab:4d:d2:3e:77:2a:d4:80:ff:a0:0a:20:6f:a0:
- 32:72:bb:de:56:99:d7:53:6c:b2:4b:9a:61:2c:b0:d2:ab:30:
- 99:99:5c:d3:5d:64:26:0c:09:89:f3:e3:fb:fa:2e:7d:aa:88:
- 2b:81:0c:ec:ca:b8:52:b0:ce:7a:f5:a1:f2:e9:ad:7e:bb:38:
- b6:d6:1d:f8:63:71:ed:c1:53:b5:d1:e4:f7:1e:11:28:a5:f0:
- 2e:c5:f9:bc:a7:f7:f9:a3:99:96:3d:c2:5c:77:1a:01:ec:75:
- 7a:02:0a:2b:64:b9:92:e6:6a:88:93:34:ef:2c:c0:87:ac:53:
- 4d:9b:80:57:0b:79:b5:cf:b3:53:33:b5:c5:57:67:79:9e:3f:
- 44:08:5b:df:8f:10:5b:a0:36:12:d8:df:d1:18:57:68:a8:92:
- bf:21:d1:11:3d:d4:e4:01:37:26:7c:00:ad:14:9d:1b:d5:13:
- 33:88:0f:20:b1:b1:d2:2b:ba:d0:95:4f:65:65:c0:69:34:a9:
- 86:ea:cd:c7:e2:09:80:20:cd:23:22:11:f1:40:ae:ff:8a:06:
- 40:ea:b3:c5:e4:fb:94:9b:4b:b0:fb:74:9f:45:b6:ad:30:fb:
- 9b:45:47:bc:be:2d:02:d2:24:5a:37:1b:6c:bd:21:30:96:a5:
- ab:28:db:5e:00:6c:db:f8:d8:d4:c4:fb:59:ed:6c:d5:5e:11:
- de:9d:61:d9:ba:dd:59:0e:f1:8c:e6:9c:3e:4f:7b:a3:02:57:
- ac:fa:fa:92:c6:79:79:e4:08:42:7e:1e:99:ea:fa:e7:2f:54:
- 21:06:f3:63:f3:cc:6b:a8:45:c8:df:51:95:d9:ea:c2:e7:5f:
- 57:cd:fe:64:db:74:dd:80:e0:4f:37:5a:41:61:c2:40:34:7a:
- 9c:88:44:24:7e:77:33:f4:56:29:a0:bf:bb:9a:4d:97:c2:58:
- 2c:2c:23:46:d1:6c:c5:f7
------BEGIN CERTIFICATE-----
-MIIFTTCCAzUCAgIDMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NTU1WhcNMjIxMjE4MTI0NTU1WjBmMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xKTAn
-BgNVBAMMIHNlY3VyaXR5LWludGVybmFsLnNlcnZpY2UuY29uc3VsMIICIjANBgkq
-hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqsPxnKwd+kUwtQNXXG6sv4CvBcwbTYyl
-B03LiABfLMZ4yKONlZgcv8VzWUwtqLSDiPoCRt6iVDlCC9ji9DjfgUW8awlljxE9
-Q5CHtjVLvI3xrDBQ9qTG6ZBXzQ1+idYizZhEX4ibk2FD5kxIFk6eaN8raUPcFTAO
-dNURfva3ojXEo7DmnJqD2s0kqw8vfXH0RRtpSRbUwa7VGBGvKMeki3EqOxOGJqEV
-sroy86Ud5JhAKZ/Vx5I0gEzLaCmqa/Z6ezoS/ImbALAgIzo6I2VIHA5Pl+3QmsX7
-HWM6CLbp1v+qHZALPa6n/NknXvuY3evuEzPbNcej4UAHGW30YcIDp3YoPC71itod
-PYVyRm4ADCGWLXUP4UsYcu32MMECJ7Zs0HspCFEiNYmzLda9ufi80Sv4GqOsKxs2
-WbQAqDHMgTOiWZFHMGx04HNuB0pMK0IH5Zy2e3ZkP9HWsIH5F86Pf3KsvUXnpde/
-tar7fzeJTpRUo5LAfUif11TvXH11iMhBGecKozuMI5N7BreSjJ3+54v7jAyutcAs
-Cd0B9xj5wyndiBaXusChaXj4uRtP0M3D7VC9LEMOGDHEO7S1/Jl6ilzbPinv+BDX
-BqnsWKf3xQ5Wnzerf5sdsm427xfWrHZlGo00XnOo6PPQr2E/aDUaq+Jwm/2jYfnv
-/he3OKeRmsUCAwEAATANBgkqhkiG9w0BAQsFAAOCAgEAHI1+xWOmwkC7YumX32/v
-QorBEduoNZH3uUE0HfScNVsgN8nOk5dwILac9gH0Axc9HEqJ3XVFUBVMi6mGe/Fk
-3e9nVMWyHdgG5ZKGYsEKShNd/lEoJDb6/cBw7ZjdgHorV9xY1VTO++W7Ivlj0Qpd
-r17/q7RrDac46IYOxOr2gB+zwEGbtKS53nAXUBWOW12rkp8kI6tN0j53KtSA/6AK
-IG+gMnK73laZ11NsskuaYSyw0qswmZlc011kJgwJifPj+/oufaqIK4EM7Mq4UrDO
-evWh8umtfrs4ttYd+GNx7cFTtdHk9x4RKKXwLsX5vKf3+aOZlj3CXHcaAex1egIK
-K2S5kuZqiJM07yzAh6xTTZuAVwt5tc+zUzO1xVdneZ4/RAhb348QW6A2Etjf0RhX
-aKiSvyHRET3U5AE3JnwArRSdG9UTM4gPILGx0iu60JVPZWXAaTSphurNx+IJgCDN
-IyIR8UCu/4oGQOqzxeT7lJtLsPt0n0W2rTD7m0VHvL4tAtIkWjcbbL0hMJalqyjb
-XgBs2/jY1MT7We1s1V4R3p1h2brdWQ7xjOacPk97owJXrPr6ksZ5eeQIQn4emer6
-5y9UIQbzY/PMa6hFyN9RldnqwudfV83+ZNt03YDgTzdaQWHCQDR6nIhEJH53M/RW
-KaC/u5pNl8JYLCwjRtFsxfc=
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/security-internal.key b/deployment/environments/certs/server/hosts/localhost/security-internal.key
deleted file mode 100644
index 9db8e5ada3e871379e885642c05c176de1c07cae..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/security-internal.key
+++ /dev/null
@@ -1,52 +0,0 @@
------BEGIN PRIVATE KEY-----
-MIIJQwIBADANBgkqhkiG9w0BAQEFAASCCS0wggkpAgEAAoICAQCqw/GcrB36RTC1
-A1dcbqy/gK8FzBtNjKUHTcuIAF8sxnjIo42VmBy/xXNZTC2otIOI+gJG3qJUOUIL
-2OL0ON+BRbxrCWWPET1DkIe2NUu8jfGsMFD2pMbpkFfNDX6J1iLNmERfiJuTYUPm
-TEgWTp5o3ytpQ9wVMA501RF+9reiNcSjsOacmoPazSSrDy99cfRFG2lJFtTBrtUY
-Ea8ox6SLcSo7E4YmoRWyujLzpR3kmEApn9XHkjSATMtoKapr9np7OhL8iZsAsCAj
-OjojZUgcDk+X7dCaxfsdYzoItunW/6odkAs9rqf82Sde+5jd6+4TM9s1x6PhQAcZ
-bfRhwgOndig8LvWK2h09hXJGbgAMIZYtdQ/hSxhy7fYwwQIntmzQeykIUSI1ibMt
-1r25+LzRK/gao6wrGzZZtACoMcyBM6JZkUcwbHTgc24HSkwrQgflnLZ7dmQ/0daw
-gfkXzo9/cqy9Reel17+1qvt/N4lOlFSjksB9SJ/XVO9cfXWIyEEZ5wqjO4wjk3sG
-t5KMnf7ni/uMDK61wCwJ3QH3GPnDKd2IFpe6wKFpePi5G0/QzcPtUL0sQw4YMcQ7
-tLX8mXqKXNs+Ke/4ENcGqexYp/fFDlafN6t/mx2ybjbvF9asdmUajTRec6jo89Cv
-YT9oNRqr4nCb/aNh+e/+F7c4p5GaxQIDAQABAoICAD9MdLIzpsUPgreGboqnx8cQ
-x0/p0bEUUlP7xVc7dAwf4cPVxHTQNs/rPA+8yiwABcXvjoqAmkGIG/BSTAZlUowT
-sn0mtYurwz7ZQ0UKSnGxWAUQv+I9QDJxu+oZd29Wff4h1C5pb+nYoxep7Qq/x75u
-AyR48Aq2jpVGKb8bawRo0+Qtfb5NFFU1t8Lk1SC17erz9zoNiX3l9b1/SKNgJaE+
-qH3PhempymY+2QYxjXwf56DGS7M3gdiRHtEUqMRuUAZ/h2wvAdLmdnM4cTaPo4Qq
-1dwmXi4Q9z10e52hV9rHWGKu80vBAyoZwJtXvdl9S/m4PiiYQSoM1tTZSj42ca21
-X0ROmfyMbKILA4MpKynGgzKlZJoWYob4GGrVhzyQvXIMEzOffEmQwfMJeZSFiEHK
-pVGAUZnMWgJIM9fks/IzKGnk4G84IezdT+dlcKgARfMDBFtVrhy2OJPt4nRMJ7fJ
-4ooX6UzSX/Lb9CoD6Gi1RDbePw2+1eiM1HdRm3ZC8FdXl20ui3EXWd58i1lMTCpj
-dI9CYLRYtdY8kF0auRIYg6TDZZd1bsIhckP7j4iCIJt1wo7QoeB6WZxljKH+qQz3
-mf83mAl49dLgWoGDvPIyX5zCmqNVtwHS+tRACooFD763gUsNxCvEEt849y8xO7GE
-5PIo8FQf9WqmxlvOlaihAoIBAQDZv4Hmhxr5uUkLLiHzaYTPY8ZJiTKOHi9Hestf
-C2lItG+7W3oIh5EiF5REBG/ISkWKggfLye61P/Bft2GFdIL9dZoUB5yBc3ij4Ho8
-ZbSt3rsyzFsG00LrcjUiN182OpGAdAUi+E9L/lvELswRndlGLZDoow7MCF7Wy3mk
-OKWczG9OAu1QgbDvTolWmocoeSwCGCePUJeyEi924EQeHVKrGjaSHwtaGSFJCT2j
-c0Mod6BpqBIbiX6AB7Z31KFVJIbtkQ/u990F17hddSWnf37A6ySyLSMbsnHSf9ut
-T9/fW/K0LII7rFuAUHigptXzXTirASwLRlsQPEnM6p367nfNAoIBAQDIw4wzmu1L
-r8VlwNuqHx947KPB4/MRG0wVr4SOAF/nIOrSx3/nC0hStJvYSgzw7TcNukYq0RxE
-tOPSJqWq7Dt3z0PFF9PQhZ2QCvInAwQ99dpjbgb/JGEEpOOBftLm7JJ1lcJ4MZ//
-0soEO2bnorfl/uaMKrBBb1Z9Q+4//F1PyNHtJaFj79fZv92Y19cC39tjdOeKh66n
-QjF1tgZzXIfqPjBSgcfuyV6OqwXYP1CaQMP/22vqtNI3wgjVuS4Lk+g3/JSfPFat
-eCLu0h9jVSbwG5P1PAkjaG7cGHSJLF8wQs+8nr+ImZhQM8oAcQfw4g/OJSTKc2YG
-p5xZCTZ1XEbZAoIBAQCssdcLhzGcxxeoV1Ez5QchGEemALrovgXPUhNDcSByOjC3
-TmitpR81A7BidYZWOpmGrXQTazb35xr0PtOIbYyKCqBFrHeyr2sJxboMdrligFjF
-hA/ZjOnxI+YCGhpYPwEw+FMulfMGGViccmUEv8UXhIH+D3xn02esQTpbRVYL0pOg
-MnAWvpUeZpJD7lCth9SgYJnXbxqwbv3X8Sv1Glp7O1H2d8qgDXg5nauWG48y5BWE
-VnjuABEk53kO9sNxbIPanIcfhtNzk9AzxvozKsnTpWq4KVZD3DWrth37CXNLiXgm
-73nma98yGCBjgY4D8nZEIazV0FneuYHqlFTxM/otAoIBAEAg5nnddQsGHGHCVuhi
-hKUVwcE/VPcT5xvOMuNBD2E+zIODokFlAzcX5egSz0tuGnXSGHO40/TGazdHjQep
-6dz9YcJlOA2VgJzwQiVf+0znaVj1XlrFfhADs4A7yJZm3umcasAF6fvHkywC5X38
-Jg3bfD0trZtZOyFMP6BEtnGzzgqYSJMpm6M8fEZEO7P5WZTNVOCVMp7OsAnPmQPk
-fK3AK6NPPVPzErczvewzXUXIhlMF/dS86aFR44yRWDnuhvDLR5YNqgpDI7VxfQE3
-w/ZSeNKO2MRsqWy4ixD+EXHTBZRUiQ3TMin8QPwfHtA9BZttlfDtJ5vckj6GiNS4
-IxECggEBALJ1lD64an/OB5WWi76vVp2LZ/MNzjB6ObJKqbbBq/aPpypBsKu8vO4A
-9OAHpBbCloe6qI5hTyaF5M16wkO3I0uZnM0lB1abaM+7hHOK2roXg/7LCXRQpsaQ
-S9+OsvmK83nmmWq9N8XYIGz7KW9SUMXA14kYjjwWI7//yfsgKEFBTiA8sQYM+IaK
-rqlU6PysV7K5N6j/8gUdwR64oQAl7c5YYbPl3FKL8nMWOrukMJpQBmkz8D4M17CB
-60aEwn7WvRnL5Bp6nvLAnnrV4N2Jg7gtmVsKH2VoHfC78g0NUsMYOkZ7Q8AJ2Rmk
-z2vl5Ebz54cnoMzDSY9zMGGkH7KByfI=
------END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/localhost/security-internal.pem b/deployment/environments/certs/server/hosts/localhost/security-internal.pem
deleted file mode 100644
index 75b66b4eab4a5371022626ee09bcf3766364b4ef..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/security-internal.pem
+++ /dev/null
@@ -1,31 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIFTTCCAzUCAgIDMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NTU1WhcNMjIxMjE4MTI0NTU1WjBmMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xKTAn
-BgNVBAMMIHNlY3VyaXR5LWludGVybmFsLnNlcnZpY2UuY29uc3VsMIICIjANBgkq
-hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqsPxnKwd+kUwtQNXXG6sv4CvBcwbTYyl
-B03LiABfLMZ4yKONlZgcv8VzWUwtqLSDiPoCRt6iVDlCC9ji9DjfgUW8awlljxE9
-Q5CHtjVLvI3xrDBQ9qTG6ZBXzQ1+idYizZhEX4ibk2FD5kxIFk6eaN8raUPcFTAO
-dNURfva3ojXEo7DmnJqD2s0kqw8vfXH0RRtpSRbUwa7VGBGvKMeki3EqOxOGJqEV
-sroy86Ud5JhAKZ/Vx5I0gEzLaCmqa/Z6ezoS/ImbALAgIzo6I2VIHA5Pl+3QmsX7
-HWM6CLbp1v+qHZALPa6n/NknXvuY3evuEzPbNcej4UAHGW30YcIDp3YoPC71itod
-PYVyRm4ADCGWLXUP4UsYcu32MMECJ7Zs0HspCFEiNYmzLda9ufi80Sv4GqOsKxs2
-WbQAqDHMgTOiWZFHMGx04HNuB0pMK0IH5Zy2e3ZkP9HWsIH5F86Pf3KsvUXnpde/
-tar7fzeJTpRUo5LAfUif11TvXH11iMhBGecKozuMI5N7BreSjJ3+54v7jAyutcAs
-Cd0B9xj5wyndiBaXusChaXj4uRtP0M3D7VC9LEMOGDHEO7S1/Jl6ilzbPinv+BDX
-BqnsWKf3xQ5Wnzerf5sdsm427xfWrHZlGo00XnOo6PPQr2E/aDUaq+Jwm/2jYfnv
-/he3OKeRmsUCAwEAATANBgkqhkiG9w0BAQsFAAOCAgEAHI1+xWOmwkC7YumX32/v
-QorBEduoNZH3uUE0HfScNVsgN8nOk5dwILac9gH0Axc9HEqJ3XVFUBVMi6mGe/Fk
-3e9nVMWyHdgG5ZKGYsEKShNd/lEoJDb6/cBw7ZjdgHorV9xY1VTO++W7Ivlj0Qpd
-r17/q7RrDac46IYOxOr2gB+zwEGbtKS53nAXUBWOW12rkp8kI6tN0j53KtSA/6AK
-IG+gMnK73laZ11NsskuaYSyw0qswmZlc011kJgwJifPj+/oufaqIK4EM7Mq4UrDO
-evWh8umtfrs4ttYd+GNx7cFTtdHk9x4RKKXwLsX5vKf3+aOZlj3CXHcaAex1egIK
-K2S5kuZqiJM07yzAh6xTTZuAVwt5tc+zUzO1xVdneZ4/RAhb348QW6A2Etjf0RhX
-aKiSvyHRET3U5AE3JnwArRSdG9UTM4gPILGx0iu60JVPZWXAaTSphurNx+IJgCDN
-IyIR8UCu/4oGQOqzxeT7lJtLsPt0n0W2rTD7m0VHvL4tAtIkWjcbbL0hMJalqyjb
-XgBs2/jY1MT7We1s1V4R3p1h2brdWQ7xjOacPk97owJXrPr6ksZ5eeQIQn4emer6
-5y9UIQbzY/PMa6hFyN9RldnqwudfV83+ZNt03YDgTzdaQWHCQDR6nIhEJH53M/RW
-KaC/u5pNl8JYLCwjRtFsxfc=
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/ui-identity-admin.crt b/deployment/environments/certs/server/hosts/localhost/ui-identity-admin.crt
deleted file mode 100644
index 5c900cd9bd0c61a2c4e964084904d91bbc89e1e8..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/ui-identity-admin.crt
+++ /dev/null
@@ -1,111 +0,0 @@
-Certificate:
- Data:
- Version: 1 (0x0)
- Serial Number: 520 (0x208)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_server
- Validity
- Not Before: Dec 19 12:46:07 2019 GMT
- Not After : Dec 18 12:46:07 2022 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, CN=ui-identity-admin.service.consul
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:bd:38:cd:99:95:82:89:d4:79:26:ce:41:63:c5:
- c9:61:bb:0c:04:81:05:90:4a:c2:71:e9:02:30:6b:
- dc:00:5e:24:a9:79:c9:01:53:da:a5:62:9c:20:7f:
- d7:c8:0e:ef:34:b3:99:f3:7d:72:b9:c4:27:25:9e:
- b6:9b:99:63:4b:a1:61:38:db:02:07:bc:37:70:cf:
- eb:9c:47:4f:e7:22:49:05:b4:49:90:50:4f:67:e2:
- 74:9a:b9:50:5a:7d:ac:a3:a4:2a:ea:58:dc:bc:03:
- a6:e2:e8:03:2e:78:63:03:95:ff:5d:82:eb:88:57:
- 8f:11:d9:5d:7a:23:63:55:f7:b5:34:ef:8c:89:b6:
- ec:20:82:b2:2b:6f:ab:9d:21:01:cc:58:7a:45:fd:
- ed:bc:4f:b5:be:6c:1a:eb:4c:bc:1b:61:df:d6:c9:
- b4:6c:45:b1:3a:64:83:1f:e3:76:c5:19:24:a1:99:
- dc:2e:5a:e9:3c:19:42:c4:f6:77:5f:88:e7:fc:7c:
- a5:fe:19:46:d3:76:c0:6a:d5:29:25:9d:1f:69:c3:
- 82:64:14:7b:80:c5:18:69:11:00:2c:d6:37:3f:ec:
- cb:17:fd:98:53:2b:23:ff:ac:68:b0:2a:83:c2:74:
- 72:99:39:ed:6b:1e:27:90:4c:4f:de:70:62:53:a7:
- 43:2a:71:46:51:21:90:8a:38:3b:9a:05:c4:97:f1:
- a7:54:62:b5:8d:c0:d3:53:be:6c:f6:4b:f7:e7:fe:
- 60:3c:34:ff:02:bc:7c:2d:8c:dd:0a:ed:21:99:c3:
- 94:6f:c2:25:4c:25:be:b0:d3:bd:c5:40:7b:90:53:
- d0:de:8f:2c:57:2c:05:46:1d:15:b4:21:b8:0e:1c:
- 55:ab:e2:85:63:29:de:28:ae:62:b9:97:1b:ff:02:
- bd:66:e5:d8:26:eb:3e:8b:f3:70:b4:20:66:3b:30:
- 12:a6:44:44:7a:29:3c:b9:86:49:46:9a:88:bc:f7:
- 8f:22:fa:c8:a7:b3:f1:07:23:7b:9b:a8:0e:5f:0c:
- b0:e3:26:27:3b:3b:de:86:cb:94:2d:dd:fb:79:a8:
- ec:4e:44:67:6a:55:4b:1b:26:74:48:ac:ec:68:8c:
- ec:5c:7d:b0:a5:40:80:b5:ca:8f:8e:73:a0:04:32:
- 46:d9:ad:54:fb:9b:3b:9c:e6:a4:8f:02:b4:4b:38:
- 3e:f3:b6:98:43:97:8b:6c:08:8a:18:bf:38:48:d9:
- 41:a8:68:08:35:52:8e:01:3f:bc:5e:ea:65:0a:4f:
- 87:60:a3:bd:bb:05:fa:1d:57:5b:f5:59:3f:4a:17:
- 5b:ed:5a:e3:5b:87:2f:78:77:31:3d:69:27:9b:85:
- 83:52:51
- Exponent: 65537 (0x10001)
- Signature Algorithm: sha256WithRSAEncryption
- a0:80:89:cf:bb:ba:18:b7:be:b1:31:cb:92:71:cc:c1:48:e7:
- 72:da:15:8d:56:9e:86:06:a8:bc:4c:db:c8:b8:2c:5e:85:f4:
- 88:67:8f:a8:2c:d2:fc:eb:dd:8c:c5:59:9f:cc:ab:71:3f:f8:
- 63:1a:27:02:55:d9:0c:7d:95:62:94:4a:4c:d7:e9:ef:3c:eb:
- f1:f3:e1:93:dd:8b:b2:78:ba:8d:28:a6:5f:0d:16:8a:73:30:
- 41:b7:2c:37:21:bc:80:3a:21:63:11:ca:6f:4e:6d:1d:73:2a:
- 04:ab:cc:9e:e5:58:b0:af:da:79:e4:53:61:6c:11:58:d6:aa:
- c7:26:db:7e:97:86:6d:2e:f8:ef:01:5b:68:cd:a4:be:4c:66:
- f0:19:22:31:14:20:22:dd:77:9f:2b:a5:82:ba:fd:52:82:06:
- d7:c1:e6:31:19:a5:a6:da:f0:e2:fc:6e:b8:12:88:a7:f6:62:
- a3:86:2c:31:6e:e4:3a:e5:a7:49:bd:95:c8:a4:ad:a8:36:60:
- 94:23:e1:dc:19:32:f9:9a:79:24:6e:fb:32:5a:b4:5d:34:b8:
- c9:34:eb:7c:66:f6:58:11:7d:4b:1d:b5:54:bd:10:70:03:b7:
- 97:99:d0:08:01:3a:9f:bf:b8:d4:7c:51:fe:86:fc:a0:41:c2:
- 1d:fd:7c:18:a4:1d:db:1a:6c:14:19:cb:89:f1:10:81:75:7b:
- 43:5a:9a:e2:e5:27:48:e9:45:4c:8c:e9:42:e9:9b:c3:a4:35:
- fa:95:6f:6f:ba:0f:82:de:3a:3f:a8:c5:cf:b3:37:54:c0:b0:
- 1f:04:a1:43:3d:1b:f3:15:f8:1c:bb:b3:70:a3:d0:0e:1d:61:
- 71:d5:22:94:f6:8b:78:fe:dc:46:39:e5:06:c5:2f:9d:8b:b0:
- 64:9e:88:e5:da:9a:2e:e4:09:c7:b0:a6:91:95:2c:06:e8:20:
- 3a:e3:7c:62:34:f9:28:df:55:4c:99:4c:52:63:c7:c0:c6:e4:
- 26:bd:8e:21:28:ae:53:a8:4f:6f:f5:32:1b:d3:39:03:d9:3a:
- f6:1b:27:dc:4c:37:a0:bc:60:29:69:e8:41:0a:21:a4:f3:d0:
- 87:f8:88:23:f6:48:f9:01:9e:d3:90:fe:35:51:ba:7b:67:aa:
- 39:97:17:4b:dd:53:d3:57:90:54:b7:2c:55:1c:f3:db:ee:da:
- 1e:f0:bc:c0:d2:e8:cf:9b:51:1d:9a:b1:2d:99:f6:c0:97:59:
- 12:26:48:3d:96:3b:6c:c9:a4:be:e0:e9:27:34:94:03:93:b3:
- 7c:35:7e:f7:d0:2e:af:8a:2c:d2:e8:c1:ca:09:9c:ab:6d:1d:
- 8b:ad:5c:fe:bd:f3:bb:b8
------BEGIN CERTIFICATE-----
-MIIFTTCCAzUCAgIIMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NjA3WhcNMjIxMjE4MTI0NjA3WjBmMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xKTAn
-BgNVBAMMIHVpLWlkZW50aXR5LWFkbWluLnNlcnZpY2UuY29uc3VsMIICIjANBgkq
-hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvTjNmZWCidR5Js5BY8XJYbsMBIEFkErC
-cekCMGvcAF4kqXnJAVPapWKcIH/XyA7vNLOZ831yucQnJZ62m5ljS6FhONsCB7w3
-cM/rnEdP5yJJBbRJkFBPZ+J0mrlQWn2so6Qq6ljcvAOm4ugDLnhjA5X/XYLriFeP
-EdldeiNjVfe1NO+MibbsIIKyK2+rnSEBzFh6Rf3tvE+1vmwa60y8G2Hf1sm0bEWx
-OmSDH+N2xRkkoZncLlrpPBlCxPZ3X4jn/Hyl/hlG03bAatUpJZ0facOCZBR7gMUY
-aREALNY3P+zLF/2YUysj/6xosCqDwnRymTntax4nkExP3nBiU6dDKnFGUSGQijg7
-mgXEl/GnVGK1jcDTU75s9kv35/5gPDT/Arx8LYzdCu0hmcOUb8IlTCW+sNO9xUB7
-kFPQ3o8sVywFRh0VtCG4DhxVq+KFYyneKK5iuZcb/wK9ZuXYJus+i/NwtCBmOzAS
-pkREeik8uYZJRpqIvPePIvrIp7PxByN7m6gOXwyw4yYnOzvehsuULd37eajsTkRn
-alVLGyZ0SKzsaIzsXH2wpUCAtcqPjnOgBDJG2a1U+5s7nOakjwK0Szg+87aYQ5eL
-bAiKGL84SNlBqGgINVKOAT+8XuplCk+HYKO9uwX6HVdb9Vk/Shdb7VrjW4cveHcx
-PWknm4WDUlECAwEAATANBgkqhkiG9w0BAQsFAAOCAgEAoICJz7u6GLe+sTHLknHM
-wUjnctoVjVaehgaovEzbyLgsXoX0iGePqCzS/OvdjMVZn8yrcT/4YxonAlXZDH2V
-YpRKTNfp7zzr8fPhk92Lsni6jSimXw0WinMwQbcsNyG8gDohYxHKb05tHXMqBKvM
-nuVYsK/aeeRTYWwRWNaqxybbfpeGbS747wFbaM2kvkxm8BkiMRQgIt13nyulgrr9
-UoIG18HmMRmlptrw4vxuuBKIp/Zio4YsMW7kOuWnSb2VyKStqDZglCPh3Bky+Zp5
-JG77Mlq0XTS4yTTrfGb2WBF9Sx21VL0QcAO3l5nQCAE6n7+41HxR/ob8oEHCHf18
-GKQd2xpsFBnLifEQgXV7Q1qa4uUnSOlFTIzpQumbw6Q1+pVvb7oPgt46P6jFz7M3
-VMCwHwShQz0b8xX4HLuzcKPQDh1hcdUilPaLeP7cRjnlBsUvnYuwZJ6I5dqaLuQJ
-x7CmkZUsBuggOuN8YjT5KN9VTJlMUmPHwMbkJr2OISiuU6hPb/UyG9M5A9k69hsn
-3Ew3oLxgKWnoQQohpPPQh/iII/ZI+QGe05D+NVG6e2eqOZcXS91T01eQVLcsVRzz
-2+7aHvC8wNLoz5tRHZqxLZn2wJdZEiZIPZY7bMmkvuDpJzSUA5OzfDV+99Aur4os
-0ujBygmcq20di61c/r3zu7g=
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/ui-identity-admin.key b/deployment/environments/certs/server/hosts/localhost/ui-identity-admin.key
deleted file mode 100644
index aa97d6b282b4c789d4d60d6ff309d8da21fc0d06..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/ui-identity-admin.key
+++ /dev/null
@@ -1,52 +0,0 @@
------BEGIN PRIVATE KEY-----
-MIIJQgIBADANBgkqhkiG9w0BAQEFAASCCSwwggkoAgEAAoICAQC9OM2ZlYKJ1Hkm
-zkFjxclhuwwEgQWQSsJx6QIwa9wAXiSpeckBU9qlYpwgf9fIDu80s5nzfXK5xCcl
-nrabmWNLoWE42wIHvDdwz+ucR0/nIkkFtEmQUE9n4nSauVBafayjpCrqWNy8A6bi
-6AMueGMDlf9dguuIV48R2V16I2NV97U074yJtuwggrIrb6udIQHMWHpF/e28T7W+
-bBrrTLwbYd/WybRsRbE6ZIMf43bFGSShmdwuWuk8GULE9ndfiOf8fKX+GUbTdsBq
-1SklnR9pw4JkFHuAxRhpEQAs1jc/7MsX/ZhTKyP/rGiwKoPCdHKZOe1rHieQTE/e
-cGJTp0MqcUZRIZCKODuaBcSX8adUYrWNwNNTvmz2S/fn/mA8NP8CvHwtjN0K7SGZ
-w5RvwiVMJb6w073FQHuQU9DejyxXLAVGHRW0IbgOHFWr4oVjKd4ormK5lxv/Ar1m
-5dgm6z6L83C0IGY7MBKmRER6KTy5hklGmoi8948i+sins/EHI3ubqA5fDLDjJic7
-O96Gy5Qt3ft5qOxORGdqVUsbJnRIrOxojOxcfbClQIC1yo+Oc6AEMkbZrVT7mzuc
-5qSPArRLOD7ztphDl4tsCIoYvzhI2UGoaAg1Uo4BP7xe6mUKT4dgo727BfodV1v1
-WT9KF1vtWuNbhy94dzE9aSebhYNSUQIDAQABAoICAE9DhTSp4YXVIG72BYRC7Qno
-ba9RUMBR4MQQxF7+P6lTxm3L2zyYIMYY2afvhbeDMgbUmU/bI/zXQ0LKClqB1Ytv
-7acAbwhIerziDCNp5/m9bfNaw1oVmj29KfVKXXOao3/lHCkQ0l5b9UOlxvdnbKqq
-4c8NMZbqfr8OW873FfyECD9FfYyOuLkhpnr1i2EF25f7FDVPmo/AoDRFWr1oZn/d
-7wMteUvFoekBA8CO60jDMIoVRpuQb5VCS6rwR68YTX2BxZL8iaO5Yf8ejd74w5jt
-UiiUP+wAJCqW+YjOr1Qy4ByLmYx1TN4kHbJ2DL2fRAYVsvOlLROQNADM+RNrxIFB
-NRDei+MQXi8dIxgTuz1S5b6tzDShshdcl/UxO8EVfenMhMXxKBTbw4u1cQa5aL6Y
-lFEC9LyfteAgOBSe97tav5amx8duA2HRtt6HJgQiPfnOg3RyLDzdtt1jtuY1Z+pR
-Ym5EmgZNsBr4kfiMOKBxsQD8aZtTwvYTR8I7aQRM7PkFKpJJp6ONH8rPQoqDNtCM
-J4ao24fwJqjZkwdPgS0hCh32rFnvIoY7fxtfvzeTK9elmxsGmbbr9uhvKZfqmOmA
-mTRtblpP1Vnq354Ee2lqBGCBAPKSFSDlKdYOZFfAVd6mxwSEaKKLeNSv6Ck6yq3g
-wnPnPoyy9Km4dwdB0YyxAoIBAQDqIulxGmVGf0hZWmCrf9pM0FYVGIwh3rt2wtdJ
-1INrlytFlDuaX1dR/D0meZjFhd57E+20RZSBe665oKQC8+1gXrhcQ/5z64Q/qj3o
-AOMGLJwmJIa83mYH22cZKjVCvFZB15moutrNpin4PN9894JMfXNhtAAu0yLS7j34
-BwapH7LJPyz73lum3r8Xfc3g9IOlkax149Xc8IlkPyyDAzJZGl9ivSaPpmTttv70
-OpSzcyLGQDv5uzP6+IB5t6ludgKn0mfPsmGKlj2dtxTVqmv8w/FzyH/2hGz1tCGt
-AsR3R4+JamKvw0Ny0u7jZSzrWlL8ol3k7JjsBfMEt/I6GRA9AoIBAQDO5DMEDabU
-iWGY/43i85xOnm9kYohx2Xt1TkNzRWYZc6KWaPPcCUAgV0PRjSAz7zj8j2zO1DkY
-3pepy+u90SBRssszol1Tgaj87+kM1hBeAuGjHYFmk28hNhA5jklF+q6u5WnQVqGr
-8qN5djdxiisI9POTcjPJZM3FMighggfO11rZT7fb7ncT+hJGSihrC4B0L5/bhBNS
-5aj2FVBxlepIhopT5G/aNfRJc09Ivpjg8IfZ1JJwjmE2VNfxG35D60oulEe65S08
-kK2xR3oA6MrESQX9Tv8CINhsqJS+ZFUTU63ir6tfRtpzgy1NMkC6ikhz+mTkh6x+
-Y/PWEsSZhfelAoIBAQCPQ599wn33vghiDEgciFXmLJCPxf5w9x3UFHKxTWTA37Xt
-lD9IPVBr7SDpuvu82SYCP3ZymSS+ehS2ptHUsLcuAadjZYN8IL9CSYQpwuknLQK6
-4BzF0nuyERErt8TxOda54Re3w+YAcc06hNznVXeYICcKwJ5gCHdFg9vNOVddAvVd
-6Nc4op2IJMHeuO7R2Cv5koJpfGivEUuwWGt/GuSi2t1EyKKgwVr+jbvBa1rz1t6P
-WlyYeXDb/1R1pej5myIS2E8HKoo+x6GaMJ2CBA6hkq/affO2vt8BFSCKAah/p/zv
-Q3ZxP9S0nNbps03iENm4lg1H93G28gj6eSexXwatAoIBAAQxO5dpb2f/IKspAocG
-yLQPIdK27GziK05FN7iuP1NktHa3ybk7tsDxA77LTUvAHTeA8IOAaWfHmusl5rEB
-+9Wr+dIiCCIZDoORmPdZnxtIk6nqfyTE+AuEPO/toi541fFVVL+UAdKqKAXeD2GN
-mzGjRQxH1CTQlhrY2VdUezQFySF+LAuY2XDeMGCcQBVrNj8kd+jK1FlprfLOm8Kx
-dv3hPAxXJK0XSsvyOjkPI6nrNdWEKTN+rxmavoV0OSrHKcmn14xB+JixldNxz1cV
-YIZ5tFVdtG0mnTwWbm0tO0wY9f0R8jcMCIEut0xJKGafRriS6lh3J1eoTtiXqMQz
-osECggEAUn2kqJsq5AskGi/yruX9NkuDBAxOvEykxsMBk7HOzSs7uNuyLkCuDEJO
-P6ugZ5Od5s0ZRuN3RqQABRyTK7riPKQzTedozkS0hmugD1LXLnO66K5GP3oQMmSo
-cgsPJ0/LpRN64DcYBKfpnLu66SafaCB6KSc6+H38YST1DXDnNji1NKDYUx2789fG
-flHhF3SPoPEEoe32M0dN5g2L9q8xzFK4GFvwT4V+DTgfEblgfx4pVnHWppdf7Jwm
-OJ17mqYlH8R6K4kOvU82GXXA4Ubq/c//8lv8qmpMU2LJsThSM8+x9b0ZFsQ3WJzm
-ADh6cAC0pcx2kYWjlfgZWEmyOyQuiA==
------END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/localhost/ui-identity-admin.pem b/deployment/environments/certs/server/hosts/localhost/ui-identity-admin.pem
deleted file mode 100644
index 3aa3fbe0d89585fdaa33279f8e5a868edaa0ba0c..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/ui-identity-admin.pem
+++ /dev/null
@@ -1,31 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIFTTCCAzUCAgIIMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NjA3WhcNMjIxMjE4MTI0NjA3WjBmMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xKTAn
-BgNVBAMMIHVpLWlkZW50aXR5LWFkbWluLnNlcnZpY2UuY29uc3VsMIICIjANBgkq
-hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvTjNmZWCidR5Js5BY8XJYbsMBIEFkErC
-cekCMGvcAF4kqXnJAVPapWKcIH/XyA7vNLOZ831yucQnJZ62m5ljS6FhONsCB7w3
-cM/rnEdP5yJJBbRJkFBPZ+J0mrlQWn2so6Qq6ljcvAOm4ugDLnhjA5X/XYLriFeP
-EdldeiNjVfe1NO+MibbsIIKyK2+rnSEBzFh6Rf3tvE+1vmwa60y8G2Hf1sm0bEWx
-OmSDH+N2xRkkoZncLlrpPBlCxPZ3X4jn/Hyl/hlG03bAatUpJZ0facOCZBR7gMUY
-aREALNY3P+zLF/2YUysj/6xosCqDwnRymTntax4nkExP3nBiU6dDKnFGUSGQijg7
-mgXEl/GnVGK1jcDTU75s9kv35/5gPDT/Arx8LYzdCu0hmcOUb8IlTCW+sNO9xUB7
-kFPQ3o8sVywFRh0VtCG4DhxVq+KFYyneKK5iuZcb/wK9ZuXYJus+i/NwtCBmOzAS
-pkREeik8uYZJRpqIvPePIvrIp7PxByN7m6gOXwyw4yYnOzvehsuULd37eajsTkRn
-alVLGyZ0SKzsaIzsXH2wpUCAtcqPjnOgBDJG2a1U+5s7nOakjwK0Szg+87aYQ5eL
-bAiKGL84SNlBqGgINVKOAT+8XuplCk+HYKO9uwX6HVdb9Vk/Shdb7VrjW4cveHcx
-PWknm4WDUlECAwEAATANBgkqhkiG9w0BAQsFAAOCAgEAoICJz7u6GLe+sTHLknHM
-wUjnctoVjVaehgaovEzbyLgsXoX0iGePqCzS/OvdjMVZn8yrcT/4YxonAlXZDH2V
-YpRKTNfp7zzr8fPhk92Lsni6jSimXw0WinMwQbcsNyG8gDohYxHKb05tHXMqBKvM
-nuVYsK/aeeRTYWwRWNaqxybbfpeGbS747wFbaM2kvkxm8BkiMRQgIt13nyulgrr9
-UoIG18HmMRmlptrw4vxuuBKIp/Zio4YsMW7kOuWnSb2VyKStqDZglCPh3Bky+Zp5
-JG77Mlq0XTS4yTTrfGb2WBF9Sx21VL0QcAO3l5nQCAE6n7+41HxR/ob8oEHCHf18
-GKQd2xpsFBnLifEQgXV7Q1qa4uUnSOlFTIzpQumbw6Q1+pVvb7oPgt46P6jFz7M3
-VMCwHwShQz0b8xX4HLuzcKPQDh1hcdUilPaLeP7cRjnlBsUvnYuwZJ6I5dqaLuQJ
-x7CmkZUsBuggOuN8YjT5KN9VTJlMUmPHwMbkJr2OISiuU6hPb/UyG9M5A9k69hsn
-3Ew3oLxgKWnoQQohpPPQh/iII/ZI+QGe05D+NVG6e2eqOZcXS91T01eQVLcsVRzz
-2+7aHvC8wNLoz5tRHZqxLZn2wJdZEiZIPZY7bMmkvuDpJzSUA5OzfDV+99Aur4os
-0ujBygmcq20di61c/r3zu7g=
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/ui-identity.crt b/deployment/environments/certs/server/hosts/localhost/ui-identity.crt
deleted file mode 100644
index d79f3185d50b80ca34606f7b5d25ed8a4e42c00b..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/ui-identity.crt
+++ /dev/null
@@ -1,111 +0,0 @@
-Certificate:
- Data:
- Version: 1 (0x0)
- Serial Number: 519 (0x207)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_server
- Validity
- Not Before: Dec 19 12:46:05 2019 GMT
- Not After : Dec 18 12:46:05 2022 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, CN=ui-identity.service.consul
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:b7:9d:1d:59:f3:79:75:8a:22:64:4d:c6:83:b4:
- 4a:02:9d:74:66:b6:64:47:b2:8c:56:8f:5e:20:17:
- 4f:41:4f:12:03:99:9e:19:ae:1b:b0:45:46:30:2c:
- 9b:aa:9c:d3:b3:cf:50:cb:e3:ce:c3:26:3e:17:91:
- b5:85:bb:03:d4:78:fc:81:74:08:d9:ef:93:dd:b9:
- 00:2b:94:e8:ab:30:c2:2c:e0:5c:26:1d:20:4b:5a:
- bd:c3:3e:17:49:cb:85:42:aa:52:e7:cc:ae:e0:ed:
- 88:88:8f:e4:da:99:fc:ce:6d:93:20:9f:30:fd:1d:
- 3a:08:54:a2:9f:99:53:b8:b2:cf:b2:d7:d8:fd:b2:
- ba:e9:f4:50:15:ba:c2:11:2b:dc:5c:e0:1c:3e:86:
- 9a:2e:99:1c:a8:a6:19:cb:e8:d8:c2:b0:22:79:0e:
- 50:2e:8c:3c:d6:44:32:ab:d9:ba:ab:19:38:59:7d:
- d4:1f:94:02:60:18:25:49:13:6e:88:86:42:c9:b8:
- 28:62:f6:ed:34:47:1c:ed:72:5f:43:84:4e:21:c2:
- 1b:7e:6a:a3:8b:95:c7:a2:46:6c:1f:70:b3:10:77:
- 23:17:ff:99:31:5a:c5:49:9d:d9:ff:3f:26:eb:10:
- fa:b2:78:2e:1f:2b:4e:8c:6a:1f:b1:99:cd:35:3c:
- 49:4a:6c:65:4f:be:43:2f:92:72:d5:72:9a:67:5a:
- 3f:c0:74:58:db:0f:1d:b7:4a:85:cf:4f:ae:7a:4b:
- 43:a0:51:e1:ae:62:2b:71:4c:17:ab:93:cf:ef:00:
- 5b:52:a0:0c:b9:aa:5a:be:63:83:5a:29:de:42:9e:
- c0:03:08:a8:df:c9:e8:77:62:8a:66:fd:a2:ad:2a:
- 94:d7:c1:0e:2a:07:13:94:18:71:a8:8a:29:da:90:
- 81:a5:3f:db:38:df:c6:5b:58:8e:7f:f2:eb:85:0e:
- 87:ee:45:0a:4c:79:b9:ce:c3:d6:05:1f:71:5b:88:
- 55:0a:af:8e:4e:a3:07:f8:56:4f:1f:e4:67:31:eb:
- ec:86:29:7c:c7:9b:ff:36:96:83:84:bb:11:76:ee:
- 7a:97:2d:09:ac:57:c9:75:f8:e0:33:3b:c3:7f:fc:
- 11:6a:55:1e:6e:7d:90:58:e5:94:1c:19:68:da:b0:
- 58:5c:0b:96:14:b2:0f:20:96:22:20:96:77:14:7d:
- b0:fb:9a:f5:29:ff:01:6e:0f:51:7c:21:5e:85:e4:
- 20:03:e5:51:8b:10:2a:41:ba:27:5e:f8:83:7f:2f:
- e6:8e:7c:1a:db:1f:c8:e7:f8:cb:c1:0b:6d:ac:3f:
- cc:57:e3:66:7a:70:ed:23:d7:6d:cb:65:b0:11:42:
- f0:88:09
- Exponent: 65537 (0x10001)
- Signature Algorithm: sha256WithRSAEncryption
- 95:d1:10:98:45:ee:4b:a2:0e:3f:aa:a8:4f:1d:bc:4e:4c:32:
- 29:1d:a7:9f:c5:60:62:ba:3d:9e:61:14:7e:b7:0f:f9:90:70:
- f1:d4:2e:57:74:f1:48:b2:37:33:23:30:a3:99:dd:87:f6:7c:
- 12:a5:b9:b6:ce:85:7f:c6:fe:1b:04:cb:10:b6:69:f0:97:18:
- d7:41:44:3e:61:22:e2:05:5a:88:56:23:1d:98:50:0b:ae:f6:
- 3a:cf:1b:39:5b:f6:f5:11:1b:5f:85:fe:e4:44:72:aa:84:68:
- af:47:53:a6:3a:00:a4:7d:11:2f:25:e7:fb:ec:0b:ba:36:85:
- ee:c2:3d:85:62:55:e5:8c:09:18:89:34:50:f7:71:c4:92:b6:
- 1c:09:52:78:bd:51:10:de:42:d0:da:2e:a0:47:54:b6:11:d4:
- cf:cf:d8:35:78:75:99:a9:cf:39:90:c0:f7:da:29:5d:39:95:
- 8e:93:df:b3:9a:48:28:65:b3:71:23:5d:7e:df:27:cd:ef:88:
- f2:84:39:47:0c:96:f5:50:4d:9f:39:89:c7:61:5a:4b:96:35:
- 9c:d6:27:a6:ec:86:36:70:7a:da:35:3e:12:8e:35:5c:19:b4:
- b7:90:ee:ff:ab:95:be:5b:c6:f8:1d:4e:aa:8f:75:19:52:e2:
- 2c:9a:75:92:34:c6:2b:f5:62:52:db:11:a4:2f:ec:d4:26:01:
- 0f:22:d2:d5:1c:6d:9c:88:2c:ea:10:bb:fa:27:4d:6b:55:84:
- f2:d5:f2:4a:f0:6e:8e:db:98:59:61:8a:3d:e0:eb:fd:93:63:
- 41:fc:11:d5:e4:02:5c:27:43:e5:b1:e8:5f:7f:e3:d9:25:4a:
- c8:a4:8d:0d:c6:17:f2:ec:82:94:f1:0f:4c:7e:f7:d4:a1:e0:
- 78:49:6c:96:cc:16:77:b5:4a:9f:24:11:6b:24:1a:25:87:d2:
- ba:82:6a:de:ad:25:43:1b:bb:8e:49:62:15:34:1b:30:03:e8:
- e9:95:bd:9d:14:a9:50:c0:78:05:6a:89:fc:00:d8:33:ee:ca:
- 56:ab:82:be:7a:e0:1b:b1:a6:0d:95:a3:d5:7a:29:89:60:cf:
- 53:b2:f3:62:85:ab:57:45:76:08:d6:88:de:4a:65:15:a5:f3:
- 6a:d2:02:04:55:99:23:a0:68:df:51:f2:32:b7:3f:3a:a1:8b:
- 57:ea:d4:6d:51:48:8d:05:9f:81:5d:a4:8b:bc:6d:53:a2:1a:
- ec:38:46:e4:8a:05:14:91:54:42:4b:48:39:0c:29:7c:54:5a:
- 92:80:e5:06:17:5f:46:c0:c8:13:50:0f:e6:1b:b9:65:9b:ad:
- 5d:48:3e:aa:35:a6:22:4d
------BEGIN CERTIFICATE-----
-MIIFRzCCAy8CAgIHMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NjA1WhcNMjIxMjE4MTI0NjA1WjBgMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xIzAh
-BgNVBAMMGnVpLWlkZW50aXR5LnNlcnZpY2UuY29uc3VsMIICIjANBgkqhkiG9w0B
-AQEFAAOCAg8AMIICCgKCAgEAt50dWfN5dYoiZE3Gg7RKAp10ZrZkR7KMVo9eIBdP
-QU8SA5meGa4bsEVGMCybqpzTs89Qy+POwyY+F5G1hbsD1Hj8gXQI2e+T3bkAK5To
-qzDCLOBcJh0gS1q9wz4XScuFQqpS58yu4O2IiI/k2pn8zm2TIJ8w/R06CFSin5lT
-uLLPstfY/bK66fRQFbrCESvcXOAcPoaaLpkcqKYZy+jYwrAieQ5QLow81kQyq9m6
-qxk4WX3UH5QCYBglSRNuiIZCybgoYvbtNEcc7XJfQ4ROIcIbfmqji5XHokZsH3Cz
-EHcjF/+ZMVrFSZ3Z/z8m6xD6snguHytOjGofsZnNNTxJSmxlT75DL5Jy1XKaZ1o/
-wHRY2w8dt0qFz0+uektDoFHhrmIrcUwXq5PP7wBbUqAMuapavmODWineQp7AAwio
-38nod2KKZv2irSqU18EOKgcTlBhxqIop2pCBpT/bON/GW1iOf/LrhQ6H7kUKTHm5
-zsPWBR9xW4hVCq+OTqMH+FZPH+RnMevshil8x5v/NpaDhLsRdu56ly0JrFfJdfjg
-MzvDf/wRalUebn2QWOWUHBlo2rBYXAuWFLIPIJYiIJZ3FH2w+5r1Kf8Bbg9RfCFe
-heQgA+VRixAqQbonXviDfy/mjnwa2x/I5/jLwQttrD/MV+NmenDtI9dty2WwEULw
-iAkCAwEAATANBgkqhkiG9w0BAQsFAAOCAgEAldEQmEXuS6IOP6qoTx28TkwyKR2n
-n8VgYro9nmEUfrcP+ZBw8dQuV3TxSLI3MyMwo5ndh/Z8EqW5ts6Ff8b+GwTLELZp
-8JcY10FEPmEi4gVaiFYjHZhQC672Os8bOVv29REbX4X+5ERyqoRor0dTpjoApH0R
-LyXn++wLujaF7sI9hWJV5YwJGIk0UPdxxJK2HAlSeL1REN5C0NouoEdUthHUz8/Y
-NXh1manPOZDA99opXTmVjpPfs5pIKGWzcSNdft8nze+I8oQ5RwyW9VBNnzmJx2Fa
-S5Y1nNYnpuyGNnB62jU+Eo41XBm0t5Du/6uVvlvG+B1Oqo91GVLiLJp1kjTGK/Vi
-UtsRpC/s1CYBDyLS1RxtnIgs6hC7+idNa1WE8tXySvBujtuYWWGKPeDr/ZNjQfwR
-1eQCXCdD5bHoX3/j2SVKyKSNDcYX8uyClPEPTH731KHgeElslswWd7VKnyQRayQa
-JYfSuoJq3q0lQxu7jkliFTQbMAPo6ZW9nRSpUMB4BWqJ/ADYM+7KVquCvnrgG7Gm
-DZWj1XopiWDPU7LzYoWrV0V2CNaI3kplFaXzatICBFWZI6Bo31HyMrc/OqGLV+rU
-bVFIjQWfgV2ki7xtU6Ia7DhG5IoFFJFUQktIOQwpfFRakoDlBhdfRsDIE1AP5hu5
-ZZutXUg+qjWmIk0=
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/ui-identity.key b/deployment/environments/certs/server/hosts/localhost/ui-identity.key
deleted file mode 100644
index eeb7bc0c5a7daebce5bbaf4cd064cab3bca5acc2..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/ui-identity.key
+++ /dev/null
@@ -1,52 +0,0 @@
------BEGIN PRIVATE KEY-----
-MIIJQwIBADANBgkqhkiG9w0BAQEFAASCCS0wggkpAgEAAoICAQC3nR1Z83l1iiJk
-TcaDtEoCnXRmtmRHsoxWj14gF09BTxIDmZ4ZrhuwRUYwLJuqnNOzz1DL487DJj4X
-kbWFuwPUePyBdAjZ75PduQArlOirMMIs4FwmHSBLWr3DPhdJy4VCqlLnzK7g7YiI
-j+TamfzObZMgnzD9HToIVKKfmVO4ss+y19j9srrp9FAVusIRK9xc4Bw+hpoumRyo
-phnL6NjCsCJ5DlAujDzWRDKr2bqrGThZfdQflAJgGCVJE26IhkLJuChi9u00Rxzt
-cl9DhE4hwht+aqOLlceiRmwfcLMQdyMX/5kxWsVJndn/PybrEPqyeC4fK06Mah+x
-mc01PElKbGVPvkMvknLVcppnWj/AdFjbDx23SoXPT656S0OgUeGuYitxTBerk8/v
-AFtSoAy5qlq+Y4NaKd5CnsADCKjfyeh3Yopm/aKtKpTXwQ4qBxOUGHGoiinakIGl
-P9s438ZbWI5/8uuFDofuRQpMebnOw9YFH3FbiFUKr45Oowf4Vk8f5Gcx6+yGKXzH
-m/82loOEuxF27nqXLQmsV8l1+OAzO8N//BFqVR5ufZBY5ZQcGWjasFhcC5YUsg8g
-liIglncUfbD7mvUp/wFuD1F8IV6F5CAD5VGLECpBuide+IN/L+aOfBrbH8jn+MvB
-C22sP8xX42Z6cO0j123LZbARQvCICQIDAQABAoICAQCEPUPGZPQ1Eydx1hIDCPXE
-rGIJF5Nhj9ZDAT5pHmCWSLxQm3KiTCLk8P978qSqXAicl9M5BPkE06Ykk2yIxAge
-HoS9NzSowUNdjL/yo2xu3s76Qxwa1x9LJi9FTpK3MzzmpoTPLTtGA80xjXDlf8Hz
-ajdsZzqBEWuaVFpLV8JUY3Py+kHtdavok2yaOcdLVqt+uGmfHpIsvVlGnVo24Zw7
-m184kHZvD9FBABz+Z/FpCODskxMTKyYKz1kLKFOTQB8Z6OgtXmm4HP9Yg+bYWZFr
-/sCOa38eKOF+nfmBK0nLsgI0ZoGOajFss6Mtke4VnkTwBF4zVJ1dw5DP+FUy4hhl
-p04eWxNi9g1/CqVcOzQMepqoF89/LkRMajLOQuUkp29OeT3Niqr3pqr6JljdO4mL
-1hzOzzt4BFsfE/HPbgv1wK++QgAC5206kJFZX8x8xp5sQsUDQ0Y6cCcxBcF06SeG
-xBfpC68sMZiH4GJoYIALPdm1jsfsW9Q7J7W/w/cXVK6yYKncWNM2b6OUk+md2OL3
-lP9a2ilGqNYbxqmloViHd60uuQrxJQxJpiUrKoMh7AoFYCo9ZtOQ86qliDzNwDia
-0xf6yN504jokRSs0nryXiGMAi01sQZhJFJUksxnY8iKErx0I0BLxEZ70M5r7atLb
-5bnWNXP+Bz7uoM5/foV3gQKCAQEA8YUpDrBwRSS8hBIBiLjSbZDf363D7X+nuH2u
-QQmQZkrAmUzCulWKa4q3MXSr8tPIUOyDCead/nedHPp2eKTPpobc6AeWDJk4NajL
-sBl+MjWRQrbofCgB/63p7NDVU8/fHREYqEtiCbTsfE4Yx+4lz7VS/2DegwTNKQaM
-y2r0p/+aHyVHPYlfAPv9x3n1BxeSwQqn24NiyoOBiEYujp8cgdjZpsR1o84/7C2e
-RYWN8OdvQkW++nRpq7+KSnkWMLNIc/YpZaHJ/L0rgMY5GMVV7H0putvYBkB6/pFV
-H+N1rST+oiyvH+Rgu0t5Hz7TluGeamJrDFj1fjsGan2DZbFW5wKCAQEAwp81j+Oi
-9epcJE/0IlFCH4+7vGnAWVxE1+62OjKO5cD8JMoqRW7O99VEjsEkke/VlOogYg+X
-jKn4ChkDRyVdpo/zEjYTjEj4AYb7T8CfO0sT1lR9tcmgCZ2TKXWtbOo/8bv8tOLT
-3yLhMYJb8csTW15grgyySHpKZBLpRjhgH8kmOscNjVOfl8l8pHRTE37yinojzmMn
-cXe8njFK051f4WBJytWqUpBRs1Kq63pEqQxYoVyQIYcSQNMCJaNeEbpHM6EPH35u
-ED5S4AhuiwWKic1/1mGcvd6cUIJ2cxnPehpM73FAwW8yK+J748URNWwpzkoGzjic
-EFHkOSx6WuB7jwKCAQEAybzmvKRYQwkahl7b9S4cZvS6a4YjwD//ArXIVf79JNSP
-5/0cMrS8+HNX7fF8p0qLaj0Ef8KoeiPDkq8LQl64LGs+HnontcJOF1Q1P5UruhjQ
-ix9pNjvc34qPeQY/CtD5lrfvFrRQ4bbESliZjna4ErVs7HAnrNzX2crk1A006xcv
-z5A934LdXl8ebf7K0u+335Nc/pjSbkJGcmPdA7iYAUX3F7vGX9spvcelCoEyPOW0
-I3FKwr12fsVxaB+Yj3lRrbsSfRgVNg11Rw1MKAq9aNprfu+flClME1Ol/QrsAoKC
-R0h3x3Xl7sxuEdFSwBcZUdd/f0LXXGdFRrIsjUcCRQKCAQA6yYSQVh5fUc9LWKtR
-wmHKzsvSec8ULv7MitqYcbUgSU7gfgCOwI3b5puy0zyMqHlHZgEqHbOVVbIKust2
-rh6/tTOjCJqXAWOIcpFu4aw3aNIxJ4xhYOnqfaJ6H4WnJIr0JeiLawi8mfiTz+Ce
-BM1wB+4EJOmlYusdl2jHQTgn4caeconxapUGcGIp+sktVmdE1OgD64d6isR6tED5
-8suHdGJV1nyAO/+xvwLJ5kDfH0+WTjNrLTWiRxqa6+H6UN45BilfRf1RAsJd0a4y
-aBYU0fIPe6Sw5ZEp8H5+/gjhxRgAK6F3zHLHNr5daqVsEaP/H/U2TXs2osXhT0IW
-OUCZAoIBAEx1zXCk0LewRp6YiTXRH3MpTD5Kx0ws75pcAOg3Zlcp5IM69yeMivqy
-yfTIvQsyr+MqwSHgeBEx5At2iLIW3cgbcpWhL8vPm/+9GyCFraa1m10yyVuWeE+n
-3cp+gxDxcHsvJLJ/AJP/wNBkQcfwI2n7BR0gF/EM7QSd5omBvscmhOYhU1GCYrsQ
-oES9XNT08Nhp8wxCBpY1ds1KCyRcTf75Dx1AJ7JzAvEmqAzFk1vTZtbAoOJoMllc
-j5F8qy7RmEwl0z1c5mfTWUXLkzfwV7RqWydLSebXudpQ6AZd9ia09nnhEfSNMc7d
-zaEEUhzI2QwQu94AY0T5YorU8WMki7Q=
------END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/localhost/ui-identity.pem b/deployment/environments/certs/server/hosts/localhost/ui-identity.pem
deleted file mode 100644
index 64bbb3468bad0e92915370e6127b3245dca2150d..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/ui-identity.pem
+++ /dev/null
@@ -1,31 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIFRzCCAy8CAgIHMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NjA1WhcNMjIxMjE4MTI0NjA1WjBgMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xIzAh
-BgNVBAMMGnVpLWlkZW50aXR5LnNlcnZpY2UuY29uc3VsMIICIjANBgkqhkiG9w0B
-AQEFAAOCAg8AMIICCgKCAgEAt50dWfN5dYoiZE3Gg7RKAp10ZrZkR7KMVo9eIBdP
-QU8SA5meGa4bsEVGMCybqpzTs89Qy+POwyY+F5G1hbsD1Hj8gXQI2e+T3bkAK5To
-qzDCLOBcJh0gS1q9wz4XScuFQqpS58yu4O2IiI/k2pn8zm2TIJ8w/R06CFSin5lT
-uLLPstfY/bK66fRQFbrCESvcXOAcPoaaLpkcqKYZy+jYwrAieQ5QLow81kQyq9m6
-qxk4WX3UH5QCYBglSRNuiIZCybgoYvbtNEcc7XJfQ4ROIcIbfmqji5XHokZsH3Cz
-EHcjF/+ZMVrFSZ3Z/z8m6xD6snguHytOjGofsZnNNTxJSmxlT75DL5Jy1XKaZ1o/
-wHRY2w8dt0qFz0+uektDoFHhrmIrcUwXq5PP7wBbUqAMuapavmODWineQp7AAwio
-38nod2KKZv2irSqU18EOKgcTlBhxqIop2pCBpT/bON/GW1iOf/LrhQ6H7kUKTHm5
-zsPWBR9xW4hVCq+OTqMH+FZPH+RnMevshil8x5v/NpaDhLsRdu56ly0JrFfJdfjg
-MzvDf/wRalUebn2QWOWUHBlo2rBYXAuWFLIPIJYiIJZ3FH2w+5r1Kf8Bbg9RfCFe
-heQgA+VRixAqQbonXviDfy/mjnwa2x/I5/jLwQttrD/MV+NmenDtI9dty2WwEULw
-iAkCAwEAATANBgkqhkiG9w0BAQsFAAOCAgEAldEQmEXuS6IOP6qoTx28TkwyKR2n
-n8VgYro9nmEUfrcP+ZBw8dQuV3TxSLI3MyMwo5ndh/Z8EqW5ts6Ff8b+GwTLELZp
-8JcY10FEPmEi4gVaiFYjHZhQC672Os8bOVv29REbX4X+5ERyqoRor0dTpjoApH0R
-LyXn++wLujaF7sI9hWJV5YwJGIk0UPdxxJK2HAlSeL1REN5C0NouoEdUthHUz8/Y
-NXh1manPOZDA99opXTmVjpPfs5pIKGWzcSNdft8nze+I8oQ5RwyW9VBNnzmJx2Fa
-S5Y1nNYnpuyGNnB62jU+Eo41XBm0t5Du/6uVvlvG+B1Oqo91GVLiLJp1kjTGK/Vi
-UtsRpC/s1CYBDyLS1RxtnIgs6hC7+idNa1WE8tXySvBujtuYWWGKPeDr/ZNjQfwR
-1eQCXCdD5bHoX3/j2SVKyKSNDcYX8uyClPEPTH731KHgeElslswWd7VKnyQRayQa
-JYfSuoJq3q0lQxu7jkliFTQbMAPo6ZW9nRSpUMB4BWqJ/ADYM+7KVquCvnrgG7Gm
-DZWj1XopiWDPU7LzYoWrV0V2CNaI3kplFaXzatICBFWZI6Bo31HyMrc/OqGLV+rU
-bVFIjQWfgV2ki7xtU6Ia7DhG5IoFFJFUQktIOQwpfFRakoDlBhdfRsDIE1AP5hu5
-ZZutXUg+qjWmIk0=
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/ui-portal.crt b/deployment/environments/certs/server/hosts/localhost/ui-portal.crt
deleted file mode 100644
index 77c00d5139c74ee97179bfedec1da5656a5e1dce..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/ui-portal.crt
+++ /dev/null
@@ -1,111 +0,0 @@
-Certificate:
- Data:
- Version: 1 (0x0)
- Serial Number: 518 (0x206)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_server
- Validity
- Not Before: Dec 19 12:46:02 2019 GMT
- Not After : Dec 18 12:46:02 2022 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, CN=ui-portal.service.consul
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:ad:86:ce:78:8c:c7:1b:98:79:14:6f:c9:68:72:
- ab:10:00:18:cc:98:09:c9:e7:69:76:04:b2:d5:9e:
- 32:6d:a1:ff:92:20:9c:51:77:95:65:e7:d7:8e:93:
- 52:a8:4c:4a:b6:02:e9:0e:f7:79:99:6e:e2:2b:cb:
- 6f:a7:62:56:75:8e:e8:a5:75:b9:e0:81:38:27:7b:
- fe:60:2a:ac:50:b0:9f:b5:6e:d3:e7:19:e6:f1:ef:
- 16:38:03:12:e6:25:62:5e:f3:51:ec:b0:81:74:54:
- 94:32:60:0d:70:98:b2:17:35:6c:9c:b5:61:86:e4:
- 25:f4:2a:21:66:55:19:26:8b:f9:d2:24:f0:8f:43:
- 90:38:b5:31:5d:2f:20:1b:10:32:e6:f9:c4:45:f5:
- 78:89:ac:23:a3:87:c7:39:0a:7f:4b:ee:f1:63:ce:
- 8a:dd:75:8c:5a:e8:28:bd:c2:6f:17:a3:85:d8:8a:
- d4:30:00:b6:1b:b2:2d:35:2a:24:27:c0:52:2f:7c:
- 2b:06:b1:5a:36:8e:f4:14:61:45:af:4e:4e:61:7b:
- 30:69:b5:55:de:ff:37:fe:7f:c1:8a:12:9b:63:0d:
- c0:e9:c8:49:15:67:96:34:3f:8c:00:fb:e3:c5:8a:
- 5d:ee:b3:60:ae:45:a6:f0:b3:61:65:f1:a9:1e:69:
- 63:55:6c:1d:72:ca:7b:5e:4f:e0:3b:76:e1:64:be:
- 82:93:70:65:d6:c4:ef:62:e2:4d:94:ad:04:26:b5:
- 1a:0d:ce:cd:a2:b5:a7:35:3e:09:17:30:6f:8a:bb:
- 57:02:51:dc:61:2b:bc:ad:39:9d:85:51:be:27:c0:
- fa:24:7f:87:42:b2:ba:db:bd:e8:6b:79:73:72:2d:
- 15:a0:9b:e1:89:f5:bc:fe:ac:64:3d:51:59:2b:fc:
- 49:79:25:bc:4f:16:86:c5:39:9e:75:00:a5:d8:61:
- 73:ae:46:6e:83:4a:59:7b:46:f6:18:6b:2d:3a:84:
- 06:63:cf:95:5b:82:4c:03:1a:d6:a0:0e:de:00:6e:
- 14:c9:18:5d:3e:96:de:f5:51:26:bf:68:1e:b3:83:
- 84:41:4b:1c:cb:9f:a1:87:9c:89:42:13:9b:eb:ee:
- 35:30:de:d3:b8:06:5d:0d:53:3e:68:87:82:5d:d5:
- 56:94:e0:f6:2f:67:35:65:42:c5:6a:76:55:a6:0a:
- 16:48:a3:00:bf:85:d0:df:65:77:e3:37:1a:1f:87:
- 0b:38:10:07:54:2d:1d:c6:48:3b:3c:e5:b9:f6:90:
- fb:dc:f8:b7:63:7d:aa:a0:ed:6b:e9:f9:b0:a8:7b:
- f7:7d:50:29:d9:d8:8f:53:b1:1b:39:3a:6c:05:03:
- ef:33:09
- Exponent: 65537 (0x10001)
- Signature Algorithm: sha256WithRSAEncryption
- 66:f0:a5:e9:f7:2d:44:c5:83:94:0c:0b:a3:96:0e:fd:b9:44:
- 42:25:5e:a1:e8:8a:42:1a:a3:61:54:ad:40:73:52:7a:2b:35:
- e9:b1:ca:62:06:6e:cf:55:06:5e:8c:04:d2:c9:15:d3:d9:20:
- 2b:9e:b5:a6:c3:16:68:04:cf:74:bf:31:bd:1a:c5:cd:ae:1b:
- ba:f5:ea:b8:2f:6d:51:d5:9a:3e:01:87:ae:7c:18:18:3d:f3:
- cb:16:9f:d4:4c:75:1f:6c:27:56:a6:a5:cd:5f:e3:a9:e3:16:
- b6:f6:91:08:dd:e6:d4:3a:54:06:cb:20:ff:06:0a:13:dc:ea:
- 69:b3:c7:5a:98:fe:fa:18:b9:ba:71:2a:d6:f7:08:e5:e4:da:
- 84:98:23:cf:a6:65:86:8c:bb:d9:e9:56:c9:87:b7:4a:82:f0:
- 4e:9a:9b:d9:2f:5d:83:bc:15:d7:3c:62:02:6d:40:ba:4b:b2:
- 4c:71:a1:56:ed:5e:81:c8:f3:b3:76:0f:1a:80:8f:6f:41:51:
- f2:d0:56:b5:52:8d:09:17:c4:c4:0c:bd:bb:18:a6:26:71:cf:
- 94:d0:c4:a0:ef:70:22:32:95:65:15:69:87:f6:d3:36:9b:c5:
- 68:8b:34:22:24:aa:92:6d:93:32:e9:6a:1b:0f:5a:fd:dd:06:
- 44:32:ad:da:8e:16:25:ad:6e:1e:ea:94:76:85:49:ed:87:e5:
- cf:b2:e4:90:b4:e2:a5:87:20:be:75:06:bd:55:c1:e3:20:90:
- 25:21:bd:f1:3b:12:39:fe:42:d1:ad:68:80:12:e8:ef:01:a9:
- c0:e2:c0:e3:e2:61:5d:2e:b6:57:ff:50:c1:0d:a6:12:7c:f5:
- 30:ac:5e:74:36:45:37:f1:c0:3b:d5:94:69:db:60:78:62:e3:
- 3d:26:e2:af:cf:43:e9:8a:d6:3d:c8:98:a9:ea:02:63:79:12:
- 42:f4:94:6b:58:bf:05:5c:9e:76:f1:19:85:07:d0:12:a1:70:
- 33:8f:eb:e5:9f:70:1d:a5:be:aa:54:8a:20:cd:8e:58:f4:c7:
- d0:7f:75:84:3a:8a:44:93:56:a4:80:1a:12:93:19:1d:60:c5:
- 67:1d:c2:d7:3f:81:4a:c1:f7:34:14:fb:e4:7f:2d:07:46:f7:
- f4:80:f7:de:48:34:d2:03:55:95:49:43:ad:2e:93:22:46:91:
- 02:1c:11:fb:2e:35:ce:07:13:3f:c7:29:71:0d:e2:53:3a:a2:
- 56:19:d9:42:b9:a0:6e:79:44:37:16:08:1b:c9:c8:53:33:37:
- 1f:15:81:46:3b:ac:b2:46:8f:c3:36:ee:c8:c7:92:2d:64:c0:
- 38:ac:2a:47:05:56:5c:c7
------BEGIN CERTIFICATE-----
-MIIFRTCCAy0CAgIGMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NjAyWhcNMjIxMjE4MTI0NjAyWjBeMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xITAf
-BgNVBAMMGHVpLXBvcnRhbC5zZXJ2aWNlLmNvbnN1bDCCAiIwDQYJKoZIhvcNAQEB
-BQADggIPADCCAgoCggIBAK2GzniMxxuYeRRvyWhyqxAAGMyYCcnnaXYEstWeMm2h
-/5IgnFF3lWXn146TUqhMSrYC6Q73eZlu4ivLb6diVnWO6KV1ueCBOCd7/mAqrFCw
-n7Vu0+cZ5vHvFjgDEuYlYl7zUeywgXRUlDJgDXCYshc1bJy1YYbkJfQqIWZVGSaL
-+dIk8I9DkDi1MV0vIBsQMub5xEX1eImsI6OHxzkKf0vu8WPOit11jFroKL3Cbxej
-hdiK1DAAthuyLTUqJCfAUi98KwaxWjaO9BRhRa9OTmF7MGm1Vd7/N/5/wYoSm2MN
-wOnISRVnljQ/jAD748WKXe6zYK5FpvCzYWXxqR5pY1VsHXLKe15P4Dt24WS+gpNw
-ZdbE72LiTZStBCa1Gg3OzaK1pzU+CRcwb4q7VwJR3GErvK05nYVRvifA+iR/h0Ky
-utu96Gt5c3ItFaCb4Yn1vP6sZD1RWSv8SXklvE8WhsU5nnUApdhhc65GboNKWXtG
-9hhrLTqEBmPPlVuCTAMa1qAO3gBuFMkYXT6W3vVRJr9oHrODhEFLHMufoYeciUIT
-m+vuNTDe07gGXQ1TPmiHgl3VVpTg9i9nNWVCxWp2VaYKFkijAL+F0N9ld+M3Gh+H
-CzgQB1QtHcZIOzzlufaQ+9z4t2N9qqDta+n5sKh7931QKdnYj1OxGzk6bAUD7zMJ
-AgMBAAEwDQYJKoZIhvcNAQELBQADggIBAGbwpen3LUTFg5QMC6OWDv25REIlXqHo
-ikIao2FUrUBzUnorNemxymIGbs9VBl6MBNLJFdPZICuetabDFmgEz3S/Mb0axc2u
-G7r16rgvbVHVmj4Bh658GBg988sWn9RMdR9sJ1ampc1f46njFrb2kQjd5tQ6VAbL
-IP8GChPc6mmzx1qY/voYubpxKtb3COXk2oSYI8+mZYaMu9npVsmHt0qC8E6am9kv
-XYO8Fdc8YgJtQLpLskxxoVbtXoHI87N2DxqAj29BUfLQVrVSjQkXxMQMvbsYpiZx
-z5TQxKDvcCIylWUVaYf20zabxWiLNCIkqpJtkzLpahsPWv3dBkQyrdqOFiWtbh7q
-lHaFSe2H5c+y5JC04qWHIL51Br1VweMgkCUhvfE7Ejn+QtGtaIAS6O8BqcDiwOPi
-YV0utlf/UMENphJ89TCsXnQ2RTfxwDvVlGnbYHhi4z0m4q/PQ+mK1j3ImKnqAmN5
-EkL0lGtYvwVcnnbxGYUH0BKhcDOP6+WfcB2lvqpUiiDNjlj0x9B/dYQ6ikSTVqSA
-GhKTGR1gxWcdwtc/gUrB9zQU++R/LQdG9/SA995INNIDVZVJQ60ukyJGkQIcEfsu
-Nc4HEz/HKXEN4lM6olYZ2UK5oG55RDcWCBvJyFMzNx8VgUY7rLJGj8M27sjHki1k
-wDisKkcFVlzH
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/localhost/ui-portal.key b/deployment/environments/certs/server/hosts/localhost/ui-portal.key
deleted file mode 100644
index 567a820a4ab5b2582c2f065433519cbfc2309eb2..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/ui-portal.key
+++ /dev/null
@@ -1,52 +0,0 @@
------BEGIN PRIVATE KEY-----
-MIIJQwIBADANBgkqhkiG9w0BAQEFAASCCS0wggkpAgEAAoICAQCths54jMcbmHkU
-b8locqsQABjMmAnJ52l2BLLVnjJtof+SIJxRd5Vl59eOk1KoTEq2AukO93mZbuIr
-y2+nYlZ1juildbnggTgne/5gKqxQsJ+1btPnGebx7xY4AxLmJWJe81HssIF0VJQy
-YA1wmLIXNWyctWGG5CX0KiFmVRkmi/nSJPCPQ5A4tTFdLyAbEDLm+cRF9XiJrCOj
-h8c5Cn9L7vFjzorddYxa6Ci9wm8Xo4XYitQwALYbsi01KiQnwFIvfCsGsVo2jvQU
-YUWvTk5hezBptVXe/zf+f8GKEptjDcDpyEkVZ5Y0P4wA++PFil3us2CuRabws2Fl
-8akeaWNVbB1yynteT+A7duFkvoKTcGXWxO9i4k2UrQQmtRoNzs2itac1PgkXMG+K
-u1cCUdxhK7ytOZ2FUb4nwPokf4dCsrrbvehreXNyLRWgm+GJ9bz+rGQ9UVkr/El5
-JbxPFobFOZ51AKXYYXOuRm6DSll7RvYYay06hAZjz5VbgkwDGtagDt4AbhTJGF0+
-lt71USa/aB6zg4RBSxzLn6GHnIlCE5vr7jUw3tO4Bl0NUz5oh4Jd1VaU4PYvZzVl
-QsVqdlWmChZIowC/hdDfZXfjNxofhws4EAdULR3GSDs85bn2kPvc+Ldjfaqg7Wvp
-+bCoe/d9UCnZ2I9TsRs5OmwFA+8zCQIDAQABAoICAQCby2SkpwA8rnBHAPZ7aDhd
-bTjWt8pSFAqDg0RstlPgSooC0HSIUC06CSVnRK35nEWXlJVacqYiM4OsfkIIrimh
-8mS96SyxfFLGYHTKMoXzDCDX7GEkJAVNQbNZJqlZKEdhqGPtdatEnotPjx2B8hYy
-8CxLpi2hxkStKwZBsjWafiIVokS425go0cU4PI8+vRR2e9jUVseaE4sLz2P2uo3/
-xs/DJDVZD6isFbQ+assDFjWdbUeEsZ7OzvH3wZYkem9PYtPedmzgfwh1I8BE3LFS
-pB+bSMuIIuxK+rjxFjOcg0SooMG9Dfu1fThdycl+GfSr0zECRlbT1LmlpYqJW2Vq
-WX9kmNu7qOk18Z9pHo8ELwBrV6TYFPyqn2jEYKZYKurF3meqAbfzoMhG11OFab5C
-AAVd7OrbYWfPYogk8nKDROblXv9Rgy+AL65/7aqYCN041IsYkxnb2V8U3Aozg+iF
-lBcvTCo3Xc1Zf52sSPxOSwoAaqAvb7dVCVkSRij/ynMe6EGhhMH9sPPYi9Ti51tD
-KEGtJymjVOtcN13uLb0Nuhw6tkZIXgwogTtxIGUUGJWHKw1RYSjAfKLqdX0VvtJE
-bndWAwpQGiwvRO9p71kAgfLgO8e6cFKRdQ+BPSVprgFoR+LzC/VXRPoU0FwxBkgw
-RY5pm5VI2DFdJuKuGN1FYQKCAQEA3MzQopXx4f38QKS1S2vTX4Tta1YjAy5XtTmS
-jCy2eA2n+3UWGqdKLWltH5amTMKKdFb9tG/FCz5rwm225DJ1Cikq01ap1+gwxDHG
-f3dl8/L0/rWh8k+iACEU5EozjnqcsTSYFyYdCASf/NYRU2D/2XHEwG5IaWOzo00P
-cntm/dZUiNBscqUybSKXr2snp9K53JFjeqa3SrInEKbL3wq7l34KyNcWlmkx3ScK
-F9ujJxrLsQU83rr1mvXovJ/OQYiHrlKgt3xvWzJeLGhHHHxjourJ9MrganvgotIR
-mmKnlAUikVrjz5xIAjEhMU78WfdGeRPZmUpeYc1bty4kNUlSSwKCAQEAyTCwh5yo
-qJ2URBn4ub62m3UAfvHm9+sQtiHJaEM9TF1nmJ5VHd/GtWx7hHSrh4EF4uhkXRQY
-+l0iLOCyRKqBm/6f8KPaeMgMH/oGeIkpvCdhfKhjnpU4mArQYpXbAkT9j9diK7Gg
-7ms67BwH2KbdVzRucpnMaMfpAjW6yKgasEnemaWI0P3mkjtFnz2UqkalJrtoSnr9
-4L+ifjpwggf1zIK6HgTmcAGFF+Ulvjr3yUTM7VbS6o3Hb5Q1cqhLKQljjNMgD5Mg
-f0i8Y37bARcjiAO9gVucjZDeekgcTrA1ddUc3XHkTz37qa7+ng2BPaG4tk3eXznw
-sQfP1S0mQ9xbewKCAQEAvLBzY14MlXp9xah8HfYJbsmkM2QrC57g6UhICm5ziOjy
-sxt+RkzMQT6lOKd/en2N4JouubICi/dOE5u6/gx4pLRFmtGm15HfiuqWnXulrvHj
-mIAT44VWBhI/TlBy+sGhgnZVuwKhMKbzKhiuObjdLC/jWidkzlubumQyXT1D6Izv
-NPQYmWi/TTCQvCIwg2S73NiKUNiELttMMxi3hOYhJfdatAPLk8JWEI46O+VA6jwl
-8iNtv1G6bjDUMc3Hb42Dld+a5PL8Hs1OWVjL3HYYl7NZ3044tgcjE0G+NVc1qnMw
-9VLc+CCwEN93ZDIBychdez8RZ8R8H8xlIofV/YupPQKCAQA0OLopiSVSFwzsHF2u
-QO1/LoCBcuLDyTUeQWjY8lMP5lLEj5yCU5ptbwokmHAJjRjtC+s5KcVN/yymv3Am
-WKepyQ7U1IMZxLs49ZoGYXv+xa4NQFwTRqJY/L2YSVN+pE+4rWxi8QlXuWei76et
-uapMP2THxFoFfJZjp3SjLtc2mQX5lbkMnkrh/BaXPdG/3PRzOEPayU/qrXNNFngr
-mEtZ2TjcH+N8gTh9ulHwrbexe3VByb6XeVOiB7NT3pEbxr8bR5XT1RmjUErt/Hh2
-MP5dCLOAxzm8mTTWQq9uUVifDEEgzbY4R1tycOTQO6snRzn9v/qPdyedm+x7Zeu/
-w4vPAoIBAFLX4UGyns+LwAOu9D5g8l9IpgOBSBT8PuOKJZilVsDW3+sS11B+nGg3
-xbmvCUVbTH2RLpmOTduk0grIh8Ov/unzsBjM3RSEw0fYzu+kOUWvkWliVzxoda5H
-pgGjKDPT1V0WkBrtnGVxijXUCmNzSZ+5ol7uEtcNQmsT8bNH3kKwwcd8ADkeYaVh
-nJg25krw9ilTmWsyUXmjMhbC+H/He3fg9wZ1uo8o3W7mMfykCb55BNreEuRN6O+r
-amNejX/tyD/G1pVWKyyQuZ1ip+I6EBumH5rd3Ij8W0P7DwqFgOdKqYB87oIbRmF5
-O9hmQ6P4zDRwsI7PPLjQrcuyZbSzVb0=
------END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/localhost/ui-portal.pem b/deployment/environments/certs/server/hosts/localhost/ui-portal.pem
deleted file mode 100644
index 679715010d1fefa54409b7ea138b9c059b34b5b3..0000000000000000000000000000000000000000
--- a/deployment/environments/certs/server/hosts/localhost/ui-portal.pem
+++ /dev/null
@@ -1,31 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIFRTCCAy0CAgIGMA0GCSqGSIb3DQEBCwUAMHIxCzAJBgNVBAYTAmZyMQwwCgYD
-VQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UE
-CwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX2ludGVybWVkaWF0ZV9zZXJ2ZXIw
-HhcNMTkxMjE5MTI0NjAyWhcNMjIxMjE4MTI0NjAyWjBeMQswCQYDVQQGEwJmcjEM
-MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xITAf
-BgNVBAMMGHVpLXBvcnRhbC5zZXJ2aWNlLmNvbnN1bDCCAiIwDQYJKoZIhvcNAQEB
-BQADggIPADCCAgoCggIBAK2GzniMxxuYeRRvyWhyqxAAGMyYCcnnaXYEstWeMm2h
-/5IgnFF3lWXn146TUqhMSrYC6Q73eZlu4ivLb6diVnWO6KV1ueCBOCd7/mAqrFCw
-n7Vu0+cZ5vHvFjgDEuYlYl7zUeywgXRUlDJgDXCYshc1bJy1YYbkJfQqIWZVGSaL
-+dIk8I9DkDi1MV0vIBsQMub5xEX1eImsI6OHxzkKf0vu8WPOit11jFroKL3Cbxej
-hdiK1DAAthuyLTUqJCfAUi98KwaxWjaO9BRhRa9OTmF7MGm1Vd7/N/5/wYoSm2MN
-wOnISRVnljQ/jAD748WKXe6zYK5FpvCzYWXxqR5pY1VsHXLKe15P4Dt24WS+gpNw
-ZdbE72LiTZStBCa1Gg3OzaK1pzU+CRcwb4q7VwJR3GErvK05nYVRvifA+iR/h0Ky
-utu96Gt5c3ItFaCb4Yn1vP6sZD1RWSv8SXklvE8WhsU5nnUApdhhc65GboNKWXtG
-9hhrLTqEBmPPlVuCTAMa1qAO3gBuFMkYXT6W3vVRJr9oHrODhEFLHMufoYeciUIT
-m+vuNTDe07gGXQ1TPmiHgl3VVpTg9i9nNWVCxWp2VaYKFkijAL+F0N9ld+M3Gh+H
-CzgQB1QtHcZIOzzlufaQ+9z4t2N9qqDta+n5sKh7931QKdnYj1OxGzk6bAUD7zMJ
-AgMBAAEwDQYJKoZIhvcNAQELBQADggIBAGbwpen3LUTFg5QMC6OWDv25REIlXqHo
-ikIao2FUrUBzUnorNemxymIGbs9VBl6MBNLJFdPZICuetabDFmgEz3S/Mb0axc2u
-G7r16rgvbVHVmj4Bh658GBg988sWn9RMdR9sJ1ampc1f46njFrb2kQjd5tQ6VAbL
-IP8GChPc6mmzx1qY/voYubpxKtb3COXk2oSYI8+mZYaMu9npVsmHt0qC8E6am9kv
-XYO8Fdc8YgJtQLpLskxxoVbtXoHI87N2DxqAj29BUfLQVrVSjQkXxMQMvbsYpiZx
-z5TQxKDvcCIylWUVaYf20zabxWiLNCIkqpJtkzLpahsPWv3dBkQyrdqOFiWtbh7q
-lHaFSe2H5c+y5JC04qWHIL51Br1VweMgkCUhvfE7Ejn+QtGtaIAS6O8BqcDiwOPi
-YV0utlf/UMENphJ89TCsXnQ2RTfxwDvVlGnbYHhi4z0m4q/PQ+mK1j3ImKnqAmN5
-EkL0lGtYvwVcnnbxGYUH0BKhcDOP6+WfcB2lvqpUiiDNjlj0x9B/dYQ6ikSTVqSA
-GhKTGR1gxWcdwtc/gUrB9zQU++R/LQdG9/SA995INNIDVZVJQ60ukyJGkQIcEfsu
-Nc4HEz/HKXEN4lM6olYZ2UK5oG55RDcWCBvJyFMzNx8VgUY7rLJGj8M27sjHki1k
-wDisKkcFVlzH
------END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/cas-server.crt b/deployment/environments/certs/server/hosts/vitamui-env/cas-server.crt
new file mode 100644
index 0000000000000000000000000000000000000000..4f90638bc3b3ab222583caf453216ed943a477b2
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/cas-server.crt
@@ -0,0 +1,111 @@
+Certificate:
+ Data:
+ Version: 1 (0x0)
+ Serial Number: 14 (0xe)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Validity
+ Not Before: May 5 11:44:07 2020 GMT
+ Not After : May 5 11:44:07 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=cas-server.service.consul
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:c0:f3:05:65:2b:d9:ec:d9:63:17:b8:b9:27:13:
+ bc:3a:a0:16:53:34:9d:05:17:55:37:32:df:7a:01:
+ 60:08:07:30:d1:5c:67:81:0c:b0:4d:6e:c0:76:34:
+ 9f:cc:95:f7:38:5d:72:16:de:25:2d:58:9b:dc:ad:
+ c7:75:21:76:a0:c0:cf:8a:42:f1:b7:27:f2:ec:bc:
+ 5b:83:2b:bf:6a:63:b6:e8:13:ea:d8:f4:a5:1e:60:
+ 99:23:42:6b:c1:af:97:b3:9f:95:fe:c5:7e:d2:0d:
+ 4d:40:5f:9a:8e:e7:65:2b:87:cb:22:25:42:85:ab:
+ 21:70:7f:7c:5e:72:10:37:93:be:9f:e7:76:6a:cc:
+ d7:84:07:5b:b6:fa:86:4b:06:55:38:cc:61:47:d5:
+ 84:1e:36:1a:2c:ad:31:fd:db:97:89:b2:af:f6:e0:
+ 78:de:3f:ba:e0:fc:92:66:31:81:66:db:1c:3c:d0:
+ d0:76:59:f8:b2:34:cc:da:31:58:0c:58:ac:31:87:
+ 4e:de:40:ab:10:d6:b6:89:5a:61:1e:ab:a5:7e:ea:
+ 78:16:b5:77:3e:75:3b:46:76:8f:9b:87:1c:22:02:
+ bd:26:93:75:1f:35:f4:cf:73:9c:e6:d8:46:cb:ab:
+ 7b:30:9c:7c:49:36:1b:e5:ba:51:96:73:20:d9:2b:
+ 87:83:e1:a3:64:ab:87:d7:b0:6b:b6:1f:dc:9c:ed:
+ 47:92:93:1d:24:c3:52:87:52:7a:0d:98:60:28:23:
+ 9d:9a:ed:e9:71:31:39:aa:28:29:f6:41:2a:03:89:
+ d8:71:12:b4:63:9f:8d:83:fe:06:77:27:ce:3d:51:
+ 7a:88:03:69:f9:34:69:97:6f:e8:2a:7d:95:a5:56:
+ 21:23:44:e6:e1:b7:aa:82:35:47:9b:b2:fd:c9:05:
+ f7:24:06:94:e6:ab:bd:af:1e:7e:17:fb:35:c3:3c:
+ 41:4f:fa:ac:ad:b7:38:9d:c8:4e:d7:05:22:55:d0:
+ f9:1d:3a:86:ab:73:4d:46:df:ea:f5:a6:f0:e3:23:
+ 45:73:f9:1c:18:dc:d9:5a:98:dd:26:11:a2:77:ff:
+ 16:15:dc:09:b3:b3:6a:e0:f4:83:66:bc:85:ed:7a:
+ c7:63:95:14:5a:a4:b3:97:97:ed:2e:30:0d:41:3f:
+ 37:da:de:5b:c1:12:78:08:4b:7e:76:09:ff:ba:43:
+ d5:98:49:2e:2b:60:ef:82:ad:f4:c2:19:a6:7b:e7:
+ 6c:d3:cc:13:96:44:d0:ae:c1:09:53:8e:e4:44:e4:
+ 2b:3a:27:ca:53:e1:61:1e:d4:17:6a:ef:ff:d2:33:
+ f6:66:d0:7b:4b:c8:b6:c5:7c:29:0c:95:12:e1:40:
+ 91:be:03
+ Exponent: 65537 (0x10001)
+ Signature Algorithm: sha256WithRSAEncryption
+ 99:db:48:67:ab:ca:4d:65:dd:46:5e:41:5f:c0:4e:89:65:17:
+ f4:80:97:36:cb:ec:30:32:2e:af:1b:18:44:fa:81:6a:25:6d:
+ 29:b9:16:d9:e5:df:88:c7:50:71:e6:36:5b:2b:bc:a1:50:b2:
+ dd:93:d7:36:a5:d4:4f:fe:a9:6e:b6:f9:c7:09:64:8e:86:f2:
+ 54:19:0d:53:b8:f5:44:1a:a1:b3:3b:23:81:51:02:b9:68:f9:
+ e4:61:cb:98:17:64:0e:da:02:c7:f1:81:9c:1c:3d:74:2f:16:
+ 22:26:44:d5:93:3a:96:da:3c:02:02:d2:13:b4:57:68:8a:4c:
+ ae:71:9a:66:8c:14:c2:68:7b:b7:43:15:af:d2:46:f8:65:0a:
+ 5a:57:63:bf:10:4b:52:2b:c3:59:6a:6e:f0:56:a1:70:fd:96:
+ 0a:03:58:61:f2:b4:7d:f3:6b:f6:95:6b:26:cc:fa:79:c5:aa:
+ f7:8f:e6:1f:64:df:30:f1:42:0e:c8:4c:c6:73:af:0b:f7:b2:
+ 45:c5:4f:57:7d:50:68:80:22:f2:03:c0:41:fa:28:c7:30:6c:
+ d6:dd:71:af:a2:75:2d:f4:7c:a6:c8:e1:50:f8:e5:6a:e0:e2:
+ 86:10:cc:32:04:eb:c2:0a:a8:b1:1d:59:04:09:81:2c:97:48:
+ 22:c3:6e:55:a4:5c:50:4e:d4:98:e4:c2:7c:12:15:40:fa:3d:
+ 1d:40:26:42:0f:b9:78:4f:a5:54:73:84:51:3c:55:70:cf:87:
+ 34:b3:19:37:63:96:77:f7:71:f4:c1:8c:59:f8:c1:57:f3:a0:
+ b4:8f:cc:ed:98:f1:fb:a9:03:16:ec:36:e1:81:4e:85:1a:3f:
+ 44:a3:dd:dd:1e:4e:0c:3e:71:ac:35:31:f9:05:a3:95:ff:76:
+ a2:36:d1:2d:71:ce:f6:3e:60:04:60:a7:cb:21:d1:fd:d0:6f:
+ 45:f2:af:29:33:b0:14:0c:c3:ca:3c:a2:5d:f4:48:0c:96:04:
+ 62:f4:22:f7:6d:4e:cb:cd:fe:13:c6:e3:9b:a4:a0:bc:61:bd:
+ 95:04:b0:f7:64:61:6c:ba:ab:66:d1:2a:f8:64:cc:50:53:15:
+ 1f:1c:e2:41:09:a0:34:7f:9f:7b:c7:58:4f:fb:a3:de:d3:86:
+ 94:4a:a9:f3:a1:7c:60:8a:9e:73:27:23:13:c0:6c:e2:06:32:
+ c8:59:58:08:eb:ae:26:04:22:26:06:7c:d3:4e:36:ca:0c:8f:
+ c7:4a:05:ec:29:dd:96:54:37:b1:d2:1e:80:b7:99:9f:ca:05:
+ 91:26:d2:7c:f8:c8:85:73:ac:25:a9:7e:dd:58:84:5b:57:d7:
+ 55:e1:a4:f8:19:5b:a2:cf
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/cas-server.key b/deployment/environments/certs/server/hosts/vitamui-env/cas-server.key
new file mode 100644
index 0000000000000000000000000000000000000000..5c188c2db4d90ad372c57af5ea34d1559d906b27
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/cas-server.key
@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/cas-server.pem b/deployment/environments/certs/server/hosts/vitamui-env/cas-server.pem
new file mode 100644
index 0000000000000000000000000000000000000000..7efd361dc18fcda23a779f75db33fd0da0d8df9b
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/cas-server.pem
@@ -0,0 +1,31 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/iam-external.crt b/deployment/environments/certs/server/hosts/vitamui-env/iam-external.crt
new file mode 100644
index 0000000000000000000000000000000000000000..d79b04bebcae2f774ed38e19118704614faa3bc2
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/iam-external.crt
@@ -0,0 +1,111 @@
+Certificate:
+ Data:
+ Version: 1 (0x0)
+ Serial Number: 13 (0xd)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Validity
+ Not Before: May 5 11:44:03 2020 GMT
+ Not After : May 5 11:44:03 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=iam-external.service.consul
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:a4:f1:99:a2:61:8f:77:e1:05:54:52:36:03:7f:
+ 14:92:bc:15:a4:c0:d7:bf:1b:aa:cf:ab:85:f7:6b:
+ 55:84:6f:1d:65:ba:c0:da:81:e1:60:15:af:35:f8:
+ 61:6a:48:32:5b:d5:53:37:9f:28:88:36:24:84:e4:
+ 10:93:8f:c1:58:0e:75:7c:09:7e:09:9d:6c:41:f4:
+ 55:61:25:e7:cd:88:8e:c8:8b:a4:c7:42:4b:7e:dc:
+ 5f:6f:81:ee:6f:b0:44:66:3a:5b:29:76:b9:82:dd:
+ a0:88:a0:08:8c:37:1f:e5:26:e2:68:00:3c:89:68:
+ 60:56:e8:06:8e:65:3e:b4:72:a0:da:59:5e:a8:f6:
+ 14:ff:1a:42:71:68:11:ce:35:2b:36:ec:7c:1a:53:
+ b8:6d:4d:0f:e2:97:38:bf:4d:a0:f2:03:26:4f:94:
+ 7d:28:a2:86:dd:36:f7:32:66:6a:a9:9d:5b:e9:a6:
+ 5b:4e:0e:0a:6f:77:7f:7d:36:e9:5b:7e:24:f9:0a:
+ c3:d1:41:6d:fb:1c:e1:1b:f4:32:50:8b:64:ba:03:
+ 6e:37:8d:84:7c:64:82:f6:8b:ec:0f:1e:c7:8d:01:
+ 17:a6:b8:8d:f4:1e:d0:60:9f:c7:ba:20:1a:db:a9:
+ 83:a5:61:77:aa:1b:ad:a8:15:a6:d1:29:be:de:20:
+ 96:14:14:e0:a2:b8:3e:b4:a6:8e:9f:21:2f:89:4a:
+ a0:bb:30:f3:4b:7a:84:0b:c2:60:5e:19:c0:a9:7f:
+ fc:4d:c8:ad:7c:74:d4:9c:4a:3e:20:d9:45:6b:ea:
+ 0e:98:eb:7b:a9:df:ac:d8:fe:f6:cb:fe:8b:21:39:
+ 72:af:43:db:82:25:bb:21:0d:7d:6e:8e:c8:80:82:
+ cd:66:27:00:36:43:ee:3c:f3:05:42:9b:c5:a3:23:
+ b7:a9:61:e3:4f:44:06:5a:1c:ec:04:0d:80:a0:63:
+ 5a:4e:72:07:f8:6b:71:64:75:2e:1b:0c:a1:07:59:
+ 4b:46:cc:8c:76:30:81:09:15:49:cf:9e:1e:d0:48:
+ 54:4d:2f:9d:f6:94:24:11:a7:ce:ca:69:21:34:a1:
+ bb:9a:a2:dd:bc:8d:c4:5b:d2:dd:76:d3:57:b0:cb:
+ fe:a6:ab:cf:bb:44:b9:52:af:36:04:63:f2:8e:5d:
+ dd:e4:79:91:a0:f7:43:c9:cb:43:85:63:3e:28:fa:
+ 9b:86:d5:ae:e7:6a:8a:4f:cc:2c:7a:e1:31:77:93:
+ fb:87:04:a1:a6:a7:c2:db:d3:d4:d4:64:05:89:28:
+ e4:6e:3b:86:37:f8:a9:2f:50:13:ad:47:ab:e4:63:
+ 7d:df:4b:59:d3:15:41:d0:a5:67:46:df:91:3f:28:
+ 34:0e:85
+ Exponent: 65537 (0x10001)
+ Signature Algorithm: sha256WithRSAEncryption
+ 11:f0:94:09:98:78:f1:82:75:0f:4c:c6:ac:68:b0:da:0f:1c:
+ d7:70:a3:83:a4:ea:cd:e2:39:1a:d2:81:eb:42:8c:a9:73:23:
+ 7b:68:46:3f:36:70:50:bb:4d:fb:2e:7f:c5:f1:5b:b4:6a:76:
+ ad:c6:67:a0:f5:f0:da:39:2a:a6:a5:bc:aa:ad:e8:36:f3:48:
+ 49:0b:f8:a2:e3:13:3e:c1:c1:0e:72:54:7c:0f:a8:ba:42:31:
+ f2:a4:e8:1a:fd:82:5a:94:14:54:3c:6e:fe:9e:19:92:a6:43:
+ 86:7f:3d:42:6d:17:5f:88:f4:1b:ee:17:dc:3b:d3:00:79:bf:
+ c7:56:c1:e3:cf:6f:bc:27:92:32:ac:48:4e:67:bd:66:f6:77:
+ f6:5b:b8:22:58:ca:54:c3:72:51:47:f7:b1:f3:d8:08:c8:c5:
+ 21:a1:0b:f0:68:3f:7c:11:e5:f7:ce:27:48:0c:ee:e3:2b:51:
+ cb:bd:30:34:21:54:94:07:b1:8a:57:aa:40:0d:28:b3:42:39:
+ 5d:dc:98:e0:ee:89:c2:8d:ef:29:72:a6:f6:d9:50:8b:b6:39:
+ a0:96:0e:72:38:f1:76:7f:78:ad:ed:d2:97:ac:81:e5:ad:b8:
+ 11:7a:fd:77:71:fe:a7:8b:34:5e:36:c8:8d:bc:6d:f7:20:33:
+ 0e:c0:0a:0f:b0:90:ea:8e:29:cb:d5:f6:2c:c7:01:a1:76:54:
+ cd:bf:5a:ec:80:f3:5a:5d:20:e5:2d:98:e0:67:33:1b:5f:a4:
+ 2f:f8:fa:94:1f:75:5d:ba:84:8c:a9:8d:40:8d:bd:22:6e:11:
+ 64:c0:5d:00:0a:4d:39:3f:a6:f5:39:19:bb:66:1a:0f:b8:93:
+ 76:b3:83:a2:e8:3e:11:16:5f:0f:78:12:4c:9a:1a:e2:f0:a5:
+ ae:de:1f:9d:e6:55:20:13:39:88:e3:cd:6c:3a:ca:75:4c:40:
+ ee:98:48:c1:c3:b3:36:61:04:f6:89:7e:05:a6:f0:be:ac:35:
+ 0c:3d:5b:58:d4:39:c5:ad:89:82:61:dc:02:f4:e9:54:2d:60:
+ 81:c1:dd:db:66:3c:46:13:eb:55:98:fc:55:3a:25:a0:03:13:
+ 65:6c:c3:aa:7c:92:55:48:d2:6b:69:b4:9d:f6:e8:b0:01:7e:
+ 64:d0:4d:db:85:f0:bd:c2:b4:82:34:af:50:80:2d:f6:1d:ad:
+ fe:12:30:35:e4:22:3a:60:a6:9f:6d:25:2a:fe:85:9c:60:d3:
+ 74:d5:94:c7:d8:19:3d:bf:49:75:6a:f2:1c:dd:07:bb:2a:d9:
+ de:74:e4:03:bd:6e:96:a8:51:bf:8e:ea:47:be:95:8a:d4:c5:
+ 39:9a:aa:f7:36:be:b4:74
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/iam-external.key b/deployment/environments/certs/server/hosts/vitamui-env/iam-external.key
new file mode 100644
index 0000000000000000000000000000000000000000..f340a4b435ce7f59ca0611c9042adcbe554f87d1
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/iam-external.key
@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/iam-external.pem b/deployment/environments/certs/server/hosts/vitamui-env/iam-external.pem
new file mode 100644
index 0000000000000000000000000000000000000000..39a0e7fe19204d2b8754a67ffa4e57a7213dddf2
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/iam-external.pem
@@ -0,0 +1,31 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/iam-internal.crt b/deployment/environments/certs/server/hosts/vitamui-env/iam-internal.crt
new file mode 100644
index 0000000000000000000000000000000000000000..7095daa84da7aaccf4db4f9365152220a17f1205
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/iam-internal.crt
@@ -0,0 +1,111 @@
+Certificate:
+ Data:
+ Version: 1 (0x0)
+ Serial Number: 12 (0xc)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Validity
+ Not Before: May 5 11:44:00 2020 GMT
+ Not After : May 5 11:44:00 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=iam-internal.service.consul
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:a9:04:4f:cc:53:d4:e8:e4:51:ce:b8:16:b3:b4:
+ b7:bf:bd:5a:f6:cf:72:74:31:7f:91:e8:62:89:2d:
+ 79:42:5d:10:66:43:ed:f8:f6:e9:45:51:d7:ae:25:
+ 50:8d:7e:e9:3c:76:ed:ff:9e:e4:7e:07:d9:e2:0b:
+ a7:dd:79:04:fa:d1:f8:27:0f:71:ae:bb:c7:ef:2d:
+ 2f:1d:76:50:e4:f7:e4:f4:cd:14:8e:bc:68:18:ca:
+ e2:6b:98:6e:02:42:4c:99:ff:cb:9c:ce:83:dc:4f:
+ 0c:94:62:d9:b9:c7:8e:de:a5:d5:70:95:30:9a:31:
+ 69:19:28:19:38:86:2f:7c:16:42:76:dc:40:8b:a5:
+ 2b:10:4e:3d:1c:3a:a1:07:50:a8:81:18:7b:95:d7:
+ bb:60:55:36:50:f1:49:6f:41:ce:e6:d9:0b:d6:0c:
+ 6b:05:ba:69:8a:b0:39:50:d6:09:80:a9:92:ac:9a:
+ 5d:bd:94:a5:c8:d8:8d:1a:f5:d2:2a:68:bb:ac:d7:
+ 84:02:76:e8:ce:66:08:5c:d6:52:5d:0f:d0:03:53:
+ 34:9a:59:25:22:e5:51:82:25:03:3c:15:4f:e6:6a:
+ 04:f4:c1:df:af:5e:13:5b:a8:8c:85:3d:67:00:69:
+ 2a:0e:66:9b:8c:34:24:5d:90:82:81:04:e6:f5:42:
+ d5:48:f8:6a:3f:5f:09:e9:5a:ed:60:f7:a6:11:9a:
+ a7:8c:44:3a:28:f1:93:ed:32:ed:dd:28:fe:8c:ac:
+ ae:d4:75:84:85:33:71:2d:c5:87:36:01:a1:da:f7:
+ f5:c3:fd:65:22:07:9d:eb:a9:2d:ee:b0:d1:43:01:
+ 9a:1b:af:f4:56:54:48:3a:26:57:13:a1:18:d6:d4:
+ 68:c9:36:ae:3f:3b:20:12:f2:97:6a:39:48:be:59:
+ 1b:8a:62:82:6a:aa:b2:e9:80:2e:c8:07:fb:29:3b:
+ 98:87:7f:d8:0b:76:9d:48:cd:b1:3b:2b:34:9a:23:
+ 88:3a:59:86:6b:b5:2b:49:d0:aa:80:db:ff:86:25:
+ 0d:14:04:6e:fe:58:f4:0c:5c:f1:f3:8f:36:13:6d:
+ 79:d5:fe:ce:40:21:b4:ee:29:2c:c2:50:11:3c:5d:
+ 54:c3:cc:56:0d:b1:60:0c:c1:16:46:ec:f2:c4:57:
+ 04:79:a1:ff:7d:06:29:94:75:ba:86:b9:cd:54:d5:
+ 18:47:45:31:57:38:24:c4:f9:13:af:23:c2:71:60:
+ 48:be:02:e7:85:14:3b:13:be:58:1f:3c:32:60:1b:
+ e9:1f:07:21:a6:69:ca:57:2a:d5:c9:e7:39:74:25:
+ 33:09:88:80:b0:0e:8c:3c:65:ab:3b:6f:dd:01:ba:
+ b6:a7:43
+ Exponent: 65537 (0x10001)
+ Signature Algorithm: sha256WithRSAEncryption
+ 2f:12:f1:f9:f7:2b:75:09:0f:e0:38:42:d7:fe:96:39:51:fb:
+ 8f:88:9d:cf:00:36:59:8a:46:a9:73:44:95:70:c9:4d:d6:ac:
+ 56:99:aa:d2:08:32:a0:5c:a8:3c:da:3d:15:88:45:72:5b:f9:
+ a6:c4:ef:db:9c:a4:3a:9a:44:63:dc:17:85:f0:35:2c:c4:86:
+ 01:08:66:04:10:82:53:0a:26:a9:db:3e:a3:91:b7:81:8f:58:
+ b8:ff:6f:51:b6:22:a5:a2:1d:b9:2f:9a:fb:30:95:85:cf:e1:
+ 31:0f:97:79:49:d5:e2:1d:f2:a7:e9:6b:2f:c6:26:05:4a:a7:
+ 78:59:50:2f:d3:93:b9:25:76:a3:46:77:56:cf:bd:f2:cf:1e:
+ c0:9a:ad:e1:da:b7:1a:80:a2:c2:9f:c4:01:e5:11:ce:6c:2c:
+ e4:eb:b8:8b:b9:04:9a:3c:c0:36:a1:df:60:79:6a:3e:5b:90:
+ f3:fe:d9:fd:d3:4c:2f:07:df:29:69:bc:c2:d7:43:0d:ff:9f:
+ 46:27:4b:c6:e6:cc:b8:bb:43:1d:b5:f7:bf:24:33:08:93:10:
+ a4:06:ff:76:31:98:19:f1:24:2e:62:ad:88:01:fe:f4:cc:e8:
+ e9:80:88:a6:11:99:d1:42:6a:49:47:2f:dc:d3:00:10:d2:1f:
+ 78:ae:b9:69:00:b6:8d:72:11:90:39:d2:65:bd:42:20:5f:1b:
+ c3:51:2b:51:f9:a9:39:1c:24:de:97:5a:04:8c:d5:54:dc:7f:
+ b3:2c:fe:79:ff:4b:f2:e4:b1:84:30:8a:fb:ea:af:1f:1c:d3:
+ 1d:31:71:a8:d0:28:17:b9:82:6b:19:e2:86:9d:38:75:26:ef:
+ 5f:72:7c:2b:03:b9:b6:8c:29:e1:f7:83:15:32:85:95:c6:da:
+ ff:e0:bc:6a:2f:0a:39:79:81:d6:ba:e3:b6:b3:8a:43:b6:21:
+ 2a:1a:8f:ea:27:26:05:ad:d4:e4:00:22:71:88:fd:87:e3:1b:
+ 61:96:e5:9e:b3:e5:c1:ec:95:b5:f5:3e:dc:76:ba:43:e5:fd:
+ 78:25:11:81:f4:ee:bf:96:a4:4c:a3:3a:2b:a3:26:ab:b6:b2:
+ 64:01:5f:f2:9f:d1:6b:23:41:0f:7b:b6:d1:bd:55:9a:cb:22:
+ 3d:56:cc:9c:c7:a4:3b:9a:04:36:3a:4e:86:c1:50:25:1f:d8:
+ 35:02:f1:59:ee:fc:c7:3c:14:15:8c:72:f0:fd:8f:d0:28:9a:
+ 38:c0:c9:df:ca:d8:df:ef:1c:10:3e:01:ec:46:61:03:d0:7e:
+ 86:12:de:c4:fd:11:d4:f3:15:14:a7:74:06:b1:a5:28:95:40:
+ f4:c3:c1:55:a4:7c:a2:cb
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/iam-internal.key b/deployment/environments/certs/server/hosts/vitamui-env/iam-internal.key
new file mode 100644
index 0000000000000000000000000000000000000000..da8a2f4b54b0f0e775b6ffa8446a4ea86ad23aa8
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/iam-internal.key
@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----
+MIIJQgIBADANBgkqhkiG9w0BAQEFAASCCSwwggkoAgEAAoICAQCpBE/MU9To5FHO
+uBaztLe/vVr2z3J0MX+R6GKJLXlCXRBmQ+349ulFUdeuJVCNfuk8du3/nuR+B9ni
+C6fdeQT60fgnD3Guu8fvLS8ddlDk9+T0zRSOvGgYyuJrmG4CQkyZ/8uczoPcTwyU
+Ytm5x47epdVwlTCaMWkZKBk4hi98FkJ23ECLpSsQTj0cOqEHUKiBGHuV17tgVTZQ
+8UlvQc7m2QvWDGsFummKsDlQ1gmAqZKsml29lKXI2I0a9dIqaLus14QCdujOZghc
+1lJdD9ADUzSaWSUi5VGCJQM8FU/magT0wd+vXhNbqIyFPWcAaSoOZpuMNCRdkIKB
+BOb1QtVI+Go/XwnpWu1g96YRmqeMRDoo8ZPtMu3dKP6MrK7UdYSFM3EtxYc2AaHa
+9/XD/WUiB53rqS3usNFDAZobr/RWVEg6JlcToRjW1GjJNq4/OyAS8pdqOUi+WRuK
+YoJqqrLpgC7IB/spO5iHf9gLdp1IzbE7KzSaI4g6WYZrtStJ0KqA2/+GJQ0UBG7+
+WPQMXPHzjzYTbXnV/s5AIbTuKSzCUBE8XVTDzFYNsWAMwRZG7PLEVwR5of99BimU
+dbqGuc1U1RhHRTFXOCTE+ROvI8JxYEi+AueFFDsTvlgfPDJgG+kfByGmacpXKtXJ
+5zl0JTMJiICwDow8Zas7b90BuranQwIDAQABAoICAG5cc2KfBrH/i+9oQuKayTS5
+BvGL6Vc3ju4OCHE8MSaFMBUmm/fp+c2asDN1CBEsYk1p9uPns5kbtUilhbnWsMq6
+WcffjMKkuNtS7KXXQOERgP3b/2VoXqx5pbjN8l8lPXF9Fk3Qh0dOko89sJ9fT8nQ
+DPuTXwX/53lWtokzDUSAIGwOS1MjyWe/PqX1HnpxT2XkP6ZLFH3Fhk76DpJILTqN
+VO4yc5ts6kd15CcFa3UIxM5RiY4lxs7Ln++PveiVNJ6apwcY79D9zM4Z3/QGRDQ3
+m2yBcv9DL6LEWkVcQSzZ41yST2XqDsfV2dOSkXQyNxTqKP02etxhZOWr9scFGdCY
+09WePc9Av4bNihMM/Uh9Dpk5ZSd7YJv84bPjmkIBYeTHj7ZI0ikvM82+bwVVsERY
+MEVCvWXCQB31/m769Q+J/NJPw/RSTKPtuhrDSu4wryW3eFMIuSd80nWfduzo9GpK
+8dqNFxUu1NxajoKC2NdA6oVQMbW6bExHuYG2fPvnbvmkpPVukX17Or7iUTMD1TRK
+u6v7lyajmyAniU5hkclrohtkb7rp6uQP6BUPYSrt7BunP/w6+M2Jxv3qWx4Wc7TM
+Ichwy/asfMnn0Iaa3dC5aQs1Cce+HOWpgW7XaAP5S1Y3GbwolRyLMgUqMOiinQcj
+X/mw1xf6dbzOFMKdBgY5AoIBAQDcTGKACgJoVC3tbl7VryXlM0C25k1d6wuJPodc
+Z3nzU+WZchJrJflXLRa9a4DfBSMjbF2TaQxcoi4rdHlTkqcJdpUMjA0lUB/svXGy
+slzFlm1oNU+7rsrv0wLGChOkn8J0WEUVsjYs0qgfUb0eybIDU2d4SOGNfCjupvf+
+cl8EcvH+aN7JpHPlGBxAqDtWxerhbu7hcaE2wu0CCYTqnL2YErRL57y0mfDPbaSm
+eloak0DhepukNIHPpw6FM0/9QkBfa/R/OPYp40hhonVwRYslFtXDZSbkeERB3Gie
+uNKdHEW0ebT5PNCwEm3X92TG6S7jlGCBP9U9sGt8iF0GL6S1AoIBAQDEaGMvWFv4
+RV3FX8g3LRhRegExfj7QbAuKpXwVhptK+uIzGq4dAUBLf9WFpKO0VFFrl800PrFD
+pMUIOnVuek4LPjWtWb6FZdZ+xpOHCWbU3QgF8/2Q5KNvKIKG10CuPCXMvevdNihO
+emGH+oeMrxQaWFV2X7lZ3wRn5qPdfs8SxFCZJcR81pLZcmzJscO/zRIBba3qq8jS
+D1uyxvjU/HWbopPftNS8Zf94CqcvNGlnALb5+HiFJFXuS2RsuerCD2gXzr3y0SgM
+OySi6epfp9SnZ2i6qqp5K/l2KM8JKa5Ref2/FEx56FLeV0T9mpfKjtTSMLxaV7Xn
+V8N0YIzKD08XAoIBAE8qR+9ZKXpSXdrH4d6KPWT7IRNY+Y55i8C7Lqt/J+zQRl75
+BjNpBwxT0KsrOblrQDBXndz+UAnt4geNqJfmyI33BiLnJUY2X/KUNYqQ3BPJNfHP
+zqJUcurx+jountZ27sseeV0NmLhMz0vJ9NtegdD+JN2t2xgb+R2h9NaERS71G49g
+Ikd2CIvYOTbm/cP2Ba0TT1bGnbdvHvqvbwtcXimK9y2bzk1cUJRKA3Qr3btVFWix
+xcKhd9CmaOpnASSyrS1dPxSE5Lkyyu0DE47P/uvKI/E+pVZO/cBpM1NueYkqAsaT
+Qfya5SeQx9ZnOdjdLRNtW6y2wquTfVzYKA20C00CggEAbiUgYn/J6/xyruqdLJxE
+hATIwInNDjNZcaKGaMf5NN5nlkNDG48FEJIbG3yONeYHVzBlawQxgv7XZFrsWk2K
+kPGNRq8KkmLfHG+ecl9KZNuj0TrYm7YtFXyBXr8+Tbf7dsuXh5IEnqYxJgHQnIve
+2Ttqihz6pDTWkrIceW3REPQ5QvmULHJlHj72VVI0tc56Z4SrwOwfjfYA9cxx5XfD
+OMm+5fjSSOlmkFphEa7x4UrcUmkOpZQQALgVFIha6AOd26QckBzNubY9QIOv5X8I
+We07JVvqiFOp7aLLIJdYY+bm746hqMgqGPiV/ycAMx9QqKOeLYf8wkVMnmo66mIV
+dwKCAQEAoNnYFF6xUlMKbVLYrSdTNc9/E3V9KpuC2mbZeHZtj/LxQz26dC1TcY0h
+hpq09SMIMEkZAP5H47q/I5mya1ppy+MGBCmTgZFGHB9XyWnMRuQ0n+TbUoDy2s6n
+2UpItkCSASeN5+YVKvSttEPFSWxG1MChi79EzAZHc5heCF9039l8K9ugOhesrHEN
+qR9jCrGqrT1FSDsVNl0bII2jXKuBe4m4YF4hrfintFfhHeZi7cBMOatJ+cG1/Sg5
+lOcz2D7S93HHgY/sLId6ppVSi73E1Yiv+v5KPbM1Wa6UXuabYwHHE9f/8RnB3wNT
+4zCriGSmOntqtx2YFhEOB05RamSUWA==
+-----END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/iam-internal.pem b/deployment/environments/certs/server/hosts/vitamui-env/iam-internal.pem
new file mode 100644
index 0000000000000000000000000000000000000000..a50a45ab5f71bd0ff3054fa58838eb45fc344965
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/iam-internal.pem
@@ -0,0 +1,31 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/reverse.crt b/deployment/environments/certs/server/hosts/vitamui-env/reverse.crt
new file mode 100644
index 0000000000000000000000000000000000000000..472d8bc7dd0bb69598413b643c553e1d6fe8d5c9
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/reverse.crt
@@ -0,0 +1,111 @@
+Certificate:
+ Data:
+ Version: 1 (0x0)
+ Serial Number: 18 (0x12)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Validity
+ Not Before: May 5 11:44:22 2020 GMT
+ Not After : May 5 11:44:22 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=reverse.service.consul
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:ab:41:f7:80:55:b6:5a:33:61:e1:f1:78:71:44:
+ 4c:7c:54:a4:a4:66:89:60:74:02:40:1c:7e:a7:22:
+ ca:93:a1:ee:ee:ef:12:90:02:d7:c1:a7:08:83:e6:
+ 7c:8e:24:9f:cc:7b:02:83:9d:4d:94:2e:c0:34:f1:
+ 59:db:61:5d:e1:58:29:d1:7b:50:09:2f:14:7b:f5:
+ 3d:9f:9a:bd:7b:5b:57:b7:d9:0e:61:7f:88:fb:b5:
+ 74:b3:56:2e:4b:cd:55:46:0c:40:74:63:1e:37:4d:
+ 46:67:cc:0d:45:e0:05:fd:1c:8a:ea:0c:a5:a4:48:
+ 0b:74:be:29:7a:21:19:f3:50:5f:04:66:8c:b2:d6:
+ 79:e0:62:48:34:9a:33:31:3b:a6:19:10:f6:c0:67:
+ cf:b3:dd:dd:e8:44:a6:83:b1:1b:5b:61:f5:65:62:
+ e3:d6:ba:91:1e:3d:a7:cd:dc:91:f3:b0:aa:05:89:
+ 2e:55:f7:b4:fe:8e:41:6b:19:c2:94:a3:ff:2d:7d:
+ d1:40:f1:bf:51:42:f8:d7:1c:c3:b9:1f:a1:58:fc:
+ bf:fb:19:6b:6c:23:ef:08:43:43:b1:f8:a8:16:77:
+ be:39:b0:25:e1:3e:49:e7:1c:cc:20:4a:f3:09:a2:
+ ae:fe:cf:95:b3:16:d1:a5:52:16:02:ff:c1:8e:96:
+ cf:dc:af:e5:cd:96:59:87:74:17:2d:04:c5:dc:35:
+ 12:fc:ce:e1:4c:7a:93:3c:9e:a0:73:74:c3:c7:30:
+ 4c:7d:39:e9:31:07:39:97:af:7b:76:36:22:64:c5:
+ c0:e8:25:8f:48:67:a1:10:27:33:93:10:bb:fc:7d:
+ 13:4c:12:38:04:88:26:6c:c2:a7:9b:a6:34:2b:d5:
+ 9c:fb:5c:53:21:8d:40:6b:08:00:cf:da:00:c3:7d:
+ 57:a6:62:ef:fd:f6:5d:cc:a7:2e:54:4e:59:ad:d7:
+ ae:9a:64:1e:52:16:76:ac:12:47:57:6c:3a:f5:3a:
+ e5:90:e3:79:4b:09:bf:06:31:8e:ef:03:6b:25:7f:
+ e8:fc:51:91:fb:4e:71:6f:8a:60:48:0c:a0:f2:ae:
+ ef:c4:0b:eb:0b:8d:ac:45:be:03:39:83:31:9e:e3:
+ 5c:af:a8:36:12:65:de:82:29:cb:cd:52:4e:2e:31:
+ 96:c3:4c:b0:a8:32:0a:62:cc:a9:00:b3:f3:42:3b:
+ 18:9c:63:f0:c0:26:3b:dd:be:08:fe:55:de:ec:42:
+ 30:44:6a:20:58:48:43:ac:a1:38:97:02:e3:b1:fd:
+ 7b:e6:2d:53:e8:74:94:79:50:68:83:ba:b4:90:36:
+ 27:47:02:c0:01:44:e2:1e:a5:c6:f3:24:e6:83:51:
+ 3f:e4:df
+ Exponent: 65537 (0x10001)
+ Signature Algorithm: sha256WithRSAEncryption
+ 7f:4f:ad:2e:24:70:74:77:34:cd:b8:0c:12:bf:e2:ab:20:0b:
+ 63:b6:1b:82:28:d2:1d:a6:8a:b3:0d:11:4b:e0:7d:46:cf:dc:
+ b4:d4:ba:9c:f2:a8:32:1c:d0:fb:11:6e:a5:46:39:91:c5:d4:
+ b9:ae:17:f4:58:22:62:71:eb:e8:16:bc:e3:1a:16:6e:e9:ec:
+ 85:85:1f:18:72:ca:27:32:fc:6c:27:07:0c:46:c0:83:36:63:
+ 5c:74:1c:f2:e2:63:cb:ac:02:ac:16:67:6d:55:b5:4b:9c:e1:
+ 07:27:ae:f4:01:79:f8:74:51:72:61:f8:0f:c2:1d:0b:7e:6a:
+ 5e:9f:4f:d2:80:81:b9:3f:eb:af:c1:c2:55:2e:72:94:7f:f0:
+ 64:ae:a3:95:be:6a:98:ea:64:f1:b4:28:80:54:4b:c1:0e:9b:
+ ae:ea:f9:ae:86:e7:d6:ff:7c:d6:03:21:52:2e:98:87:4e:6b:
+ 93:83:dd:96:7a:e6:8d:0a:b2:96:52:cb:30:73:9a:39:fa:26:
+ 23:12:e2:ec:e5:a6:9e:96:ac:06:69:e2:db:3f:30:5a:18:09:
+ 3e:d3:73:e9:c6:c2:14:e8:4f:0a:e6:59:63:17:40:23:f4:94:
+ 81:cd:7c:19:50:43:6b:c1:87:21:20:39:6a:f1:5b:23:c5:e3:
+ df:4e:21:2c:ce:90:13:42:7e:03:14:3f:16:33:80:13:63:7d:
+ 75:03:27:22:77:6d:35:8f:24:a3:b4:af:6a:29:53:1e:b5:da:
+ 82:58:0d:16:43:2d:d6:03:8a:13:bb:4d:45:bb:05:9b:36:b7:
+ e8:c0:95:60:fb:6f:6d:56:c7:6c:36:84:4d:63:1b:90:df:ca:
+ 36:47:ab:96:3d:89:e7:40:b3:30:86:89:7b:0d:c7:f4:29:23:
+ f0:32:f3:29:f9:16:10:72:50:00:99:ac:9c:21:7d:30:49:60:
+ b7:ef:dd:a8:8e:f8:6e:be:ed:99:7e:da:a1:69:70:2f:b1:83:
+ d3:f0:e4:5f:59:04:44:cf:3f:3d:22:24:b0:49:11:99:21:9f:
+ 4b:f1:81:d0:a2:4b:a8:94:7a:ab:1d:06:69:db:2c:88:7f:9d:
+ 91:dd:67:0c:8a:36:27:54:5e:7a:64:6c:e3:ee:c9:61:81:75:
+ 41:39:32:b8:c1:bb:32:cd:89:d8:41:92:9d:19:8a:f6:8e:21:
+ 6e:1e:2c:c8:37:a9:a8:e5:13:fb:cf:b5:1e:37:5a:7a:02:72:
+ 7a:bb:cd:b2:38:0f:28:3b:ad:b5:a7:dc:d6:af:a7:f4:32:21:
+ 78:04:68:17:7a:2f:b1:89:bd:f9:fd:59:7b:98:3b:63:ae:6e:
+ 76:d7:b7:08:9e:fa:3b:b2
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/reverse.key b/deployment/environments/certs/server/hosts/vitamui-env/reverse.key
new file mode 100644
index 0000000000000000000000000000000000000000..97420ef1f10cc5f3a10554d129f4ed6e8fd57c8b
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/reverse.key
@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----
+MIIJRQIBADANBgkqhkiG9w0BAQEFAASCCS8wggkrAgEAAoICAQCrQfeAVbZaM2Hh
+8XhxREx8VKSkZolgdAJAHH6nIsqToe7u7xKQAtfBpwiD5nyOJJ/MewKDnU2ULsA0
+8VnbYV3hWCnRe1AJLxR79T2fmr17W1e32Q5hf4j7tXSzVi5LzVVGDEB0Yx43TUZn
+zA1F4AX9HIrqDKWkSAt0vil6IRnzUF8EZoyy1nngYkg0mjMxO6YZEPbAZ8+z3d3o
+RKaDsRtbYfVlYuPWupEePafN3JHzsKoFiS5V97T+jkFrGcKUo/8tfdFA8b9RQvjX
+HMO5H6FY/L/7GWtsI+8IQ0Ox+KgWd745sCXhPknnHMwgSvMJoq7+z5WzFtGlUhYC
+/8GOls/cr+XNllmHdBctBMXcNRL8zuFMepM8nqBzdMPHMEx9OekxBzmXr3t2NiJk
+xcDoJY9IZ6EQJzOTELv8fRNMEjgEiCZswqebpjQr1Zz7XFMhjUBrCADP2gDDfVem
+Yu/99l3Mpy5UTlmt166aZB5SFnasEkdXbDr1OuWQ43lLCb8GMY7vA2slf+j8UZH7
+TnFvimBIDKDyru/EC+sLjaxFvgM5gzGe41yvqDYSZd6CKcvNUk4uMZbDTLCoMgpi
+zKkAs/NCOxicY/DAJjvdvgj+Vd7sQjBEaiBYSEOsoTiXAuOx/XvmLVPodJR5UGiD
+urSQNidHAsABROIepcbzJOaDUT/k3wIDAQABAoICAQClrbntc/5oIRFu7pagrXx5
+Q8HMMk5w+4o5z9dPhj8IuD5Y9Py2SanFdPyt7ktNkGzv+4khHwswclIMZfmSXQ3f
+tdUvDecOG3frvAOT5rWtI18nQ1vAQwuYx6FQ5ez/9HOswqmQb1uKEL4uKKAmm2Xv
+yq8xYm7VEcXTeSzTNDbQx05FCZjQYuGhjDNigFNKK/Syh1DQLx4nWlsWG2QkPzDC
+JXCsVxEoaXF/GhK++8ZPRPgXRvGGxY9aPPFY1aEC/+0ca34HIFkAGpR2NyO6crk7
+R7nLCHp+Mf1LtxdEk9S5d7qWQK1EzWfdqGRqUVfyWGqHpPekPE0xbMpSuG7erVQF
+DEX22UOYeohMiAXvbz4zLZdMJmB3gda8R5kTCOqpQbdJMSD4ApTlSDjYtQTJUN2b
+M5FITa1GWVlNV/3pNfNism0RvcDbQfgfOQPyN5d4XYSsh/IEM30ck4cAOjzNQo6k
+vNaWrAJrhEBW7WapiwXeWLMypkevEkUVDLrdpCVJ4JbQiuX0jYzRGQsVo4qXwc2v
+wwnWbl7clAdZgtV7IDfheZrJTIRz1fTFzgzkKwWDIVfNBiHr/dpOhWBP1J6ISxGy
+jPvdvDMbDiqX17FdP0KhCUiWAEukhEOmcGaWhgLZlJi6qzGC1yGgRtOvgYO6Eu9d
+JyDOZxBhYPJimjlRsQO9EQKCAQEA30l0R/cR5tkF7wC7Sdd4eq3i6aLPdkY1xwuv
+PTKsr9g8y47cvE1i1LrSpp1ITt0GsqrG8e+bZCp7nAcWaKwJtRbpDf7mysvOiykN
+yYBZ+iHSf5xcy526H7q56hWDcstUTmdEg4TKRfwl+whX0KJduYkfHrn3Z9ua9FpM
+B7Qwr1Kjv13ZXBcdUPGRMn/4r7jlY2QahBrli0+uWkGjG9Iie0kOKcWyfVZ91eSy
+0KaOu5qMhAgJ4Tq8Dph3PFaNiZhPaCyh+w+HnzAY8fWDjNImfvmqciM8u8K8e/WW
+HzBX8OHcMhaueyzOpx/hERMKXza1tKkNFW6A4gfTaqFduZratQKCAQEAxFkdvJar
+BNAaqed/+nbaiQU86xU+LGOl+tWRAC8uesTlTtZfnkuTba/TglcQTIFiPPeHtU20
+1L7DeN6HrVsjBltZs7IT92hkU/onO/DYPQn+welhAGDz7ktnKmFM4dRJtH5FggCz
+QD+mOI/lpCk890pQyBRxoGe6P8dwx2s4+X/GqPHVw4noebvFeOo9VL+371mzPMct
+a5IUQzlqYZNzQ0MSRjNcUaQjSvGrRHctbMUpcVnm+W0JtDfoyDPnoZsFTk4TbVu2
+WqgX5ojUDpaQE8ibykqII84B4xp8NRJHxtYr+ri7ekufe6ZE2nEtPbnz8+tXGBP+
+NmcgpVCKqdU5wwKCAQEAyyh9OWFOk3jQ0kYbIjN/djeyZxtwoc997K3v8sGhp5ka
+r6c7pcTPcHjPYzNl8ANgrb1+p/B3tSqGL0+vjutBJdhDki1j9g57zdg7qCQ1OcX+
+TYeKUuUezPHLaHXMlOz1tyR0jSmMFSM3t3E+3SBuIHrnqsBPn9qK4VsrJDNJvKt3
+O437T7PkQ5qXnpgbQF79r3IMQjhqtFd6brqb2ptWLlApJ86t+SZx9eRQ4lE5Ou6C
+fTsHKjuTkcAddPPXceL4FPPPKaxWnHtZpwTYfY9T4WHuOE1hXADyF+M6hQQqb4xB
+Gf3TIVWCbUMvN6bYYAtaRpctxVs2vvGZ5cIOkeqYpQKCAQEAmNfmVg/TQQPePbR/
+4zDyHQd+zGDU7SkE46WsIkCYJelvt1cZR9f9A72DIEs13Ng66MqnUXMT+SgmcciI
+RWJUeXZS9ZcCA+23a8enEvoA2kMVlU1evTS7rhv0SwFDH+hpF5/T68cvwivJ8O3T
+DV8snjOzfoyrhvo3+b3/BL1qtI3Kz2ixxm1sEpcguWdeJsK3JBLne8BwkvQ74bio
+Hxzw9MMZTpxcmRD0iDpn3/wF2E4CXMJnEnLWwvtisbX18c8C6lnMtaxW32tKb6LD
+sDd0IHJhE6/BGl4bCfZsCcQZK6c8xQdYqXKEy3Q61PCVDx/Zz167hXrKwP62Yvm3
+d00MkQKCAQEAnOIJVsWJjy3vXiSoOLUXEjlr1ZJ7o2KRzwGWpSTe1pF3r3Zq/0TR
+dZ70YjtEIRBxjG813iiu7SOJKUwmssACMQ4LxxpJEemMfTIPPcX34pY5jkkVr1uH
+z9TILwB2i497bBGKgLs9EtGc4ywetAZlHM+2/vq1loPyZBGPPdwKxjfrW7T35ygJ
+MjBtjzOdlrjK7hPkHJ6AEIPatXhBr4B7ba2xlDfrO5vnep0/iJFPEdcoPAgbmb63
+TFqCUbt8lYx5inPZ++EwfR8l0cwEt75GvyWtOJUuUWAzocPT+ZmRQlG3kJcJMEG8
+oV6Yxg3NAnp4v+bJW4yeKunVFyWQbW4kpg==
+-----END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/reverse.pem b/deployment/environments/certs/server/hosts/vitamui-env/reverse.pem
new file mode 100644
index 0000000000000000000000000000000000000000..d974dd316baa3a8482860d4d6d51e8e88b678d3a
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/reverse.pem
@@ -0,0 +1,31 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/security-internal.crt b/deployment/environments/certs/server/hosts/vitamui-env/security-internal.crt
new file mode 100644
index 0000000000000000000000000000000000000000..26665c75836bbb786e6fb8a62f20d6662357a010
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/security-internal.crt
@@ -0,0 +1,111 @@
+Certificate:
+ Data:
+ Version: 1 (0x0)
+ Serial Number: 11 (0xb)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Validity
+ Not Before: May 5 11:43:56 2020 GMT
+ Not After : May 5 11:43:56 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=security-internal.service.consul
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:d9:fd:3c:87:d1:20:55:57:2b:cc:55:2c:f3:dc:
+ 9d:3a:cd:8f:3b:02:3f:fe:e1:f0:7a:35:63:6c:e6:
+ 6a:79:cb:10:34:a5:bf:ca:2e:50:6d:44:68:de:63:
+ fb:76:d3:a7:e5:38:2f:03:d7:14:ca:d1:d3:05:de:
+ 8c:83:65:54:c8:2d:71:e6:99:b1:ef:a0:95:32:92:
+ 75:84:7b:4c:ab:16:b9:3e:04:10:7e:51:38:e8:70:
+ 9a:2b:46:cf:ed:17:2b:2b:4d:c8:af:85:87:84:08:
+ a8:9f:9f:89:f4:0b:64:38:5c:34:f0:39:d0:9c:bf:
+ bc:c3:b6:d5:45:4b:7e:76:54:2f:03:3f:29:1b:a3:
+ 5c:ce:3f:ca:c8:c0:22:10:e7:a0:f8:f5:00:92:be:
+ bc:48:b5:44:6a:2b:f4:55:8b:59:a1:32:16:69:79:
+ 2b:92:ba:bf:2a:a1:30:16:ed:06:db:42:9d:c3:6c:
+ a1:43:62:09:00:fb:f0:be:39:3b:e2:51:a8:fe:ac:
+ a4:04:a7:21:43:e6:9c:52:73:4e:fc:b1:85:21:72:
+ b4:16:cc:d5:93:90:6b:e3:dc:0d:3c:09:a2:44:76:
+ 8c:01:4a:a7:8b:3e:a8:cf:d5:f5:31:40:1e:d3:e1:
+ ff:7b:e5:50:57:6a:ca:8f:51:0d:ad:f9:4b:53:ef:
+ 78:a9:89:c3:74:2d:fb:df:ba:f0:bd:c2:04:33:56:
+ 96:13:a1:bb:0a:49:b5:fb:30:fa:0b:79:6a:82:5f:
+ 9f:6d:b7:92:18:fc:6a:b1:ab:86:3e:3e:a5:73:84:
+ 3d:74:ce:54:7f:7d:02:d7:36:dd:aa:fd:b7:96:a5:
+ c2:a2:b3:52:04:f8:e7:e5:8e:5d:03:41:ed:a6:46:
+ de:7d:7a:65:fa:a1:50:68:06:e7:31:18:40:fb:3b:
+ 01:c4:1e:29:9c:04:0a:0c:d4:bb:8e:b3:e1:d7:63:
+ cc:77:c0:aa:bf:4e:72:87:a5:d4:74:71:cd:3a:2e:
+ e5:f3:e3:cb:6a:a9:89:41:ee:59:23:ba:82:c6:69:
+ 1c:f6:26:3c:8d:cc:c1:0e:ce:7f:79:cd:15:f3:2d:
+ eb:9c:f0:b6:eb:7b:2c:f8:5b:ea:22:bd:5f:1f:b8:
+ b1:31:54:4e:2e:f5:48:29:19:46:9a:56:d0:82:fd:
+ e3:d6:0d:43:87:45:13:32:40:b9:a5:b9:b1:85:cc:
+ 5b:21:f8:32:37:53:2d:bf:5f:7a:39:48:b7:15:25:
+ 89:df:2d:6a:12:58:2b:aa:df:c6:bd:51:36:b8:e5:
+ e1:c1:02:19:60:36:e0:e5:25:7c:ac:d9:08:17:de:
+ 71:81:85:03:42:59:f0:df:6a:4b:11:28:87:3c:85:
+ b1:90:97
+ Exponent: 65537 (0x10001)
+ Signature Algorithm: sha256WithRSAEncryption
+ 93:14:5e:82:09:25:9a:ea:77:54:b0:11:77:b0:fd:02:9a:a6:
+ 82:eb:e3:6b:3c:30:08:a3:ef:68:8b:f8:01:96:5c:5a:cb:ed:
+ e0:3a:c8:61:5c:b5:c4:72:5d:dd:fa:e3:db:9c:6d:b2:c0:de:
+ 9c:e6:f4:f7:95:94:3c:e8:24:ed:36:2e:f9:31:66:6b:fd:bc:
+ 31:42:81:3c:52:07:15:c5:57:08:7f:95:ed:52:38:8e:f6:26:
+ f6:49:eb:36:45:a1:6b:01:83:71:82:c7:d8:1a:60:15:36:9e:
+ 60:29:97:8b:bd:e2:21:55:27:4f:6d:b6:57:86:6b:a0:34:a5:
+ 4d:4c:55:da:a7:81:96:a9:62:31:66:21:71:6b:09:21:55:2d:
+ 72:69:98:e2:71:3f:47:1c:cf:4d:82:c8:5b:d2:b9:0d:f0:89:
+ f0:f7:66:f0:e5:c7:91:61:25:75:63:7f:9c:57:70:3b:bf:3b:
+ f7:ab:3f:aa:95:7f:b6:82:46:67:b6:41:f8:38:6e:69:d3:6c:
+ 5f:dd:f2:d0:e5:ae:f3:cb:35:96:2c:99:dd:98:8e:fc:af:1b:
+ 27:49:99:d0:11:58:19:0f:15:ae:32:36:8c:38:ea:6f:92:a0:
+ a8:18:c5:e9:9a:69:53:b9:b7:60:a9:54:b2:8e:95:63:d1:f5:
+ c2:3a:4c:19:b8:a2:eb:c8:88:11:3e:0a:50:8a:27:a5:32:00:
+ 6d:e7:ef:c0:84:13:23:bd:60:bc:8b:3e:ed:04:ea:20:3e:05:
+ 36:86:60:ba:0b:01:c2:23:3b:a4:00:7d:dd:ae:5b:b9:e9:17:
+ 33:95:2a:ef:56:00:08:4f:16:9f:5d:0a:a5:3f:95:87:0a:5b:
+ 7f:d6:13:46:96:f2:42:7b:7d:cd:fd:e5:88:00:c2:bd:04:19:
+ 8b:49:47:1e:8b:7d:0d:9e:25:22:f0:2e:dd:78:aa:29:db:1a:
+ 0b:3d:32:40:6b:1c:b2:5b:51:e2:e2:22:0a:0c:56:47:94:0e:
+ 17:f3:68:af:ef:70:71:17:bc:ad:9b:04:44:29:5a:15:f0:f8:
+ 88:82:34:1f:49:ae:cd:fb:e3:5d:39:62:76:c1:1d:38:37:2a:
+ 85:67:2f:0c:16:0c:53:75:a1:1f:ea:50:7c:53:22:95:ff:b6:
+ 50:90:4a:b1:9c:37:b0:78:cb:c5:61:f0:38:55:0c:8a:29:ee:
+ 64:c1:c7:65:ec:ac:90:00:9d:51:8f:61:34:6b:0a:29:14:ce:
+ 7b:02:9c:83:a4:d5:82:5c:c5:04:73:b5:a6:79:da:21:4f:22:
+ 9a:b6:ab:5e:f4:5b:ba:c9:98:e6:3d:a3:5a:43:1b:9b:1e:2c:
+ 5c:11:d9:05:a9:5c:f8:33
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/security-internal.key b/deployment/environments/certs/server/hosts/vitamui-env/security-internal.key
new file mode 100644
index 0000000000000000000000000000000000000000..12e0dde04aab116a52458d69881bb35aa6880300
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/security-internal.key
@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/security-internal.pem b/deployment/environments/certs/server/hosts/vitamui-env/security-internal.pem
new file mode 100644
index 0000000000000000000000000000000000000000..a588b9e77547f6b1cefbb049ec02164965070ef8
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/security-internal.pem
@@ -0,0 +1,31 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/ui-identity-admin.crt b/deployment/environments/certs/server/hosts/vitamui-env/ui-identity-admin.crt
new file mode 100644
index 0000000000000000000000000000000000000000..72d26124ebb8011caede49b947cfb86ecaa1d34b
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/ui-identity-admin.crt
@@ -0,0 +1,111 @@
+Certificate:
+ Data:
+ Version: 1 (0x0)
+ Serial Number: 17 (0x11)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Validity
+ Not Before: May 5 11:44:18 2020 GMT
+ Not After : May 5 11:44:18 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=ui-identity-admin.service.consul
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:aa:04:bb:20:dd:cb:26:5e:eb:e5:51:5e:10:d2:
+ ff:ec:56:71:fa:52:c8:14:f8:82:e7:02:5d:5c:a0:
+ 2b:57:19:db:71:bb:f7:b4:02:73:11:e3:31:64:db:
+ 8f:6c:29:e9:04:61:e7:6f:e3:da:8c:88:26:af:6d:
+ dc:7a:22:b0:b4:51:be:60:98:9a:e9:d2:c3:48:13:
+ 00:aa:f1:6a:60:be:ec:5b:46:ee:51:b1:65:c2:11:
+ 7c:38:ba:40:bf:62:40:25:1a:59:c1:6c:a2:79:f2:
+ 52:30:54:9e:9b:0f:63:17:01:22:6b:e8:c1:3f:ca:
+ a7:52:89:a7:86:f3:69:3c:47:17:a9:1c:cf:2e:95:
+ a1:56:4f:9f:2e:84:01:94:c1:16:81:da:e1:4a:01:
+ d4:e9:c0:63:ec:93:23:84:ce:bd:15:5c:17:7c:f8:
+ ed:a4:cf:e9:00:ce:3e:7d:3b:44:b3:c2:27:1d:e4:
+ 7c:05:00:ac:6a:de:f0:48:f8:63:30:fc:23:0d:81:
+ 26:4c:37:16:fd:e6:14:ef:b0:ce:03:7e:6e:b1:06:
+ c0:10:74:8a:20:56:39:4d:fd:dd:19:8c:1f:95:05:
+ 8c:99:79:c6:c6:f0:53:cb:02:e3:20:00:d0:fd:c9:
+ 2d:af:c1:ab:40:3e:c2:d6:69:16:29:6f:3f:72:c8:
+ 9c:0f:d7:16:c5:78:ff:36:ba:04:2e:a4:e5:e6:55:
+ 5e:b8:95:db:78:81:ec:47:0a:ae:29:c5:bc:fe:ef:
+ 0a:17:93:59:d6:a0:33:e8:4d:f5:98:15:2f:1e:d9:
+ 22:1d:ba:48:8c:83:10:c2:dc:20:df:95:74:6c:de:
+ 07:95:3c:aa:29:18:46:58:89:91:97:49:3e:d1:82:
+ 9e:04:05:ef:3e:28:cf:61:c9:29:83:b7:89:0d:9e:
+ 2a:21:0d:0d:ef:16:0a:6b:79:a3:41:8c:fd:f6:2f:
+ 64:46:58:80:03:ad:e6:a2:7b:2b:f1:58:59:ef:62:
+ f6:82:52:8f:68:03:1c:5a:32:83:93:84:9f:f5:99:
+ eb:f9:60:91:ec:6a:8c:38:c8:51:6c:75:cc:27:5f:
+ f0:a9:8f:8e:16:5c:9a:4e:b2:d1:db:c8:20:3e:99:
+ 67:4c:f0:2c:11:a4:8a:b6:40:6f:e0:7e:0f:a3:db:
+ 2e:ca:68:a3:4a:80:13:5b:26:45:cb:18:7a:31:4d:
+ ae:7b:7d:3c:4a:71:84:ec:b2:a8:75:f3:90:2f:db:
+ 9a:a2:8f:e6:32:d9:0f:ae:b2:7f:40:cd:16:4c:b0:
+ f6:a3:9c:5f:05:51:f7:cc:45:62:ee:99:aa:fa:e3:
+ d2:10:c5:58:e7:a1:6c:d8:47:3e:69:62:1f:ce:e3:
+ 2f:60:33
+ Exponent: 65537 (0x10001)
+ Signature Algorithm: sha256WithRSAEncryption
+ b6:84:b7:3c:6c:36:0d:5a:fe:db:ef:2a:48:9c:ec:0e:de:f4:
+ fa:9f:60:50:99:22:85:54:37:da:9a:bd:85:7f:f1:cb:fc:c3:
+ d4:6f:ca:f4:5f:e4:cf:e4:e5:01:22:6e:86:5b:72:41:8b:b2:
+ 8d:a2:bd:7a:7b:e4:81:24:11:52:f8:39:50:f7:0e:80:b9:fa:
+ f3:1a:24:97:5b:f2:d8:cb:62:7f:a4:88:62:24:5b:de:99:79:
+ ac:89:f4:91:8a:50:65:54:df:66:68:31:b2:2d:bc:b6:1b:0a:
+ ee:dc:f4:53:29:92:87:ee:e8:18:14:23:24:07:ad:e1:58:6d:
+ 1d:78:08:45:22:75:ce:c4:d7:e1:5f:ea:85:22:0b:91:89:db:
+ 28:b9:b2:78:cf:12:75:a1:2c:15:c3:a3:8f:6d:92:03:67:80:
+ 51:79:73:bb:73:f5:5d:8a:f4:a0:f2:ed:8d:2b:68:24:6f:06:
+ 4f:9e:2b:fc:97:da:00:00:e4:18:2b:e8:0e:d7:7b:72:15:20:
+ 1f:21:53:a2:a4:fb:35:76:f9:18:ec:7a:15:ab:95:26:59:01:
+ 93:af:3a:df:9b:44:8b:db:55:18:b0:06:de:ff:73:8f:14:0b:
+ 31:28:e4:32:cc:1d:3c:0e:f0:49:5f:69:4c:f9:80:79:66:87:
+ ff:0d:82:4b:08:70:9f:e6:ed:08:6d:b2:5f:c6:ad:52:b0:20:
+ d5:f6:bd:5f:cd:00:b1:6c:9e:bd:38:61:b8:42:af:1f:82:b8:
+ 60:5d:f4:d9:12:c0:4d:7d:0f:bf:76:8e:89:14:31:b8:bd:1b:
+ 53:5d:b3:2e:73:cf:17:82:4e:d1:cd:5b:e0:97:bc:fe:e6:03:
+ e4:41:05:74:3d:ed:d4:02:d2:e2:ad:70:6e:54:0f:ff:7c:07:
+ bf:f1:2c:2e:ba:e5:14:7d:00:63:d8:f4:21:d9:2a:3f:36:bd:
+ 24:d9:63:ba:f6:8f:4b:89:1a:2d:fd:c0:ef:40:23:e1:b5:77:
+ be:9d:7c:7c:63:29:cf:e6:ea:3b:39:a5:b1:ac:57:c4:23:ad:
+ 34:cb:0c:9c:5a:16:bc:f7:b3:47:dd:33:b6:5d:3e:d3:f8:c8:
+ be:ab:4b:89:ad:ee:b3:64:d3:28:27:0a:2c:76:3a:3b:ed:d0:
+ cc:81:57:3b:fb:c4:ef:37:87:d8:d2:4b:b4:80:9e:e2:05:aa:
+ d8:66:8e:8b:20:e7:4c:b6:53:19:3d:4a:cc:07:25:23:15:a6:
+ 68:b1:f4:70:15:bc:3e:1b:77:dc:cb:27:0c:e5:fd:02:ec:ea:
+ 2e:29:4d:ec:6d:23:0c:2a:14:04:25:86:b1:4c:4b:f5:f6:f1:
+ 5c:b1:d5:cd:e7:8e:78:b7
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/ui-identity-admin.key b/deployment/environments/certs/server/hosts/vitamui-env/ui-identity-admin.key
new file mode 100644
index 0000000000000000000000000000000000000000..b2b2287e90bb323082010406130677128415cb08
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/ui-identity-admin.key
@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----
+MIIJQwIBADANBgkqhkiG9w0BAQEFAASCCS0wggkpAgEAAoICAQCqBLsg3csmXuvl
+UV4Q0v/sVnH6UsgU+ILnAl1coCtXGdtxu/e0AnMR4zFk249sKekEYedv49qMiCav
+bdx6IrC0Ub5gmJrp0sNIEwCq8WpgvuxbRu5RsWXCEXw4ukC/YkAlGlnBbKJ58lIw
+VJ6bD2MXASJr6ME/yqdSiaeG82k8RxepHM8ulaFWT58uhAGUwRaB2uFKAdTpwGPs
+kyOEzr0VXBd8+O2kz+kAzj59O0Szwicd5HwFAKxq3vBI+GMw/CMNgSZMNxb95hTv
+sM4Dfm6xBsAQdIogVjlN/d0ZjB+VBYyZecbG8FPLAuMgAND9yS2vwatAPsLWaRYp
+bz9yyJwP1xbFeP82ugQupOXmVV64ldt4gexHCq4pxbz+7woXk1nWoDPoTfWYFS8e
+2SIdukiMgxDC3CDflXRs3geVPKopGEZYiZGXST7Rgp4EBe8+KM9hySmDt4kNnioh
+DQ3vFgpreaNBjP32L2RGWIADreaieyvxWFnvYvaCUo9oAxxaMoOThJ/1mev5YJHs
+aow4yFFsdcwnX/Cpj44WXJpOstHbyCA+mWdM8CwRpIq2QG/gfg+j2y7KaKNKgBNb
+JkXLGHoxTa57fTxKcYTssqh185Av25qij+Yy2Q+usn9AzRZMsPajnF8FUffMRWLu
+mar649IQxVjnoWzYRz5pYh/O4y9gMwIDAQABAoICAE/fERoLmBhal2+PniVBOsGI
+itsScLSJWtWzorCU/kdY+mKf72o9jFlm5hl/nA0wUyuf4t4JqO5EOAhKED3Adkr/
+6/PtPTmDrgH6C2JDL7prdxYaaHMwZ6GYHUd5GFnQilnj2y6nHl0znbDez/QAcoio
+G8ed/Ms/JQP9bxpS16ldrJvh0OMNoFGv7hQoJ6X+X9h5P0VJPwDhRRAqv5Dwnpue
+O9qWBu5aThf2zByA73GTUFUWtbyT6Gv8d92P8ulcSgtaFOfRKZf1svg3k1DI4K+B
+gFE6rnkqiJk/HdOWpG+Zv8eKEfv7gyHoJVMvjv7qt+/Nh+oSke2wSJ0GikQeQlHa
+p4UtLxewQb0b0RIuT6gCroJ19khfcTrZNkwdJdGog7gJd6dELbn4W3cQEWAD4niq
+26MU/jqiH72ZzvoHyYdaF8hK78WQtf77z6HUcGmceudeuOx8+UP3pkd16BNPjTNE
+y2nd1rGvtgjLqLEZgfNuttkv/4iqs4fTJ91fuxwWm41nlJZeb/vwod8W+dGBbYVi
+ALXh8evvtLBbltLP1AzYL3gzkVQRmpkpYTru4/hhzwXpZoYO+OsOPuXFYyx6toiL
+Mx50HM1bCFLgHHMBIP6Y7+uy5+QUWOKFbWVpKj4bPk31SU65rasBynKREJUi7Y/8
+IRPHNaTEvZmPvOYMV/VhAoIBAQDUtETTlj4P/Zd0vX3Vakrned0deUAXQsneKCWD
+IlhJjCK5UUrL3zcxjq6juR5Kkew1AQN1/AWc+bE4JTGUqtR2hX9AS5yc+pu1WXak
+XvdORZNQzZDzgCN3FDFBbPAOz911KudzxH8iK8wc8XsggSfseArj7RWM5rGdz0Vv
+ZKuhTVuCqpERiMWEB2g8iYySw7MpPYCNJ5Uy2ep8TMz1dEIao2vCqQ10Dr5f/amW
+uvPKp6hUsILDWnfdcaFj3pYS7/VAxbnGWuM2GUexdWQS+kl1qolsDaNvNqMePT4S
+gyfOiJDEsPqv7d9Mk49v4AHdXsserofoJNdNz0eWh6oclM1FAoIBAQDMoCrdDSJP
+jCZ1QN7o1zUFPBSev1a5//XAqHYlWGhk/574v42tjLLbZk4fDlTFNBPFhyJGXrn4
+ytMd0GWpf2vAIGrXZD3JeNziMxxMKLBhGlI7SrnxQOIHmnNnDi1+woe/gBzS4CIn
+IdtNvMqWe/RZVc8uvXeI/1Sog3cG282vHYG35+gEOiPsyj6G33JX88ZGOHGE7RWL
+wtahFTYeSzw/y2E7Tsw3LaH+Yugki0GZGkpH5RcS80MPX/AR89jPXjz3oDQZ1ZV2
+6HxTDqhlymtavd7peoKbQ4TbqsnVWgsQBo80Nue3/KY7pmSOLYDDHDUKVgcvG81E
+2PH9bh8thqMXAoIBAQDA1BBVVS48ZuSoU6VBFZSEVukK8EIXFFhXi0O+pyMswds0
+76qEOn8Z8UUHbio05iciQiH2Exyvm3l68dUJ9viX3hxnmGSJt3PzqwAwsVs33UFZ
+DpMq/O6p5Gdm7bCPbQhSUSv0up2ax+PKFW1PIWelK4qL6QIRc45wB1jmTHh/ydZ9
+Fc5f/AM71087GmOTJdFFQNlKnijXKdE3EJT6rIPFDIQDvChTH46dDSRyXlfnT6j9
+5esV2O0zlvD9zet1jY5kQxxQ41J6V96z1T19KuPvxUPB7ndMulaUcmbUd4xd41aC
+ygLp/RbjoB54CLcIDgjMbuMMpGF/y7sVjzW7pXaVAoIBABeJ+URShXbnJWlpm/rm
+/sdqYOjeE+jzo96UwnqLT/8GVNBCoNatD8ojW6tA58mDsx6O7AdyUCxpkJ2mYnt8
+F/YTBJdghacOi0JOJNwx9hBFid4eO4OgNiAvyUS6ocsqL5l88FPlyqf7whGQPTHQ
+coxwTZQP4ZdV3/Q+o0ubr26Mk2aHe+44jfdoUIcNX0b02QMs7Qogh9D7Cduf6AjW
+GMkx6S58YwuZ6T+tOw0xI8ur9Y2NsfjRGQ7Et4YpKfC444SM3lF2e2ohVmPrlL2Y
+6n6WxvTOzgV0X+0xGWS8pfci+ghEpKVKoAjOnFSqsVxAe22D9fGaXiOkXToNF/MR
+wOMCggEBAJ45FVJzy1wSN9p3THAcUV3Z5jzy9G2QTN2ej1tOPcIi3mYB8aRh5ogi
+XPoQ5/UUahT3VuGCD4/ciO5ZvsOZ8llFobwsOq9MPq4nUU6XrGQedcrNBjDMCIWs
+w6PGBW6E1/NynYsThthQJRIYTiC7GKWL0mNSI5Ol9JttAHr30UE6eY7xJo6vfES2
+OHvKFjgujT4rzG7KPuzvAWIS09lSXXEVZPfuLR5IBlLJYwE8UQl4Z4cBcngclwuW
+QOKX7eDv2rMro3jwxw4bKKGjVfa+rkqK3sXXw9dhdSdYfmNRxsOreJXh5y8EYu7A
+3c3zb5z9Y0YxTaNhVBJzpw95x4VSgkQ=
+-----END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/ui-identity-admin.pem b/deployment/environments/certs/server/hosts/vitamui-env/ui-identity-admin.pem
new file mode 100644
index 0000000000000000000000000000000000000000..e8ae9e644b35dc9b034fc6789e4ab9840aed32c3
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/ui-identity-admin.pem
@@ -0,0 +1,31 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/ui-identity.crt b/deployment/environments/certs/server/hosts/vitamui-env/ui-identity.crt
new file mode 100644
index 0000000000000000000000000000000000000000..338f5508fecd7c6d8bd3769cff2afc1057930f4f
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/ui-identity.crt
@@ -0,0 +1,111 @@
+Certificate:
+ Data:
+ Version: 1 (0x0)
+ Serial Number: 16 (0x10)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Validity
+ Not Before: May 5 11:44:14 2020 GMT
+ Not After : May 5 11:44:14 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=ui-identity.service.consul
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:c4:ea:89:0a:96:8e:d4:ac:99:37:9a:80:16:7a:
+ 37:2c:06:e2:7e:60:ef:33:b5:aa:0b:ce:0a:76:7a:
+ a0:ff:59:6f:bd:e5:bf:57:78:8d:6c:ae:1d:58:c9:
+ 2b:e0:ac:a6:0c:be:9c:0a:40:5c:46:3e:66:cd:73:
+ fc:cd:64:e8:a9:7c:d7:a2:f9:1b:83:b3:7b:0e:bc:
+ 63:86:0f:6a:48:f7:53:f5:47:78:72:73:55:93:72:
+ 44:57:1f:0c:d8:5a:cc:03:f1:9e:a6:8f:1e:e7:75:
+ 9d:f4:aa:0c:ee:84:06:84:64:5a:39:48:29:36:18:
+ 7e:88:54:85:84:2f:61:32:40:3f:a9:65:de:17:13:
+ 1a:f3:63:29:b8:fd:b9:9b:f9:64:15:8d:8c:fb:aa:
+ d0:f4:19:ca:93:ea:92:1f:5a:ea:51:cf:dc:bd:4b:
+ c0:59:76:7c:9a:76:24:f1:f6:3d:6f:f2:49:9d:a5:
+ b7:24:ff:ba:6a:ee:08:3b:7b:3d:62:78:25:7a:b7:
+ be:5d:42:5b:ca:c4:96:97:fa:78:de:a9:88:4b:54:
+ 29:b3:6d:a2:08:12:57:2a:c4:77:a5:a1:d8:fd:c4:
+ 37:5f:17:f7:cc:a9:88:ea:02:6e:f1:c4:e8:62:56:
+ cd:f9:50:09:b5:70:41:a0:4a:db:07:7c:38:35:5a:
+ cc:62:01:40:af:57:05:7c:93:ca:bb:8a:59:be:10:
+ cb:54:8e:37:e9:1a:7e:aa:95:29:6d:32:35:cc:c5:
+ 28:c8:1c:bd:87:00:0f:33:f8:74:2b:98:68:44:c1:
+ 3a:1c:98:dc:1c:a9:72:6e:1e:7b:78:55:59:bb:8f:
+ 56:16:8b:d0:a5:e4:0f:c2:f0:d2:8a:c5:c5:64:a9:
+ c6:2d:1a:94:44:ba:e8:da:10:33:da:18:27:a3:26:
+ 2a:94:ee:c8:19:48:8e:b4:45:b0:40:c6:6c:86:85:
+ 63:18:4e:f0:df:2e:a1:37:42:a5:2d:7c:f4:f6:cb:
+ d7:46:4f:2a:dc:fe:7d:57:b7:b9:8b:6b:d4:e6:32:
+ c2:6b:c0:f0:ca:00:c5:44:6e:4a:b9:f2:29:1e:75:
+ fe:c3:2a:9b:8b:8a:c0:e7:1b:12:2a:47:41:2b:09:
+ bd:bc:3c:e1:f2:26:b0:ea:94:9e:fa:a3:2d:de:18:
+ e4:b0:87:ea:7d:a7:f1:96:44:b8:d7:6f:3f:78:58:
+ 4f:0c:92:b6:fc:93:d1:fd:9d:52:ac:13:bc:01:c4:
+ 17:02:49:bc:e3:e4:24:43:9c:8f:9c:e7:d1:a5:84:
+ 8c:43:cb:63:56:bb:5e:f5:e8:20:f5:e1:60:82:f9:
+ 6b:cc:0d:68:78:ff:df:2c:ef:13:4c:2a:1b:a9:3d:
+ 05:21:5d
+ Exponent: 65537 (0x10001)
+ Signature Algorithm: sha256WithRSAEncryption
+ 44:16:f8:53:72:62:94:b9:71:d0:5e:4e:53:5a:dc:ef:85:37:
+ 3b:13:cc:94:cc:25:5d:65:bd:44:03:0e:dd:a9:e3:9c:c7:87:
+ 6a:a3:28:85:a3:d0:70:fc:40:ee:2b:7d:35:79:f6:eb:92:b7:
+ 88:81:e6:04:9a:84:5b:eb:e9:7e:98:14:af:5f:19:98:3a:60:
+ fb:23:1b:1d:6c:e7:99:15:f6:16:65:0c:fa:e5:6c:85:91:b1:
+ f1:3d:52:18:5b:62:92:34:f5:7d:46:18:31:3d:1c:64:3c:2a:
+ 2b:33:e2:e5:f0:47:1f:01:60:a8:88:a9:a8:47:f1:67:a1:14:
+ 41:76:1a:92:7d:dd:8c:bc:78:88:de:0d:0f:34:62:d6:ed:b4:
+ 46:10:a4:35:bf:d5:0e:78:90:57:21:bf:23:4a:95:ed:3b:92:
+ 2a:6a:c4:a7:17:f8:85:e8:4e:f1:66:0b:48:93:36:da:f5:a7:
+ 70:19:eb:b1:26:d9:c7:06:45:2d:b3:61:e3:35:7e:2a:2e:41:
+ bb:f4:e2:bf:da:cb:90:93:15:32:c1:72:47:70:2b:2b:95:04:
+ f3:d1:34:50:fe:27:99:a1:ef:9b:1f:10:6c:44:52:6f:9e:02:
+ ea:1f:6d:b9:30:fa:82:37:8d:41:92:c5:8d:05:17:b7:2a:a6:
+ bd:87:a4:42:e4:ef:9c:50:8e:e6:6a:4c:c3:b5:6e:f1:0f:08:
+ c4:95:c9:1f:a6:2f:d9:02:61:ef:d1:5d:05:cd:44:41:bf:88:
+ 6b:90:65:9f:4c:58:ed:74:dc:69:cc:3d:72:ab:64:09:3c:25:
+ c7:60:a0:35:a5:ed:9c:0a:f6:40:c2:ef:0d:4f:ca:79:19:e8:
+ 48:e9:14:18:67:7a:f9:aa:fc:a0:ae:00:72:ee:4b:46:54:c7:
+ 90:e0:26:72:e9:a5:91:0f:91:b1:66:29:58:31:27:c3:7b:2a:
+ 4a:a2:67:7c:58:5a:aa:2a:d9:3d:ca:6d:e6:1f:ac:2e:ec:b4:
+ 9d:3e:60:29:29:f5:cc:19:79:5c:c1:b7:13:0f:22:57:56:1b:
+ 06:77:5b:75:30:6a:46:08:52:63:ab:da:a9:a9:2c:8e:62:81:
+ fe:e9:ae:e2:7a:9f:a1:63:e3:e4:1e:60:4e:83:f9:46:ec:7e:
+ f9:bd:b1:0f:76:a3:30:a2:ad:7e:a8:51:a2:9c:a5:38:87:2d:
+ 6d:08:9c:83:92:38:29:46:c5:55:e9:2b:19:56:c8:94:35:9c:
+ 0b:6f:36:1c:95:a0:6a:61:8c:84:8a:a7:b5:88:e3:fb:79:1d:
+ 99:02:76:78:78:03:61:49:32:21:b9:2b:62:09:45:7b:1b:c8:
+ 97:14:77:c6:41:0b:ef:82
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/ui-identity.key b/deployment/environments/certs/server/hosts/vitamui-env/ui-identity.key
new file mode 100644
index 0000000000000000000000000000000000000000..12d1ea0a8cae73577b8246e471d3343287e998d8
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/ui-identity.key
@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/ui-identity.pem b/deployment/environments/certs/server/hosts/vitamui-env/ui-identity.pem
new file mode 100644
index 0000000000000000000000000000000000000000..ca49b7fd7431d2079b027b4c9c64ef392dd2f299
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/ui-identity.pem
@@ -0,0 +1,31 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/ui-portal.crt b/deployment/environments/certs/server/hosts/vitamui-env/ui-portal.crt
new file mode 100644
index 0000000000000000000000000000000000000000..627f0fa1dd8c627a1819531255e59289d08a9734
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/ui-portal.crt
@@ -0,0 +1,111 @@
+Certificate:
+ Data:
+ Version: 1 (0x0)
+ Serial Number: 15 (0xf)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Validity
+ Not Before: May 5 11:44:10 2020 GMT
+ Not After : May 5 11:44:10 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=ui-portal.service.consul
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:ab:92:1a:03:a3:a4:a6:64:81:7a:d6:7c:41:51:
+ dd:6e:a1:2e:b5:1a:0c:68:4e:fa:17:fd:6d:81:58:
+ 5a:82:27:25:13:4b:dc:e2:82:81:7c:b6:bb:66:86:
+ 60:74:ec:87:23:56:d6:ee:69:d5:01:ad:f6:b9:3f:
+ e7:c5:7f:5e:24:05:de:c7:2e:b8:3e:af:fd:8f:d8:
+ bc:19:12:22:44:f2:bc:3e:1f:21:47:e6:ad:70:88:
+ 4f:79:b1:2c:eb:e2:24:a9:50:c0:db:c7:9e:0d:d7:
+ 75:77:f6:d3:5c:9b:26:49:64:ca:5e:ab:9d:f8:1c:
+ 08:7d:00:ac:18:18:71:ed:f0:48:1b:ce:66:30:c9:
+ d4:52:83:18:55:63:ae:dd:d3:0c:b0:8a:d1:6d:fe:
+ ec:f3:c2:2d:74:b7:c5:76:5c:78:01:7b:5e:49:d7:
+ af:6e:20:85:5d:11:b4:71:66:4c:09:93:b5:39:08:
+ b0:50:1a:59:72:ea:b6:be:34:db:9c:04:f9:74:73:
+ 3b:29:d8:c1:7e:d7:c4:5c:6e:21:9c:80:14:2f:39:
+ 5d:ae:fa:8d:b5:97:7f:d3:da:07:7f:1b:87:db:d9:
+ 06:57:1c:3f:c4:12:ba:7c:2a:a4:0c:a4:b0:a7:c1:
+ 4e:e9:78:8b:40:b9:62:5f:25:09:72:1f:ac:f7:cb:
+ 5c:b6:28:6e:f1:4a:c7:46:4d:2c:7a:36:ad:29:36:
+ 8b:f8:45:ef:01:c3:a4:1f:b8:ea:24:13:7c:ec:3f:
+ 6c:25:95:77:a0:a4:ec:93:f6:6d:a5:8c:31:7f:2b:
+ a0:13:a8:8d:1c:51:43:cd:fc:6b:81:29:1f:00:f1:
+ b4:85:3d:f6:03:3e:51:6e:22:d3:26:5b:d0:06:aa:
+ 6b:d1:bf:81:5f:28:ee:d7:29:c4:db:f4:46:c5:5a:
+ c4:2f:f8:8d:f0:a9:49:12:86:61:a1:58:42:33:ba:
+ 49:d0:4d:41:04:45:86:51:18:8f:e6:4e:1e:fa:53:
+ ac:a7:6f:fe:58:bc:35:9f:59:04:6f:fc:c2:fe:10:
+ 7d:67:f8:5a:ae:b0:30:ca:91:46:0b:90:22:a0:65:
+ 7a:4f:05:53:bf:1e:b1:a1:30:6f:33:aa:64:2d:e9:
+ 2c:0b:8a:e9:1a:0e:59:be:f2:fe:cd:5a:18:eb:81:
+ 3d:83:ed:31:0b:54:c2:b4:5f:ba:e6:b4:37:01:ce:
+ c6:e4:b8:15:86:48:f5:99:46:14:2e:58:be:42:12:
+ 20:1f:2f:a8:ea:09:46:07:e8:0e:1f:cb:20:a1:1f:
+ dd:29:cb:a9:7f:af:48:d5:c0:64:d6:2a:cb:5d:d7:
+ 4f:17:26:c4:ef:3f:92:c5:3a:4e:ac:17:e0:de:5f:
+ 48:ad:6d
+ Exponent: 65537 (0x10001)
+ Signature Algorithm: sha256WithRSAEncryption
+ 3a:17:7a:ec:8f:a1:4e:7b:db:ac:46:72:e9:67:9c:c8:71:9a:
+ 9d:e2:27:74:c9:d2:0b:08:91:98:80:24:7f:8e:fd:f5:50:ad:
+ 8b:50:74:79:13:dc:c8:af:e8:13:2d:ff:e7:bd:ff:c6:4f:da:
+ c5:f4:da:0b:8f:97:66:89:a1:36:87:e7:69:da:ad:09:f6:8b:
+ ff:8e:58:0f:3f:ee:65:96:5f:4f:64:c9:f0:3c:f6:c2:a2:53:
+ f7:32:6e:89:d1:a5:b8:f9:04:50:4a:74:b3:05:47:d3:ec:43:
+ 0d:c4:86:cd:13:21:14:70:80:d2:27:5c:a2:2b:6a:d5:be:c7:
+ 86:aa:a6:ca:fd:82:72:6e:65:2b:d0:1f:ba:7a:d7:a6:bf:c0:
+ 64:35:67:8a:e5:92:60:ae:ba:d3:a4:ad:02:59:00:ff:5d:15:
+ a5:80:c7:2f:3e:0f:68:23:7a:40:07:be:a4:05:b8:49:8f:16:
+ 2a:a2:41:91:3b:91:a0:10:17:df:59:e6:7c:7c:c1:5b:f3:bc:
+ 0a:50:9f:ab:70:70:0e:7d:61:25:73:d3:d1:c3:ad:3f:0f:0c:
+ 8b:43:73:dd:40:20:66:00:d7:74:2e:48:da:21:84:9d:02:4d:
+ c5:e5:56:0b:89:02:06:7b:ef:06:69:72:89:d8:de:b5:2b:f9:
+ f7:07:fc:f1:91:d7:9c:0b:f1:77:d8:4f:11:ca:8b:b0:61:27:
+ 0d:26:f2:34:8c:c1:75:7f:cf:84:8b:5a:c9:2e:ce:c9:7e:e4:
+ e5:1e:5c:35:6a:62:d4:d1:c3:be:3c:ae:9e:f7:66:db:50:a4:
+ c8:42:d6:4f:ff:fa:60:e9:23:60:7f:2b:52:25:97:a7:cb:c0:
+ 2a:d3:c2:71:8d:16:5e:07:ec:49:8f:12:c9:f2:81:8a:6c:34:
+ 85:9e:ec:ff:4f:80:3f:0c:eb:a2:10:c9:7d:29:cc:5f:9e:7b:
+ d4:e9:f7:25:27:e1:8a:df:e0:34:a6:5b:fc:f2:b0:2b:4c:40:
+ 56:7f:fa:94:dc:90:3f:c6:97:7b:0a:f2:27:83:55:8c:a0:d3:
+ a0:5c:11:a6:7a:2b:7e:68:88:1a:4c:2b:60:d9:19:5c:42:ba:
+ 5d:06:cb:10:00:76:d9:15:f5:7a:87:37:a2:87:0f:a8:49:d9:
+ ba:05:a8:85:91:e3:8a:b9:32:03:de:b8:ce:f8:d8:84:7d:3c:
+ 32:c9:42:95:a2:24:6a:ee:1b:89:a7:91:d3:e7:7b:9d:96:92:
+ 60:13:89:5e:9c:2d:7c:7a:fc:30:49:d8:13:c1:d6:05:69:8d:
+ 69:ab:3f:23:64:64:0b:b9:da:73:59:a2:85:b5:23:f7:66:73:
+ d7:d7:49:43:14:1d:a1:f5
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/ui-portal.key b/deployment/environments/certs/server/hosts/vitamui-env/ui-portal.key
new file mode 100644
index 0000000000000000000000000000000000000000..a5a281a7e297b23b4066e32e9b292e420c1e2d65
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/ui-portal.key
@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
diff --git a/deployment/environments/certs/server/hosts/vitamui-env/ui-portal.pem b/deployment/environments/certs/server/hosts/vitamui-env/ui-portal.pem
new file mode 100644
index 0000000000000000000000000000000000000000..fb6ece54171d479e58c449d01d8cf432351c7c40
--- /dev/null
+++ b/deployment/environments/certs/server/hosts/vitamui-env/ui-portal.pem
@@ -0,0 +1,31 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/environments/certs/vault-ca.yml b/deployment/environments/certs/vault-ca.yml
index 3b63803b09a35e79bf4b22e6e456b91f1a4152a0..a5c1097902acb5865b25221abdbab4a8edb421bc 100644
--- a/deployment/environments/certs/vault-ca.yml
+++ b/deployment/environments/certs/vault-ca.yml
@@ -1,28 +1,28 @@
$ANSIBLE_VAULT;1.1;AES256
-30353330613739333633303430643939393465643334363364653962346164393361666234343733
-3361393839376363363936653131373137633336663766390a366432623937353936323839636337
-66663935313235333334376536363465306236393736343330646164303063306633383963346266
-3838323231653165380a643338663638633533323533353631613136643731373830633165356437
-63376536323966653438626231656339623433393361643036353462636630336534356432336364
-38383161656539646136616366326633623738623133653239336134613562303638333533393063
-64363735363262343139363463386634626263363637326239616166326239623066616661303238
-63393438633065353939363138393262313333316233346566323861626664616638646235643238
-62633138303930303335366437353739336331316261373637663065393938643037663038666130
-63653063653634326338663834346437323330646565363766333663386139663137346339633631
-34383033386131353333656434613638396239316362356362306536613165613637333734303938
-31643839616163623934336564363765303665633139653832626631393162666436373362333833
-35643932363432383930353330623835356136663837646130353730393335653531653136333436
-30333930366231326331323965313361383038393333643162363234326634633330616633316662
-35343131376163373635336262326132303739393066396438393964303635336531366237393437
-61323834356364663338323364616133353037386633663163643335343066366633326438336138
-62333334623134386663376234613962626136663565623964636237383330313164346165343466
-65303964663133343562613265366166383066653063353637636161626538313132646162653365
-36373136316131363564343637353266376166636434646234346634666237326539323761326532
-33373835633165313536323766373433323530326135313336346530393761633137383333396266
-63366564316131386633313562633765316163643530336636663366663337373462303761343336
-37663337323737343736356162646564333837373861393836396335656539343030333930386462
-64336230363930313765653834336236376537373465316462613766626438353037626437343432
-36323034656633343461303438623732333731333331643765333462653835333865373139323837
-32376564663066303362623632613431366165323139336535613132383866656661376161633665
-34613739643662373939663734363635613638393465623237316438653261376165366136653633
-393764386264663536623136663131396462
+35353465316336343063386165366436643966643838303233356464393135316634316636393666
+6135323863343563363930393362623963623466313334640a376638653365333265313063653830
+35336536666133643438656463623966313165626532633237333035393461343638656430393065
+6436336563323932340a643061393437636163613762343063636161626465633761353066616239
+63643336653937323835346538626465363961353332633130303231326361373337346163396530
+30386235363433373730323932346164383437613234633065396238633763646535313766636538
+39353266333934666134326266363530323533313638323562366365373633366239643261613461
+61663931393964663132646564633731386536646634303964643431343265373535373465306234
+62393839393461323432393235333264316338343663313364303231663233326134653662343031
+61633739613437346563623031366462646135346331326562663032303062653332363839633030
+65613739316333653063663931333532336232346562353061373165646330366463373036333066
+66313631316661626465386138323965653565346463613930316562316462346536616335336433
+30633233323766306666323333393234376434363866633163366232383365316536353366383764
+37363436373866346365656235383661663466343738623362363738396235646563656239633564
+33636434653634353666393631373665343664663234346631363261323537316666373462656439
+62336437373339326131633064333637633930396635613565626630343266633530366439653438
+34313230626461643963613363653433323532313130383164343732626565316635393035323361
+62353538373930323433343834373339356532616263633537316533643763383633666535363065
+36663832366235386338303831376563633539616436393239336332346537353737333132313038
+64613336343161343136663537623466653632363662373865393738643263323634626130666637
+33353566643139343661386330613434656161663737636465316135336133396436386463346331
+36386464316464323930373737363030336461613631396338643735303139636534616266336639
+65333766343135633634376266373236343132646364306336353064396338623565616536353966
+30613833616364363136653233323939343463386436343163616530393238363631663866366362
+66313830343439613138626337323534316364663264306439336234366632343364643832653333
+34653563636562343063323135306462396166356136323962373336346666366631643466666631
+343062313266383338653765323333343431
diff --git a/deployment/environments/certs/vault-ca.yml.example b/deployment/environments/certs/vault-ca.yml.example
index e5772c353e2396b3c6f2af31b9655f42c2bde32d..edb6bdefd67aeaf3ad56f2ee64a9e735fa6f4abd 100644
--- a/deployment/environments/certs/vault-ca.yml.example
+++ b/deployment/environments/certs/vault-ca.yml.example
@@ -1,6 +1,7 @@
+---
ca_root_server: changeme
ca_intermediate_server: changeme
-ca_root_client_iam: changeme
-ca_intermediate_client_iam: changeme
-ca_root_client_iam_internal: changeme
-ca_intermediate_client_iam_internal: changeme
+ca_root_client_external: changeme
+ca_intermediate_client_external: changeme
+ca_root_client_vitam: changeme
+ca_intermediate_client_vitam: changeme
diff --git a/deployment/environments/certs/vault-certs.yml b/deployment/environments/certs/vault-certs.yml
index e29374f47d429280d3db06512deb883f404ba3d1..2f45f4c4a21cf9684b9556a41223842323883f44 100644
--- a/deployment/environments/certs/vault-certs.yml
+++ b/deployment/environments/certs/vault-certs.yml
@@ -1,44 +1,39 @@
$ANSIBLE_VAULT;1.1;AES256
-65363937623761646465373831346535303263343766326230623335633334656264353363643864
-3361646166623633336465633837306664613731653531640a633034663133323433346662653464
-37613238366538633762306163373164373037623366383464386233616163363831623834653636
-3532346532333138370a343961353233346165353931373438646235633239623361633335663861
-64383863396634376365653261616361613763386565363934353764333034616465326561346636
-36646266343339663561396461343530373664633333396365343632363061306336313664396265
-35323261623165326534343939356637306232346564666531306163653331336531383262386465
-65646134373438393234613739326262623531306339306436613830373932343736356531613334
-63343762643863376161656333366530643635306339626630653031363362323534326263393739
-38623137336539326263643131366663633731613639333731363966306534356464623466386335
-39356564393634323866623939343238353934353562333031343434653132636666396135656337
-35363165373865626265316232623930336466656631376632633537336562623266616637663864
-65653439373837613365353466323835306638646434396266363633656536633864376437343639
-32623936333333303164626665346437616335366264353634636463633461313231346438643065
-35656565343731656666343037306461306365336639383737646638626666353833636336643832
-63313430383938393863646635623836633037376634636465316337343331643330303031306231
-62633231383438336265343830303937393561636665663138616438663231333361393439313031
-62343764366232343239646134303833313533636364386539623034396436653134343735633630
-39623431373137613864613463326465333636646637613838636330346464643165353063306163
-66666635313665313364366563333065303239383534623136663239623530666164363365656537
-38353435366136653233346230383864356565393836633138313538333339396266363864623236
-34316661373162623436356638613563386630666661373166633034643238363435303239306266
-35336130613461363730633364376338663433373562336663393937343666633434356366333766
-39336666626565346536623262363964316136616232303633326139633335663735636434623161
-64313734353132363730346564333762356433326530653132323365373430653837393361623231
-66373031613731653231386131366361326564356330623237386139336562303536623662633539
-31393037326236643932376430376366613763333339303461643461393835386464653365643665
-36396538326138396236626133353536323832316461653965343835633035353864343165336635
-31343138646430613530626262386330383838346364663464396465363836623334633731336266
-35313761333831666162343530343234656635383162323634313738633663303930663135393462
-62643837336538333735616637386432343833643734653064333832616232323539326661613664
-39356666356531643062343237366232306631396439666366643364656233623461346333653636
-34346330336539616432623339333637356563353964626432363434383664366334346136643033
-33313038646531356461653831336634613339393935653031643233313431393736636634623335
-62633231663836363633393465653366336430333665373130643136616661373138626639313164
-30663265646264613965333032333764333239653761306233636131373465626163623039653161
-61613931653362633962663931313863373339626231303331366534386262343830326265383665
-34323334313164646435353434353439393831333731346665363466353165316430666333363961
-66363930303832643561623963366366373365323438356164343061623463353239386165633334
-38383632366463646133653963306530666434633835626235356337333936333532366365663839
-34306264643033653539626561383833666561623231386635656238353333663433653465643466
-35666135653336636530333339336635393638636663663630653831646639623966373566343432
-353765663763363538363138323838656134
+31393835616565666564303839383465383961346561356632396536643730353765316663343835
+3735633766316664393535653937303634343036663032360a643137313464383732303231666538
+35326438666537323561643161353638323933363064303235376238353362396331383464666163
+3562656464643061380a643637383363386237316435386531306466336266643261336664663234
+34623434653263316133656630383032333630323338333965653933373964623966376434333332
+65653738653263623033303830616235343363633166313466373865613830376131363137346636
+32656463646161663662323832336336343934623530336363343665363565326532333135663730
+32346537333730313031643635343534376535373030373262363637636563313763623862383563
+61306230373732646536666136336138613864333838353164343730386133326330653137393864
+32653633396234623737623065646438323431316463656362373732376431646539303538313036
+39363931313831623361393161653237666365393738366331643232666634363231663664313263
+38336439383238613639633232373237323133623032646265663237363330623634356433666238
+37616131396136386336386566313536393639363331653462303939346530646435303662396634
+65356136313037316138376133333365646330646536343162336135343164643432373466323961
+65313065363030336139623834333734323566633539363461306562346533376239616564383033
+31303933366439613035623261333461336436336263663663626139343564623062323861386561
+62393464353333353361613235333136666261323932623733636137323765616636656634383930
+66633462653662633465386533336561363236623363663634303563313234326430373465366462
+66636335623661343065386563386632326261336237303162633139646535396339383132313636
+64303336383632303863633130356239616362373663643163656164653338646232613265383361
+31343137306230396432313132383132636131363761656462393464626534633462653862666330
+38626361343465643339613632316163323036643665373762623664343735656261656662383831
+30396432653832663665333361366132396132663966313064653031643935396430656634336463
+36306331323239313830643363626464316637613361383632643934666332376233633862616566
+34663365333631333565363065653236313034633839313562343265373561633938663738383031
+34303031646239366366643030633738356262393764626433313166373765346266633665646634
+31363833613066316561623939313530383831366466316136353634663539303434386639346361
+61643338366631303431653531316363353936643235303439666466626466353365633130336336
+32623538356432303536333937343663613564653730666566616637386136613037303637633564
+66643630303066363265653365663236343238346261373964323561666231643865346436643466
+38626466636162373135393661336439343933353764393533626538303362356131376136313265
+64313339616534356439626536303236626432643862323263323239633438323535376431613762
+62393364323230653832616336393865316531653132353339616563653736653334633862393237
+38303462333363386338636134633538343061376639613434386138396335373734323431646565
+61626362366463353033643733346234633061653931343032656637356636653136646466396161
+34336562666331376531306537363565666638303565386564336435656634356163313331386363
+61663337363030613934646237383636663038326161396464353538356337363366303461313363
+3135366664613865356133636636666632356564393739366632
diff --git a/deployment/environments/certs/vault-certs.yml.example b/deployment/environments/certs/vault-certs.yml.example
index d9d1c311db6666c0c99704ec25e88e7a3e563249..be91ec9f5098a63d1439320c42c1490252725020 100644
--- a/deployment/environments/certs/vault-certs.yml.example
+++ b/deployment/environments/certs/vault-certs.yml.example
@@ -1,10 +1,10 @@
-server_cas_server_key: changeme
+---
server_security_internal_key: changeme
server_iam_internal_key: changeme
server_iam_external_key: changeme
+server_cas_server_key: changeme
server_ui_portal_key: changeme
server_ui_identity_key: changeme
server_ui_identity_admin_key: changeme
server_reverse_key: changeme
-client_client_iam_reverse_key: changeme
-client_client_iam_internal_iam_external_key: changeme
+client_client_external_customer_x_key: changeme
diff --git a/deployment/environments/certs_vitam/access-external.p12 b/deployment/environments/certs_vitam/access-external.p12
deleted file mode 100644
index d78e47412a2437feaa20d0a66ea8f51e26e5c835..0000000000000000000000000000000000000000
Binary files a/deployment/environments/certs_vitam/access-external.p12 and /dev/null differ
diff --git a/deployment/environments/certs_vitam/ingest-external.p12 b/deployment/environments/certs_vitam/ingest-external.p12
deleted file mode 100644
index d78e47412a2437feaa20d0a66ea8f51e26e5c835..0000000000000000000000000000000000000000
Binary files a/deployment/environments/certs_vitam/ingest-external.p12 and /dev/null differ
diff --git a/deployment/environments/certs_vitam/keystore_ihm-demo.p12 b/deployment/environments/certs_vitam/keystore_ihm-demo.p12
deleted file mode 100644
index d78e47412a2437feaa20d0a66ea8f51e26e5c835..0000000000000000000000000000000000000000
Binary files a/deployment/environments/certs_vitam/keystore_ihm-demo.p12 and /dev/null differ
diff --git a/deployment/environments/certs_vitam/truststore_external.jks b/deployment/environments/certs_vitam/truststore_external.jks
deleted file mode 100644
index 2ee88844dcd75a0c6b3b2c2fcb9c509ce797a307..0000000000000000000000000000000000000000
Binary files a/deployment/environments/certs_vitam/truststore_external.jks and /dev/null differ
diff --git a/deployment/environments/group_vars/all/vault-keystores.yml b/deployment/environments/group_vars/all/vault-keystores.yml
index b94e4fbdb41d3d5a487f90c9160d73f0e6893187..21b239222f27016fb54a5a33a08eb76ac646fa27 100644
--- a/deployment/environments/group_vars/all/vault-keystores.yml
+++ b/deployment/environments/group_vars/all/vault-keystores.yml
@@ -1,45 +1,31 @@
$ANSIBLE_VAULT;1.1;AES256
-62366163626231306231633265663334366531313432303364333864653433636535353364326465
-3230346135313735316539323636383462326661373564300a323439376466353635366163366537
-64353432323731633866383838343533643639646232623638353764653462303634613365343466
-6535613266666332650a613663393837353166346164333765363836393837343735376433326662
-66323930623734386565386330393530393562383336343661613235666436393662393834616135
-63613237353737623737343463626336323037653164343463316234303634346135653963623062
-37653862316530376436636532323039373062303230626261363439373032656536386336386534
-37623736393633623261346237346165336537333935643735613537616534343264353535663431
-62396435333130396662636636633239333130363364666236333561613161316430313830613436
-37666233396331383062633935353661646534343936333731626438653236623135653734306533
-35373364306465396135343964323964393366353637316463303437363866313533326432336331
-30323532393964353565643464663938616163613962613530383431356638366539643765613837
-64353030396635656437663630306630313032363536626334313733636437633134373566663934
-62626133636565386162323564393031376137663465323761356662363439613036626134623637
-31306138373034353166313061656263396337356566343964613933333161336339623039633838
-31343833363163623237613564626339613330306238313566376264343865343533396439356135
-30666636656237396437623330656266363533316665643066376339623939656630616535343236
-64313666336235616532383765373331346135366632376266303832623966323339313034663963
-32326435623464636332323066353665623862353761376265373833633531636636326637306236
-30653230326233656536343031323930303563393939636166303439663838636432626232363064
-36383266396562666262313734653065333235666434613639383634636661343135366563363730
-34656631333031633561363163656434343964383133323734393863383536383832303061303265
-31353664386666326462643464323466646431646365376635326662386263333830646561373365
-37393937646139343633333865666663653830386234306234666534333362663061653633303464
-32313462313465396639356239363133343463366431343461383164303334306363656631366537
-37366536313335613131623764643661373938356432326436656533373330356238303165633762
-32323861396339313963356439353739363864356131626532393633396366323937663464316663
-34663831336465313534373463346331653636386264616363303861303865633830343462313538
-30653933663633363637653032393135656562323434313039643534386133616236653962393134
-63346435313365366330316632373762346534343464343633303937633333323662396434326638
-64623963393433323163326363343864343230313061393561316635383837653938613831323364
-33306165313661643733326537643066363865353937663165343735613138386539663264663538
-66363636636636346262663430623730623132363931373861333733366662623830323538616463
-32626633653836393561313934363662626239316661656561383533643038393031363830383766
-38306263383262306362646663633133363235396132636663323836323235306264393435326431
-36323265616363616331613865303464633834666130633335633063363233316166653934386532
-39326333383535643031653039373933653836313237356535313033333330333065386630303335
-66323930333733636535616565326634646538323037356235613934326134376462643936623534
-33363931323930613132316134333662623962656136656134346530363936376538316532653732
-38656538323462383264313931303961393862353566393733333961616639643038646462386263
-36653230626335363865303961663237376464386533653833376265656137313335346637366637
-35383336396666653435613063336361373837663536393561363266656630663233353438656430
-38663265633038356565393463303765373664383064626632646165643665643031656130323764
-38663339303437336131
+64326564623933393635663337636663303532616439306165343337363461353939643431313165
+3238396530356461643034383466653836386630336331350a376565363362393364326331346463
+38396263636234633435333762613466393365343830393931396536613761303036333437363439
+3766656630336233660a303434333465373464363661396365646235343061353138333266353964
+62613362653665366436616361653236353530356237313233326265316633633661393936666663
+65316662653234613665353362373530343737343838666338626138346634376532326562383466
+35653761336531613565663435633033666366383732326163613461636335363466396664386263
+63393830383739333639306664666662396633613930356532333064356165393937306266396136
+31343363383331386138643435336464336163613962323138303865666566316438663233653638
+66343732653236353266393265326464663834313637643837613364636637333062386239386236
+30366361333232303336323061383338646435356435333663366663303734636537303865336534
+37333664383532383134326432633934343731383462366165643866346436326261303965333934
+63613432323931616139306336366439633366343732376265666163336664393735316537666663
+30663734373236633133663166316632643636306432333661383163323764303739373138616630
+62363934613332373835306331383865383130643863633138646231643538333232633334353434
+61663635386634666637366262346663316637346165616638333731393934306634376136616163
+31396162393630613232353132323933613737386631623262396538623336323332616134383334
+63393730623532343733353536656265383762373765353535663935393539393862333963646361
+34373335626531353161666634376264646638306432626263313437363833333862383464613838
+61616238653062353331643434333531643738643730623236336635363738643830323536666634
+32653565306636336539333331306231636137646433336535383862303537393864396535613135
+62383235666538343234323133633261396132636231383934386239663332346132383734616632
+30356631643164323233653861393265306165396163616433336461363133633038383661316331
+34633733616636626266323731633433386438383439396138373837613637343464316166333061
+38633134373462336335633037343131636263633333613065633039336562653866616131376632
+66656661616237616561626230656235313139656636333031323333373631316131643362336365
+61353163373230373330636532353937623764353534323864343530613961666539343036343535
+37323433633633663865363061386533346132353338376464303035373839316637366565323232
+64636563353737663661333739343339326131333132376238333036346365393733383935383431
+3466626165626132343635316231373963623539613631396465
diff --git a/deployment/environments/group_vars/all/vault-keystores.yml.example b/deployment/environments/group_vars/all/vault-keystores.yml.example
old mode 100755
new mode 100644
index dc221535bbc38142e41f13be0a62ad4e07533206..47311cf889563ac1ceda1c31d11db6fcbeac84d6
--- a/deployment/environments/group_vars/all/vault-keystores.yml.example
+++ b/deployment/environments/group_vars/all/vault-keystores.yml.example
@@ -1,27 +1,14 @@
---
-
-keystores:
- server:
- offer: change-it_817NR75vWsZtgAgJ
- access_external: change-it_MZFD2YM4279miitu
- ingest_external: change-it_a2C74cQhy84BLWCr
- ihm_recette: change-it_4FWYVK1347mxjGfe
- ihm_demo: change-it_6kQ16eyDY7QPS9fy
- client_external:
- ihm_demo: change-it_GT38hhTiA32x1PLy
- gatling: change-it_2sBC5ac7NfGF9Qj7
- ihm_recette: change-it_dAZ9Eq65UhDZd9p4
- reverse: change-it_e5XTzb5yVPcEX464
- vitam_admin_int: change-it_z6xZe5gDu7nhDZd9
- client_storage:
- storage: change-it_647D7LWiyM6qYMnm
- timestamping:
- secure_logbook: change-it_Mn9Skuyx87VYU62U
- secure_storage: change-it_e5gDu9Skuy84BLW9
-truststores:
- server: change-it_xNe4JLfn528PVHj7
- client_external: change-it_J2eS93DcPH1v4jAp
- client_storage: change-it_HpSCa31aG8ttB87S
-grantedstores:
- client_external: change-it_LL22HkmDCA2e2vj7
- client_storage: change-it_R3wwp5C8KQS76Vcu
+keystores_server_cas_server: changeme
+keystores_server_iam_external: changeme
+keystores_server_iam_internal: changeme
+keystores_server_reverse: changeme
+keystores_server_security_internal: changeme
+keystores_server_ui_identity: changeme
+keystores_server_ui_identity_admin: changeme
+keystores_server_ui_portal: changeme
+keystores_client_external_customer_x: changeme
+truststores_client_external: changeme
+keystores_client_vitam_vitamui: changeme
+truststores_client_vitam: changeme
+truststores_server: changeme
diff --git a/deployment/environments/group_vars/all/vault_mongodb.yml b/deployment/environments/group_vars/all/vault_mongodb.yml
index fb3ccf2d2868ba712d0affb803dc144ca8dffc83..83a4cee2076399b3a2483a3a0c94441fa6c99955 100755
--- a/deployment/environments/group_vars/all/vault_mongodb.yml
+++ b/deployment/environments/group_vars/all/vault_mongodb.yml
@@ -10,8 +10,10 @@ mongodb:
password: azerty
roles: '[{ role: "userAdminAnyDatabase", db: "admin" }, { role: "backup", db: "admin" }, { role: "restore", db: "admin" }, { role: "dbAdminAnyDatabase", db: "admin" }, { role: "readWriteAnyDatabase", db: "admin" }, { role: "clusterMonitor", db:"admin"}, { role: "root", db:"admin"}]'
localadmin:
- user: "vitamdb-localadmin"
- password: qwerty
+ db: admin
+ user: "mongod_dbuser_localadmin"
+ password: "mongod_dbpwd_localadmin"
+ roles: '[{ role: "clusterAdmin", db: "admin" },{ role: "dbAdminAnyDatabase", db: "admin" },{ role: "readWriteAnyDatabase", db: "admin" }]'
system:
user: "vitamdb-system"
password: azerty
@@ -30,3 +32,8 @@ mongodb:
user: cas
password: cas
roles: '[{ role: "readWrite", db: "cas" }]'
+ versioning:
+ db: versioning
+ user: versioning
+ password: versioning
+ roles: '[{ role: "readWrite", db: "versioning" }]'
diff --git a/deployment/environments/group_vars/all/vitam_vars.yml b/deployment/environments/group_vars/all/vitam_vars.yml
index 67a9ac1ef6066ed18d65f7e00f459421d0629e36..f774dfec7d890ee5bf66c139ca5bdd071557f112 100755
--- a/deployment/environments/group_vars/all/vitam_vars.yml
+++ b/deployment/environments/group_vars/all/vitam_vars.yml
@@ -30,58 +30,9 @@ admin_external_url: "https://{{ hostvars[groups['hosts_access_external'][0]].ip_
security_internal_url: "http://{{ hostvars[groups['hosts_security_internal'][0]].ip_admin }}:{{ vitam_vars.security_internal.port_admin }}"
security_business_url: "http://{{ hostvars[groups['hosts_security_internal'][0]].ip_admin }}:{{ vitam_vars.security_internal.port_service }}"
-# Vitam contexts
-vitam_contexts_config:
- vitamui:
- security_profile: "vitamui-security-profile"
- context: "vitamui-context"
- enable_control: false
- certificate_file: "{{ pki_dir }}/vitam/client-external/vitamui-vitam-external.crt"
- tenants: "{{ vitam_tenant_vitamui }}"
- permissions: all
-
-
vitam_certs:
- ingest_external:
- filename: "ingest-external.p12"
- password: azerty4
- truststore_filename: "truststore_external.jks"
- password_truststore: azerty10
- access_external:
- filename: "access-external.p12"
- password: azerty4
- truststore_filename: "truststore_external.jks"
- password_truststore: azerty10
-
-
-# example:
-# security_profile: "example-security-profile"
-# context_id: "example-context"
-# enable_control: false
-# certificate_file: "{{ pki_dir }}/vitam/client-external/vitamui-vitam-external.crt"
-# tenants: [100,101,102]
-# permissions:
-# - "dipexport:id:dip:read"
-# - "dipexport:create"
-# - "dipexportv2:create"
-# - "objects:read"
-# - "units:id:objects:read:binary"
-# - "units:id:objects:read:json"
-# - "units:id:read:json"
-# - "units:id:update"
-# - "units:read"
-# - "units:update"
-# - "unitsWithInheritedRules:read"
-# - "operations:id:read"
-# - "operations:id:read:status"
-# - "operations:read"
-# - "ingests:create"
-# - "ingests:id:archivetransfertreply:read"
-# - "ingests:id:manifests:read"
-# - "logbookobjectslifecycles:id:read"
-# - "logbookoperations:id:read"
-# - "logbookoperations:read"
-# - "logbookunitlifecycles:id:read"
-# - "storageaccesslog:read:binary"
-#
-#
+ vitamui:
+ filename: "keystore_vitamui.p12"
+ password: "{{ keystores_client_vitam_vitamui }}"
+ truststore_filename: "truststore_vitam.jks"
+ password_truststore: "{{ truststores_client_vitam }}"
diff --git a/deployment/environments/group_vars/all/vitamui_vars.yml b/deployment/environments/group_vars/all/vitamui_vars.yml
index 146a699b72a6dcd44c3fbcc7000811192173fdde..1e47dbe9b29ed191c8a4340d342cc46f311255de 100755
--- a/deployment/environments/group_vars/all/vitamui_vars.yml
+++ b/deployment/environments/group_vars/all/vitamui_vars.yml
@@ -3,6 +3,8 @@
single_vm_hostnames: ['localhost']
vitamui_env_name: "{{ vitam_site_name }}"
+pki_dir: "{{ inventory_dir }}/certs"
+
vitamui_defaults:
folder:
root_path: "/vitamui"
@@ -41,6 +43,7 @@ vitamui:
identity:
host: "identity.service.consul"
vitamui_component: "ui-identity"
+ vitamui_component_type: "ui"
package_name: "vitamui-ui-identity"
service_name: "vitamui-ui-identity"
store_name: "ui-identity"
@@ -58,6 +61,7 @@ vitamui:
identity_admin:
host: "identity-admin.service.consul"
vitamui_component: "ui-identity-admin"
+ vitamui_component_type: "ui"
package_name: "vitamui-ui-identity-admin"
service_name: "vitamui-ui-identity-admin"
store_name: "ui-identity-admin"
@@ -75,6 +79,7 @@ vitamui:
portal:
host: "portal.service.consul"
vitamui_component: "ui-portal"
+ vitamui_component_type: "ui"
package_name: "vitamui-ui-portal"
service_name: "vitamui-ui-portal"
store_name: "ui-portal"
@@ -92,6 +97,7 @@ vitamui:
iam_external:
host: "iam-external.service.consul"
vitamui_component: "iam-external"
+ vitamui_component_type: "external"
package_name: "vitamui-iam-external"
store_name: "iam-external"
service_name: "vitamui-iam-external"
@@ -109,6 +115,7 @@ vitamui:
iam_internal:
host: "iam-internal.service.consul"
vitamui_component: "iam-internal"
+ vitamui_component_type: "internal"
package_name: "vitamui-iam-internal"
store_name: "iam-internal"
service_name: "vitamui-iam-internal"
@@ -131,6 +138,7 @@ vitamui:
cas_server:
host: "cas-server.service.consul"
vitamui_component: "cas-server"
+ vitamui_component_type: "external"
package_name: "vitamui-cas-server"
store_name: "cas-server"
service_name: "vitamui-cas-server"
@@ -149,6 +157,7 @@ vitamui:
security_internal:
host: "security-internal.service.consul"
vitamui_component: "security-internal"
+ vitamui_component_type: "internal"
package_name: "vitamui-security-internal"
store_name: "security-internal"
service_name: "vitamui-security-internal"
@@ -170,7 +179,7 @@ vitamui_platform_informations:
company_name: "system company"
default_email_domain: "change-it.fr"
email_domains: "change-it.fr"
- default_password: '$2a$10$5X2kf8hP52sA6HKe2t2vm.ulwx9bs3HI/QT/tg1k5/fQu0WFtSoUW' # Change-it0!
+ default_password: '$2a$10$NV/LI.Uw/BDBTdxBgr8EP.Zn1mCh8vbK746Fy7BMaWk7JgHw6GwVu' # Change-it0!
address:
street: change-it
zip_code: change-it
@@ -180,8 +189,9 @@ vitamui_platform_informations:
cas_tenant: -1
first_customer_tenant: 9
-mongodb_vitamuiScripts_version:
- - "1.0.0"
- - "1.0.1"
-
-mongod_addedScripts: []
+mongodb:
+ included_scripts:
+ - ".*"
+ excluded_scripts:
+ - ".*_dev.js"
+ - ".*_demo.js"
diff --git a/deployment/environments/keystores/client-external/keystore_customer_x.p12 b/deployment/environments/keystores/client-external/keystore_customer_x.p12
new file mode 100644
index 0000000000000000000000000000000000000000..7f300240776cad9065b0f8c2a132cee6b5e51d00
Binary files /dev/null and b/deployment/environments/keystores/client-external/keystore_customer_x.p12 differ
diff --git a/deployment/environments/keystores/client-external/truststore_external.jks b/deployment/environments/keystores/client-external/truststore_external.jks
new file mode 100644
index 0000000000000000000000000000000000000000..ba8179ebc0658dbc6c37fc8ed7247cb8aa4b819f
Binary files /dev/null and b/deployment/environments/keystores/client-external/truststore_external.jks differ
diff --git a/deployment/environments/keystores/client-iam/keystore_reverse.p12 b/deployment/environments/keystores/client-iam/keystore_reverse.p12
deleted file mode 100644
index a47221f617d88fa16b8b2c147446d40f58c5aaf0..0000000000000000000000000000000000000000
Binary files a/deployment/environments/keystores/client-iam/keystore_reverse.p12 and /dev/null differ
diff --git a/deployment/environments/keystores/client-iam/truststore_iam.jks b/deployment/environments/keystores/client-iam/truststore_iam.jks
deleted file mode 100644
index 8980f3408029fab4398efb451840c8f080ffa2d0..0000000000000000000000000000000000000000
Binary files a/deployment/environments/keystores/client-iam/truststore_iam.jks and /dev/null differ
diff --git a/deployment/environments/keystores/client-vitam/keystore_vitamui.p12 b/deployment/environments/keystores/client-vitam/keystore_vitamui.p12
new file mode 100644
index 0000000000000000000000000000000000000000..a74bbb90d9e9c4ec58d23f6a1d4a7c307f88d78a
Binary files /dev/null and b/deployment/environments/keystores/client-vitam/keystore_vitamui.p12 differ
diff --git a/deployment/environments/keystores/client-vitam/truststore_vitam.jks b/deployment/environments/keystores/client-vitam/truststore_vitam.jks
new file mode 100644
index 0000000000000000000000000000000000000000..bc7b812a3170b08b0ae908b4e8f083b5a1ff6d30
Binary files /dev/null and b/deployment/environments/keystores/client-vitam/truststore_vitam.jks differ
diff --git a/deployment/environments/keystores/server/localhost/keystore_cas-server.jks b/deployment/environments/keystores/server/localhost/keystore_cas-server.jks
deleted file mode 100644
index 561543befc318633dbd42c703135e44422d69c5c..0000000000000000000000000000000000000000
Binary files a/deployment/environments/keystores/server/localhost/keystore_cas-server.jks and /dev/null differ
diff --git a/deployment/environments/keystores/server/localhost/keystore_iam-external.jks b/deployment/environments/keystores/server/localhost/keystore_iam-external.jks
deleted file mode 100644
index b660a0a161ecbfb131ba5351b3367dea9890f9f6..0000000000000000000000000000000000000000
Binary files a/deployment/environments/keystores/server/localhost/keystore_iam-external.jks and /dev/null differ
diff --git a/deployment/environments/keystores/server/localhost/keystore_iam-internal.jks b/deployment/environments/keystores/server/localhost/keystore_iam-internal.jks
deleted file mode 100644
index 27c963fb8e714b9b21b8af1c92fd6cdf7dda37e7..0000000000000000000000000000000000000000
Binary files a/deployment/environments/keystores/server/localhost/keystore_iam-internal.jks and /dev/null differ
diff --git a/deployment/environments/keystores/server/localhost/keystore_reverse.jks b/deployment/environments/keystores/server/localhost/keystore_reverse.jks
deleted file mode 100644
index c3fb8ab0138f99a2f1fb314d31b6e21c06424bca..0000000000000000000000000000000000000000
Binary files a/deployment/environments/keystores/server/localhost/keystore_reverse.jks and /dev/null differ
diff --git a/deployment/environments/keystores/server/localhost/keystore_security-internal.jks b/deployment/environments/keystores/server/localhost/keystore_security-internal.jks
deleted file mode 100644
index d5dbada0437a0d4a5856605fc7797ea2cb3da251..0000000000000000000000000000000000000000
Binary files a/deployment/environments/keystores/server/localhost/keystore_security-internal.jks and /dev/null differ
diff --git a/deployment/environments/keystores/server/localhost/keystore_ui-identity-admin.jks b/deployment/environments/keystores/server/localhost/keystore_ui-identity-admin.jks
deleted file mode 100644
index bd1ee0b4a66a945cdb3b128704750167d8019725..0000000000000000000000000000000000000000
Binary files a/deployment/environments/keystores/server/localhost/keystore_ui-identity-admin.jks and /dev/null differ
diff --git a/deployment/environments/keystores/server/localhost/keystore_ui-identity.jks b/deployment/environments/keystores/server/localhost/keystore_ui-identity.jks
deleted file mode 100644
index e8363de26e0be7f013e5174902c3d5a263fc6fd9..0000000000000000000000000000000000000000
Binary files a/deployment/environments/keystores/server/localhost/keystore_ui-identity.jks and /dev/null differ
diff --git a/deployment/environments/keystores/server/localhost/keystore_ui-portal.jks b/deployment/environments/keystores/server/localhost/keystore_ui-portal.jks
deleted file mode 100644
index e6f3b0c900c58d2138eb8558ad20c684bbbf27d0..0000000000000000000000000000000000000000
Binary files a/deployment/environments/keystores/server/localhost/keystore_ui-portal.jks and /dev/null differ
diff --git a/deployment/environments/keystores/server/truststore_server.jks b/deployment/environments/keystores/server/truststore_server.jks
index 2f2ffb2b31195d97c2375a942ab43c794dbebcde..69cd43791efa6d0b21fe00917487bb8a012cde03 100644
Binary files a/deployment/environments/keystores/server/truststore_server.jks and b/deployment/environments/keystores/server/truststore_server.jks differ
diff --git a/deployment/environments/keystores/server/vitamui-env/keystore_cas-server.jks b/deployment/environments/keystores/server/vitamui-env/keystore_cas-server.jks
new file mode 100644
index 0000000000000000000000000000000000000000..5c80a21174d3a8d0e55ee0f7f88db6e107693739
Binary files /dev/null and b/deployment/environments/keystores/server/vitamui-env/keystore_cas-server.jks differ
diff --git a/deployment/environments/keystores/server/vitamui-env/keystore_iam-external.jks b/deployment/environments/keystores/server/vitamui-env/keystore_iam-external.jks
new file mode 100644
index 0000000000000000000000000000000000000000..262d0bdd9d3bb5f1a096fd4a0514f905853d08d1
Binary files /dev/null and b/deployment/environments/keystores/server/vitamui-env/keystore_iam-external.jks differ
diff --git a/deployment/environments/keystores/server/vitamui-env/keystore_iam-internal.jks b/deployment/environments/keystores/server/vitamui-env/keystore_iam-internal.jks
new file mode 100644
index 0000000000000000000000000000000000000000..985ebdca48e8ae0419a5ed83c59346a6e5d86c01
Binary files /dev/null and b/deployment/environments/keystores/server/vitamui-env/keystore_iam-internal.jks differ
diff --git a/deployment/environments/keystores/server/vitamui-env/keystore_reverse.jks b/deployment/environments/keystores/server/vitamui-env/keystore_reverse.jks
new file mode 100644
index 0000000000000000000000000000000000000000..ddd5e781359e0a30a03d34cf2993e1f7d7a1a9cd
Binary files /dev/null and b/deployment/environments/keystores/server/vitamui-env/keystore_reverse.jks differ
diff --git a/deployment/environments/keystores/server/vitamui-env/keystore_security-internal.jks b/deployment/environments/keystores/server/vitamui-env/keystore_security-internal.jks
new file mode 100644
index 0000000000000000000000000000000000000000..7f74e244266d4a329dcf489dd36837d455de3960
Binary files /dev/null and b/deployment/environments/keystores/server/vitamui-env/keystore_security-internal.jks differ
diff --git a/deployment/environments/keystores/server/vitamui-env/keystore_ui-identity-admin.jks b/deployment/environments/keystores/server/vitamui-env/keystore_ui-identity-admin.jks
new file mode 100644
index 0000000000000000000000000000000000000000..7055d554e5486b81e3b694b6cf965213e25ce297
Binary files /dev/null and b/deployment/environments/keystores/server/vitamui-env/keystore_ui-identity-admin.jks differ
diff --git a/deployment/environments/keystores/server/vitamui-env/keystore_ui-identity.jks b/deployment/environments/keystores/server/vitamui-env/keystore_ui-identity.jks
new file mode 100644
index 0000000000000000000000000000000000000000..7bea4cf819f0a7240986694bd843ccd984caf80a
Binary files /dev/null and b/deployment/environments/keystores/server/vitamui-env/keystore_ui-identity.jks differ
diff --git a/deployment/environments/keystores/server/vitamui-env/keystore_ui-portal.jks b/deployment/environments/keystores/server/vitamui-env/keystore_ui-portal.jks
new file mode 100644
index 0000000000000000000000000000000000000000..e63621c9df375f643c46ab50e2c2fb1f6b960b58
Binary files /dev/null and b/deployment/environments/keystores/server/vitamui-env/keystore_ui-portal.jks differ
diff --git a/deployment/generate_stores.sh b/deployment/generate_stores.sh
index a589f7c4b2508f9d1ef0dd8969001fd85d6c771e..ee97669c95cd4cfee6c78526c25da63813b6d19c 100755
--- a/deployment/generate_stores.sh
+++ b/deployment/generate_stores.sh
@@ -5,390 +5,10 @@ set -e
############################# Includes ##############################
######################################################################
-. $(dirname $0)/pki/scripts/lib/functions.sh
-
-######################################################################
-############################# Functions ##############################
-######################################################################
-
-# Pour incorporer un certificat dans un store
-function addCrtInJks {
- local STORE="${1}"
- local MDP_STORE="${2}"
- local CERTIFICAT="${3}"
- local ALIAS="${4}"
-
- keytool -import -keystore ${STORE} \
- -file ${CERTIFICAT} \
- -storepass ${MDP_STORE} \
- -keypass ${MDP_STORE} \
- -noprompt \
- -alias ${ALIAS}
-}
-
-# Pour incorporer une CA dans un store
-function addCaInJks {
- local STORE="${1}"
- local MDP_STORE="${2}"
- local CERTIFICAT="${3}"
- local ALIAS="${4}"
-
- keytool -import -trustcacerts -keystore ${STORE} \
- -file ${CERTIFICAT} \
- -storepass ${MDP_STORE} \
- -keypass ${MDP_STORE} \
- -noprompt \
- -alias ${ALIAS}
-}
-
-# Génération d'un p12 et d'un pem depuis un certificat
-function crtKeyToP12 {
- local BASEFILE="${1}"
- local MDP_KEY="${2}"
- local KEYPAIR_NAME="${3}"
- local MDP_P12="${4}"
- local TARGET_FILE="${5}"
-
- openssl pkcs12 -export \
- -inkey "${BASEFILE}/${KEYPAIR_NAME}.key" \
- -in "${BASEFILE}/${KEYPAIR_NAME}.crt" \
- -name "${KEYPAIR_NAME}" \
- -passin pass:"${MDP_KEY}" \
- -out "${BASEFILE}/${KEYPAIR_NAME}.p12" \
- -passout pass:"${MDP_P12}"
-
- if [ "${BASEFILE}/${KEYPAIR_NAME}.p12" != "${TARGET_FILE}" ]; then
- mkdir -p $(dirname ${TARGET_FILE})
- mv "${BASEFILE}/${KEYPAIR_NAME}.p12" "${TARGET_FILE}"
- fi
-}
-
-# Pour incorporer un certificat p12 dans un keystore jks
-function addP12InJks {
- local JKS_KEYSTORE="${1}"
- local JKS_KEYSTORE_PASSWORD="${2}"
- local P12_KEYSTORE="${3}"
- local P12_STORE_PASSWORD="${4}"
-
- mkdir -p "$(dirname ${JKS_KEYSTORE})"
-
- keytool -importkeystore \
- -srckeystore ${P12_KEYSTORE} -srcstorepass ${P12_STORE_PASSWORD} -srcstoretype PKCS12 \
- -destkeystore ${JKS_KEYSTORE} -storepass ${JKS_KEYSTORE_PASSWORD} \
- -keypass ${JKS_KEYSTORE_PASSWORD} -deststorepass ${JKS_KEYSTORE_PASSWORD} \
- -destkeypass ${JKS_KEYSTORE_PASSWORD} -deststoretype JKS
-}
-
-# Renvoie la clé du keystore pour un composant donné
-function getKeystorePassphrase {
- local YAML_PATH="${1}"
- local RETURN_CODE=0
-
- if [ ! -f "${VAULT_KEYSTORES}" ]; then
- return 1
- fi
-
- # Decrypt vault file
- ansible-vault decrypt ${VAULT_KEYSTORES} ${ANSIBLE_VAULT_PASSWD}
- if [ ${?} != 0 ]; then
- pki_logger "ERROR" "Failed to decrypt ${VAULT_KEYSTORES}"
- pki_logger "ERROR" "Please check if the vault password is correct in vault_pass.txt file"
- return 1
- fi
-
- # Try/catch/finally stuff with bash (to make sure the vault stay encrypted)
- {
- # Try
- # Generate bash vars with the yml file:
- # $certKey_blah
- # $certKey_blahblah
- # $certKey_........
- eval $(parse_yaml ${VAULT_KEYSTORES} "storeKey_") && \
- # Get the value of the variable we are interested in
- # And store it into another var: $CERT_KEY
- eval $(echo "STORE_KEY=\$storeKey_$(echo ${YAML_PATH} |sed 's/[\.-]/_/g')") && \
- # Print the $CERT_KEY var
- echo "${STORE_KEY}"
- } || {
- # Catch
- RETURN_CODE=1
- pki_logger "ERROR" "Error while reading keystore passphrase for ${YAML_PATH} in keystores vault: ${VAULT_KEYSTORES}"
- } && {
- # Finally
- if [ "${STORE_KEY}" == "" ]; then
- pki_logger "ERROR" "Error while retrieving the store key: ${YAML_PATH}"
- RETURN_CODE=1
- fi
- ansible-vault encrypt ${VAULT_KEYSTORES} ${ANSIBLE_VAULT_PASSWD}
- return ${RETURN_CODE}
- }
-}
-
-# Generate a trustore
-function generateTrustStore {
- local TRUSTORE_TYPE=${1}
- local CLIENT_TYPE=${2}
-
- if [ "${TRUSTORE_TYPE}" != "server" ] && [ ${TRUSTORE_TYPE} != "client" ]; then
- pki_logger "ERROR" "Invalid trustore type: ${TRUSTORE_TYPE}"
- return 1
- fi
-
- # Set truststore path and delete the store if already exists
- if [ "${TRUSTORE_TYPE}" == "client" ]; then
- JKS_TRUST_STORE=${REPERTOIRE_KEYSTORES}/client-${CLIENT_TYPE}/truststore_${CLIENT_TYPE}.jks
- TRUST_STORE_PASSWORD=$(getKeystorePassphrase "truststores_client_${CLIENT_TYPE}")
- elif [ "${TRUSTORE_TYPE}" == "server" ]; then
- JKS_TRUST_STORE=${REPERTOIRE_KEYSTORES}/server/truststore_server.jks
- TRUST_STORE_PASSWORD=$(getKeystorePassphrase "truststores_server")
- else
- pki_logger "ERROR" "Invalid trustore type: ${TRUSTORE_TYPE}"
- return 1
- fi
- # echo "!!!! ${TRUST_STORE_PASSWORD} !!!!"
-
- if [ -f "${JKS_TRUST_STORE}" ]; then
- rm -f "${JKS_TRUST_STORE}"
- fi
-
- # Add the public client ca certificates to the truststore
- pki_logger "Ajout des certificats client dans le truststore"
- if [ "${TRUSTORE_TYPE}" == "client" ]; then
-
- for CRT_FILE in $(ls ${REPERTOIRE_CERTIFICAT}/client-${CLIENT_TYPE}/ca/*.crt); do
- pki_logger "Ajout de ${CRT_FILE} dans le truststore ${CLIENT_TYPE}"
- ALIAS="client-${CLIENT_TYPE}-$(basename ${CRT_FILE})"
- addCrtInJks ${JKS_TRUST_STORE} \
- ${TRUST_STORE_PASSWORD} \
- ${CRT_FILE} \
- ${ALIAS}
- done
-
- fi
-
- # Add the server certificates to the truststore
- pki_logger "Ajout des certificats serveur dans le truststore"
- for CRT_FILE in $(ls ${REPERTOIRE_CERTIFICAT}/server/ca/*.crt); do
- pki_logger "Ajout de ${CRT_FILE} dans le truststore ${CLIENT_TYPE}"
- ALIAS="server-$(basename ${CRT_FILE})"
- addCrtInJks ${JKS_TRUST_STORE} \
- ${TRUST_STORE_PASSWORD} \
- ${CRT_FILE} \
- ${ALIAS}
- done
-}
-
-function generateHostKeystore {
- local COMPONENT="${1}"
- local JKS_KEYSTORE="${2}"
- local P12_KEYSTORE="${3}"
- local CRT_KEY_PASSWORD="${4}"
- local JKS_PASSWORD="${5}"
- local TMP_P12_PASSWORD="${6}"
-
- if [ -f ${JKS_KEYSTORE} ]; then
- rm -f ${JKS_KEYSTORE}
- fi
-
- pki_logger "Génération du p12"
- crtKeyToP12 $(dirname ${P12_KEYSTORE}) \
- ${CRT_KEY_PASSWORD} \
- ${COMPONENT} \
- ${TMP_P12_PASSWORD} \
- ${P12_KEYSTORE}
-
- pki_logger "Génération du jks"
- addP12InJks ${JKS_KEYSTORE} \
- ${JKS_PASSWORD} \
- ${P12_KEYSTORE} \
- ${TMP_P12_PASSWORD}
-
- pki_logger "Suppression du p12"
- if [ -f ${P12_KEYSTORE} ]; then
- rm -f ${P12_KEYSTORE}
- fi
-}
+. $(dirname $0)/pki/scripts/lib/stores.sh
######################################################################
############################# Main #############################
######################################################################
-cd $(dirname $0)
-
-TMP_P12_PASSWORD="$(generatePassphrase)"
-REPERTOIRE_KEYSTORES="${REPERTOIRE_ROOT}/environments/keystores"
-
-# Remove old keystores & servers directories
-find ${REPERTOIRE_KEYSTORES} -type f -name *.jks -exec rm -f {} \;
-find ${REPERTOIRE_KEYSTORES} -type f -name *.p12 -exec rm -f {} \;
-if [ -d ${REPERTOIRE_KEYSTORES}/server ]
-then
- find ${REPERTOIRE_KEYSTORES}/server -mindepth 1 -maxdepth 1 -type d -exec rm -rf {} \;
-fi
-
-# Generate the server keystores
-for SERVER in $(ls ${REPERTOIRE_CERTIFICAT}/server/hosts/); do
-
- mkdir -p ${REPERTOIRE_KEYSTORES}/server/${SERVER}
-
- # awk : used to strip extension
- for COMPONENT in $( ls ${REPERTOIRE_CERTIFICAT}/server/hosts/${SERVER}/ 2>/dev/null | awk -F "." '{for (i=1;i<NF;i++) print $i}' | sort | uniq ); do
-
- pki_logger "-------------------------------------------"
- pki_logger "Creation du keystore de ${COMPONENT} pour le serveur ${SERVER}"
- JKS_KEYSTORE=${REPERTOIRE_KEYSTORES}/server/${SERVER}/keystore_${COMPONENT}.jks
- P12_KEYSTORE=${REPERTOIRE_CERTIFICAT}/server/hosts/${SERVER}/${COMPONENT}.p12
- CRT_KEY_PASSWORD=$(getComponentPassphrase certs "server_${COMPONENT}_key")
- pki_logger "${CRT_KEY_PASSWORD}"
- JKS_PASSWORD=$(getKeystorePassphrase "keystores_server_${COMPONENT}")
- pki_logger "${JKS_PASSWORD}"
-
- generateHostKeystore ${COMPONENT} \
- ${JKS_KEYSTORE} \
- ${P12_KEYSTORE} \
- ${CRT_KEY_PASSWORD} \
- ${JKS_PASSWORD} \
- ${TMP_P12_PASSWORD}
-
- done
-
-done
-
-
-# Generate the timestamp keystores
-# awk : used to strip extension
-for USAGE in $( ls ${REPERTOIRE_CERTIFICAT}/timestamping/vitam/ 2>/dev/null | awk -F "." '{for (i=1;i<NF;i++) print $i}' | sort | uniq ); do
-
- pki_logger "-------------------------------------------"
- pki_logger "Creation du keystore timestamp de ${USAGE}"
- P12_KEYSTORE=${REPERTOIRE_KEYSTORES}/timestamping/keystore_${USAGE}.p12
- TMP_P12_KEYSTORE=${REPERTOIRE_CERTIFICAT}/timestamping/vitam/${USAGE}.p12
- CRT_KEY_PASSWORD=$(getComponentPassphrase certs "timestamping_${USAGE}_key")
- P12_PASSWORD=$(getKeystorePassphrase "keystores_timestamping_${USAGE}")
-
- # KWA FIXME : simplify (we only use TMP_P12_KEYSTORE to do this dirname...)
- crtKeyToP12 $(dirname ${TMP_P12_KEYSTORE}) \
- ${CRT_KEY_PASSWORD} \
- ${USAGE} \
- ${P12_PASSWORD} \
- ${P12_KEYSTORE}
- # KWA TODO: generate two keystores : private (with crt + key) + public (with only the crt)
-done
-
-
-# Keystores generation foreach client type (storage, external)
-# for CLIENT_TYPE in external storage; do
-for CLIENT_TYPE in iam ; do
-
- # # Set grantedstore path and delete the store if already exists
- # JKS_GRANTED_STORE=${REPERTOIRE_KEYSTORES}/client-${CLIENT_TYPE}/grantedstore_${CLIENT_TYPE}.jks
- # GRANTED_STORE_PASSWORD=$(getKeystorePassphrase "grantedstores_client_${CLIENT_TYPE}")
-
- # # Delete the old granted store if already exists
- # if [ -f ${JKS_GRANTED_STORE} ]; then
- # rm -f ${JKS_GRANTED_STORE}
- # fi
- mkdir -p ${REPERTOIRE_KEYSTORES}/client-${CLIENT_TYPE}
- # # client-${CLIENT_TYPE} keystores generation
- for COMPONENT in $( ls ${REPERTOIRE_CERTIFICAT}/client-${CLIENT_TYPE}/clients 2>/dev/null ); do
-
- # Generate the p12 keystore
- pki_logger "-------------------------------------------"
- pki_logger "Creation du keystore client de ${COMPONENT}"
- CERT_DIRECTORY=${REPERTOIRE_CERTIFICAT}/client-${CLIENT_TYPE}/clients/${COMPONENT}
- CRT_KEY_PASSWORD=$(getComponentPassphrase certs "client_client-${CLIENT_TYPE}_${COMPONENT}_key")
- P12_KEYSTORE=${REPERTOIRE_KEYSTORES}/client-${CLIENT_TYPE}/keystore_${COMPONENT}.p12
- P12_PASSWORD=$(getKeystorePassphrase "keystores_client_${CLIENT_TYPE}_${COMPONENT}")
-
- if [ -f ${P12_KEYSTORE} ]; then
- rm -f ${P12_KEYSTORE}
- fi
-
- pki_logger "Génération du p12"
- crtKeyToP12 ${CERT_DIRECTORY} \
- ${CRT_KEY_PASSWORD} \
- ${COMPONENT} \
- ${P12_PASSWORD} \
- ${P12_KEYSTORE}
-
-
- # # Add the public certificate to the grantedstore
- # pki_logger "Ajout du certificat public de ${COMPONENT} dans le grantedstore ${CLIENT_TYPE}"
- # CRT_FILE="${REPERTOIRE_CERTIFICAT}/client-${CLIENT_TYPE}/clients/${COMPONENT}/${COMPONENT}.crt"
-
- # addCrtInJks ${JKS_GRANTED_STORE} \
- # ${GRANTED_STORE_PASSWORD} \
- # ${CRT_FILE} \
- # ${COMPONENT}
-
- done
-
- # # Add the external certificates to the granted store
- # pki_logger "-------------------------------------------"
- # pki_logger "Ajout des certificat public du répertoire external dans le grantedstore ${CLIENT_TYPE}"
- # if [ "${CLIENT_TYPE}" == "external" ]; then
- # for CRT_FILE in $(ls ${REPERTOIRE_CERTIFICAT}/client-${CLIENT_TYPE}/clients/external/*.crt 2>/dev/null); do
- # addCrtInJks ${JKS_GRANTED_STORE} \
- # ${GRANTED_STORE_PASSWORD} \
- # ${CRT_FILE} \
- # $(basename ${CRT_FILE})
- # done
- # fi
-
- # Generate the CLIENT_TYPE truststore
- pki_logger "-------------------------------------------"
- pki_logger "Génération du truststore client-${CLIENT_TYPE}"
- generateTrustStore "client" ${CLIENT_TYPE}
-
-done
-
-# Generate the server trustore
-pki_logger "-------------------------------------------"
-pki_logger "Génération du truststore server"
-generateTrustStore "server" "server"
-
-##################################################################
-############### VITAM USERS ######################################
-##################################################################
-
-pki_logger "-------------------------------------------"
-pki_logger "Génération du grantedstore vitam-users"
-
-# Generate grantedstore for vitam-users
-# TODO: Rajouter passphrase du grantedstore dans le vault
-CLIENT_TYPE="external"
-REPERTOIRE_PLUS="vitam-users"
-JKS_GRANTED_STORE=${REPERTOIRE_KEYSTORES}/client-${CLIENT_TYPE}/grantedstore_${CLIENT_TYPE}.jks
-GRANTED_STORE_PASSWORD=$(getKeystorePassphrase "grantedstores_client_${CLIENT_TYPE}")
-if [ -d ${REPERTOIRE_CERTIFICAT}/client-${REPERTOIRE_PLUS} ]; then
- for CRT_FILE in $( ls ${REPERTOIRE_CERTIFICAT}/client-${REPERTOIRE_PLUS}/clients 2>/dev/null ); do
- CRT_FILE="${REPERTOIRE_CERTIFICAT}/client-${REPERTOIRE_PLUS}/clients/${CRT_FILE}"
- pki_logger "Ajout de ${CRT_FILE} dans le grantedstore ${CLIENT_TYPE}"
- addCrtInJks ${JKS_GRANTED_STORE} \
- ${GRANTED_STORE_PASSWORD} \
- ${CRT_FILE} \
- $(basename ${CRT_FILE})
- done
-else
- pki_logger "No client-${REPERTOIRE_PLUS} directory is present. Skipping..."
-fi
-# Generate the vitam-users trustore
-pki_logger "-------------------------------------------"
-pki_logger "Génération des certif vitam-users dans client-${CLIENT_TYPE}"
-JKS_TRUST_STORE=${REPERTOIRE_KEYSTORES}/client-${CLIENT_TYPE}/truststore_${CLIENT_TYPE}.jks
-TRUST_STORE_PASSWORD=$(getKeystorePassphrase "truststores_client_${CLIENT_TYPE}")
-if [ -d ${REPERTOIRE_CERTIFICAT}/client-${REPERTOIRE_PLUS}/ca ]; then
- for CRT_FILE in $(ls ${REPERTOIRE_CERTIFICAT}/client-${REPERTOIRE_PLUS}/ca/*.crt); do
- pki_logger "Ajout de ${CRT_FILE} dans le truststore ${REPERTOIRE_PLUS}"
- ALIAS="$(basename ${CRT_FILE})"
- addCrtInJks ${JKS_TRUST_STORE} \
- ${TRUST_STORE_PASSWORD} \
- ${CRT_FILE} \
- ${ALIAS}
- done
-else
- pki_logger "No client-${REPERTOIRE_PLUS}/ca directory is present. Skipping..."
-fi
-
-pki_logger "-------------------------------------------"
-pki_logger "Fin de la génération des stores"
+main "$@"
\ No newline at end of file
diff --git a/deployment/generate_stores_dev.sh b/deployment/generate_stores_dev.sh
new file mode 100755
index 0000000000000000000000000000000000000000..83e7dde8eff6b64296909060392df1b881365e2b
--- /dev/null
+++ b/deployment/generate_stores_dev.sh
@@ -0,0 +1,20 @@
+#!/usr/bin/env bash
+set -e
+
+######################################################################
+############################# Includes ##############################
+######################################################################
+
+. $(dirname $0)/pki/scripts/lib/stores.sh
+
+######################################################################
+######################### Overriding ###########################
+######################################################################
+
+REPERTOIRE_ROOT="$( cd "$( readlink -f $(dirname ${BASH_SOURCE[0]}) )/../dev-deployment" ; pwd )"
+
+######################################################################
+############################# Main #############################
+######################################################################
+
+main "$@"
\ No newline at end of file
diff --git a/deployment/mongo.yml b/deployment/mongo.yml
index 7d13898422b14773c4fed79fb79d7bd59e09fd43..5fb651fbcec004d2df31cbae66eaeafa37602900 100644
--- a/deployment/mongo.yml
+++ b/deployment/mongo.yml
@@ -4,6 +4,9 @@
roles:
- mongo_common
- mongo
+ - {
+ role: mongo_init,
+ mongod_source_template_dir: "{{playbook_dir}}/scripts/mongod/"
+ }
- mongo_configure
- - init_bdd
- { role: mongo-express, when: "mongo_express is defined and mongo_express|lower == 'true'"}
diff --git a/deployment/pki/ca/cas-server/ca-intermediate.crt b/deployment/pki/ca/cas-server/ca-intermediate.crt
deleted file mode 100644
index 48354cf93bb3e68a8eed7841baad5726960aa394..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/cas-server/ca-intermediate.crt
+++ /dev/null
@@ -1,136 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 288 (0x120)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_cas-server
- Validity
- Not Before: Nov 22 15:20:59 2019 GMT
- Not After : Nov 19 15:20:59 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_cas-server
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:ba:68:67:fc:21:16:30:91:d9:03:70:b2:a0:44:
- e8:14:c5:f9:12:d8:aa:5a:86:b6:ba:ba:7d:cf:1b:
- f0:4c:1b:92:40:78:04:56:8a:57:e6:f5:79:fe:95:
- 95:e3:38:a9:3c:59:32:b0:81:0d:e5:c3:ae:cf:9f:
- 44:9a:f4:83:15:ac:8f:18:09:43:2d:96:59:9f:0f:
- 7a:6a:e3:d6:85:2c:eb:2f:f9:69:87:3e:28:b0:d2:
- d4:34:bf:40:d2:2c:ae:59:7f:4d:a8:3a:08:43:22:
- 5d:42:f1:dc:81:27:36:5d:1d:41:9f:53:2e:94:d0:
- a0:54:5d:13:0d:ee:98:10:8c:75:89:b7:4b:c1:44:
- 49:79:83:58:99:94:a1:27:4f:0d:a1:3c:b1:44:fb:
- 1a:5a:af:e2:d5:4a:16:5b:ac:02:e0:4e:6b:0a:92:
- 63:a2:3d:f2:51:86:23:e0:c4:29:34:c3:91:f7:ae:
- eb:5d:ce:52:a0:1f:14:c6:4e:fc:a2:7e:35:99:b6:
- 08:e5:a7:a4:34:75:2c:cd:eb:b2:e6:56:02:b0:ac:
- e8:4f:40:26:3a:93:a5:6f:87:3b:8a:a3:03:9e:e1:
- 2f:db:69:cb:f4:d3:9d:67:98:d3:73:25:83:a5:2a:
- a3:97:85:11:f0:ec:d4:a6:b9:89:47:91:a6:0d:68:
- 03:d1:32:43:a0:03:6f:d1:f4:17:fd:d9:66:b9:2f:
- 05:68:22:ab:18:7e:a9:57:16:ff:e2:c3:d2:ac:8c:
- ab:e7:27:1d:66:4b:d5:c2:cc:8e:cf:a9:ca:ad:2e:
- 43:2f:14:69:6a:56:ae:4f:5a:28:4e:92:f7:42:b5:
- 8f:50:f6:c4:52:9d:9a:3e:f4:e6:1f:8a:51:27:dc:
- a6:f3:f7:60:0f:48:e6:a5:c7:92:97:59:7a:25:cc:
- 8c:12:b3:cf:fa:74:02:0c:89:47:56:2e:7e:84:fa:
- bf:17:39:40:66:b8:94:e0:2d:d6:70:33:05:d1:db:
- 4f:cb:14:08:99:8b:79:f7:fc:56:15:a0:8e:fd:af:
- 0b:f7:a4:03:df:9a:77:ba:9a:e9:e3:6e:35:fa:6f:
- a6:fb:51:7d:f5:e5:89:49:c2:10:ed:9b:63:33:fd:
- d7:99:19:e7:c6:fb:91:dc:43:6f:13:cb:89:fc:b4:
- 01:da:68:9d:ce:b1:da:87:01:13:38:fe:78:0b:16:
- 43:5f:88:5a:17:87:0e:05:68:a3:56:96:c5:ed:77:
- cf:d2:42:0b:f5:7b:8b:d3:fd:43:a1:5b:e5:37:55:
- 04:94:c9:85:7d:e1:37:87:3b:b7:cd:be:0f:d7:4f:
- 7e:4b:65:3b:c5:9b:ea:ed:0d:ba:69:e7:71:9a:59:
- 76:2e:17
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Intermediate
- X509v3 Subject Key Identifier:
- A0:2C:EF:A2:00:C3:24:A3:BF:12:9F:81:33:7F:51:B4:B5:AA:09:DE
- X509v3 Authority Key Identifier:
- keyid:A1:F0:C5:95:76:9D:78:74:52:73:8B:69:DA:2F:4D:CE:0A:42:8B:38
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_cas-server
- serial:01:1F
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:0
- X509v3 Issuer Alternative Name:
- <EMPTY>
-
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- ae:1c:17:e3:cb:ae:76:90:d4:dd:9d:87:f7:98:e7:b8:9d:88:
- 85:02:a3:ae:04:6d:b2:73:f2:17:48:71:f3:be:b0:3f:53:26:
- 6f:26:e7:4e:8c:93:33:10:73:cc:68:12:a5:be:56:d7:52:e6:
- 7a:8c:73:59:94:7a:60:59:87:4b:11:24:43:a7:bc:7d:99:19:
- 36:e0:9c:24:21:13:31:35:b9:93:4e:96:7a:72:e0:d4:3d:af:
- 99:cb:fb:fc:25:36:a2:f1:88:16:fd:b6:f4:63:03:26:d3:ea:
- 5a:18:fd:3c:c8:d7:9c:aa:e0:23:59:c3:66:6c:53:24:4d:70:
- 9e:ca:72:bc:ba:bb:df:f1:61:e0:34:ba:a5:d9:c9:c2:8b:40:
- 01:27:83:16:19:2a:2b:00:52:f2:2a:b5:0c:ba:7c:fd:c9:48:
- d8:3f:b5:dd:7b:91:98:0a:f9:71:3c:c7:5f:69:40:94:d6:ec:
- a1:1a:8b:eb:82:e9:11:61:4d:56:82:eb:4f:cf:d1:aa:0e:0b:
- cf:f2:fa:a2:a2:75:11:9f:04:09:8b:50:bb:b5:55:6c:95:37:
- 65:62:ea:f6:c9:b7:4d:69:88:a8:d9:95:dd:99:09:6e:9b:59:
- 63:3f:f8:49:df:eb:7a:14:cd:d8:56:46:b4:90:ab:37:ef:2f:
- f7:fe:0b:4b:47:a6:58:77:2d:bf:5c:fb:00:da:40:e1:45:80:
- 7e:69:db:b2:6f:96:57:49:90:a6:15:1b:44:51:8d:71:40:18:
- 84:2a:25:b7:ee:e6:64:e3:93:e9:c9:a5:34:09:ab:79:36:df:
- 73:d3:eb:16:1f:6f:0f:29:5d:14:50:3d:ac:19:59:2b:d3:a9:
- a3:bd:3c:9a:07:bf:38:a0:77:21:c2:08:fc:a0:25:bd:22:62:
- 46:d6:78:4e:31:f7:27:72:1e:bf:1c:6b:2d:3a:56:50:5a:12:
- 14:26:40:77:94:fd:c1:a5:0f:52:17:63:17:62:3b:d5:fd:eb:
- 14:c4:65:eb:bc:e3:67:e0:ba:79:9b:57:98:6e:41:e0:98:79:
- cf:e5:08:a1:d3:60:f2:18:91:89:81:29:cf:7d:3f:35:27:61:
- 96:d7:62:54:51:95:aa:b3:16:70:24:09:01:f6:f9:0c:b8:60:
- 46:a8:8e:23:95:95:52:3a:37:7c:05:5c:b1:3e:ec:3d:d4:8d:
- cd:b7:38:e0:d8:7e:ea:bc:14:75:5c:e5:24:59:7a:c8:16:9a:
- 3e:8a:0f:cb:7e:cb:af:9c:06:4e:83:31:fc:f0:b8:e1:f4:2c:
- 1b:02:85:ec:4a:e7:af:7d:d8:dd:24:36:84:36:34:83:26:7b:
- f1:f4:db:0d:5b:45:41:79
------BEGIN CERTIFICATE-----
-MIIGgDCCBGigAwIBAgICASAwDQYJKoZIhvcNAQELBQAwbjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEbMBkGA1UEAwwSY2Ffcm9vdF9jYXMtc2VydmVy
-MB4XDTE5MTEyMjE1MjA1OVoXDTI5MTExOTE1MjA1OVowdjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEjMCEGA1UEAwwaY2FfaW50ZXJtZWRpYXRlX2Nh
-cy1zZXJ2ZXIwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC6aGf8IRYw
-kdkDcLKgROgUxfkS2Kpahra6un3PG/BMG5JAeARWilfm9Xn+lZXjOKk8WTKwgQ3l
-w67Pn0Sa9IMVrI8YCUMtllmfD3pq49aFLOsv+WmHPiiw0tQ0v0DSLK5Zf02oOghD
-Il1C8dyBJzZdHUGfUy6U0KBUXRMN7pgQjHWJt0vBREl5g1iZlKEnTw2hPLFE+xpa
-r+LVShZbrALgTmsKkmOiPfJRhiPgxCk0w5H3rutdzlKgHxTGTvyifjWZtgjlp6Q0
-dSzN67LmVgKwrOhPQCY6k6VvhzuKowOe4S/bacv0051nmNNzJYOlKqOXhRHw7NSm
-uYlHkaYNaAPRMkOgA2/R9Bf92Wa5LwVoIqsYfqlXFv/iw9KsjKvnJx1mS9XCzI7P
-qcqtLkMvFGlqVq5PWihOkvdCtY9Q9sRSnZo+9OYfilEn3Kbz92APSOalx5KXWXol
-zIwSs8/6dAIMiUdWLn6E+r8XOUBmuJTgLdZwMwXR20/LFAiZi3n3/FYVoI79rwv3
-pAPfmne6munjbjX6b6b7UX315YlJwhDtm2Mz/deZGefG+5HcQ28Ty4n8tAHaaJ3O
-sdqHARM4/ngLFkNfiFoXhw4FaKNWlsXtd8/SQgv1e4vT/UOhW+U3VQSUyYV94TeH
-O7fNvg/XT35LZTvFm+rtDbpp53GaWXYuFwIDAQABo4IBHjCCARowHgYJYIZIAYb4
-QgENBBEWD0NBIEludGVybWVkaWF0ZTAdBgNVHQ4EFgQUoCzvogDDJKO/Ep+BM39R
-tLWqCd4wgZkGA1UdIwSBkTCBjoAUofDFlXadeHRSc4tp2i9NzgpCizihcqRwMG4x
-CzAJBgNVBAYTAmZyMQwwCgYDVQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYD
-VQQKDAV2aXRhbTEUMBIGA1UECwwLYXV0aG9yaXRpZXMxGzAZBgNVBAMMEmNhX3Jv
-b3RfY2FzLXNlcnZlcoICAR8wEgYDVR0TAQH/BAgwBgEB/wIBADAJBgNVHRIEAjAA
-MAsGA1UdDwQEAwIBBjARBglghkgBhvhCAQEEBAMCAgQwDQYJKoZIhvcNAQELBQAD
-ggIBAK4cF+PLrnaQ1N2dh/eY57idiIUCo64EbbJz8hdIcfO+sD9TJm8m506MkzMQ
-c8xoEqW+VtdS5nqMc1mUemBZh0sRJEOnvH2ZGTbgnCQhEzE1uZNOlnpy4NQ9r5nL
-+/wlNqLxiBb9tvRjAybT6loY/TzI15yq4CNZw2ZsUyRNcJ7Kcry6u9/xYeA0uqXZ
-ycKLQAEngxYZKisAUvIqtQy6fP3JSNg/td17kZgK+XE8x19pQJTW7KEai+uC6RFh
-TVaC60/P0aoOC8/y+qKidRGfBAmLULu1VWyVN2Vi6vbJt01piKjZld2ZCW6bWWM/
-+Enf63oUzdhWRrSQqzfvL/f+C0tHplh3Lb9c+wDaQOFFgH5p27JvlldJkKYVG0RR
-jXFAGIQqJbfu5mTjk+nJpTQJq3k233PT6xYfbw8pXRRQPawZWSvTqaO9PJoHvzig
-dyHCCPygJb0iYkbWeE4x9ydyHr8cay06VlBaEhQmQHeU/cGlD1IXYxdiO9X96xTE
-Zeu842fgunmbV5huQeCYec/lCKHTYPIYkYmBKc99PzUnYZbXYlRRlaqzFnAkCQH2
-+Qy4YEaojiOVlVI6N3wFXLE+7D3Ujc23OODYfuq8FHVc5SRZesgWmj6KD8t+y6+c
-Bk6DMfzwuOH0LBsChexK56992N0kNoQ2NIMme/H02w1bRUF5
------END CERTIFICATE-----
diff --git a/deployment/pki/ca/cas-server/ca-intermediate.key b/deployment/pki/ca/cas-server/ca-intermediate.key
deleted file mode 100644
index 4e239ec742f86e2bcca7bbfd72141e4dad72cf97..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/cas-server/ca-intermediate.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIPIuQTl7ebHgCAggA
-MBQGCCqGSIb3DQMHBAjrn/hsHfKPmgSCCUhYlsr88BeuPcZoDrv3xvfUd4tuB9WP
-DTdhDMiZZcUflqhOjLm0bMteD3hy1IBihku5i5Gr7pnXVfq+3gsuA4xSY6rpjzX3
-6TG2tTvobOq1BkiYpL7GrMYQmJmLCZmDOJN4oZcMIkohm9NngWopgGUSG2OVva+F
-PG8lJ3g7cd3VVTYKHX1y5ECcmJ3dmWSGNvjrevt7OOkGRofTCsFRzUgOZb6vLz83
-jEMumIeHu/+QWhxlrg8pXSSx7yBpnRUoGqcg8nxwO9ZM6F47JDdHnRwmBNY+9Y/X
-HkTb9ck+kKI3yCVLphlpCd+rxLyZJQ0S++U4DU8zT7RfI2qEAwdaP/hlT7+X9Jta
-QmXZ3Axf5y2O0m7xIv4CTM6YjFlnW5Ul7mTLpHuPSMPna9PmBz8Gbl4pVNjmo7Y2
-aKKJ5pekHlOu7T33rmulmbWzjLoensO7VzQHVpPo6iPsjdGR7P5A9ij9LesKpTx7
-UmxiKyQ5TJkdS1g0BbMBfPbXmK82VA4M4sPVkIpE4mNEraf+x1zeP7jG+drnub7v
-xT6F4eK0YKTXGp4iEDZDnRuLEuGroZWWDxVY7IOSzMhgDwcjsDyHEDbiVHUBe5Gw
-+Va/1Y3WrybqKOafdFqocm0fv9ZOGPWknq/nkurIBOfq6D1x1JCFhzXf2Mypo9LT
-OziXWJhinkkCvPCaossUus01i5MPs70+GHl132TeU0+Q2uiRGM4kZ8b//6rsMqxF
-9thMbxoYmqCxmf4FWiTwQ2duwfqrskjk1LdENy78/d0nibLlYrDDtEiKb/kDWv+i
-6WY1mBjJ0Fl04udS9LPkgptBX5ccBBx5NXrU9cVMacESpQeCIwxexFto4mCJce/q
-98zx+GQ/X9oZWRuwfqF9KnNdOP9AQegaSTbHIoi0CpgIAChEk1Bio2hS9bfXIl8v
-UqknvgVFozZ9FjlQUwH9buKX0nVTpHocI5OoMrcsB7P1qL48ZLlYYUECChw+dDpj
-D2XsHHx9+/CWwbYvOYFGgQbvoV213oTSWn+SEqXIP4PKhc6RlVIxPpde6t0TU9g+
-IBNXbf1FcvFqM1bZuK0sEzvGVRS+ck9EUil7MkknLZb0riNrQGwQemCZA519POnW
-nbP2W4K/z5F3UvtszUhuEYt5ZBGNH03yFAbTgna/QA1S6kTsY0vEC+XKcK5jYsHy
-lref9w3hA1dsAasovF6kLJ+vZWjLkJTkh++Eg7EbI9wK36CFFcRPLYEi+wNFmiVr
-cc8PLA8gVyKQEWFjtH6zwUzwbWksBwmyPisKDZ2bK7Ql1//vQFH4szFCABfX6oNR
-t4bqWQz8HxdpYIoM1R4UYPttYkxHwUrfwmxbO2vWOYTNiRvYfsmL4TGCTSpGxZJW
-t+uIkNF/uckomr8bUqd3FUPdaUHi2yKQkDUDurWPpS9gtxI5Qx363xevemQUfGcx
-2+0QOEM9xSFv+1HZfffz1u4a8zb4XKi+195C2EymF+lw++cH47pY0c7+ngyN4L/Z
-fTkI4dQFcpVIaSrRh8ErZEdKqxOrOaOF4I1of0IJ4S2x2+QGl9Zz+eFfcj8TliYF
-nRSxDFzm2spsVHp7L0pkdSv0G2TC5aOSydDI7vvF+cc4ulJ/QSN3OtDUwKonCxJn
-dXNGvZVnQyC6lnrK9l25FEi8B2+eoQtLpyAYh0QrtlDtrZQvZ2arJbLLt2c9bzDp
-WHhkBXozzO8HmFH5RiFtpMAPDtG76BDwe/Afn1poWNrvKy3BxtnGR6Jf7edSQjCZ
-Jx+GC6pU73cK/K0fdnDw/Mp64319mQhCMRcGn0OgRx75V+ZDiovkVc8UmbvoUO9a
-beGsB1DXd8nN8MZTuLhbk1mWJYBrsW3yW4G+xB6P6EqfLPDSbZPnFIDZgtTJgUBN
-4HRaKpBH9VsXb6kDob+vIOkJvxQwoyfhGwuFniZsQmx9INVZzeWyF61Or0M8qB1h
-i4pjWLqiN16VG96vplFC9sXUqitzP6DQvcuNsp3IYf1dDRQtIMKzkkBYqHiNIfql
-++gCPbmI+CuX7NTv02YWwm9hgSTFuozWMkd7dH9ywLSofz8lDFZsuMphSrDx9qps
-hlQBw5ryOtHBtoHFcC0Unv2TmIissgpD2zhTpF0N+2ODEvFm5xzGIfmjwRu6rhp5
-6DzzMTU/feNocJEyjM/ysqtqfVxOzzaBTzn0v5EmLxA1CKkxc2PmHtFyOGUkMORA
-1krQmFBGQS+fWO8fEj08bTlWA+6JOke/13NlDKPjem+kDrQW+HJnzp5A/Oz1eSZX
-n76wkTe6Sge5p26p5cH2fBQEvQ9HnsU61fesGIBMXeIHsQZxqqWOxKV+tJZtj0Yv
-/ASORqUH9O+lttDGBKqIMRp0XvtuypE7Z09DoFku73EkBkgDwQQ0BNbf6V3niZsa
-pFs6U1PbJwxYUXAxdLj3p03U8pUUJo4a0kJluofSkmGteCsXK7rnVab/a8c4XxmL
-H1q2GxluwZU1lf9c4R6IZvNkMxwfyKTm6ZI9kosEgrtpuHgnjFCOarg46WVuNQqs
-7s0wRAYGWZBpkGTlnh/wmVjNtiJjoIK5j+UY+vP6mdf8khPwRJelnBOqzdPQp7ZQ
-f4xk7bDlM1lwz2w9ot4cyUQcnDsLgxrhfepb17iRACeSI90O5nAhbygf/dvuPBtN
-uhf17oQrOJwvmnNdXlutF4lN5NeLmgdz6UYm4OQtK8sWpdRA4hhYaPkqPe3gWF0v
-Q4FG7oPfSxLBbijgTcZnlC0riEb3M+WOM68L7lZArlvGT73ACX87/ir9hFU4TUqU
-HoBpClD+OI0yjxWg7HxzbqJktwZ03PdsZm/pub65bomL95tWVXf63juh+ZAO0iKi
-I51X5Ta1QIHLiTPOWEgrWTLc8oNee07vFRH/w/3nIJGgxEluUm83907mFaknoQoe
-b8nDyN5jeRjeNxtNG39/fgqnpGhF5qpy5cE0ugZTwKLg18mdj7dPxFLQ8ckdqfss
-wBEWlhE71l5f21ubsAOKrSzdUdXeISYTu36CEXQo0iuLPx6LYjrmko/LetXqONx7
-0gkmeD2SQg4hMz1KM3o58ObAqSpXwSol4nr+jVaE/vfTuYqtSu4sgZ4h+f/2nDX2
-s16vvTS3AVTRuzt0KsO5udokekUKmyvOunQX40B1le4z4SefBvKB2m/CXUXV15ld
-Pb4=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/cas-server/ca-root.crt b/deployment/pki/ca/cas-server/ca-root.crt
deleted file mode 100644
index 325719b771f3fb1f486b2dc28cf84383cf8be8a5..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/cas-server/ca-root.crt
+++ /dev/null
@@ -1,128 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 287 (0x11f)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_cas-server
- Validity
- Not Before: Nov 22 15:20:58 2019 GMT
- Not After : Nov 19 15:20:58 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_cas-server
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:d5:78:76:f5:55:eb:e4:ab:26:dd:6b:99:f1:f0:
- ef:02:95:2b:2a:8c:c1:a5:61:f0:32:3a:76:5e:52:
- b5:a7:81:4e:be:b8:d7:db:1f:3e:e0:3c:08:16:55:
- 53:a4:3d:c8:93:d4:d4:1c:c1:a3:14:e1:c2:ab:05:
- 79:a5:f8:a6:56:f4:56:83:b4:5e:f9:08:30:44:3b:
- cf:7a:06:66:9c:a6:e4:ec:f4:0f:9d:a5:5f:f7:73:
- 72:fb:58:9f:e1:60:37:91:24:8f:bf:d0:ad:25:02:
- b0:17:68:02:74:3a:12:98:a2:7f:6b:1d:3a:09:7a:
- 02:a2:86:60:32:e8:7d:e2:44:29:9c:8a:10:65:24:
- b5:73:88:dd:34:09:dd:47:b9:08:ee:01:ba:5e:24:
- d7:0d:25:49:43:8c:b3:4f:06:3e:94:26:24:24:9b:
- f2:4e:5a:f4:29:ff:83:5e:f4:7f:10:a2:32:56:69:
- 04:5b:77:7f:c5:f7:ee:22:46:74:2b:3f:10:8c:09:
- b4:9c:02:97:ed:07:00:7c:2b:9c:aa:33:7e:61:5a:
- 55:be:2e:00:cb:ad:41:7d:cc:e8:11:7f:71:72:42:
- 7a:73:47:da:b4:ed:ff:d2:77:f2:48:cd:ce:9e:9e:
- 33:16:c9:b8:71:ca:ab:b1:30:c8:28:40:17:39:d1:
- a1:51:0d:08:7a:a5:48:ba:0f:2d:60:af:6e:02:41:
- 40:a8:a9:73:5b:45:57:8b:72:28:d7:83:88:c8:48:
- 9c:8f:f7:6b:67:dd:8e:1b:9d:09:c7:e8:99:9e:85:
- 92:92:32:14:98:3d:c0:12:6f:35:88:42:f8:3b:eb:
- 97:30:3f:8a:61:c8:75:4a:c3:5d:bd:38:06:2c:d6:
- 64:cf:7a:16:bf:7d:db:15:43:80:d8:1f:4b:d6:98:
- 41:e9:d4:91:c7:68:ea:52:f3:33:ba:f6:7b:1f:05:
- 12:8f:3f:19:1b:ef:b9:67:fe:49:7d:49:e1:bf:25:
- c3:8e:61:62:dc:c3:fb:87:37:c1:2e:74:76:a1:ee:
- 62:14:65:3a:5b:e0:3e:82:27:f1:62:9d:76:d1:c2:
- 51:1a:eb:e8:b8:7e:1b:75:2e:ba:e5:9c:00:e6:ee:
- bd:8f:91:1a:d9:f7:97:0c:f0:43:3f:fb:0f:53:00:
- 21:43:12:88:36:28:3e:d0:f4:57:2c:da:60:e7:63:
- 95:98:6c:d8:70:33:37:56:69:16:e0:f0:f9:45:91:
- 89:db:a0:60:02:77:58:82:e3:ed:92:8c:5e:a5:cc:
- 51:f6:cf:e1:b9:35:55:5c:5f:d8:f3:8c:9e:a1:77:
- 8d:11:28:d3:c6:e4:63:23:ce:df:37:f6:cc:47:3a:
- 4a:c0:c5
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Root
- X509v3 Subject Key Identifier:
- A1:F0:C5:95:76:9D:78:74:52:73:8B:69:DA:2F:4D:CE:0A:42:8B:38
- X509v3 Authority Key Identifier:
- keyid:A1:F0:C5:95:76:9D:78:74:52:73:8B:69:DA:2F:4D:CE:0A:42:8B:38
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:1
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 99:2b:bf:c4:0b:24:cb:42:a6:0a:07:fc:19:67:04:ef:61:61:
- 31:75:6a:03:29:a2:35:89:c9:28:74:b1:af:95:4c:45:51:12:
- 1b:d7:14:88:9b:50:1c:2d:0c:b2:9a:1e:67:57:44:81:9a:33:
- 70:66:72:4f:95:4c:0f:1b:84:88:41:23:09:be:82:55:c5:d6:
- 68:6c:69:02:6d:2f:46:cf:e2:72:af:cc:36:f7:b2:02:8d:3f:
- 29:f4:db:df:c4:25:1b:8c:69:09:38:0e:66:0a:6b:73:fd:ae:
- 5f:3f:0b:50:2b:47:e1:a1:b1:bc:7b:00:26:91:57:1c:f3:5a:
- 75:df:93:de:3b:47:49:f2:80:5f:f9:7c:40:9d:81:c6:7a:0b:
- 8f:ff:0f:e6:53:df:74:8f:43:a1:78:62:8f:c0:6c:61:93:65:
- b8:de:58:2b:d3:be:11:0e:f2:d6:f4:6f:b2:9f:5f:57:37:de:
- bd:06:d0:63:dc:cd:4f:d0:42:2e:91:e9:4c:a7:83:1a:37:c7:
- a4:90:a4:b7:6d:40:94:97:ec:f2:69:b9:cd:a3:3c:7e:86:fe:
- 95:88:af:68:97:fb:0b:2d:8a:f5:8a:81:b3:95:19:3e:76:55:
- 23:5f:4a:e9:0a:71:8d:e1:6b:1a:12:44:88:ca:b9:f1:a6:25:
- cd:f3:a2:d9:8f:ca:09:ce:35:5f:28:97:a7:47:3e:db:5c:12:
- 34:b2:07:fb:eb:b6:20:a8:05:7d:e7:a0:a3:fb:f2:54:ba:28:
- ed:e0:2e:c1:fe:53:ee:54:c3:1d:e6:87:9b:3b:ec:c1:37:12:
- 8d:df:fa:3a:cf:04:fa:e0:89:d5:fa:0a:3f:57:e2:57:5a:95:
- 8a:2b:a8:3a:12:a5:5a:a8:64:86:b3:75:0f:66:5b:1f:eb:7f:
- a9:05:e8:fe:a5:c1:c8:2f:e3:ad:b0:73:71:8e:17:bc:84:9f:
- d1:35:d3:3b:02:1d:28:09:75:3d:28:88:00:49:0d:70:b1:ab:
- 6f:75:42:1a:95:be:3d:9d:80:ba:6a:79:cb:c6:83:27:c6:ab:
- 2e:57:fd:01:aa:85:b2:09:9e:08:7e:b9:ae:53:6f:32:7b:5c:
- 84:48:4c:93:92:dc:69:70:74:33:e7:cc:76:ba:1a:ca:36:73:
- b5:90:5a:64:d9:1d:15:16:34:9c:33:8e:2a:55:82:74:23:2d:
- 97:34:86:0b:7a:a6:f5:3a:1e:b7:e6:61:fd:a3:c2:59:6a:ec:
- 38:7e:14:8c:78:7c:48:da:31:49:66:28:97:68:db:ca:3c:b4:
- 44:cf:07:30:e4:01:62:57:d3:5b:54:03:3b:15:c3:b2:26:b7:
- 6c:e0:c6:be:08:a6:22:1e
------BEGIN CERTIFICATE-----
-MIIF6DCCA9CgAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwbjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEbMBkGA1UEAwwSY2Ffcm9vdF9jYXMtc2VydmVy
-MB4XDTE5MTEyMjE1MjA1OFoXDTI5MTExOTE1MjA1OFowbjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEbMBkGA1UEAwwSY2Ffcm9vdF9jYXMtc2VydmVy
-MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1Xh29VXr5Ksm3WuZ8fDv
-ApUrKozBpWHwMjp2XlK1p4FOvrjX2x8+4DwIFlVTpD3Ik9TUHMGjFOHCqwV5pfim
-VvRWg7Re+QgwRDvPegZmnKbk7PQPnaVf93Ny+1if4WA3kSSPv9CtJQKwF2gCdDoS
-mKJ/ax06CXoCooZgMuh94kQpnIoQZSS1c4jdNAndR7kI7gG6XiTXDSVJQ4yzTwY+
-lCYkJJvyTlr0Kf+DXvR/EKIyVmkEW3d/xffuIkZ0Kz8QjAm0nAKX7QcAfCucqjN+
-YVpVvi4Ay61BfczoEX9xckJ6c0fatO3/0nfySM3Onp4zFsm4ccqrsTDIKEAXOdGh
-UQ0IeqVIug8tYK9uAkFAqKlzW0VXi3Io14OIyEicj/drZ92OG50Jx+iZnoWSkjIU
-mD3AEm81iEL4O+uXMD+KYch1SsNdvTgGLNZkz3oWv33bFUOA2B9L1phB6dSRx2jq
-UvMzuvZ7HwUSjz8ZG++5Z/5JfUnhvyXDjmFi3MP7hzfBLnR2oe5iFGU6W+A+gifx
-Yp120cJRGuvouH4bdS665ZwA5u69j5Ea2feXDPBDP/sPUwAhQxKINig+0PRXLNpg
-52OVmGzYcDM3VmkW4PD5RZGJ26BgAndYguPtkoxepcxR9s/huTVVXF/Y84yeoXeN
-ESjTxuRjI87fN/bMRzpKwMUCAwEAAaOBjzCBjDAWBglghkgBhvhCAQ0ECRYHQ0Eg
-Um9vdDAdBgNVHQ4EFgQUofDFlXadeHRSc4tp2i9NzgpCizgwHwYDVR0jBBgwFoAU
-ofDFlXadeHRSc4tp2i9NzgpCizgwEgYDVR0TAQH/BAgwBgEB/wIBATALBgNVHQ8E
-BAMCAQYwEQYJYIZIAYb4QgEBBAQDAgIEMA0GCSqGSIb3DQEBCwUAA4ICAQCZK7/E
-CyTLQqYKB/wZZwTvYWExdWoDKaI1ickodLGvlUxFURIb1xSIm1AcLQyymh5nV0SB
-mjNwZnJPlUwPG4SIQSMJvoJVxdZobGkCbS9Gz+Jyr8w297ICjT8p9NvfxCUbjGkJ
-OA5mCmtz/a5fPwtQK0fhobG8ewAmkVcc81p135PeO0dJ8oBf+XxAnYHGeguP/w/m
-U990j0OheGKPwGxhk2W43lgr074RDvLW9G+yn19XN969BtBj3M1P0EIukelMp4Ma
-N8ekkKS3bUCUl+zyabnNozx+hv6ViK9ol/sLLYr1ioGzlRk+dlUjX0rpCnGN4Wsa
-EkSIyrnxpiXN86LZj8oJzjVfKJenRz7bXBI0sgf767YgqAV956Cj+/JUuijt4C7B
-/lPuVMMd5oebO+zBNxKN3/o6zwT64InV+go/V+JXWpWKK6g6EqVaqGSGs3UPZlsf
-63+pBej+pcHIL+OtsHNxjhe8hJ/RNdM7Ah0oCXU9KIgASQ1wsatvdUIalb49nYC6
-annLxoMnxqsuV/0BqoWyCZ4IfrmuU28ye1yESEyTktxpcHQz58x2uhrKNnO1kFpk
-2R0VFjScM44qVYJ0Iy2XNIYLeqb1Oh635mH9o8JZauw4fhSMeHxI2jFJZiiXaNvK
-PLREzwcw5AFiV9NbVAM7FcOyJrds4Ma+CKYiHg==
------END CERTIFICATE-----
diff --git a/deployment/pki/ca/cas-server/ca-root.key b/deployment/pki/ca/cas-server/ca-root.key
deleted file mode 100644
index 81fd7f7ee84cc5439dbd047dff3423b15efa0611..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/cas-server/ca-root.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIMlOjqRAyHoUCAggA
-MBQGCCqGSIb3DQMHBAiv6VMhYKxF9wSCCUjm79yecs894ImsqX5EAZdqVtBVeMHW
-zYDfPVJh8Epr0FL9giweF5xGH8+vwxo2NjyK5BuFXMwgrlJi5cZ3qxlT2uMw1T4M
-1si/RVI4Ppy6uNaUgtjDM3odF5VIqhJFHnFAEpKk0c7ti5ozErqZC8hqb65LA/gt
-AkM8/0KnqH2z72oMoy7wWisDV4IVNPU2qj5fBu7T87w3ijKcBhRPhTjO2kWgJQfn
-rROTIgytgHWp3d4FfGfGlvPjORTkzOUpyhs0x2iadHDRBIfEGSMfFH862zHmOAdM
-fKzFoni7RekhybC8KuPGnPQc6akGrODqmWm+sH6QuFckJcq3F3Q/6WA8HkjQq5SQ
-euDikfcWBe295WMhCyTQaDIW/AASqtc65pnNa/bFcBmGvsz/MPMv8W3VCjoO1+ye
-RgxDuCXmHXeOfVOyUg42AM0i2XpLM2rl8+UcCfsVaVOivIb50iUK0WS+s+vuYiun
-AF/dCsuQkqnc88PGGOzbOPU2be4Y6wUINVB6x2eCnsImU03xcWa4oXBdKXpovwd4
-yDvriv34lfAiklofvZvlDZYase/igwreIvAaI0v4uHDLF7o2CKy1uJBPu8/41EUF
-LHgNAQECYgoejrP71kGpSTEHUkE9nfcWw0AsSUqSBF9SXXycvYj+nAmr820nBufX
-b5NDFlaiOQDF3KSh7KYl+ZqbdWlWY6du76koN8D/gRmxxo21g7DPycGWBdK5yFvE
-f4azlllvgVXeMmCCo78r1BLcpRY6ob4kWISD2aLccdxtzd4f6gdWwrq3JPbuxa/1
-RbZFbw4/NbZDXk9J7SSrbW/UGkqKcOs6pXZ+QHLSFMxyKRVSVmyO0gzVSW/JT8Kh
-IopfOUwv8c/mMO4DTnVlIKu0ja+lYckN+5Ii7h5lqIvsMOBZ4uVFVCcBCH1u273p
-diXrdiV0ophiVbEwgRBsFEBsGvtABsk/uiNyRZ7wo7veKTPsZbtvHNCTas68Bpeh
-4BBWWIywC5KtDDH5YdfRtyb6pY/BiTVTDiqXUqeILvlvXix152TqlwgHkU8NJhCu
-03tr38w/2EtDPahO+WbTRpwfGL+1W4zMXelKF3F5PjjIMB4kmJnHbuYBMFYFM/TW
-I9/WoPRjYdEM0Ur5rzDOcLdm6E3FhQhExX2flXM2akf2/pEdUmWi4zGzYimSenQ+
-+Z3bbRsWj9OJvyCR/JPh4QqK4uPfGgw7SQhB9VRXizEcdyuSfy+sKtThv+KymuLx
-mgSB/VZ725YAKn8xOTNG/N8nw4k41P4MiA4adS4597rgRCGtFXWiqQAc1EWNvAv0
-nTLKZ+HPnAhNkWol39YcCFmzSuZoR25T7YbkDGe0jRA2PfmP3VZG7YGjPj/D+fUc
-4nkQF0Kjsg6De+Ti7ZY+mdnYeoKF2s9ITAnYykOQ2vSW9MJWpmHTj/Cd9Po+2ljU
-OGxpCANtAfEr03HbGY1fYpdDAyY4JgFIR79kM5FDgZrB/3s5GoHZyi+IQY/VYnD6
-PP8GuROz5+NRO4LSHdY/6QH+F8oABwE7mVBJWVDsz/AddDOi9s2Nur/0aS/XTOWd
-5CM7qXM6SjBDm1p7uuZoWh6sIruh+lwBrNu6WkDn56r5/G6UnrqwXEEUoJFWWfbl
-MhdW4wfnzOaql1sJxymDe9brGtqnQjqZIZQOQQggXYFYejorLWxGn88ooj+Wnzz7
-QkHFN94YRJY0r2iFl63n0vj/b6pgvnA9XGY6lco38wey1UysHWpRU1SytR9as/Yv
-mLb3RCRQfxREczHCy/rbx9onBcUS8ozvjQ6ZvxOL5Owi2uDhqo5ilJHomHKPpouH
-E8uEVVygEBHKSRuCgNX5xpME0WLXfs8g9+q1cLhn8je/GLWsj5I51vL2sWX9xetz
-dI21Wh2MAPxFLA3QSXEKMuiiFyJjEwhQp2Yd/YpqF6PjtZZWRmHWokVpwZTDRSGE
-BxAwToE/7YsFDAc7hBrmcrJh/Zd9FsAIZ0I0aQyAYqSoR5JrUfijP9ZLE8Zikz09
-6NES6lFWhEX8J3k38ehOgmP+lcGWMCtjLARl4qI0pNctZ7BVD/5tg3N2pDfHU0/s
-e8+qStaLOA1v1/5NLpxHd11ps9+ZeIcAHceIika62Zrkg7Wru/zhAPUzgtCv96/F
-t2PEYoby2AY70DIN5hzzg2e/4btk0IwvZgrRc1oBMF7ddbzNpHYtobPgsgaM6IAA
-8AzfQZtdWPmmr7JHOiuLJkBTdox1xPyUZ1HITqQhkrczy9V1iVhUuRdGkCHnxJ3l
-Hj5N1vLqOJG69S+iQy7Ba+FjDq9Q7sDvT7PKY44QAN+DoyDKkh8Y5cYRHWIq9FJd
-/dYVSeCT17MWGDniHOZ0hykNPhaPE81D6jxv7EpTdxaoX6xcPWPnk3tSP+jpl1+r
-Yw2F9odL9ZJ+0ygrw/ZpfvOjY+NpljLl6diuxLh+F8ZiJUg5M/2OCCrGIkQxk5+K
-T6Hypyguf5z6y1rezBAnxZPIiZKEoHGJSBA7A0DQ4+gbgxpXdpNv6fjwapKwDSzc
-wF+AaHiGd/owpx5dD9ocCgVhYSWBF8wu152/sB98Tu7it7kCbNFv4++F45EqrgyQ
-u70twtSENKPqb+HwJ0MqOgVSk1u2sQxFF6WM44+9wth1EH5o7vXH3UjnAbOTfrm3
-ToEMv54wGadcnPv1gLLQ/D0OuX9AXNcsrFnECtQnhXgwTj+O1yfkGC0cUuQceRM7
-nP3PjHbXol/wpyEwA6jC4uh27ebT8BK8f2of5BMxNToV+TFa3bL2hTXraNu8Yw7j
-ht5O9Mv9QE9OerGP2ylksM1tHd0KTDevwzsFbkbdM10XUhOjLBvAH6EQKwQzB216
-RTezKKwloX8ifY0sETv9oxYuVwUT5jEkGTLBRWBNToM3c8d/O+pPUgUWHvd2kliI
-/eK9agiMsM/9YpTr25dffLyHIryZJdBe5H9OiVtPaUG+z80Q70/7bx70nlG4WnLC
-9SwRujx/Xqf8f5oWUksH9vz5o45dngwGICnTO6PEynLLxiW8RNUWz8NsRmNTdm6Z
-QSKCastdt+clT3j8m45gUZZSX4B3mCOw+VyUMdMRgIBi/fcL6A0E82t7hLQ5IWEb
-UrkM+nqekEWm19U++3Ot1G3PvXjqJ696GzApPiAi9lD54/EAOqu0QkwuFZHk6RMP
-/7U=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/client-external/ca-intermediate.crt b/deployment/pki/ca/client-external/ca-intermediate.crt
index 739ef71ab472a492b398d1242881dfac2fcfc494..6a43e560cb07cd3437d51a85f39ed1eb4683d7f6 100644
--- a/deployment/pki/ca/client-external/ca-intermediate.crt
+++ b/deployment/pki/ca/client-external/ca-intermediate.crt
@@ -1,137 +1,137 @@
Certificate:
Data:
Version: 3 (0x2)
- Serial Number: 317 (0x13d)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-external
+ Serial Number: 2 (0x2)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-external
Validity
- Not Before: Nov 22 08:53:34 2019 GMT
- Not After : Nov 19 08:53:34 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_client-external
+ Not Before: May 5 09:13:44 2020 GMT
+ Not After : May 3 09:13:44 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_client-external
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
+ RSA Public-Key: (4096 bit)
Modulus:
- 00:b9:ef:51:df:db:81:7b:15:d1:63:3a:1a:70:3b:
- ba:89:a2:be:9b:b6:4e:fc:07:17:be:50:c3:ea:fa:
- 23:2e:a3:90:63:95:75:ad:61:46:7b:60:02:cd:cd:
- 91:e3:9d:db:4f:bd:89:25:4b:9f:31:96:bc:62:41:
- 67:4c:60:43:0a:0b:fd:fc:ac:e2:ee:ac:e8:a5:df:
- b9:4d:13:a4:bb:18:8b:96:3f:87:b6:9a:6d:7b:d4:
- 4b:cb:24:50:ac:36:04:d5:31:70:08:0b:52:c3:44:
- 24:5e:c5:cc:50:37:38:d2:e1:85:16:8e:1f:5c:3b:
- 33:a8:52:ed:a6:8a:25:0a:3f:2a:3f:23:39:34:db:
- b2:be:41:32:38:bc:72:b3:13:e9:86:13:cd:cb:70:
- cf:09:6e:41:49:8c:66:66:a1:81:cc:6b:45:0b:5b:
- f8:75:0a:a3:db:28:f4:a2:b5:ce:c9:13:5d:26:3d:
- da:e8:e2:05:37:83:d4:30:89:76:21:9a:2a:51:e5:
- 8b:c5:2c:f3:2f:fb:00:a5:d0:df:c7:6e:1c:36:4f:
- 91:48:1c:de:72:e0:90:6f:49:4b:c4:c6:b4:88:6a:
- dc:f3:26:1b:71:99:90:e1:9f:a0:15:71:88:00:84:
- 04:03:8b:50:01:62:b1:bc:be:19:f4:46:c6:40:52:
- ab:c8:7d:49:68:76:8d:41:96:ec:49:1e:9d:6a:b2:
- 37:40:2e:b0:ec:72:d0:86:78:e9:d2:4c:9a:cd:fe:
- 08:c6:de:21:3a:e5:e4:43:b0:4f:12:32:95:35:8b:
- bc:37:3e:a4:6d:48:bf:c6:e6:f8:96:33:7c:f4:2d:
- 43:62:15:c4:57:d1:83:1e:e0:50:e4:bd:d2:7b:12:
- 46:70:88:41:64:b9:e5:59:2f:28:67:91:b6:a9:20:
- 61:ce:7f:70:25:77:72:a9:3c:1c:d4:7d:af:27:dc:
- b7:b8:27:bb:c4:fe:3a:d5:43:2a:0c:10:69:f5:b3:
- d2:b4:d5:89:bb:0e:b2:74:0d:16:0c:c5:2e:70:3e:
- 52:57:cb:40:70:30:1c:e2:62:62:7a:27:45:bb:a5:
- b6:e6:98:38:fe:00:16:93:1c:ce:c0:53:e6:b3:bd:
- c3:28:c7:68:72:88:50:fe:30:67:ac:5c:fb:85:9a:
- f1:93:8d:04:87:d2:54:e9:f1:53:f9:75:a2:b6:7c:
- 35:95:82:fd:73:03:36:04:da:fa:3f:28:86:34:45:
- c9:af:d9:f5:d4:95:57:64:1e:db:15:c3:d0:48:da:
- a9:ff:2b:33:d9:5e:15:c5:92:1f:e8:bb:7a:91:19:
- 5d:fa:29:be:60:82:9d:40:f4:32:be:8f:30:0f:f0:
- 9a:68:0d
+ 00:eb:26:d9:1e:69:fc:3d:e5:7d:ff:49:a7:53:4b:
+ 88:2f:bd:d7:1d:0a:54:c1:38:cb:8f:49:39:2b:82:
+ 81:ea:b4:d7:58:59:6a:89:fe:31:9b:9e:32:89:62:
+ db:99:89:1b:1d:6c:71:2c:55:1f:7c:b9:80:d6:04:
+ ce:4f:08:c3:f5:87:90:ea:1c:d7:5c:f1:fb:2c:52:
+ 9e:95:74:12:16:98:bf:d9:09:dc:24:eb:a7:f4:80:
+ dd:b6:3a:1c:43:dc:6d:71:26:a9:3b:35:21:02:39:
+ 50:83:30:44:26:03:b1:2b:46:c3:ee:ad:9a:c8:18:
+ 10:1a:80:8f:8b:89:45:27:91:ab:a5:dd:8e:c3:93:
+ a4:b9:22:56:70:0e:d6:ee:09:11:53:da:5d:09:35:
+ 43:68:0c:56:f9:66:91:5c:dc:a9:a9:c1:67:aa:79:
+ 17:64:2e:30:96:17:8e:2f:6f:f1:fe:20:38:42:03:
+ a5:55:1e:17:02:b5:62:59:63:bd:04:34:82:25:54:
+ 56:db:89:5f:a4:6c:af:1b:d2:03:32:98:7a:2d:e0:
+ 25:5a:8b:3b:f2:5f:38:8e:78:44:d0:6c:df:d2:29:
+ 2b:51:8e:5b:ad:80:01:52:83:b9:a1:dd:83:3f:38:
+ b9:37:2d:5e:a8:46:29:b7:75:fe:8a:a8:0f:42:01:
+ b9:61:c2:cc:b8:44:b8:cf:50:8c:e8:65:ef:0f:0a:
+ e7:52:4a:5d:46:e1:14:76:72:a9:11:47:46:cb:3b:
+ 81:4c:db:7c:49:42:ac:84:e5:0e:46:2a:6f:04:87:
+ 02:33:f7:76:af:38:86:fa:c3:e4:10:57:b0:6d:90:
+ 02:5f:75:18:03:c0:4d:52:34:9a:03:c1:7b:a1:d9:
+ ad:0e:ac:00:a2:a1:02:69:6d:7c:81:5a:4f:d0:9f:
+ 71:b7:86:60:d5:35:7d:6d:38:d2:b6:63:96:ae:04:
+ 60:a9:96:0f:55:77:bb:54:a6:bb:51:81:68:1a:d3:
+ 94:b6:bd:3e:37:2e:f9:40:d1:52:20:8a:5c:0d:8f:
+ a8:6c:c0:72:bf:b8:c8:c9:7d:e5:ee:a6:ee:09:15:
+ d2:a4:a1:12:2a:c1:a1:eb:be:c1:fa:c0:b3:02:9b:
+ 83:3c:35:6f:f5:7e:1b:68:64:3a:5e:ee:5f:c6:c0:
+ 47:2b:21:c7:b6:06:9d:56:2e:be:43:fb:5e:aa:1a:
+ 38:55:41:9a:67:06:da:5b:77:b7:4f:1b:9e:39:59:
+ 74:fc:d5:39:5c:dd:2e:c4:58:76:97:1c:41:41:dd:
+ 27:2c:f2:8a:3d:ab:99:1b:39:2a:9e:b3:61:af:58:
+ 14:04:cd:f9:51:f9:cd:d3:84:eb:b1:33:6d:58:b3:
+ 23:ec:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
- Netscape Comment:
+ Netscape Comment:
CA Intermediate
- X509v3 Subject Key Identifier:
- 9A:37:E4:3B:FA:CC:DC:98:92:D2:32:52:10:DD:FE:2E:6F:0E:43:19
- X509v3 Authority Key Identifier:
- keyid:39:AA:BE:2A:D4:52:32:9F:C9:B9:F5:E0:1E:0E:7C:ED:2A:F5:5E:17
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-external
- serial:01:3C
+ X509v3 Subject Key Identifier:
+ 79:40:DE:1C:BE:4E:6F:37:00:94:B1:23:B1:2F:44:D5:C4:3E:7A:EF
+ X509v3 Authority Key Identifier:
+ keyid:33:AC:54:7E:E9:5B:9C:62:4A:FF:3E:17:3E:F9:EA:C6:3E:6C:C4:83
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-external
+ serial:01
X509v3 Basic Constraints: critical
CA:TRUE, pathlen:0
- X509v3 Issuer Alternative Name:
+ X509v3 Issuer Alternative Name:
<EMPTY>
- X509v3 Key Usage:
+ X509v3 Key Usage:
Certificate Sign, CRL Sign
- Netscape Cert Type:
+ Netscape Cert Type:
SSL CA
Signature Algorithm: sha256WithRSAEncryption
- a9:6e:68:cb:7b:76:81:8c:d1:f4:46:1b:e0:73:cb:d0:77:dd:
- b6:61:5c:1d:de:83:e6:e4:30:32:25:d9:9d:a3:c7:3b:84:70:
- 33:84:e9:30:76:88:31:0f:09:f5:9b:74:1a:a2:16:2f:af:d5:
- cb:97:23:9e:c9:29:99:6d:a6:4e:6f:b0:57:ce:83:0e:87:4b:
- 54:ee:fa:1f:8f:47:07:18:84:05:c5:64:f4:ac:8b:11:48:3e:
- 30:2b:cd:ae:bd:bb:59:ee:98:6e:09:66:f7:ca:16:1b:d8:f8:
- 92:19:9b:61:a3:92:49:64:f9:50:c9:f7:9a:e9:1b:cd:cf:26:
- 43:d0:f1:db:63:b2:33:a5:04:b0:de:97:e5:3c:5c:2d:00:48:
- 81:0b:6e:67:f3:b7:a5:7f:10:63:aa:c5:e6:8d:b8:be:26:2b:
- 8d:7b:a9:67:a0:b9:54:2a:41:19:2e:f3:52:7e:c2:a2:11:29:
- 31:64:a7:de:eb:96:ee:7e:3f:d2:8b:a6:1a:f8:17:cb:6d:94:
- d1:48:16:dd:15:ad:73:af:21:52:e1:89:29:a4:4b:ac:78:b4:
- 83:c7:5c:68:05:df:69:c0:5e:8c:ac:21:e7:4e:32:e3:b7:ff:
- dd:39:1c:e8:bd:d3:9c:8d:55:36:a8:ae:1a:e4:ed:8c:24:a0:
- 7a:04:31:01:b4:ac:91:d2:fc:a7:70:84:ed:ab:9a:a9:c0:f4:
- 5a:37:46:a5:41:69:98:7f:d3:26:3b:df:eb:a6:97:04:a1:f1:
- d3:ea:28:57:de:cf:13:b0:8d:31:4a:39:50:1d:92:9a:8b:74:
- 2d:8c:b2:97:a6:84:dc:46:89:2d:8b:72:ae:90:d6:c3:5d:87:
- 52:45:96:fc:a6:2b:c2:0f:f9:2f:be:b1:e8:b3:86:48:24:b9:
- fe:39:7d:ad:7a:fe:6b:8c:ad:c7:f8:0e:39:f1:ca:83:45:03:
- 3a:2c:6f:7b:c0:d1:57:04:49:d0:dd:62:a3:5f:75:fb:8f:c1:
- b6:05:f7:12:e1:59:f5:a1:05:40:d8:fc:26:96:d1:2c:b2:9c:
- ae:76:d5:44:da:a7:53:74:da:e8:40:a0:68:69:f2:a0:30:8f:
- 21:8f:66:32:f7:f9:a8:8d:08:69:b3:d0:7f:94:d5:73:f3:ed:
- 7a:df:83:2b:fa:35:aa:3e:32:14:b6:90:ce:1d:b6:e9:b8:fa:
- fc:f3:8d:fd:9a:48:25:ab:7c:4e:bb:bc:0f:5e:5e:ff:47:9d:
- 08:e3:ce:e6:51:da:e8:1e:14:fa:bf:8c:33:40:7f:3f:6d:31:
- 2b:9e:ec:5e:50:07:f7:c2:62:1d:6f:3c:71:9f:84:8d:da:26:
- 16:4d:23:bf:1c:c3:e1:a5
+ 13:2f:f3:16:55:a3:c7:42:30:80:71:45:7f:9a:8b:8c:cd:e2:
+ 39:27:44:b2:46:a0:90:6c:36:13:bc:0e:99:34:b3:0f:a0:b6:
+ 85:ba:ef:f5:53:b5:63:e7:b0:64:16:ed:be:dd:9c:08:41:7c:
+ 74:a5:6d:0b:12:0a:bf:e2:e3:28:dd:1d:d7:a9:42:a2:f8:bb:
+ 0d:0d:ae:45:a2:f3:a7:c7:22:bd:d3:80:b2:fe:41:af:79:31:
+ 13:c7:78:cf:5a:ea:3e:f9:a7:04:ed:86:32:c9:2e:93:46:af:
+ 03:f4:fd:2b:96:2f:6b:9c:9a:a5:db:3b:b9:6b:24:03:5b:21:
+ 96:40:9a:fa:f0:25:a1:52:5d:5a:e5:bc:8d:18:3f:54:c3:f1:
+ f5:c8:e1:3e:52:5b:fc:ee:ea:64:0e:67:be:80:d6:38:76:de:
+ cb:dc:dd:3f:3f:5e:37:8c:d4:af:0b:f7:74:39:6c:42:68:34:
+ a4:94:23:6c:dc:07:d9:5d:8e:61:08:bc:6b:4f:cc:81:69:f3:
+ 1f:66:81:80:0e:ba:80:a2:9a:65:1e:ea:73:0b:0e:74:35:0e:
+ ad:dc:66:14:f7:2b:9e:09:b8:ed:df:a1:e1:16:3a:cb:af:d0:
+ 5d:1c:5d:fb:f9:9a:e2:a5:a3:14:f5:70:3e:a9:79:f5:2a:81:
+ 7e:6c:b2:0d:61:31:de:38:5a:8a:1e:f3:d4:60:04:6b:5a:bf:
+ 6f:de:dc:09:d0:6d:3e:51:7a:c3:5c:fb:66:a3:6d:ce:51:8d:
+ d9:7d:74:17:63:8d:7a:b0:bd:b3:41:1e:fd:d2:74:c9:40:08:
+ 65:d3:73:5c:41:d1:a4:ff:f9:ee:e2:41:be:5b:fe:7c:b3:f1:
+ d0:71:26:9f:9d:7f:b2:5d:ac:89:c4:04:04:d0:a6:ec:6d:37:
+ 55:60:b2:d6:ff:36:fd:ad:0b:ba:13:9a:88:c0:73:80:fb:76:
+ 51:6c:83:00:13:32:81:29:ab:1c:ea:75:8e:60:74:73:79:40:
+ 5a:fd:c5:48:a0:4b:6e:54:59:31:10:a6:7e:67:c3:a2:f6:37:
+ 5f:72:d9:4d:26:f5:eb:1a:47:41:87:33:e8:3d:06:e2:67:b4:
+ 2a:ca:96:41:3f:f0:28:e8:d6:9a:4f:b2:a2:3b:4e:86:2b:16:
+ 98:3d:e4:da:3e:28:53:88:b3:cd:5e:d5:6d:2a:90:eb:d5:98:
+ cb:95:3c:8f:c2:4b:a8:13:c7:65:0b:4e:72:3d:0c:fa:f2:5b:
+ 10:47:60:22:23:16:d3:7f:df:13:c4:a3:6f:05:0b:e6:cb:a1:
+ 12:8c:b6:b8:e1:c8:03:98:e0:ac:53:8d:dd:63:cd:1c:58:ab:
+ b7:50:44:65:8e:46:fe:80
-----BEGIN CERTIFICATE-----
-MIIGjzCCBHegAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwczELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEgMB4GA1UEAwwXY2Ffcm9vdF9jbGllbnQtZXh0
-ZXJuYWwwHhcNMTkxMTIyMDg1MzM0WhcNMjkxMTE5MDg1MzM0WjB7MQswCQYDVQQG
-EwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0
-YW0xFDASBgNVBAsMC2F1dGhvcml0aWVzMSgwJgYDVQQDDB9jYV9pbnRlcm1lZGlh
-dGVfY2xpZW50LWV4dGVybmFsMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKC
-AgEAue9R39uBexXRYzoacDu6iaK+m7ZO/AcXvlDD6vojLqOQY5V1rWFGe2ACzc2R
-453bT72JJUufMZa8YkFnTGBDCgv9/Kzi7qzopd+5TROkuxiLlj+Htppte9RLyyRQ
-rDYE1TFwCAtSw0QkXsXMUDc40uGFFo4fXDszqFLtpoolCj8qPyM5NNuyvkEyOLxy
-sxPphhPNy3DPCW5BSYxmZqGBzGtFC1v4dQqj2yj0orXOyRNdJj3a6OIFN4PUMIl2
-IZoqUeWLxSzzL/sApdDfx24cNk+RSBzecuCQb0lLxMa0iGrc8yYbcZmQ4Z+gFXGI
-AIQEA4tQAWKxvL4Z9EbGQFKryH1JaHaNQZbsSR6darI3QC6w7HLQhnjp0kyazf4I
-xt4hOuXkQ7BPEjKVNYu8Nz6kbUi/xub4ljN89C1DYhXEV9GDHuBQ5L3SexJGcIhB
-ZLnlWS8oZ5G2qSBhzn9wJXdyqTwc1H2vJ9y3uCe7xP461UMqDBBp9bPStNWJuw6y
-dA0WDMUucD5SV8tAcDAc4mJieidFu6W25pg4/gAWkxzOwFPms73DKMdocohQ/jBn
-rFz7hZrxk40Eh9JU6fFT+XWitnw1lYL9cwM2BNr6PyiGNEXJr9n11JVXZB7bFcPQ
-SNqp/ysz2V4VxZIf6Lt6kRld+im+YIKdQPQyvo8wD/CaaA0CAwEAAaOCASMwggEf
-MB4GCWCGSAGG+EIBDQQRFg9DQSBJbnRlcm1lZGlhdGUwHQYDVR0OBBYEFJo35Dv6
-zNyYktIyUhDd/i5vDkMZMIGeBgNVHSMEgZYwgZOAFDmqvirUUjKfybn14B4OfO0q
-9V4XoXekdTBzMQswCQYDVQQGEwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVw
-YXJpczEOMAwGA1UECgwFdml0YW0xFDASBgNVBAsMC2F1dGhvcml0aWVzMSAwHgYD
-VQQDDBdjYV9yb290X2NsaWVudC1leHRlcm5hbIICATwwEgYDVR0TAQH/BAgwBgEB
-/wIBADAJBgNVHRIEAjAAMAsGA1UdDwQEAwIBBjARBglghkgBhvhCAQEEBAMCAgQw
-DQYJKoZIhvcNAQELBQADggIBAKluaMt7doGM0fRGG+Bzy9B33bZhXB3eg+bkMDIl
-2Z2jxzuEcDOE6TB2iDEPCfWbdBqiFi+v1cuXI57JKZltpk5vsFfOgw6HS1Tu+h+P
-RwcYhAXFZPSsixFIPjArza69u1numG4JZvfKFhvY+JIZm2Gjkklk+VDJ95rpG83P
-JkPQ8dtjsjOlBLDel+U8XC0ASIELbmfzt6V/EGOqxeaNuL4mK417qWeguVQqQRku
-81J+wqIRKTFkp97rlu5+P9KLphr4F8ttlNFIFt0VrXOvIVLhiSmkS6x4tIPHXGgF
-32nAXoysIedOMuO3/905HOi905yNVTaorhrk7YwkoHoEMQG0rJHS/KdwhO2rmqnA
-9Fo3RqVBaZh/0yY73+umlwSh8dPqKFfezxOwjTFKOVAdkpqLdC2MspemhNxGiS2L
-cq6Q1sNdh1JFlvymK8IP+S++seizhkgkuf45fa16/muMrcf4DjnxyoNFAzosb3vA
-0VcESdDdYqNfdfuPwbYF9xLhWfWhBUDY/CaW0SyynK521UTap1N02uhAoGhp8qAw
-jyGPZjL3+aiNCGmz0H+U1XPz7Xrfgyv6Nao+MhS2kM4dtum4+vzzjf2aSCWrfE67
-vA9eXv9HnQjjzuZR2ugeFPq/jDNAfz9tMSue7F5QB/fCYh1vPHGfhI3aJhZNI78c
-w+Gl
+MIIGkzCCBHugAwIBAgIBAjANBgkqhkiG9w0BAQsFADB1MQswCQYDVQQGEwJmcjEM
+MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEQMA4GA1UECgwHdml0YW11aTEU
+MBIGA1UECwwLYXV0aG9yaXRpZXMxIDAeBgNVBAMMF2NhX3Jvb3RfY2xpZW50LWV4
+dGVybmFsMB4XDTIwMDUwNTA5MTM0NFoXDTMwMDUwMzA5MTM0NFowfTELMAkGA1UE
+BhMCZnIxDDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxEDAOBgNVBAoMB3Zp
+dGFtdWkxFDASBgNVBAsMC2F1dGhvcml0aWVzMSgwJgYDVQQDDB9jYV9pbnRlcm1l
+ZGlhdGVfY2xpZW50LWV4dGVybmFsMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC
+CgKCAgEA6ybZHmn8PeV9/0mnU0uIL73XHQpUwTjLj0k5K4KB6rTXWFlqif4xm54y
+iWLbmYkbHWxxLFUffLmA1gTOTwjD9YeQ6hzXXPH7LFKelXQSFpi/2QncJOun9IDd
+tjocQ9xtcSapOzUhAjlQgzBEJgOxK0bD7q2ayBgQGoCPi4lFJ5Grpd2Ow5OkuSJW
+cA7W7gkRU9pdCTVDaAxW+WaRXNypqcFnqnkXZC4wlheOL2/x/iA4QgOlVR4XArVi
+WWO9BDSCJVRW24lfpGyvG9IDMph6LeAlWos78l84jnhE0Gzf0ikrUY5brYABUoO5
+od2DPzi5Ny1eqEYpt3X+iqgPQgG5YcLMuES4z1CM6GXvDwrnUkpdRuEUdnKpEUdG
+yzuBTNt8SUKshOUORipvBIcCM/d2rziG+sPkEFewbZACX3UYA8BNUjSaA8F7odmt
+DqwAoqECaW18gVpP0J9xt4Zg1TV9bTjStmOWrgRgqZYPVXe7VKa7UYFoGtOUtr0+
+Ny75QNFSIIpcDY+obMByv7jIyX3l7qbuCRXSpKESKsGh677B+sCzApuDPDVv9X4b
+aGQ6Xu5fxsBHKyHHtgadVi6+Q/teqho4VUGaZwbaW3e3TxueOVl0/NU5XN0uxFh2
+lxxBQd0nLPKKPauZGzkqnrNhr1gUBM35UfnN04TrsTNtWLMj7KECAwEAAaOCASQw
+ggEgMB4GCWCGSAGG+EIBDQQRFg9DQSBJbnRlcm1lZGlhdGUwHQYDVR0OBBYEFHlA
+3hy+Tm83AJSxI7EvRNXEPnrvMIGfBgNVHSMEgZcwgZSAFDOsVH7pW5xiSv8+Fz75
+6sY+bMSDoXmkdzB1MQswCQYDVQQGEwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQH
+DAVwYXJpczEQMA4GA1UECgwHdml0YW11aTEUMBIGA1UECwwLYXV0aG9yaXRpZXMx
+IDAeBgNVBAMMF2NhX3Jvb3RfY2xpZW50LWV4dGVybmFsggEBMBIGA1UdEwEB/wQI
+MAYBAf8CAQAwCQYDVR0SBAIwADALBgNVHQ8EBAMCAQYwEQYJYIZIAYb4QgEBBAQD
+AgIEMA0GCSqGSIb3DQEBCwUAA4ICAQATL/MWVaPHQjCAcUV/mouMzeI5J0SyRqCQ
+bDYTvA6ZNLMPoLaFuu/1U7Vj57BkFu2+3ZwIQXx0pW0LEgq/4uMo3R3XqUKi+LsN
+Da5FovOnxyK904Cy/kGveTETx3jPWuo++acE7YYyyS6TRq8D9P0rli9rnJql2zu5
+ayQDWyGWQJr68CWhUl1a5byNGD9Uw/H1yOE+Ulv87upkDme+gNY4dt7L3N0/P143
+jNSvC/d0OWxCaDSklCNs3AfZXY5hCLxrT8yBafMfZoGADrqAopplHupzCw50NQ6t
+3GYU9yueCbjt36HhFjrLr9BdHF37+ZripaMU9XA+qXn1KoF+bLINYTHeOFqKHvPU
+YARrWr9v3twJ0G0+UXrDXPtmo23OUY3ZfXQXY416sL2zQR790nTJQAhl03NcQdGk
+//nu4kG+W/58s/HQcSafnX+yXayJxAQE0KbsbTdVYLLW/zb9rQu6E5qIwHOA+3ZR
+bIMAEzKBKasc6nWOYHRzeUBa/cVIoEtuVFkxEKZ+Z8Oi9jdfctlNJvXrGkdBhzPo
+PQbiZ7QqypZBP/Ao6NaaT7KiO06GKxaYPeTaPihTiLPNXtVtKpDr1ZjLlTyPwkuo
+E8dlC05yPQz68lsQR2AiIxbTf98TxKNvBQvmy6ESjLa44cgDmOCsU43dY80cWKu3
+UERljkb+gA==
-----END CERTIFICATE-----
diff --git a/deployment/pki/ca/client-external/ca-intermediate.key b/deployment/pki/ca/client-external/ca-intermediate.key
index 6f834c14d17fecbba06bc6ceee7c53b7a40f86e1..2d6c8b25c67bd687dc932ba5326b7fb80f61061d 100644
--- a/deployment/pki/ca/client-external/ca-intermediate.key
+++ b/deployment/pki/ca/client-external/ca-intermediate.key
@@ -1,54 +1,54 @@
-----BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIUj8kRjF7kJwCAggA
-MBQGCCqGSIb3DQMHBAji7zknCQKxewSCCUiZK3Sfl9b3yPvp5eyyqwAVJCHaTIhJ
-6fBOdWSr7mCq4QFi1JPzIybFB5HMXFRep//FHv22bQF6/t4yiV9qGpANTZGp4wHH
-VlWdqbP9HOG64m0WZN/AksMhM45m1LRM3y//wIbFpMIQM7XokjBdA3j/uPPDYCkW
-w7aqLeg6RBHaamRr9Imb606Q1GtB4pUTWfUZJtZuz9R+1i0NWSG5cX7tkPrJzipL
-RoGcJ2X5MYp45G+RWzUM1DOrKb8UQTNFs1W1vC2Qgy84s2DWjv5ZmmN/8LuNmPJS
-C18fhT+u1vO6K2SaVTsADH9djBBeKOmau6R4iDof9eY0LlmHctpYg9eGf6xeFHMd
-i5FdzzFo9jSQCVarBo3bqwb4/f/T342Y0nwONVSZU3Aeb4l1e/xP2DEMhadk66Yu
-FQftQ9RyFXXhEJNxjsIJnywBVbkEOGzZHsD4cXvfqlG9KnPhJkpRYeHgdnlDQZdz
-Vp4eFvwL6tur5ePoIMBOs3risLvIrmCxr/bQRHrcsl8miR8x168EMgFYUvdCUu9A
-9hEnWER3pntgwmz6wqV6OUMYHHFwErvvdMY6mLH5EULb+FCosewTEPPDarc9qGZn
-m5CX3RNEkqNcmOAEiNvZP7MhkkOBhK2DPbJMzvRTOFpq8lyTF0fXqIDSqJeX98Ff
-jZ5xQASQzjTQKTpJt1ufqiig0izR17yWhWVzdZ2+ANmeiXBKJuunDmv7P7fx9ofM
-ggVevml8NO6T/nwX1OCgbZZlRcfk0w4p8GCCTQF7PVbAYwVrDfHJrqI65o4j3FT5
-zEGTIxxr/tgVsUfEaWtj7liBU+Rb+0WqPz4o+tFjP49Hfmiwt1u03pHUpyCNstrC
-0c490BFfCLgsm/OHejlZ0YH70Ae8DEPzvKViEB+Wh2t5qy72s7LjXNu7OjuRaEej
-BctP4SWDqdxMdrdKD4V+sbpvt0trA9ZZWx0IVf7TxtfyeqgizXnzNBkixwnok3At
-9dS9QxOpYsFI/VRLOJTkWHUQbGu2O+Hyfqoo+EzqNOdkf65zr7RFrByJ92sfJ42/
-CcnZE6B1KVFVMVnLb9wkUxp2cSGJyVYP1w8z57GoO8TeYlnOLXtYStFFXvvWXqZd
-bx0BFlGnkBVMq9YZBItHFk/4EU0at3jWiBEoAieFjsskYWD3xWERVYDtI/Hu0bWM
-r8rSzjKpu1fvxAZDUwsYuJh4XTYxzP4wdby+itw4JdRf9DZkNa3vpr8ypc77rhv0
-IR5jgsGjIhUjVcoLLoUsc1g4zOGe9z33/L3u1fqQ4QTenkzOTdE1YbSSgZPxb3HZ
-JMwQlQg+WkZP3xGxWgu07lrfKmG23P7pKekArHOR9DORUhwDWzPAneSKryBk7aZc
-CP0h3SuSj0WzH+27tDRFGd2Hym3FCuA4RMNAXWMGR2VRm57DnBhMgFIFI7NPau28
-9tfFWhmeVTZyMR6L8vSYjR9k7TsdShyA1KFqz3UCGeHDrxrhPK6edMI1Wz+xH5Pp
-SeesdFWPJjYlqxf3R922d7nlD2LPw2V3gIIaCUtmQSFIRtR6rDFv6dq7TVArUfKQ
-mDmff3qj/sb7lXtNNvT4+Llls/PG5Fli3GYQKeSg/n9U4TIp0z1nPm1aL0ZCRPDz
-1aZZtvjzJy3qxjvFdbXbEGktFzyzO7OHBqjPEfJsc9Bw0gBlz6Udqm0yvY09nCOX
-fXE0++CiScm8LfyqU8FFcMn8dVz7c6yldb5PXFp0e4uPWnu7ag8Kld8KXckWAbQV
-EUMS3gfIKXRdk0b4RLxASkr/Kvq+ywZaq0NGLx4d4lfIoj4oHWQiSR3CrfwrbqpX
-2BOhOz+NOqkrTM0oGtzWm0hJJ4Pdp/s8oHsm0TY9oFPg4Y50oOyFcWv3ZbQszwSW
-BxJ+rLIqcTvbK95tCQMDKZYwCMbHOiQqryQHgpsAxVHh62MrMqbAGlOwYwOzYkTw
-EPoHrX6qXU5mPKNDqqO+vKNDMxVuTPDPfUwL6wBK42UawXy4YQPtuelmVIZBOvYG
-wwi/63qxBfoHKSY1/ErGEpEnGyLzoiXipvRLF/D9a20q31QeW2XxPPg8zjlC82r7
-POiRwl37xrTL392Kf6EwRPAM1LScYBTTJRlIe3HW9ZQFYh0o+cf09sShK9TxzhDS
-ctOAvOwTw1//L0W2iH2hhnPxAt6Cy/yt/uZy7snfXuHjd0RIhcpN2TGiamCM8Frv
-+NMh/fPE3RP7NunT/JeFzqfZGkhIKl8UzwMVkmDSPrJ93CV6qPfeb+p1TFSHyuGd
-YyVH1A83jGMq29SAHUN0CdWQQ2TZXyTUUCAxIX1+Q2TDxhefOUAQSVyXPOvVMnMy
-ahsB779f4bZyt2mBQLxg1xQKVupL7WR+nnXg0jQrc4RKAdRnQ/ucONa1D5QXfDBH
-UokQ6TL/1Dk5kH0jk8y93Y1+HBtk6im1mE8uAOqSZAbpBXZRx4wVxowV06YjG/YK
-27u87qksGl6t2g/RNsFEbepdXf8znCTZkDwpyih5J3sk/zqYK6gEY+QoDO2+q+gT
-MXUj9lBc9nTuV2Mm3XF0qsLSFV7kZDcusaSf5S5nM0bsgLdW/wtgD1Ua3L2fJjYV
-c0FQLw/UaP4GYQ4O89ogjzRKNe59/Q2ceF0W/xr2Q6faAvrFDT+UatDKpB9pxyBp
-dI6q5wXv87n1HK+zb4SVfmXE7pfhDnAnBVj6/W931TaG5pBX+ixLEMPNhHw1cKJ4
-Qk3ng7bFn0J3nLWShfK1BMp//iuspnuI0nZRqEcyvzwzXu4jntCIrN1woYbDe1bC
-wTaQtV+t3kM5MXaeNFRB2ZVuRzAp3yheQ0ePDx7r8mOEug9UmiJjvuVk5z9R+qJ/
-jeKKDNA3c2OcMRZDQbXkclgI2N9AP4zTbKkErj/JrlpwMhD2sfYT8Etzz9T5GybV
-t3Y9zz0jpwhy6jJgKt0FZlaw12lLuuTrRJ/s3vcEqEIRXWCzonenA9nUGwDq9Rbz
-eEH8S3XNxTSOLvC1KmAyhm71xscv0Z7j4LBpsKgMIMOUo3VmL3EkJsHnnpVV1ZYT
-ebyjJYOsxC9/U8E6U6lFnILXmD+HLh7q8EXPHkNad4GU+0sJ7RAq09HOefCXVpTY
-/j/RPT9JzVmZBzIHmmyqZP4/uig05U/pigjw+bQ3Hi9X4SyCIH8r6Gp1wyGDUUSg
-HWw=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-----END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/client-external/ca-root.crt b/deployment/pki/ca/client-external/ca-root.crt
index a726c595aca6ac7dbed516f69679920a93039b2c..2e7c092a03a59a393163f504a5d0b49166551b5e 100644
--- a/deployment/pki/ca/client-external/ca-root.crt
+++ b/deployment/pki/ca/client-external/ca-root.crt
@@ -1,128 +1,128 @@
Certificate:
Data:
Version: 3 (0x2)
- Serial Number: 316 (0x13c)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-external
+ Serial Number: 1 (0x1)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-external
Validity
- Not Before: Nov 22 08:53:33 2019 GMT
- Not After : Nov 19 08:53:33 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-external
+ Not Before: May 5 09:13:42 2020 GMT
+ Not After : May 3 09:13:42 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-external
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
+ RSA Public-Key: (4096 bit)
Modulus:
- 00:d5:80:14:a1:6e:01:98:ee:c3:9b:38:b4:09:8c:
- eb:d9:9f:4f:19:6c:b1:6c:31:85:d1:c5:fd:e9:41:
- b4:97:5f:d6:0c:b0:8e:98:42:63:bb:5e:ef:23:11:
- a7:5b:b8:9e:26:7f:c5:e8:ef:05:52:f2:78:b6:80:
- a1:cf:58:5c:ec:f6:e9:0a:d6:ef:68:87:15:24:45:
- 94:1d:03:40:e2:77:94:4f:f2:5c:28:52:8f:0e:ba:
- c2:ad:2c:a6:d1:c5:b2:ff:b1:48:26:87:fe:68:8a:
- 96:68:70:a5:f0:d5:8b:94:c8:56:87:4d:64:4f:9b:
- 50:01:98:81:46:bc:10:81:c2:83:62:ef:27:2e:55:
- aa:22:d9:4c:c7:eb:63:ca:00:2c:88:2b:6d:26:c7:
- 04:aa:e5:86:f2:33:12:19:4c:be:f4:a6:02:d6:c4:
- 06:9d:a7:0e:29:5c:83:29:c5:44:75:60:e7:87:ab:
- 61:06:52:e4:f3:a4:5b:9d:96:26:1a:47:e7:b2:7e:
- d7:41:9e:39:9d:21:08:76:60:0a:35:3b:04:21:4d:
- 4d:47:6d:42:04:d7:b9:97:13:b0:27:e2:53:70:7e:
- 19:54:b2:3c:94:24:d4:21:8b:ce:8d:5e:04:a5:e8:
- d5:c9:0d:c8:57:38:87:eb:a5:ab:19:2d:6f:78:ca:
- 77:10:bc:6a:48:75:48:84:a2:77:c9:4b:34:a9:fc:
- 5d:fb:34:3f:e9:34:91:33:05:f2:60:de:ec:cc:b1:
- 4f:32:e2:3c:33:e7:b9:57:da:4f:7b:ee:ee:21:bf:
- 87:de:db:ef:94:90:84:59:a5:19:45:e8:47:e4:b0:
- 1b:ab:0f:48:ff:5a:50:e4:e4:0c:d3:f5:1f:33:1e:
- e1:ff:95:b5:cd:9b:19:85:57:06:a2:a3:99:91:49:
- 9c:c3:00:aa:fc:16:c0:1c:67:91:22:e0:f6:e6:e8:
- a0:10:dc:7b:cd:9c:07:88:70:b8:dd:2b:23:e0:92:
- 45:bf:1a:95:4e:fa:85:80:ce:f8:e1:40:83:85:59:
- 9a:ae:f5:bd:74:03:ed:d9:e3:8a:4f:c8:ea:57:00:
- 87:f2:49:6b:ed:36:06:1d:8f:9a:ce:6a:65:82:9c:
- 13:da:30:e1:4a:94:61:4a:2c:88:57:db:3d:f7:61:
- 43:df:c6:37:29:b9:c3:90:74:13:0b:8b:4a:8f:fe:
- 59:32:98:d2:46:07:77:4c:a1:9c:23:d7:6d:b7:c1:
- 58:ee:47:8b:ff:9a:ff:6e:5a:b6:fb:8c:76:6d:72:
- 73:d8:62:5c:e2:a8:30:c4:98:e9:9f:e8:25:39:31:
- 39:b3:a5:2e:45:5e:e3:86:f3:94:b5:a5:cd:fe:6b:
- 39:26:7b
+ 00:d3:fb:5a:dc:49:69:f0:40:e5:90:7c:e1:2e:c3:
+ ef:53:92:3d:83:c2:06:53:c7:bb:e2:ec:ee:bc:a1:
+ 09:d5:a5:04:71:fe:c6:01:7f:7c:2a:88:7c:42:1d:
+ 57:29:54:28:7c:e0:c9:ae:63:ad:28:21:f2:fc:34:
+ 86:3a:67:8a:a8:59:9f:24:e2:07:0f:ef:87:27:27:
+ 92:b5:21:5d:19:29:7a:35:3e:be:db:d1:0c:22:25:
+ db:28:f8:6a:9a:03:35:56:18:90:27:09:01:7f:b5:
+ 80:b8:bd:f0:ff:7b:ed:f7:f4:33:94:6d:ca:1d:94:
+ b9:69:e1:42:28:bb:f2:51:dc:01:e0:02:f0:96:1e:
+ e0:c8:33:41:79:d5:fe:7d:55:9c:cd:9b:58:49:f6:
+ ac:0f:e2:c8:fc:75:4c:0d:a8:a7:f0:3d:97:07:d4:
+ 7f:17:90:dc:16:ee:df:de:76:5c:ce:f1:42:c9:17:
+ 5f:ae:82:31:b0:97:1c:4f:b0:bb:32:e4:a1:5e:85:
+ d0:0b:fb:85:d5:3f:2b:86:b3:5a:aa:2a:37:8e:17:
+ a4:67:0a:33:3f:b5:74:93:48:1a:62:37:65:44:45:
+ 5b:18:b6:47:58:de:90:0a:7b:86:39:49:3e:ce:fa:
+ 11:c6:ec:5f:d4:c6:e2:4d:a3:04:1e:96:87:04:d3:
+ cf:a6:5e:01:a8:f3:30:dc:a5:40:b1:5e:a3:42:53:
+ 29:55:58:20:f5:f5:19:00:0f:49:60:16:77:bc:f2:
+ 4a:16:8f:38:79:21:8a:ce:78:1a:60:9c:e0:e9:c1:
+ d7:4a:3e:05:10:f5:8f:e6:f1:a3:85:c1:a2:32:56:
+ 5b:4e:7d:5a:3a:a1:3c:61:ae:5e:68:e4:69:97:72:
+ 3d:38:5e:75:b9:06:e3:b6:f9:02:52:df:b4:87:d5:
+ fb:8e:99:c6:a6:1b:ca:95:e4:4e:22:27:25:cf:7d:
+ 2c:8b:fa:9c:42:49:d7:37:0e:1e:07:cc:e0:67:c7:
+ 8e:9e:cf:53:bc:c7:f5:8d:89:0a:e8:06:cb:48:6e:
+ b6:d0:c9:98:50:2b:43:82:4e:36:02:74:9e:e6:54:
+ e0:c4:f3:49:be:b0:45:60:46:71:3c:8f:10:7f:59:
+ c8:85:9a:70:b0:a2:a2:63:d0:b2:8c:41:fa:4a:75:
+ b7:36:18:b1:86:7b:1e:06:34:1e:59:37:76:c5:f0:
+ bb:77:b0:25:7c:13:0a:14:32:67:d9:b5:eb:f5:a4:
+ 74:cc:5e:c9:68:1c:bc:0e:ce:1a:ed:ab:82:2a:67:
+ f6:fa:6c:5e:a6:b6:e4:24:0c:f6:86:bb:ee:0a:b9:
+ 6f:8e:df:5d:90:82:e2:22:f3:d1:bc:2b:44:fe:fc:
+ 6f:87:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
- Netscape Comment:
+ Netscape Comment:
CA Root
- X509v3 Subject Key Identifier:
- 39:AA:BE:2A:D4:52:32:9F:C9:B9:F5:E0:1E:0E:7C:ED:2A:F5:5E:17
- X509v3 Authority Key Identifier:
- keyid:39:AA:BE:2A:D4:52:32:9F:C9:B9:F5:E0:1E:0E:7C:ED:2A:F5:5E:17
+ X509v3 Subject Key Identifier:
+ 33:AC:54:7E:E9:5B:9C:62:4A:FF:3E:17:3E:F9:EA:C6:3E:6C:C4:83
+ X509v3 Authority Key Identifier:
+ keyid:33:AC:54:7E:E9:5B:9C:62:4A:FF:3E:17:3E:F9:EA:C6:3E:6C:C4:83
X509v3 Basic Constraints: critical
CA:TRUE, pathlen:1
- X509v3 Key Usage:
+ X509v3 Key Usage:
Certificate Sign, CRL Sign
- Netscape Cert Type:
+ Netscape Cert Type:
SSL CA
Signature Algorithm: sha256WithRSAEncryption
- 08:0f:f4:8f:c3:c9:df:c1:70:b9:e9:23:ba:1d:58:cf:48:e7:
- 5a:e3:18:d3:1e:a9:14:ee:21:a7:33:e2:23:6e:cd:8f:8a:5e:
- e0:23:62:81:8d:0d:cc:31:dc:11:75:67:a7:13:41:e6:4d:61:
- 53:f1:30:41:a5:f8:de:14:d0:fd:16:ba:45:71:4a:7e:00:62:
- c0:1d:9c:79:f1:57:f0:11:7c:b4:0d:4d:10:3b:b6:84:b4:0c:
- 8e:e0:0e:04:88:b3:11:b2:7b:0b:88:b3:5f:44:c8:14:15:70:
- 75:6a:a2:ab:df:cd:0a:24:44:83:98:30:a5:d6:0e:98:17:67:
- a4:30:8f:83:f7:53:ef:b3:4d:26:49:ea:25:ad:fc:10:54:8b:
- 1d:02:0b:c9:d2:90:9e:d1:d0:0a:4c:d4:bd:8a:d3:4f:41:d9:
- c7:4a:bf:90:5b:e9:90:14:a6:34:42:c7:6f:3c:b5:92:cb:a7:
- f3:65:49:16:46:48:02:c1:f4:3a:5f:0d:5e:ed:1b:b8:7b:19:
- f5:47:48:0d:8c:5f:9b:12:2f:59:4b:db:db:6c:27:44:e5:d0:
- d4:bf:2b:0f:96:6b:a5:0f:df:05:bf:9f:16:8c:cc:2c:0c:25:
- e2:cb:7e:31:27:6c:44:b9:69:2a:6d:8e:fd:1f:1b:5d:fc:d7:
- 4e:ab:c8:a7:76:15:3b:61:ca:20:c4:5b:0c:5f:4e:b5:81:91:
- a2:db:d0:a5:f6:79:89:7f:4a:63:48:8a:bd:a0:e8:44:fa:45:
- 10:ae:27:7b:f3:58:10:70:98:e9:ef:43:b0:3e:18:0d:00:9e:
- 5e:bf:da:83:fe:0b:3e:01:49:37:17:d9:f1:27:5d:ad:98:3a:
- 7c:6b:e3:25:ef:74:b3:bd:6e:7e:59:f1:21:38:6c:98:97:05:
- 50:b4:52:d7:f4:10:d7:88:19:f2:c8:0c:9b:b8:60:08:ce:f9:
- 63:24:95:0d:7f:40:97:e6:59:ce:b3:1b:24:88:50:83:27:fe:
- 92:fc:32:13:42:a1:7f:38:7c:96:82:a2:29:90:07:46:14:04:
- ee:51:64:ae:bd:d7:46:ff:5b:03:66:9d:1a:1e:17:1f:94:e9:
- 5a:a2:40:71:7e:07:85:8e:a0:db:f7:85:87:51:d4:74:f2:67:
- b1:b5:60:c7:e6:09:69:4d:ac:6a:4f:19:37:fc:9a:9a:5c:d7:
- 95:ad:12:60:b3:3e:69:5e:59:d6:ff:7d:7c:e8:71:70:54:a5:
- 38:c3:41:e8:c1:0d:b6:07:b6:8b:4b:11:33:f5:2c:bb:e9:cf:
- 49:8e:54:06:01:06:dc:37:fa:65:84:75:d1:98:2d:b7:4f:37:
- 68:42:cf:aa:89:da:b3:91
+ 7f:6e:7e:db:76:f9:9b:9b:9d:d1:82:c3:de:69:da:3f:57:60:
+ 0b:ac:24:c3:99:b5:4c:c8:99:73:c3:c4:63:4b:37:b9:4d:51:
+ fe:88:fc:e2:42:6e:26:3d:8c:1e:7c:83:19:ce:ec:5b:55:7d:
+ 1e:01:93:00:99:8a:19:28:49:55:18:f8:c8:fd:66:ad:04:6c:
+ 7e:54:19:81:d9:30:53:68:41:be:ba:f6:1d:c6:23:18:88:99:
+ 98:33:0c:52:14:5f:95:04:17:4b:0b:9b:0f:ae:7f:f9:77:00:
+ c8:0e:2c:b1:4f:5a:95:23:6f:2b:f8:8b:9d:8f:48:ef:9e:1e:
+ 68:fe:41:4b:43:f3:77:23:d4:71:f5:ee:4f:5a:bc:53:9c:39:
+ 26:83:d4:61:37:f0:af:a9:3e:b8:b2:f6:47:d7:e4:87:ba:42:
+ 68:67:fe:c2:1b:b6:d7:95:c4:af:ed:74:ba:6a:60:38:f8:91:
+ 26:52:f3:1a:3c:db:80:af:80:6b:c2:5d:fa:00:53:90:ee:ab:
+ 41:9d:ec:58:d1:96:66:aa:10:3b:a2:fa:a2:f6:30:25:76:6f:
+ 92:02:0a:d0:da:21:f8:36:9c:1a:4a:f3:56:5e:ae:fa:93:42:
+ c2:e6:18:6f:62:84:5d:f7:ae:d2:d8:31:2a:ef:99:18:9e:3a:
+ b7:4c:0e:2b:ef:c3:38:27:79:cd:8f:03:03:3c:26:91:4e:f6:
+ 6a:aa:96:65:f6:02:b0:e4:c6:0e:a9:3c:2a:78:e1:9b:a2:ed:
+ d5:64:a8:c3:94:9a:a7:7f:ba:48:61:b8:0e:6f:e7:74:e4:75:
+ 00:c0:2f:df:da:70:d6:a2:3d:0e:de:f8:ff:97:b0:36:18:13:
+ a5:ea:fa:6f:6b:f1:b9:29:6a:24:38:d8:4f:0c:75:56:0d:95:
+ dd:a5:8f:0c:19:a0:4f:64:cb:6a:54:cc:3b:07:57:d8:c4:1b:
+ 32:65:ed:b1:8f:b7:c2:48:13:41:55:03:c4:7d:9f:71:a3:99:
+ ba:cd:23:71:0c:c8:c6:73:48:c1:7e:91:2c:a4:74:a8:e2:42:
+ c3:f5:d6:02:03:12:de:95:94:9c:5a:cd:e6:a4:d1:d2:1a:b0:
+ 98:6f:23:15:b2:4d:f4:ca:76:07:b5:da:3d:0c:7b:50:fd:1f:
+ 7d:84:8e:0f:84:b6:f1:20:bd:58:b8:78:5e:be:67:4c:2b:fa:
+ 74:f5:32:60:96:9a:09:e3:03:72:7b:4f:bf:71:9f:4b:37:7c:
+ 47:93:df:b7:02:10:ca:29:eb:d3:f2:bb:05:75:15:b4:85:96:
+ 9c:6a:bc:7f:93:1d:81:16:61:a0:bb:09:3f:e3:92:09:8f:62:
+ 91:4e:43:ea:64:a9:07:57
-----BEGIN CERTIFICATE-----
-MIIF8jCCA9qgAwIBAgICATwwDQYJKoZIhvcNAQELBQAwczELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEgMB4GA1UEAwwXY2Ffcm9vdF9jbGllbnQtZXh0
-ZXJuYWwwHhcNMTkxMTIyMDg1MzMzWhcNMjkxMTE5MDg1MzMzWjBzMQswCQYDVQQG
-EwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0
-YW0xFDASBgNVBAsMC2F1dGhvcml0aWVzMSAwHgYDVQQDDBdjYV9yb290X2NsaWVu
-dC1leHRlcm5hbDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBANWAFKFu
-AZjuw5s4tAmM69mfTxlssWwxhdHF/elBtJdf1gywjphCY7te7yMRp1u4niZ/xejv
-BVLyeLaAoc9YXOz26QrW72iHFSRFlB0DQOJ3lE/yXChSjw66wq0sptHFsv+xSCaH
-/miKlmhwpfDVi5TIVodNZE+bUAGYgUa8EIHCg2LvJy5VqiLZTMfrY8oALIgrbSbH
-BKrlhvIzEhlMvvSmAtbEBp2nDilcgynFRHVg54erYQZS5POkW52WJhpH57J+10Ge
-OZ0hCHZgCjU7BCFNTUdtQgTXuZcTsCfiU3B+GVSyPJQk1CGLzo1eBKXo1ckNyFc4
-h+ulqxktb3jKdxC8akh1SISid8lLNKn8Xfs0P+k0kTMF8mDe7MyxTzLiPDPnuVfa
-T3vu7iG/h97b75SQhFmlGUXoR+SwG6sPSP9aUOTkDNP1HzMe4f+Vtc2bGYVXBqKj
-mZFJnMMAqvwWwBxnkSLg9ubooBDce82cB4hwuN0rI+CSRb8alU76hYDO+OFAg4VZ
-mq71vXQD7dnjik/I6lcAh/JJa+02Bh2Pms5qZYKcE9ow4UqUYUosiFfbPfdhQ9/G
-Nym5w5B0EwuLSo/+WTKY0kYHd0yhnCPXbbfBWO5Hi/+a/25atvuMdm1yc9hiXOKo
-MMSY6Z/oJTkxObOlLkVe44bzlLWlzf5rOSZ7AgMBAAGjgY8wgYwwFgYJYIZIAYb4
-QgENBAkWB0NBIFJvb3QwHQYDVR0OBBYEFDmqvirUUjKfybn14B4OfO0q9V4XMB8G
-A1UdIwQYMBaAFDmqvirUUjKfybn14B4OfO0q9V4XMBIGA1UdEwEB/wQIMAYBAf8C
-AQEwCwYDVR0PBAQDAgEGMBEGCWCGSAGG+EIBAQQEAwICBDANBgkqhkiG9w0BAQsF
-AAOCAgEACA/0j8PJ38Fwuekjuh1Yz0jnWuMY0x6pFO4hpzPiI27Nj4pe4CNigY0N
-zDHcEXVnpxNB5k1hU/EwQaX43hTQ/Ra6RXFKfgBiwB2cefFX8BF8tA1NEDu2hLQM
-juAOBIizEbJ7C4izX0TIFBVwdWqiq9/NCiREg5gwpdYOmBdnpDCPg/dT77NNJknq
-Ja38EFSLHQILydKQntHQCkzUvYrTT0HZx0q/kFvpkBSmNELHbzy1ksun82VJFkZI
-AsH0Ol8NXu0buHsZ9UdIDYxfmxIvWUvb22wnROXQ1L8rD5ZrpQ/fBb+fFozMLAwl
-4st+MSdsRLlpKm2O/R8bXfzXTqvIp3YVO2HKIMRbDF9OtYGRotvQpfZ5iX9KY0iK
-vaDoRPpFEK4ne/NYEHCY6e9DsD4YDQCeXr/ag/4LPgFJNxfZ8SddrZg6fGvjJe90
-s71uflnxIThsmJcFULRS1/QQ14gZ8sgMm7hgCM75YySVDX9Al+ZZzrMbJIhQgyf+
-kvwyE0Khfzh8loKiKZAHRhQE7lFkrr3XRv9bA2adGh4XH5TpWqJAcX4HhY6g2/eF
-h1HUdPJnsbVgx+YJaU2sak8ZN/yamlzXla0SYLM+aV5Z1v99fOhxcFSlOMNB6MEN
-tge2i0sRM/Usu+nPSY5UBgEG3Df6ZYR10Zgtt083aELPqonas5E=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-----END CERTIFICATE-----
diff --git a/deployment/pki/ca/client-external/ca-root.key b/deployment/pki/ca/client-external/ca-root.key
index d39590ff57429448dd322ff90d86fe299fa6e67e..ec18134c10b58b8d83b0c4fcf9c4c1587c163391 100644
--- a/deployment/pki/ca/client-external/ca-root.key
+++ b/deployment/pki/ca/client-external/ca-root.key
@@ -1,54 +1,54 @@
-----BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJljBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIL6JtiTE0lS0CAggA
-MBQGCCqGSIb3DQMHBAhZAtxSQSRkpQSCCVCJXKMiJtVZlgyG8DLS42fEqfD8AeaT
-8y2ywbBtUh9HioqgoIw8MWm3DN/MFjA1R6Ccq5LYD+2mGuaryu5smZqQQZaaya9M
-Hzm0BfQaLtL2ZZjBd/A8muml8UyNA5i7ET81nI9elDlI3ojq6Sl7IRRLOj5En2dq
-zwyYVlIRarssngA6+GOsSwdu2WUCdLS8yQv0CN+V4b1lg2e/MghXE//bpr7VLcow
-DJGlBOyKSHbcfpstkBvJJ5z0UG+WSUpwcpiFS/lPzJFUkAh0M9cqJEzV9KhN1ygU
-Vw3gcsL48e7SMTWJ6pJ4C7Fa2TPbjwUgonXeiiQjRwRPmWbVwDHgIu6aXoZN1HvQ
-6G9vikGrGop+MwQpyDY9NBZfblaN+LpmgOu4/RimHAA92CJbWSdxcUpohnWbEUe1
-N3l8uWep8wulLTTP6TZBBtQ60LikkVtkauO66XutUlz+mK0ojdhkKtn3SCIYb+L/
-AGE8j9hBueEAyRz8pAMvAOoIkf+tGVpr5ZVwLcwdXfuZWnfvwujCgAD1cwp2T8VF
-FDAVlhQ1LcFnfAbid1wX2mcgKifB1oDmY2twv50AHeIp1PLQSb4RJLhvDUPMzSwi
-WalTFbbv/lBceTYTMJdm5yLRBXxjA6Bl/r0guCpJ+fr/txhuOQtro4KX/YFnsXw9
-zt/kqiiOHwT5rIwbaN3g57jKXD2eLcYGen1jPnRLCHOoL59YSaIrmDIpFWdnqqk7
-FZxnbe5cqi8eoWv85SsaSlnVEDafxPKnpVtQNAhHUwxt0/GxLdc2xn9Kr4PYyv3D
-1uubV1ela4RYuoaJF+VjCguVzYdQY52k5bCIu9Y9VOb+L/OuXcjNGlhyZVy+Mqu1
-Mf4TlmX3fjislo+3q6FldTSkpfU86CZ4AVc4W8ZdNrtY2oiN9a1LV5PGW9ByLI/H
-dFKlI9o0CDZ9ENZ6K+ycQ/3h/Xpt6/NJMtoAEh72xM7cytcFlPlhiLeAb/yRNP7p
-rR9aJegGy/8UUYBmIC21i2IiUvrPedlyVVDdCpAS/R4yKA+pPwXPeiiTEnUlA3ND
-Yp05BCYYtDykaURZhv+5yDMsVQZiV00I+zajJxEiED6PPJFYrv/HeIHoDp85vH2T
-O4nVmtcPDRWcB3cZululncf7cDorQBl2AtCI+GcERIoF0y/+bwFa95mdZTyUJlCo
-c86DWufXk7bCu6xA18UL4QUEN6t2YHoEcb+O+mHDGyyVzMA0INIEMDOtOS9TSExB
-d9RIrseNQlVIvwf6DqHNlq0aF44AONUItVlH1upR9wdnTGCD0dVmFcl2Mw49Q8Q2
-x3YhfuW/IGO4ejjGYNuGElLLc2lREJw7H31ijBpuzcCI4PDTrZ4qpGz9I5qkUCzX
-8E56AIBrlP4vkcf8T3OVrqIJKpQo0pgdbcmh1dmFtRRP8n3ZzIwXgpfoAszUld//
-moRIif06XR4PB4WpvwIw2Aw5lz5Sn9mvwNB7Wv2FDICcwm8rf6QqTf1mmEb+/YON
-s+NbAWkjuk0dODSRnVJWupurkaWLAY9JJM9CyXzHGS/WJTnChyHdHK4c9BmX7a9L
-rZsCQMGq5srN1+vspJUtTB/PRjctCcag0xxNzsY6n2ce/wMvKb/qvlZX1XLj+ozg
-JAzBb6rAT19N/GHHcy5jSEBBSnCl4ssvv1OnGaADkwRXoIea+8Bx+iG8U65fz1cz
-A6gfMQ+POMnqdlpH7je2in6DCEYicsV/4ZGO1lUFMGbAG2NvVe1Ewz7pEo4lhX+Z
-ILYhvBSXMg97aQznCX3K15Pn/CLZYbOQR+11jAYzmRkpNE3ueteB7z9GComTu+Ph
-6grIlWT3NEPmyMzZKtrbZpdLvH+xsTmxw7oBAd6sGDcyW4FPPU6i8tpjnNsYck5u
-IROUlaMlTqbd4LuaoNM/AFpWIbAG6g07FpFIxFF9p8v4ms5zziN7xqYlPC6o1pdP
-zS7vhP82jKap1tS4cAXamNVxyy0qpv+g+0r5l/DiTpwvHx2KrNhKTypjfaBA3P79
-plmcURDVkwog49As4umW2WLoaFJIOJD9tlghkE3Di1bF/L+hp9rF7lv1qsI1f0aA
-1NJOHhFirKPa+XyGhL9/acJEIvg7fWedglPZVFdddyw+uVz3e15CvmNH5hbSOp+/
-YI33wKvtSNWak5YDOhRhLrNdDPizZoXppcLidaaKrBgOEMfUYg9yIH3CppsyFdOr
-QamjSEgAlKC1w1X2HcJ6Gn4E+Dytx8DihCc175DcTD/yZR4nWdHsaUEfwz9Uc7vO
-HOOPZNXwbtIHBDqYQE8LcZWIoRqTEO/R6V34HxXq7Nvj9dNVvWj6PpXvO5U0etuG
-vBwvZmn1dTlYbhge2UvcB3vC3CRV9WbWGT/qbqzbBUVv+raeG7GMdO59QhWwPq4a
-I068rE1XYQm7TLzmMZUTWIXCtspbtz0XVmRZ8bD7S5fdddoGySRmJtUYCP2dvS9A
-1oh+VtvPhyuvNZOImb8sqo6y8IhXTi88U30wu/FkxHzcsm4XGp3Q2K6mq5hCNJpS
-vEytxxY53/rlZUSGsY1CWFXhMinBw//VR1sXxMMSyDTMbiztV6F6ldno+7GJOIKz
-QcfakaPLfQsWVdaJj4+9mXmZsaY0PwciwIwH+JDJWPhztU336a8ivWBdQHxXxJpU
-4CjwrYzKGamt4b0FfsBR/5wySivgSSG83AF/aF0/Y13GdwymqOp3rhjcBucFzo6w
-H1goDe31hadsZje1MQf2XuQox0P9Z2CuQjVGMJVqJrub3U3UDsa1lX914AaLtEEZ
-flgv+EriI8VXXukdfB8qsbD/1zaJUuD91f80EtkU/bmpHFJu6hT7ILy5DZ81hiUz
-X5uNfOQgALGUjTbHZj8dxTsuYeJTwOh9edCV4z2u7/GWUmOHN6p4OhhY7CS8bAHK
-LddeLG+09zijzSt/GXiQW8smhpFXcfUIYv1l4k48xZY5TaeJw14mkUZ0aYHgYVXv
-xPwyVF0IE4awvGUgVBU12OGCMM7gDtPME6oG6W1oCozjluaxUxeEXV1DjK7fvAMF
-DNa7WE3jdVO24xA1CODvaxfo7VsS9r/6sYUfsCg5eVhKd1lliCb5jdGt5EYJPRYb
-mp1qZy/zfKxQuLfSAad6UEKtutQz0OqKedh30NAXqCirLwRM8ZOS0Ng6Uu8de8qj
-TiHzRPwF1M7kMQ==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-----END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/client-iam-internal/ca-intermediate.crt b/deployment/pki/ca/client-iam-internal/ca-intermediate.crt
deleted file mode 100644
index ffe0d489ea534bc4f64e679930d992c35cf22828..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/client-iam-internal/ca-intermediate.crt
+++ /dev/null
@@ -1,137 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 331 (0x14b)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-iam-internal
- Validity
- Not Before: Dec 12 10:42:48 2019 GMT
- Not After : Dec 9 10:42:48 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_client-iam-internal
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:a9:56:f2:c1:8a:9f:37:97:14:65:e6:ff:30:55:
- 90:af:17:d4:a2:b7:4c:00:42:51:e9:1f:80:c3:27:
- 01:6a:b4:ca:58:20:1a:cf:46:8c:04:c6:0e:b3:23:
- de:1d:c0:84:2a:d5:a8:18:53:d8:93:7b:4c:4f:5c:
- c7:8c:95:2c:3e:da:0f:74:2c:e1:9d:06:41:d9:a9:
- d5:5a:d9:14:cc:15:2b:50:50:ea:d2:c6:23:50:63:
- 02:05:3d:9e:8a:c2:47:45:73:9c:c2:ae:18:c9:c5:
- b5:7b:cb:8b:11:b1:69:3e:8d:e3:37:4b:37:c4:ad:
- 59:65:53:4c:19:e2:f1:6f:d1:a0:ac:74:4a:f1:52:
- 26:72:7d:91:a5:1f:1f:ef:07:f1:08:db:48:e2:77:
- d5:36:ea:db:d6:e9:8f:9a:67:e4:fa:c8:ce:49:cb:
- de:4a:09:f7:5a:ed:16:ce:02:c5:46:09:7b:0f:50:
- 7c:74:db:09:b9:16:b5:5f:f2:e0:6b:b3:9c:7e:c5:
- 4c:22:60:de:ce:3d:49:ca:21:f2:01:be:8e:9c:7c:
- b3:b7:c6:64:2c:10:00:25:34:ce:79:d6:3c:89:a5:
- 87:5a:ec:4d:57:dd:f4:a5:cf:4a:67:ed:fd:46:ad:
- 03:7d:9e:1a:99:88:06:57:0f:ae:e8:8e:1f:c1:72:
- 92:34:75:4a:0b:fa:d2:b5:9a:24:82:4a:b2:9b:21:
- 1b:cc:d4:72:bd:cb:5b:dd:1c:61:b9:41:83:33:6b:
- 91:8a:44:11:bf:e5:9d:41:0a:d6:cf:e5:4d:1f:b4:
- 96:ed:0a:d7:ef:68:f7:99:62:4b:9a:82:a4:54:8c:
- 35:0e:9a:b2:12:05:df:3c:00:59:05:c2:8b:ac:a8:
- 94:ba:5a:63:50:a6:ed:67:3e:53:b3:ee:ba:92:75:
- 54:b3:ac:21:f9:68:8f:0c:14:f2:bc:0d:a4:20:5e:
- 1d:de:af:1c:04:4c:84:6d:e4:23:04:24:91:3f:5d:
- 82:39:7d:27:52:b0:e6:b5:2b:34:bb:96:07:2e:8f:
- c5:60:4c:79:4e:40:5a:fd:0d:4a:32:e8:3d:09:01:
- a3:16:20:78:3d:1d:03:56:ba:a2:53:6e:e1:65:42:
- 5e:7b:fa:77:8a:c9:50:a7:ea:3c:5c:da:75:25:a6:
- 43:d8:50:bc:5d:96:65:09:41:e9:9d:c3:44:8f:6c:
- 9a:dd:aa:c2:08:2d:7b:23:07:b4:a6:1a:23:e8:03:
- 28:71:91:74:f6:7e:e9:f6:5f:2c:bf:c2:c4:62:21:
- cd:b6:13:30:31:74:ae:1b:e0:ef:92:77:f0:87:08:
- f3:38:f6:69:fd:b9:b4:88:4e:14:4b:2c:b8:e9:e2:
- 53:ab:1f
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Intermediate
- X509v3 Subject Key Identifier:
- 43:5B:E8:68:7B:38:34:7D:3A:D3:0A:A3:6B:6D:A5:A9:1F:A0:DF:79
- X509v3 Authority Key Identifier:
- keyid:B9:5C:ED:B2:87:11:1B:A1:ED:A1:BE:57:E1:83:8B:92:88:35:99:2B
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam-internal
- serial:01:4A
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:0
- X509v3 Issuer Alternative Name:
- <EMPTY>
-
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 7f:fb:ea:e3:24:b6:34:28:6f:9e:58:39:d4:ea:71:ee:ac:8a:
- cd:15:a5:85:67:f6:eb:88:3b:a6:67:4d:89:62:b9:1a:5b:31:
- f5:1e:be:fb:a5:1c:5d:93:6b:7c:39:a2:20:88:6d:0d:c7:33:
- 1e:52:39:39:38:c1:84:76:b7:96:3b:05:df:c4:7e:3a:c5:42:
- f6:ab:ad:28:f2:e5:6f:3f:46:f2:5a:38:eb:5a:1b:0c:c1:aa:
- 0e:cd:7d:d7:18:ed:70:68:6e:ec:f3:e1:11:b3:b3:06:96:2d:
- a1:d6:1f:e1:59:43:f8:47:ba:a5:bf:5a:46:3b:f6:23:c1:48:
- 95:6a:39:2e:49:6f:18:0f:95:ab:36:35:8d:fe:95:d4:2f:2c:
- 82:1c:21:14:11:cd:69:50:f5:24:56:90:7e:16:79:81:55:42:
- 84:2c:b6:86:b4:7b:a6:4c:ef:b1:2e:d5:22:1e:87:cc:84:82:
- 9b:bf:99:07:71:a4:32:e0:55:61:4c:f3:e2:32:a3:ab:c0:80:
- 5d:dd:5d:21:a6:ee:45:60:b6:d9:eb:b0:7b:28:28:4f:ea:90:
- 82:36:71:cb:da:dc:72:15:fc:51:28:02:95:61:4f:76:96:e4:
- ad:49:c5:76:24:16:33:98:ae:85:ed:4c:7b:fe:dc:9b:b1:95:
- 20:99:97:0f:5c:6f:94:6c:01:5f:f2:f7:1d:bc:12:cc:ca:d8:
- 94:32:2b:65:16:81:f1:e5:d8:9f:1a:70:bf:eb:28:25:a6:5f:
- a1:b2:04:ad:7a:17:19:98:61:1e:08:83:81:0f:ef:3e:56:d8:
- 1b:49:b5:40:c6:fe:2f:eb:b2:32:33:45:07:7b:2c:8e:79:ec:
- a1:72:e6:48:b1:6d:fc:ea:d9:30:69:d1:d3:2a:ac:03:17:6f:
- c6:8d:e1:ee:5c:88:53:c5:3e:77:bb:7a:b6:46:e7:1c:27:7e:
- a3:1c:00:95:22:3a:66:d5:6a:b6:9d:ce:6b:e3:67:98:9e:57:
- 77:6e:b5:48:7b:50:5d:b6:16:63:0d:7b:d9:a9:33:0d:56:c8:
- 32:5c:c0:f4:82:da:02:19:0f:ce:c4:34:47:5e:ea:3a:af:13:
- d7:d1:b4:79:2a:66:67:84:3e:d3:af:3f:1a:1c:e3:22:f6:cf:
- 39:ad:79:90:0c:f4:8a:48:cf:42:0f:85:b8:7e:41:3b:21:31:
- 60:76:31:39:3a:e1:a1:17:fb:b8:ea:1a:4d:55:ac:ad:92:6d:
- c8:5f:b7:07:37:2a:c4:ab:f7:28:05:84:aa:77:1f:60:81:a0:
- 44:e4:f1:49:f8:49:48:02:e2:2c:ca:e7:10:a7:c7:22:67:19:
- 0d:5f:80:fa:6f:a9:47:63
------BEGIN CERTIFICATE-----
-MIIGmzCCBIOgAwIBAgICAUswDQYJKoZIhvcNAQELBQAwdzELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEkMCIGA1UEAwwbY2Ffcm9vdF9jbGllbnQtaWFt
-LWludGVybmFsMB4XDTE5MTIxMjEwNDI0OFoXDTI5MTIwOTEwNDI0OFowfzELMAkG
-A1UEBhMCZnIxDDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoM
-BXZpdGFtMRQwEgYDVQQLDAthdXRob3JpdGllczEsMCoGA1UEAwwjY2FfaW50ZXJt
-ZWRpYXRlX2NsaWVudC1pYW0taW50ZXJuYWwwggIiMA0GCSqGSIb3DQEBAQUAA4IC
-DwAwggIKAoICAQCpVvLBip83lxRl5v8wVZCvF9Sit0wAQlHpH4DDJwFqtMpYIBrP
-RowExg6zI94dwIQq1agYU9iTe0xPXMeMlSw+2g90LOGdBkHZqdVa2RTMFStQUOrS
-xiNQYwIFPZ6KwkdFc5zCrhjJxbV7y4sRsWk+jeM3SzfErVllU0wZ4vFv0aCsdErx
-UiZyfZGlHx/vB/EI20jid9U26tvW6Y+aZ+T6yM5Jy95KCfda7RbOAsVGCXsPUHx0
-2wm5FrVf8uBrs5x+xUwiYN7OPUnKIfIBvo6cfLO3xmQsEAAlNM551jyJpYda7E1X
-3fSlz0pn7f1GrQN9nhqZiAZXD67ojh/BcpI0dUoL+tK1miSCSrKbIRvM1HK9y1vd
-HGG5QYMza5GKRBG/5Z1BCtbP5U0ftJbtCtfvaPeZYkuagqRUjDUOmrISBd88AFkF
-wousqJS6WmNQpu1nPlOz7rqSdVSzrCH5aI8MFPK8DaQgXh3erxwETIRt5CMEJJE/
-XYI5fSdSsOa1KzS7lgcuj8VgTHlOQFr9DUoy6D0JAaMWIHg9HQNWuqJTbuFlQl57
-+neKyVCn6jxc2nUlpkPYULxdlmUJQemdw0SPbJrdqsIILXsjB7SmGiPoAyhxkXT2
-fun2Xyy/wsRiIc22EzAxdK4b4O+Sd/CHCPM49mn9ubSIThRLLLjp4lOrHwIDAQAB
-o4IBJzCCASMwHgYJYIZIAYb4QgENBBEWD0NBIEludGVybWVkaWF0ZTAdBgNVHQ4E
-FgQUQ1voaHs4NH060wqja22lqR+g33kwgaIGA1UdIwSBmjCBl4AUuVztsocRG6Ht
-ob5X4YOLkog1mSuhe6R5MHcxCzAJBgNVBAYTAmZyMQwwCgYDVQQIDANpZGYxDjAM
-BgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRhbTEUMBIGA1UECwwLYXV0aG9yaXRp
-ZXMxJDAiBgNVBAMMG2NhX3Jvb3RfY2xpZW50LWlhbS1pbnRlcm5hbIICAUowEgYD
-VR0TAQH/BAgwBgEB/wIBADAJBgNVHRIEAjAAMAsGA1UdDwQEAwIBBjARBglghkgB
-hvhCAQEEBAMCAgQwDQYJKoZIhvcNAQELBQADggIBAH/76uMktjQob55YOdTqce6s
-is0VpYVn9uuIO6ZnTYliuRpbMfUevvulHF2Ta3w5oiCIbQ3HMx5SOTk4wYR2t5Y7
-Bd/EfjrFQvarrSjy5W8/RvJaOOtaGwzBqg7NfdcY7XBobuzz4RGzswaWLaHWH+FZ
-Q/hHuqW/WkY79iPBSJVqOS5JbxgPlas2NY3+ldQvLIIcIRQRzWlQ9SRWkH4WeYFV
-QoQstoa0e6ZM77Eu1SIeh8yEgpu/mQdxpDLgVWFM8+Iyo6vAgF3dXSGm7kVgttnr
-sHsoKE/qkII2ccva3HIV/FEoApVhT3aW5K1JxXYkFjOYroXtTHv+3JuxlSCZlw9c
-b5RsAV/y9x28EszK2JQyK2UWgfHl2J8acL/rKCWmX6GyBK16FxmYYR4Ig4EP7z5W
-2BtJtUDG/i/rsjIzRQd7LI557KFy5kixbfzq2TBp0dMqrAMXb8aN4e5ciFPFPne7
-erZG5xwnfqMcAJUiOmbVaradzmvjZ5ieV3dutUh7UF22FmMNe9mpMw1WyDJcwPSC
-2gIZD87ENEde6jqvE9fRtHkqZmeEPtOvPxoc4yL2zzmteZAM9IpIz0IPhbh+QTsh
-MWB2MTk64aEX+7jqGk1VrK2Sbchftwc3KsSr9ygFhKp3H2CBoETk8Un4SUgC4izK
-5xCnxyJnGQ1fgPpvqUdj
------END CERTIFICATE-----
diff --git a/deployment/pki/ca/client-iam-internal/ca-intermediate.key b/deployment/pki/ca/client-iam-internal/ca-intermediate.key
deleted file mode 100644
index 79f1d7c91d4dd3d5daf1f57c8c468542d34a4588..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/client-iam-internal/ca-intermediate.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQImHh0Ak3wjzoCAggA
-MBQGCCqGSIb3DQMHBAgFWLlejwzwRASCCUjrwbezbCJIC/IN8Y0btjmfh8wyokpW
-1sFEgrRfDThmIDbbhLMVCEfrk+h6Uss8jAI3WCPt2rzDRAv2EOakmemos8404Ts4
-kM4zd5hr7kvwbypp4Cd9Ozjlcxm8gcbpZ29bOqkTiMzFaVWeTvLaJAMw9R2S18uc
-WNpqqYIoZWSdr4giWE8kDr0+ue/R69JRWM2E0boWJPg6aBO84W32qblfCVle/AiG
-vnKWB1zRhzNdC2qPSLC0OX45EJpYfkzvNKajKjd59+ulg4v/at2UCONw7IS8gnJR
-3o8rw6HJCJSwoQaGN3fKVpnQVMmSUnaiAw/12exAM/MekHBeDXlDx5hXbQROW2dZ
-BscT3/6/V4VnCz0ODqANi+K9ElSnCTpA4EeKr2o+K/uHhOg2wN+SO24xyDMo0Puc
-HB2cUVbQIFM0i3DQ4gBKBD/Cfh7a6S6HvAuQwOVIqqWXbOzKwunf0c/1NVCn7PLm
-jxtdcSieGoPYorsHCRtOF2RA7a70HAtf45HvbQ5bBItZrGyB86qxWVo861rDZmVP
-ry/jWxI7dGwn9gauwg0EO1Rynii3wQqbUgs6lU3qpK+laQfzlcu0tyEjkX5vekI1
-nmtZgZDt79e3MBSfAsi0F2kyEB+J+gfHVK78yFl6lBLZ+NZJ9GwWeYGJRywmVaxK
-ybNdgqJTEyizxLeaVtCY77UBJrhV+kzKFdkc1T5Twm26mzoI5mlWHOXCLAz592Ed
-9mB9R44uU4JodXUJNX96DgOHJwQMIo8VXMeMevDiAEifsXhu2ox1p/g1U860T4m/
-JcXTgWBKWPb9KR/SCS1qzi9AHVH1v0wGQVs19Vgv9tDeLBad1r9lcHbjlPU+Morl
-Crus4UW/U6Yw9UrAWgR4kBUne4smLr+CVn+Gn6UJh0dhvXkHArDZ+Zq7TiWqFb2q
-O6Z8IQYL4Vr7+X3SdaIsnAmDdMdvMuO5642klybEbRWN6YQoM8BOSIikzUrv99ly
-l8hVMW9ebLt4tc9QsWQ4ClCIELu3kXd0k37P+NPam4E7E44q7xV7IlpJyVKmIQa1
-FhZT20/JsFr6FQCwvPLrMNi0wM1gR79JmDR3C7GeV2UmAKkcpb4VXrLKrHyj0q3Z
-qduIiLlTtZoWEMaY+ABu/I22I0L+WiefZDWYxz0Rc5usK/x8rCCspaCxNcTclxPd
-fbPOgWDJV2y8sZoWFLZzdtKL3jmR4RuhyCWtISKbQRPbr3piDFKrA37EaR4qeynN
-iRdt4qVew35JdgK16aYp+/MWB8ZvzaRUS6Fl2yjlacLvXeVzPoOWMhMz/Q7+zIpm
-4uqz/GMl4JeM6NLERkS16p2njm02UhXalEIKqZ7vViTCYSIcROCokRzM+fEWbGZO
-H6Bzud6SZLozEDOPAAV4ZcWyeBABSSGtb4f4CA6iQVUS0ry7b6MaGBKoZAalSlsw
-565KP9NNM3wOv9jdPEWgyZwDN09Rd8/gQcEjvYprnE6Qu0/t8zDRlC9kZVs9MZSr
-MZs8EhZJ0jpY9hZDJ48oE8rVAMq+ebOEqWjabUhVzwgRyka55fb3aStC+48u/J4S
-xZlqg8sb1Ay0wHtjuyXtficKI7ZRM4Z7oqnXDkDp8k38fKM+s3SuvpE1bohzb+fw
-kOZ7byt6OmDiAvV7cmKCq3/Lk6ia8RVGlWmMiJK2a6gef5rlYmaxxvrhjPQ7OuCt
-NeO7FeZC6Cir6SA/MLQX/rLzcPEKuFDG4We/V9J5JELrOa79/+vx9hbmTwMtZiLw
-RMXzF/fyqVT1IWNGbEGOx0Tg5lHmCAr/rrFK/0VQAVwnvlhnuLEL8sY1/Ll1tDlC
-89LkZfM9iL9zgu18Ekt3o+6RpFiC3m6R0RWaHcMxarsbe0O6qauaOz5F6U74OaEg
-rXsOKl1FK6DOQsS+6DsZkBCycLF5yfjMhB0Yo9BZtVwTT4w71+Nw+kbwfWkdP3SW
-clD4NfkXF2Nykp3cy3kmP80d1DCVvWKfgiWluNvTuszyL3EzGslNYiCRtkcES/XM
-1EkqAFY20xSDy8QVYSQAb/Bv5ZgloKMa/KjOYZiSKmtTgUii/kD3Cao+zo53k/7T
-MOblZP6bAIEkdM8pmfotqXM98Eu1ppfKp3npewkeY/XsElJwV9nkfsga2O3wJPgQ
-erlzQY4jDKsfTzEUDzobRGr5zhRBBrJFrh7+Lg9phJd+WOXaVekIE/M3rl5LCYQg
-ZiwBfUY7vKs17XEF5efqPTO72lmtGfecW/KTgiyRZaeAbjAKQ5usn9SwV89KVv6/
-q09k+0jRDYi7Ny/yy5rfJePhtUHMARqiGHcsV38tO/xWNc7bZpEt9KGdLTfZj9Aj
-4nVqxGG+AIYWAw+acMlLLRR+9zaTgVR7GYTUasnZ9G3PQT2+NDf08ChliQ675RJ7
-Oz1vApfjCkvIYYY3uCcCDo8M3FldSeb0SPu7dpBVWajr34VmDtIFjHHJHY3atqUG
-jmNUl2dsjkiCEN5kXocdMSYlqX0i7sR0yQStberrds9ZJg/Ihj1AR9fMfNvYDtso
-hPL769VIeiAEWJOsuJS+WiE1PYHMFuk9lY7VP6AMEtPQZgaHAVEkCNPgLTDzg6Bq
-a7Jvnwd2eWipSFWSubCMiFKQzz8ZjlzmcBLzkmsohsC2QjvLf1JMszJInMjqnToL
-RiTsM/Nn806ZXNFQv028UhoNGfTm4UVDsuKrJRb+WNGEHAGzDlLOGhMWHpx7EXyt
-qxreoC735sQhJLw5zh3hFLXYFSMdw/UN2p/i8or8Lwz6F5CXPHtfKhK7FePEbYPX
-1NQe//AqgHgqu7l1mzMKfaaP57XCmzSKmebaQB0qEeZLPA+wS1mfbTk706pTIPeB
-84803PTAkNCanGHvq3Sgjwe2e7wlWh+UidTbPzakkdC4EGhgf8kBavQKhga3Atv1
-pl3klpSgA7o/pJDaJ3+4dq8TD1ln33meBk3I4GKuyqy6+PrdtM+xmuCDXQodnoJb
-Qnkqd9ka2Q6APXCEEWy48UyQI0wRD0P3oxHuJoq5ifFAWDwa7nti/8ZNUvZGfpJP
-xLmoQbda+1cBezq2JfzpmKkILAbJ5Um1VylcI0XV//rWBt/BI6O6iLrGfeBUOrLB
-4JYWeETZoRSbeZB907Uxs/IwDim/HHC3p5Y6VR1KR8xTaBzJtLtijEDflIuZNZsG
-yOA=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/client-iam-internal/ca-root.crt b/deployment/pki/ca/client-iam-internal/ca-root.crt
deleted file mode 100644
index c9e3f1cad50a5a7a775af5b452f44db516f96281..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/client-iam-internal/ca-root.crt
+++ /dev/null
@@ -1,128 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 330 (0x14a)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-iam-internal
- Validity
- Not Before: Dec 12 10:42:47 2019 GMT
- Not After : Dec 9 10:42:47 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-iam-internal
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:aa:f4:98:52:78:df:cb:73:49:33:de:d2:44:4e:
- d8:23:64:b9:d5:0c:a4:7f:49:56:58:f7:61:2e:ce:
- e6:c1:be:16:4d:2c:79:17:5b:ab:12:f8:a6:75:62:
- f9:3a:d4:fa:00:e4:5c:2d:b3:8a:40:87:b1:03:c3:
- ae:28:c3:af:bd:2f:c3:36:ed:90:76:16:68:92:df:
- 41:94:52:e7:78:0b:a6:f4:5f:1a:b0:84:8f:ed:50:
- ea:0f:5c:6b:b0:89:16:ee:4d:fc:96:1f:42:2d:28:
- 03:63:e2:06:b2:0f:fa:2f:7d:d6:88:6a:6e:a1:c4:
- ef:1a:f6:8c:94:03:e5:3a:75:d6:d6:97:ba:11:1c:
- 55:c8:1d:1c:2e:f8:1a:5a:52:eb:7e:79:2f:36:ec:
- e9:54:c1:40:bc:e6:b1:18:8f:f7:65:80:9c:4f:55:
- c5:01:9a:30:fa:db:2e:8a:0f:f9:f1:67:63:d5:ec:
- de:7c:23:f9:93:89:56:84:7c:32:6f:fc:ab:71:8e:
- a4:79:45:7b:a4:80:1d:e2:ed:4c:e7:74:ad:96:73:
- 78:06:30:1c:f8:79:9a:04:81:a9:00:dd:5b:5a:26:
- cb:65:62:9f:f0:8d:09:ce:02:2f:7f:95:9d:01:9d:
- 0b:aa:17:e2:4d:80:aa:31:c1:35:59:31:b4:07:05:
- ae:1a:72:49:ea:2f:a9:23:62:68:04:a2:f9:2a:d5:
- b4:98:c7:9b:e6:e5:e3:d2:7d:05:9f:fa:3d:1c:c8:
- d3:d1:2c:d1:db:76:58:03:ba:31:ea:b8:a3:f3:83:
- cb:d2:2d:66:b5:89:9f:94:25:d7:84:ed:8c:30:16:
- 8c:f0:68:f8:ef:ea:86:0b:e8:f2:0c:93:d5:94:dd:
- 78:15:5a:66:bf:b5:91:23:b6:f8:e2:12:f7:22:06:
- 10:03:74:c0:ac:a7:85:df:26:98:dd:53:27:cc:15:
- 71:58:bf:23:9a:c0:99:46:04:70:13:bd:0f:e0:11:
- a4:62:1b:4c:9a:95:7b:05:71:57:9b:0a:1e:72:47:
- 6a:49:84:43:7a:6e:d2:66:14:7a:7a:2f:f1:c3:66:
- cd:e6:af:e7:49:2d:2e:1b:d2:58:38:38:a9:ce:ef:
- 3c:fa:97:a0:a2:b2:20:93:bb:f3:de:aa:68:d0:bb:
- 12:c9:e4:bf:59:a1:d7:48:a2:8b:8d:07:08:11:d9:
- fb:1f:0f:42:6b:90:64:b3:f7:aa:86:5f:fb:06:2e:
- 32:45:b6:4b:bc:91:c7:e6:cc:d3:3d:0f:04:49:6a:
- e2:a5:c0:84:03:25:3b:64:0f:b6:bc:2c:c4:97:9b:
- 06:11:56:a0:73:34:af:f7:ae:16:7f:82:b7:be:cf:
- 00:a7:2f
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Root
- X509v3 Subject Key Identifier:
- B9:5C:ED:B2:87:11:1B:A1:ED:A1:BE:57:E1:83:8B:92:88:35:99:2B
- X509v3 Authority Key Identifier:
- keyid:B9:5C:ED:B2:87:11:1B:A1:ED:A1:BE:57:E1:83:8B:92:88:35:99:2B
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:1
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 2a:b4:7d:3b:6e:06:d7:02:e7:b0:08:ae:63:42:85:7c:65:27:
- 27:49:35:fe:df:71:54:b3:fd:48:fc:9d:62:c6:ec:d6:dd:fc:
- 58:0c:be:7a:8c:e4:0d:1f:bc:0b:0f:ee:1e:19:a1:06:b3:99:
- c5:7a:3d:b5:d2:2c:10:dd:2e:23:4f:35:6c:5d:16:39:54:0f:
- 92:75:1e:dd:eb:b0:97:6f:7e:c3:2d:47:a9:fc:ae:b0:ad:3e:
- f0:41:bb:0e:2a:e8:73:f0:70:d5:9c:cd:77:a5:64:3c:5e:89:
- 8f:b0:11:b4:bc:27:a7:39:ef:03:88:3f:7a:14:26:f8:79:f1:
- ec:98:c9:2e:67:1e:0a:65:6b:2a:66:d7:09:61:88:58:59:5a:
- 78:bc:01:2b:a3:f5:05:43:da:68:69:02:4b:de:f7:49:ea:91:
- 68:5b:85:12:1d:d9:6f:6d:6a:a3:68:ea:cc:88:7d:61:71:37:
- bb:0a:de:5f:ff:bd:1a:03:bb:1b:36:c5:87:b8:b0:e2:bd:4e:
- a1:60:3c:20:a1:b2:44:9c:ce:0f:46:21:ed:4f:53:b6:d6:6d:
- a3:1d:0b:e1:0f:6b:93:94:f4:32:0f:55:c2:bf:fd:51:af:79:
- 13:14:57:f0:68:ea:68:d3:01:4e:88:1c:6d:4a:d5:f1:c3:f6:
- fc:82:f3:f4:8f:b1:c7:c0:8f:fb:34:02:31:e3:d9:48:54:b6:
- 3e:44:4d:6b:4a:53:83:9c:c1:7b:75:60:cb:9e:11:23:c8:9a:
- 12:09:3c:5b:08:9e:3b:ac:b6:64:cb:60:cc:e2:83:1c:ff:cd:
- 59:a7:0e:36:3c:d6:2f:35:d0:4d:40:ab:b3:fd:3a:57:d2:2a:
- 87:7f:de:4f:9d:2a:11:19:35:0f:7c:d0:23:98:a5:67:f5:60:
- 16:f6:3a:83:a8:f4:3f:8a:50:f3:1c:6d:ea:eb:ed:1f:24:94:
- 60:ca:d5:b7:a3:4e:f8:de:8a:a9:bb:f8:02:68:cd:18:11:7b:
- 4f:4e:fb:09:5e:00:0a:f7:61:c2:c6:7a:7a:66:8b:01:99:9a:
- 36:fd:d9:31:7b:dd:4f:38:a8:b6:36:e0:77:44:92:5d:eb:f6:
- 73:c3:56:ac:fb:ab:fc:3f:1d:a1:82:8f:c2:f2:55:73:c2:5f:
- a6:55:23:0f:3d:85:0b:96:c8:d5:e4:a8:aa:fa:b4:d3:05:a2:
- cf:e1:a5:95:18:5e:7e:13:44:cf:be:c5:34:d1:e2:b7:69:9a:
- f6:e3:85:6a:82:12:a6:5f:08:ad:4e:e9:ee:63:a1:73:7c:cd:
- 35:8c:e8:27:1d:1b:46:34:e7:ae:36:4a:7a:fb:3f:e5:9c:71:
- 64:39:90:8f:d9:ed:93:2b
------BEGIN CERTIFICATE-----
-MIIF+jCCA+KgAwIBAgICAUowDQYJKoZIhvcNAQELBQAwdzELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEkMCIGA1UEAwwbY2Ffcm9vdF9jbGllbnQtaWFt
-LWludGVybmFsMB4XDTE5MTIxMjEwNDI0N1oXDTI5MTIwOTEwNDI0N1owdzELMAkG
-A1UEBhMCZnIxDDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoM
-BXZpdGFtMRQwEgYDVQQLDAthdXRob3JpdGllczEkMCIGA1UEAwwbY2Ffcm9vdF9j
-bGllbnQtaWFtLWludGVybmFsMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKC
-AgEAqvSYUnjfy3NJM97SRE7YI2S51Qykf0lWWPdhLs7mwb4WTSx5F1urEvimdWL5
-OtT6AORcLbOKQIexA8OuKMOvvS/DNu2QdhZokt9BlFLneAum9F8asISP7VDqD1xr
-sIkW7k38lh9CLSgDY+IGsg/6L33WiGpuocTvGvaMlAPlOnXW1pe6ERxVyB0cLvga
-WlLrfnkvNuzpVMFAvOaxGI/3ZYCcT1XFAZow+tsuig/58Wdj1ezefCP5k4lWhHwy
-b/yrcY6keUV7pIAd4u1M53StlnN4BjAc+HmaBIGpAN1bWibLZWKf8I0JzgIvf5Wd
-AZ0LqhfiTYCqMcE1WTG0BwWuGnJJ6i+pI2JoBKL5KtW0mMeb5uXj0n0Fn/o9HMjT
-0SzR23ZYA7ox6rij84PL0i1mtYmflCXXhO2MMBaM8Gj47+qGC+jyDJPVlN14FVpm
-v7WRI7b44hL3IgYQA3TArKeF3yaY3VMnzBVxWL8jmsCZRgRwE70P4BGkYhtMmpV7
-BXFXmwoeckdqSYRDem7SZhR6ei/xw2bN5q/nSS0uG9JYODipzu88+pegorIgk7vz
-3qpo0LsSyeS/WaHXSKKLjQcIEdn7Hw9Ca5Bks/eqhl/7Bi4yRbZLvJHH5szTPQ8E
-SWripcCEAyU7ZA+2vCzEl5sGEVagczSv964Wf4K3vs8Apy8CAwEAAaOBjzCBjDAW
-BglghkgBhvhCAQ0ECRYHQ0EgUm9vdDAdBgNVHQ4EFgQUuVztsocRG6Htob5X4YOL
-kog1mSswHwYDVR0jBBgwFoAUuVztsocRG6Htob5X4YOLkog1mSswEgYDVR0TAQH/
-BAgwBgEB/wIBATALBgNVHQ8EBAMCAQYwEQYJYIZIAYb4QgEBBAQDAgIEMA0GCSqG
-SIb3DQEBCwUAA4ICAQAqtH07bgbXAuewCK5jQoV8ZScnSTX+33FUs/1I/J1ixuzW
-3fxYDL56jOQNH7wLD+4eGaEGs5nFej210iwQ3S4jTzVsXRY5VA+SdR7d67CXb37D
-LUep/K6wrT7wQbsOKuhz8HDVnM13pWQ8XomPsBG0vCenOe8DiD96FCb4efHsmMku
-Zx4KZWsqZtcJYYhYWVp4vAEro/UFQ9poaQJL3vdJ6pFoW4USHdlvbWqjaOrMiH1h
-cTe7Ct5f/70aA7sbNsWHuLDivU6hYDwgobJEnM4PRiHtT1O21m2jHQvhD2uTlPQy
-D1XCv/1Rr3kTFFfwaOpo0wFOiBxtStXxw/b8gvP0j7HHwI/7NAIx49lIVLY+RE1r
-SlODnMF7dWDLnhEjyJoSCTxbCJ47rLZky2DM4oMc/81Zpw42PNYvNdBNQKuz/TpX
-0iqHf95PnSoRGTUPfNAjmKVn9WAW9jqDqPQ/ilDzHG3q6+0fJJRgytW3o0743oqp
-u/gCaM0YEXtPTvsJXgAK92HCxnp6ZosBmZo2/dkxe91POKi2NuB3RJJd6/Zzw1as
-+6v8Px2hgo/C8lVzwl+mVSMPPYULlsjV5Kiq+rTTBaLP4aWVGF5+E0TPvsU00eK3
-aZr244VqghKmXwitTunuY6FzfM01jOgnHRtGNOeuNkp6+z/lnHFkOZCP2e2TKw==
------END CERTIFICATE-----
diff --git a/deployment/pki/ca/client-iam-internal/ca-root.key b/deployment/pki/ca/client-iam-internal/ca-root.key
deleted file mode 100644
index 2b4badfdbe6ce0a1e3b735e371b27be9838a643f..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/client-iam-internal/ca-root.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIVeZ1VEqmQh8CAggA
-MBQGCCqGSIb3DQMHBAhxVK6jjYjQCwSCCUjVWG3t3r0HXBu/ea/C42ObvWzusAh4
-k8vz0OPsk918dAbIGSg2ChUuTbf7OEFWTryKN3V/OXVrG1iddmtSwg41g+GiCRL3
-u3WlFN0Iw+kVhIQY73cHm3PEkwqlqKi+x/aQ828VKUMulDfwojAA367jVPdAe4MY
-vgs2ffe386/Uh2fksekORn9WZmcHUFIUKs+4x8gcEk8+CBX9LzsXzWErKuqrMmVj
-zZTbHoWSSo5sEOH2+IPTODeAvKOG7YgG38NgSWPUdCnmHL++tC3dqrddRfN8gTBK
-GvCY3mqwIUTJ5IruBvCJJ1satxPsb6NGQH8dJaJHR8VmAHPeGsu8CKWNW9VY0jvf
-jbYxfJf0obt/nZilwrMRu7Y2HqcaYFB+OJYBfVHnywEkwMAvqiiOs4G08W+pHlAu
-6j9CxeWXDhDbOHbLvoIIkWmsYWf+nvLMd2oOT2xawYMwkPF3wkjMSRHU5tCRYZK0
-dkfIIOYyLD9PEkpfxgQiEuU91wO7TKDHpPlJmhzJlri73jeqpUS/u34MdSCeWWkQ
-SkKJsQXGKL2xb5ndYbUpMw5yUwJ02/NhbKNl86daQEHgnHkJ86Dx0Izrdv5MxYU6
-z3O30k4Gloo0n0JBRVEa7Rnx4dGbSK2UNp4bKXDIUCOItYrX6lsHi0yCiCfAp1mt
-+MgPO0ROCkH4wx0cyyDzozDPKR6RZ0xCGYJ2H4MWILDpnxmANLkRyTaqU/su+xzB
-AV7DWVGOZ0aPiC5ZuCWWjU00SHcNVw1edcFHltLIQZymL7uoeiR0zxPMhuJsnr5d
-6UkLDTEus8LBKLXyrzDUPOB0lwVqjHCXulcxshxTGJaOittDdDlE8NisaG0O05BN
-Zkrrcc1cCXOLKsPrBSpsj/2yHTYwOx023RR2+gzvKZIk/WBrvrUNexIEObCkSE64
-T/Ea3hkYL2aRgqr5n2/5NNZ0wcIgMBksl3Ao2bQpn2ub9SamIOl90Y8dHYbvJ8DS
-87tMc7S8Agg3EyjcBtTRGsfDUz2dTe8uaHst+K8U8cAUAh/YFcO85UrsI2BFaq73
-CjLr9SsNW9xjdQKa7Gx/eTeIl2csApA2LwQ4ycqGVYNzEmdrDU7dR7FFD5Cl1MzV
-GPRSNXSpkoEdfBvN/aPJbWMQ6wwGWD35n6Od0k8FK5v8iDPoE2FQJ4+yGAu3JDL/
-0+Qx6k+tmo0Qqlb2nPE1WxvPIqEiYVBuPvsuywCR0Pzzl55bakzH7hT0krhyLOFT
-u0d2XFYH643QlI//LYStBrDla18jOxPl089ebRbcqkbJiyaWn/o5At1GHtQln+HC
-wxzkj8x/lhLBYU89UvM+i1pTk78xVXZ/LAnO0+UlvJThNT5QKLEv1Z/iIgcyFgnC
-hPk6TbZemJjyPLw16UG6Ku0BJsNWvKcEjh4DcqdGyhzxj/1Y1F6dsuO8CrjKIWI+
-hLBNcASR1pGuim63BrDXog+hYD7JHxO60LVjPZPSqVDrA3L8saK3Kk9E+Y+x0dPH
-RxEnlyj/OkD29wZSEmcYuEtNMpFtws13TegDzs2K5VCNHClC7Wx/S0V9zR27mtah
-0WLC9Iu8BKpLmxqOPCFrb6UZaGxEvlkk8aHfjys1v3+qGW8xEkX6MkNVlbd9moNt
-AGxosecIsaR1xXSsZVA9kHL/UrkFXaVdlD8dQ1F+AwX35M8nGwrtQ3f03k0mGPxh
-wyUxwiA0nLrMkzOBxkyz/c8le4uS+OzmqgwOmqUnGlznoQJQLoOIMkKBB+5cDw77
-kEb/DINBVfT9s2OE79isZ8YLRDtVTvLCq8CFj8CtotTno0/Tag3nJajvB68jKPlQ
-JcjfJcRsgPajXPU+UUpO7Nls40bN/xPYBUNqna2jrdgyqZU8gz3yU8THoXp3u5dx
-CQlXCJKXpREYk4h2vsqjdGIgoj7VTkWX5N9iapZxNz2gBGMFi7LvhhlB4zimx/0R
-z53way13QtSbVle1sasnWB4BgZkHaPWFcbZSxrSFv1tmhsTY0KGY+5cfEDeG2d0q
-wDtcBSTYaMzKXa8aXVv7FAJFcvd3HqpSxVZe4Lq7mvtP1OfZo8B1McHLM5nvmFMZ
-ofSaSBlkyklcJnPx8zioyFoLV0ov3GcuawG07H4i2/69gVKJcqd5ojUEIRjKm3Ni
-Z5VrfqAG7M1NBVfwiDkWVSIwfh6a2CO/kV0wPR7frS1G0LJDBMskb75FRHNcy9Ck
-DP/u2YxfnLNcJ2VdeWAJC9YhhLCSRaBMzUlTBSegE4keR+ueu6Ob5/cN+7r1Imd+
-EVOBIjAJgBQmo2RwepmLn+CwGOq9kj0BF1lKE7dfgX7x64PmCLzgToL8/PcOgyVX
-AhQyz1u4WSfoVVTKkFYDj67KASrlX1JxUwtMv+gVTQMGs5Q24Rp3/H9km40BFzp4
-yZQGhIhAUGbHONWGTcsQx1plvDeqRnAX01dpoaLYxf/tSpolrovCppsV/GWyjMa2
-K+8nwykwvelUMvoLnLm0zREcByzbdvDo9BXDit0P2T+lGQ82qP/XCL5rxtaBD3Ds
-Y8zxe+5rvnwej+HRPFhI65CapdYNxd3G/cTcRTdkwvRvmR/rYFhPqgskiTjghqIu
-DoIuZuDE/wzXuLaZwljYV33Q0EgYoQfg6BfiTr8jwBcV0BGxo7uYit+zfkycaukW
-DWysb49yuUevNSYIvNNI6m0sNtYcsFTHpmZ/yDwCMBfVTsJfS5yQBwt1zT59c1SU
-kLdA8P7U/kSeKwPVxAEl9QFi/OBaOSXrLAu/ha44h3b09urb1b2gqTOWSrr5JeDN
-3Qs3krk1cRwF6qlFzJ/j5hub1prNE6BJV3y+i+Ljs2MtDVVDZRaqvfY4OxnolA0W
-wqnXOAmMdfEBdE61bNxLz7KSh+3XHK575h1UPjzFxrrdwZhP/q9TqjxXFD/SG62V
-1RrUYJ/EWgxFVggSp2AFYEiAZmVFxh4z1jcsHKEjGuBiJOTSQq7Qr3GHQy5SGB6X
-9nXstRyTQ3z+nPb1nPKbMeaFitDBTg2rAgL2q5G8noYSMQ/P1+1y2ugI0xBfVvZY
-hgFDvNNTBALyeBQkDger1ibyEx6okjlNktd09EwhFVb16b6jqc6wD1LSGP/pbqgk
-QtOzHN4MPjxGuQCEC1adxPFlVVK5xQWA3R+zRmQTgmuKquybsOUWVoWQsrNjTXo+
-52M=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/client-iam/ca-intermediate.crt b/deployment/pki/ca/client-iam/ca-intermediate.crt
deleted file mode 100644
index b89ab7a4dfd04f426db9d2e889b7990d42b5ecb7..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/client-iam/ca-intermediate.crt
+++ /dev/null
@@ -1,136 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 333 (0x14d)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-iam
- Validity
- Not Before: Dec 12 10:42:46 2019 GMT
- Not After : Dec 9 10:42:46 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_client-iam
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:d0:0d:94:2f:89:71:05:49:bb:cd:54:4a:a9:8b:
- 96:41:92:03:ea:2f:3b:77:84:e1:2e:4a:8b:75:96:
- 57:b8:7e:ed:bf:53:49:d6:73:6e:02:7f:cd:f8:dd:
- 7c:9c:c4:a2:9f:d7:ce:50:23:f7:be:00:af:0e:50:
- ef:2f:cb:f6:0d:e2:57:58:21:e4:9e:3d:16:f5:1e:
- 31:70:09:ca:0e:df:2d:59:1f:de:e1:d0:d4:fd:c9:
- d9:a5:5f:ec:08:b0:d1:08:6e:46:58:49:33:0a:17:
- 39:53:9a:e3:83:9c:10:18:a5:55:b0:7a:69:1f:8d:
- 9a:da:00:ec:2f:c9:5e:28:b5:65:69:16:8c:10:a9:
- 3d:c7:f7:04:5b:4a:00:5e:27:06:c5:a4:7e:fe:0c:
- 65:57:a5:ea:cd:b1:61:9b:37:74:06:e8:9e:23:08:
- 2c:31:e3:fb:d7:80:5f:1e:ad:d4:ea:3b:a3:5a:c3:
- 00:61:bc:ba:15:fa:c8:4f:cd:df:39:c9:6e:e6:72:
- 8d:cc:de:ea:ed:39:05:10:31:fb:96:8f:6f:b2:71:
- b2:28:37:2e:23:fc:0e:06:5c:cb:34:f0:6a:72:67:
- 64:a3:34:18:0e:68:0d:d6:df:22:fd:f6:b7:d2:28:
- eb:c0:f1:ea:7f:80:5d:91:89:ea:4d:69:da:35:d0:
- ff:6d:76:c4:bb:44:9d:fe:aa:c4:38:55:b2:e9:7e:
- 3b:79:e6:6c:32:f5:59:12:11:9c:e9:19:ba:c4:62:
- 8a:2f:f8:a3:67:c9:cb:58:99:a4:8b:cf:03:1f:f3:
- 35:dd:0a:16:55:20:3b:b4:dd:9e:1f:1e:d6:5f:9e:
- 4c:62:c7:85:21:8c:2f:c5:e1:08:dc:be:ba:ea:5b:
- 68:9d:82:8a:0b:47:e8:60:53:73:4c:0a:3d:92:76:
- d4:b0:22:4e:2d:a4:b5:5b:f5:ec:bb:ab:24:24:76:
- 90:a0:37:54:78:7c:5a:e0:29:e8:1b:44:2b:6f:75:
- 23:bf:a2:18:38:44:1e:a2:d1:28:92:d2:d3:a6:2f:
- 28:7d:0e:ce:1c:ab:a6:aa:71:5c:aa:34:cb:84:b7:
- 29:d5:b3:fa:77:c2:8b:15:60:11:7e:59:2e:0d:f4:
- 2c:2b:e8:c0:4d:79:1f:1b:0f:58:40:6d:4c:fd:4b:
- 7e:4e:e4:8a:3b:45:0c:c2:04:56:7c:1b:50:83:0e:
- ad:af:87:e2:17:a3:06:42:d5:47:47:8e:e4:1b:d9:
- 6f:ec:56:c2:c1:b2:18:14:24:b6:61:9e:a9:7d:4a:
- 63:b6:2f:f0:39:8f:39:99:99:8f:64:4c:5a:cb:b5:
- 81:35:2c:f4:a9:70:bb:eb:5f:2c:53:ef:77:fd:17:
- 24:4c:17
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Intermediate
- X509v3 Subject Key Identifier:
- 7B:18:08:2E:95:8A:91:4C:77:F3:8C:25:18:0E:F3:91:60:4A:7B:D7
- X509v3 Authority Key Identifier:
- keyid:55:E4:84:92:4D:2F:90:1B:CE:E4:F2:3B:D0:81:D1:20:C4:0A:1B:DC
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
- serial:01:4C
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:0
- X509v3 Issuer Alternative Name:
- <EMPTY>
-
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 0d:2e:65:5c:00:6a:4d:d5:c1:11:ea:2c:27:c8:7b:c8:64:fd:
- 65:8a:ad:47:c2:25:e3:c7:ef:0a:92:4a:58:6e:d6:ce:13:0e:
- 65:b1:a1:7a:b0:dd:3a:16:96:59:c4:62:e1:4d:91:82:7a:be:
- cb:a1:4a:42:7a:1b:75:14:74:7e:13:fc:6f:17:72:6e:7a:fa:
- 61:5d:2b:c9:98:5b:14:eb:a0:30:98:26:f0:97:03:7c:9f:a6:
- 04:42:ec:ef:38:ea:ee:dd:cb:e9:58:1b:f5:f1:93:e2:19:a8:
- 17:8a:55:b2:4a:b9:aa:d1:d8:ed:0c:47:04:78:00:0c:44:1e:
- 6c:3b:dd:ca:71:4a:83:09:4a:e6:27:46:36:bf:0c:85:25:ee:
- 37:e8:02:13:01:05:5b:b8:a1:5a:04:c0:6a:b7:77:8f:5a:3e:
- d0:f6:af:1c:dd:35:86:40:10:6e:dd:bd:db:c2:ae:ac:65:b0:
- 2b:35:7a:92:bc:d1:07:c8:8a:ba:70:19:c6:18:0d:1f:4a:d0:
- 77:3b:e8:dd:9d:06:06:ac:8e:5f:b4:41:0a:49:88:d5:87:d8:
- c1:8b:25:8f:61:47:09:4e:e5:90:b0:a6:49:73:f9:9c:34:b6:
- f3:32:a8:1d:5e:de:47:c1:39:39:bf:3f:20:94:38:27:c8:85:
- 56:78:77:13:5f:f2:09:2c:59:d0:ad:d5:d2:0d:0b:de:3e:07:
- 66:1f:3c:0f:ae:58:69:83:e9:4c:f9:32:44:64:cb:49:ff:80:
- b7:36:f7:f0:58:15:cd:01:13:e3:7e:6d:80:1d:41:26:1e:10:
- 69:c7:73:43:23:51:e0:43:39:31:51:8c:0d:15:d0:c2:f8:73:
- 74:5c:8e:98:9c:e3:65:b5:3d:3e:c4:24:13:9c:ae:0d:c6:10:
- 62:f3:92:af:d7:99:e7:84:6f:73:1b:4f:5e:8d:bd:e9:62:81:
- 47:85:3e:7b:0f:20:07:b5:72:c5:d3:d4:82:96:32:d8:4e:12:
- dc:93:a0:76:b2:41:34:97:1d:09:b8:8f:c6:43:93:f8:7d:ba:
- f2:8f:81:db:c6:eb:0e:1c:6c:b1:2b:b0:74:ab:05:30:7c:00:
- d5:7b:4e:9e:96:27:a4:5c:c3:1c:bb:d2:13:d1:f8:05:b2:ed:
- e6:63:be:8b:63:80:9a:46:cb:34:1b:63:39:5f:4c:d1:14:5d:
- 2a:cd:8d:97:8c:c9:c1:44:93:33:57:f8:0f:12:a3:54:a4:9e:
- 1e:d6:d8:b2:b3:c9:07:5b:eb:a5:83:00:34:a8:e2:f9:98:4a:
- a5:cc:9b:fe:b3:4c:29:47:73:6f:de:c0:81:a4:a1:33:e6:05:
- ba:bd:69:69:3d:6c:e5:1c
------BEGIN CERTIFICATE-----
-MIIGgDCCBGigAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwbjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEbMBkGA1UEAwwSY2Ffcm9vdF9jbGllbnQtaWFt
-MB4XDTE5MTIxMjEwNDI0NloXDTI5MTIwOTEwNDI0NlowdjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEjMCEGA1UEAwwaY2FfaW50ZXJtZWRpYXRlX2Ns
-aWVudC1pYW0wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDQDZQviXEF
-SbvNVEqpi5ZBkgPqLzt3hOEuSot1lle4fu2/U0nWc24Cf8343XycxKKf185QI/e+
-AK8OUO8vy/YN4ldYIeSePRb1HjFwCcoO3y1ZH97h0NT9ydmlX+wIsNEIbkZYSTMK
-FzlTmuODnBAYpVWwemkfjZraAOwvyV4otWVpFowQqT3H9wRbSgBeJwbFpH7+DGVX
-perNsWGbN3QG6J4jCCwx4/vXgF8erdTqO6NawwBhvLoV+shPzd85yW7mco3M3urt
-OQUQMfuWj2+ycbIoNy4j/A4GXMs08GpyZ2SjNBgOaA3W3yL99rfSKOvA8ep/gF2R
-iepNado10P9tdsS7RJ3+qsQ4VbLpfjt55mwy9VkSEZzpGbrEYoov+KNnyctYmaSL
-zwMf8zXdChZVIDu03Z4fHtZfnkxix4UhjC/F4QjcvrrqW2idgooLR+hgU3NMCj2S
-dtSwIk4tpLVb9ey7qyQkdpCgN1R4fFrgKegbRCtvdSO/ohg4RB6i0SiS0tOmLyh9
-Ds4cq6aqcVyqNMuEtynVs/p3wosVYBF+WS4N9Cwr6MBNeR8bD1hAbUz9S35O5Io7
-RQzCBFZ8G1CDDq2vh+IXowZC1UdHjuQb2W/sVsLBshgUJLZhnql9SmO2L/A5jzmZ
-mY9kTFrLtYE1LPSpcLvrXyxT73f9FyRMFwIDAQABo4IBHjCCARowHgYJYIZIAYb4
-QgENBBEWD0NBIEludGVybWVkaWF0ZTAdBgNVHQ4EFgQUexgILpWKkUx384wlGA7z
-kWBKe9cwgZkGA1UdIwSBkTCBjoAUVeSEkk0vkBvO5PI70IHRIMQKG9yhcqRwMG4x
-CzAJBgNVBAYTAmZyMQwwCgYDVQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYD
-VQQKDAV2aXRhbTEUMBIGA1UECwwLYXV0aG9yaXRpZXMxGzAZBgNVBAMMEmNhX3Jv
-b3RfY2xpZW50LWlhbYICAUwwEgYDVR0TAQH/BAgwBgEB/wIBADAJBgNVHRIEAjAA
-MAsGA1UdDwQEAwIBBjARBglghkgBhvhCAQEEBAMCAgQwDQYJKoZIhvcNAQELBQAD
-ggIBAA0uZVwAak3VwRHqLCfIe8hk/WWKrUfCJePH7wqSSlhu1s4TDmWxoXqw3ToW
-llnEYuFNkYJ6vsuhSkJ6G3UUdH4T/G8Xcm56+mFdK8mYWxTroDCYJvCXA3yfpgRC
-7O846u7dy+lYG/Xxk+IZqBeKVbJKuarR2O0MRwR4AAxEHmw73cpxSoMJSuYnRja/
-DIUl7jfoAhMBBVu4oVoEwGq3d49aPtD2rxzdNYZAEG7dvdvCrqxlsCs1epK80QfI
-irpwGcYYDR9K0Hc76N2dBgasjl+0QQpJiNWH2MGLJY9hRwlO5ZCwpklz+Zw0tvMy
-qB1e3kfBOTm/PyCUOCfIhVZ4dxNf8gksWdCt1dINC94+B2YfPA+uWGmD6Uz5MkRk
-y0n/gLc29/BYFc0BE+N+bYAdQSYeEGnHc0MjUeBDOTFRjA0V0ML4c3Rcjpic42W1
-PT7EJBOcrg3GEGLzkq/XmeeEb3MbT16NveligUeFPnsPIAe1csXT1IKWMthOEtyT
-oHayQTSXHQm4j8ZDk/h9uvKPgdvG6w4cbLErsHSrBTB8ANV7Tp6WJ6Rcwxy70hPR
-+AWy7eZjvotjgJpGyzQbYzlfTNEUXSrNjZeMycFEkzNX+A8So1Sknh7W2LKzyQdb
-66WDADSo4vmYSqXMm/6zTClHc2/ewIGkoTPmBbq9aWk9bOUc
------END CERTIFICATE-----
diff --git a/deployment/pki/ca/client-iam/ca-intermediate.key b/deployment/pki/ca/client-iam/ca-intermediate.key
deleted file mode 100644
index 4a4bd83a3ec0bba1aca71cf810b974ec7321db41..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/client-iam/ca-intermediate.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQI2iiFHQFwvGECAggA
-MBQGCCqGSIb3DQMHBAjp0Z3vPSBJowSCCUhSS9On2ttBDEHRHA+draAGhhO3NbMI
-VYt3PFR6VGlNWO12QnGP9QkhEPDA4+eSXmYTmjkaQh02C+lo1tjxdPZtVVN4sK7X
-5BbMdgFh+cDSODSyqcByTIfjIYRSROfavtwu2Irtdkq/9ZIwxiIB/JrCJHPyL5ZT
-FnyTk/xqGfL7NFYhugcSsaZKLZaOxoqwoa1fttBiuTaub8JQehIANPCsugDicXJg
-EIDIGZZiR40e//wRBp8rJaVF2CrkXJUQ4rEfLB69Keb1wJu/bhaGOd1JQe4uLWGJ
-+0r1zJDP6b6GGQoWPZP+XX+6werMFEOYJYVbwHoIWRI67DAE7gGem8sTjIYu7sEk
-nSm048sXGYIw5TkhQgkTii3GQmHvGD0BYSQIZPjA4un07M40NRkSiZbPqV4CWvoy
-tizBXkV8qOH5ruNwaG0DM711L2LrOEE2zICDbgDlcpXvKDofnJ8+4zRCmKNq2qaT
-tQsmGiIdTAYHYII+7Qizc21bag3qGhmqaTyPH/yfhFMgrXXmwYBXOCI8GZGEPhFs
-JkScNRn9bIcDMTZubncyZlbBYgN+cBLPpRTIx2xJL/QTYaC/o5Mr0SH7fRs72mok
-iqiO6Jej3bDIFD+u/vXldym/bksmZnt1fUbmstjs33mJ+CBXy3FqNOIp17PJ/hwA
-KHf1/JwkkevoJA+V7Aw5kzv8lY3exfRBWicwXFUns1M3gBkWobZ0OMdu4HT0Soym
-Q1/fQQ+hkna54G+CxpO+i9emXudWHm8PHZCXadfPASHI3IdTYKtmWI1iZw0+XaFJ
-d9o8K8TorBsEdLV5Ge0WGYRJi9Sr5OQ6scYc9tnF6liFiELuBe9SXEYWKFsAuLrn
-ggZ4DLQs31JCwoN5Hq4MCodLKruDTiZpKj2e6KXLEZirWcprmP+O+BrJ/LqeCdN6
-dsGo+Y6EcG1ADUUJLx8A5QPegS2ezcIgadzoWh7XKX36piSUcZogTTlWXO4L20Cw
-sb+iaNb1ZV5VhccBidSMDt1zpEshl3ccFPLeOf46rjtk+ExKhaVMU+/yi1EyVni5
-UvQhjo9pFMWK8MHDs/bxHVS1eK20Gixd1TQiFIcMqu5BIRK8mtKz8QwfaDX0eQlj
-olv/fv/ypEr6+oZDoZip0wmz/Rd3D9ZppJjGSVqunDdLzsrOraRYXNU3QH5IzwQp
-077XWJoGxCg5L3fSVTutl+rZLRF5FX0WmCt/EDy/Id69V0ONghrXMrp8zpWpJqUf
-gX8a8UZStEu2Kd3DLV7rRdUgych8cl6fa4iLK5H8a31p0xbOu+tKbgouMx7AO3Lt
-oNEtegJOfWCg9heWOhJTxvw11OksyBjz0GPrrlyt1ffNkTgIZb9CDuFuWnHpR/nc
-1sTg7VjRfH3ExwMYVDL5B8p6s2TaKcxqR9przH7fkXWtj0dXJv3qHvWMPInHgN63
-qSVhlIXNq6uvWaFP6a57qzZFxJUs/5VFxKaUBJA3kURKZAXc2Eikcfo0JFx/bGth
-1zI+KhkoSHPmnVx3u6AimR87Dx+UHcTD4vRVlGEib/tXmh1PDVPsQlu0HWSGzKUR
-i3Z6zzQ/Obd3ejMv30kB2VZSVHRYVelWaDrW7gqYWEN/S+hac8fLAvJ2+RS1NLmb
-8Urt2060/69HIvRPBqCz14/jISOLIa4XBiDAsUgsnON2dM+UDjjnm9+IzLcQtNte
-J+65S/cpM+4/YqV1KQ9RLnPBsWKh8KKeXg/yVf3t80VOdxRgn4fSiaJLivm+Bht2
-E3ICylZm7SaKg/C2kJxYtNuPuvI+JsLyDXrViJj+Sca82D/vOTBxpEyTxfgbuPqr
-Twdp6+8uc08gUt2khcZV6tB4nBNm2+Mxp3May7pAIX1Hs/D+siKM26VeghOQSDXu
-bbV31d3HxA41PgMeeAAGhBxCNLecWN5I+Lm5dmbYxM04a/Sn6q27LmTiWkjfM4ku
-0yM6NIMKGeOgwOe8WBrkHMNS4B2aQ7OBfE3kAUb7/r44s5lgFoYknXEueF6kfhkf
-T/+MP4WcTxf0GsmV4kNNNstHlkZNGIA6EwykZl3XAlP+qXQ2JuI+q4zHlba9UB2K
-/Y5h9NYkhM39Tcol9D5nzIn+RSM17QIL3RTwnJGJD130/h+uNivkdbgJWIneBXQ5
-DiCIrno7LboFTNg26jwaPL0lUJztUfLum19YcckYR/Helxjw9gLA56VlFddsrCfJ
-m25W/lAdn9L0UXY1yiOOOWU0b7OUtbq+Js7VhiyOVNa/Ju893pf30IgcWG68tb7d
-uxbOxDSHuj2uJSbq6PhfDRYcH5U+wd8cn+d9QIORdl+emsNvC+g9mMQ0lPYmY2eK
-ypTlweTH/u61PyuXdpslbuntcaJC0TebngUKXeOgKhZOP+ry/BpGL4fo6Y12ho5P
-ugvOmeFq+WWVEjuEyUOJtGi8llntBGMbfc2U29bWnLjpzK/RokQHuSZ9j8y9Y7Fc
-JilhdmNJhkcIHsM6vizutMfs9AR/osEiNyMPxwdgNq+wLPI16KZJ/tToEGig9F6W
-FjTvaxOvKbrn5hbGcOoANhOGAauCF6TuwwfYDSHMSOlaD/BJbDDTG8GgqLcq8DCr
-QDa/Yqr6W0HFqYKhfxfOmWV0evViys1xSAOs8luGSRkfXc3rbEmRO7lv5yrGUzOh
-an4TBQmEzMM39vUZLC6ECKjPcT5Tzjkm5aGZfvAzjMYT8Pl1oZf4VtluojLF7bfz
-ckkoII8mvPlco62WybufdiJ9S+iN1sSGmsCZaza5J7MNY1BbhaNpxlaCi4XuQIIH
-2Fbrg8D0Rgu0oQC1el4SKlRABIVHYznm6JQo3wpzRaipGk8gccXk6CuP0PWzMrem
-V4+yjKydG7SEF5O75zlGKSJ804c+kJA1bZ55IeMHKI9U0xfjiDoLW0pnudzVruiX
-Yvxby/HWS/wFYO4DnfywIPadexR7G5n+MlpNwO0ILaPSjcR2zc8vUEDHK3Ee8Yuk
-T4EViEre3J7YWXVuqLSBQCY47RFiVZ0y9rRZlzXxJldi4JYD016b8z/ia9+Ao4BJ
-jctBvlnVWYKDzafutONl4d0NSpuUkc65oX22tyOjbmsatP+UGpal+Jz+Oyeq6ozN
-dksUBUlZzhn9jDfp8GeoW5wP9lLS/E6J5giC27ff55sE69vCv4fi8Z0PPuWcNGbP
-tFY=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/client-iam/ca-root.crt b/deployment/pki/ca/client-iam/ca-root.crt
deleted file mode 100644
index 072b7c5c8615ece8d13c50fc5d7e9b2e0b978d16..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/client-iam/ca-root.crt
+++ /dev/null
@@ -1,128 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 332 (0x14c)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-iam
- Validity
- Not Before: Dec 12 10:42:44 2019 GMT
- Not After : Dec 9 10:42:44 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-iam
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:a5:7a:ce:c7:4f:58:c3:76:06:f5:59:6f:c3:0b:
- 86:95:c0:c7:68:dd:20:fa:a3:ea:4d:6a:8d:ff:f7:
- 0a:1c:a4:20:79:26:bf:d3:51:d9:2a:f4:6f:7c:7f:
- b6:5d:52:3c:cd:0c:db:44:3a:6a:b4:72:d0:c1:de:
- 58:ad:62:31:a4:46:1c:bb:76:b1:a7:46:5b:7b:e7:
- 98:55:be:27:1e:d3:f9:95:44:4b:c5:6e:e5:dd:d9:
- e2:79:ac:93:fe:dc:db:45:b8:0a:a4:eb:f4:3c:53:
- cb:3e:fb:2c:b9:0a:19:e2:9e:b6:0c:ca:b2:f3:1d:
- 08:27:fc:6c:23:54:91:66:c8:73:4e:7b:fe:2b:40:
- 4d:92:09:0b:2c:e1:db:a6:dc:50:6d:1a:e1:15:f2:
- 88:cc:39:ff:28:e6:32:c1:3e:7d:7b:ce:8f:0c:0f:
- d0:67:b1:c5:86:bc:48:ff:71:3f:bb:24:58:ec:d5:
- 68:c0:e6:78:ed:3c:75:8c:22:fa:56:df:f0:94:a6:
- 6f:21:34:90:dd:33:67:b2:e9:24:58:c6:6e:70:e3:
- 41:20:42:3e:c3:92:47:73:9b:88:82:dc:26:ba:0c:
- 96:d1:cf:3a:9c:19:20:74:ee:92:1e:17:8d:5c:9d:
- a9:30:d1:a9:c1:11:c3:cf:29:0f:4c:04:9f:a1:c7:
- 99:fc:0d:bd:2b:01:53:51:a8:3f:63:fe:a1:2f:95:
- 98:9a:22:35:99:db:c9:8c:2e:43:01:69:73:be:14:
- 59:1f:24:f3:26:46:fc:96:57:53:0b:7e:05:6b:c9:
- 62:75:1c:01:03:b6:28:a9:83:2b:04:4c:6c:b3:85:
- c7:79:13:8e:dd:00:97:7b:c9:a4:62:97:1f:be:b8:
- 4f:62:91:e7:b2:69:a7:f2:2c:6c:a5:b0:71:d8:d8:
- 7a:2b:08:27:87:34:9d:2f:8f:bc:b5:0c:ca:04:d7:
- 16:68:ef:84:7f:71:93:e7:95:d0:22:1d:81:1c:65:
- 47:51:ac:b9:e8:14:53:08:a2:9d:6c:26:d0:4b:0f:
- b2:99:ff:2a:81:3f:12:3b:26:b2:95:2b:98:be:3a:
- e8:5d:32:ff:8e:3c:eb:c6:f5:dc:51:44:90:97:52:
- 3a:5d:5e:0e:45:f9:ea:47:27:ef:49:b1:1e:e7:d1:
- b6:e7:0a:c9:f0:f1:38:a1:c9:7f:62:a5:43:4d:1f:
- 6f:46:9a:12:1d:40:86:49:12:46:45:e8:b6:7e:ff:
- 04:ea:cd:20:45:32:aa:5b:23:eb:97:b8:32:e9:6a:
- 21:61:aa:17:09:33:93:c7:ad:b5:db:7d:06:f1:86:
- ba:4b:18:4b:8d:74:72:22:24:5a:ad:b2:e2:65:4e:
- b0:2b:85
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Root
- X509v3 Subject Key Identifier:
- 55:E4:84:92:4D:2F:90:1B:CE:E4:F2:3B:D0:81:D1:20:C4:0A:1B:DC
- X509v3 Authority Key Identifier:
- keyid:55:E4:84:92:4D:2F:90:1B:CE:E4:F2:3B:D0:81:D1:20:C4:0A:1B:DC
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:1
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 9e:d6:ac:bd:5a:39:3a:f3:76:a0:f9:17:0c:d4:09:8f:7a:aa:
- 60:9d:31:37:a2:98:51:93:75:95:97:9b:bb:1d:b7:f5:bd:29:
- 82:16:bb:b2:2c:79:23:08:2a:e7:a9:fd:47:93:a5:22:7e:bd:
- 4c:07:08:4e:8f:c7:d3:ff:90:e5:6c:cd:b7:45:ed:cc:ad:ba:
- 93:31:cf:77:04:3f:44:60:39:94:73:0c:b6:38:5a:26:79:da:
- 6b:79:23:55:d6:a8:5d:be:1e:72:db:d6:b2:a9:1b:83:61:a2:
- 3d:ff:1f:2b:8a:57:40:30:62:73:a5:86:22:77:78:c2:1b:ab:
- 6c:cf:eb:ca:67:14:fe:88:9c:3d:0d:27:e4:04:2d:5f:b5:8f:
- 16:c7:16:f3:9c:39:00:ef:f0:a5:2f:a9:12:a9:3b:4c:10:1d:
- f3:72:13:c2:e0:6b:87:05:dd:04:48:31:1d:9e:81:36:1d:34:
- b5:73:a5:74:18:bb:ba:35:ac:fd:33:26:ac:66:77:05:5a:e4:
- 0a:f5:b1:7f:92:42:0f:6d:7d:ed:55:7f:28:ee:fc:00:db:48:
- 4b:10:e2:94:76:fb:00:d3:51:24:68:cd:af:f0:37:f6:12:92:
- 85:d1:46:37:5b:58:0b:46:17:42:c4:d2:93:cf:63:11:78:c6:
- fa:37:ea:c3:23:a8:85:b3:67:eb:f3:b6:9e:3d:26:81:5f:e6:
- 85:ca:b2:3d:44:64:62:61:7f:b4:d3:cd:43:97:62:2a:cf:64:
- 17:51:20:db:91:7f:33:5f:1d:af:13:21:63:91:66:a7:a9:13:
- cc:2e:b3:ec:05:d8:02:ff:c2:6a:71:ab:7d:c1:18:83:95:e9:
- fe:86:21:9c:7e:54:82:89:43:6c:c7:5e:32:1b:3c:a5:98:09:
- c7:67:89:4c:06:0a:40:d3:62:cb:ff:01:a1:a5:ae:2b:91:e2:
- c6:fc:3e:da:dc:dd:b2:03:35:f8:9c:89:85:ad:eb:e8:36:1d:
- 16:6a:d5:c8:96:bf:9f:19:7d:37:53:07:0d:bf:07:d1:f8:6c:
- e4:93:e1:c0:d4:4c:0e:1f:c0:7a:9f:8f:d0:0b:d5:7d:d9:d1:
- ed:f6:d0:58:4f:65:00:dc:ca:f1:7e:e0:76:3c:90:5e:c9:3b:
- 58:0b:54:28:0b:5c:03:05:56:70:73:d1:97:c8:d1:45:d1:a5:
- 4b:1e:d4:52:00:ca:53:e5:ac:7f:09:21:4f:24:dd:5f:fd:ed:
- c4:4a:79:f6:01:c7:02:8c:bf:58:a1:a8:ff:cb:8e:79:45:16:
- 46:e6:78:4a:3e:3d:a6:fc:40:9b:7d:77:6e:c2:61:97:c9:e8:
- b6:dc:16:fd:6e:49:11:09
------BEGIN CERTIFICATE-----
-MIIF6DCCA9CgAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwbjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEbMBkGA1UEAwwSY2Ffcm9vdF9jbGllbnQtaWFt
-MB4XDTE5MTIxMjEwNDI0NFoXDTI5MTIwOTEwNDI0NFowbjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEbMBkGA1UEAwwSY2Ffcm9vdF9jbGllbnQtaWFt
-MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApXrOx09Yw3YG9VlvwwuG
-lcDHaN0g+qPqTWqN//cKHKQgeSa/01HZKvRvfH+2XVI8zQzbRDpqtHLQwd5YrWIx
-pEYcu3axp0Zbe+eYVb4nHtP5lURLxW7l3dnieayT/tzbRbgKpOv0PFPLPvssuQoZ
-4p62DMqy8x0IJ/xsI1SRZshzTnv+K0BNkgkLLOHbptxQbRrhFfKIzDn/KOYywT59
-e86PDA/QZ7HFhrxI/3E/uyRY7NVowOZ47Tx1jCL6Vt/wlKZvITSQ3TNnsukkWMZu
-cONBIEI+w5JHc5uIgtwmugyW0c86nBkgdO6SHheNXJ2pMNGpwRHDzykPTASfoceZ
-/A29KwFTUag/Y/6hL5WYmiI1mdvJjC5DAWlzvhRZHyTzJkb8lldTC34Fa8lidRwB
-A7YoqYMrBExss4XHeROO3QCXe8mkYpcfvrhPYpHnsmmn8ixspbBx2Nh6KwgnhzSd
-L4+8tQzKBNcWaO+Ef3GT55XQIh2BHGVHUay56BRTCKKdbCbQSw+ymf8qgT8SOyay
-lSuYvjroXTL/jjzrxvXcUUSQl1I6XV4ORfnqRyfvSbEe59G25wrJ8PE4ocl/YqVD
-TR9vRpoSHUCGSRJGRei2fv8E6s0gRTKqWyPrl7gy6WohYaoXCTOTx621230G8Ya6
-SxhLjXRyIiRarbLiZU6wK4UCAwEAAaOBjzCBjDAWBglghkgBhvhCAQ0ECRYHQ0Eg
-Um9vdDAdBgNVHQ4EFgQUVeSEkk0vkBvO5PI70IHRIMQKG9wwHwYDVR0jBBgwFoAU
-VeSEkk0vkBvO5PI70IHRIMQKG9wwEgYDVR0TAQH/BAgwBgEB/wIBATALBgNVHQ8E
-BAMCAQYwEQYJYIZIAYb4QgEBBAQDAgIEMA0GCSqGSIb3DQEBCwUAA4ICAQCe1qy9
-Wjk683ag+RcM1AmPeqpgnTE3ophRk3WVl5u7Hbf1vSmCFruyLHkjCCrnqf1Hk6Ui
-fr1MBwhOj8fT/5DlbM23Re3MrbqTMc93BD9EYDmUcwy2OFomedpreSNV1qhdvh5y
-29ayqRuDYaI9/x8rildAMGJzpYYid3jCG6tsz+vKZxT+iJw9DSfkBC1ftY8Wxxbz
-nDkA7/ClL6kSqTtMEB3zchPC4GuHBd0ESDEdnoE2HTS1c6V0GLu6Naz9MyasZncF
-WuQK9bF/kkIPbX3tVX8o7vwA20hLEOKUdvsA01EkaM2v8Df2EpKF0UY3W1gLRhdC
-xNKTz2MReMb6N+rDI6iFs2fr87aePSaBX+aFyrI9RGRiYX+0081Dl2Iqz2QXUSDb
-kX8zXx2vEyFjkWanqRPMLrPsBdgC/8Jqcat9wRiDlen+hiGcflSCiUNsx14yGzyl
-mAnHZ4lMBgpA02LL/wGhpa4rkeLG/D7a3N2yAzX4nImFrevoNh0WatXIlr+fGX03
-UwcNvwfR+Gzkk+HA1EwOH8B6n4/QC9V92dHt9tBYT2UA3MrxfuB2PJBeyTtYC1Qo
-C1wDBVZwc9GXyNFF0aVLHtRSAMpT5ax/CSFPJN1f/e3ESnn2AccCjL9Yoaj/y455
-RRZG5nhKPj2m/ECbfXduwmGXyei23Bb9bkkRCQ==
------END CERTIFICATE-----
diff --git a/deployment/pki/ca/client-iam/ca-root.key b/deployment/pki/ca/client-iam/ca-root.key
deleted file mode 100644
index 98cda1c7bd6e3ca2431aa463df880c15516ddbef..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/client-iam/ca-root.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIGVrdhyeStywCAggA
-MBQGCCqGSIb3DQMHBAjzSNmkUH5ywgSCCUh4ZPFnytVwGiwZNqPafw9AHJuIxCJ3
-509FO5WZ0vcev8PYos53zHVaEcv4q3pOuev8G6GfYJ5UV7+lb6A6TN3UahfXlhha
-Q+Tg3tSWTAxzbuGna3JMgnqTt+0m3rNxV0BIsmupAFOvBRX9F9PCJghZxA4tdVLS
-4wWEjB1sdSSVo6FFX8QGnWkZLGvrWnJc1mIIOIdMwfyrwpVS7cSkC0Q+oDzNfEgi
-7oGlbe4OMDsXKI6VWxupBrPMEABBe46IvXawld9VTx5x54VL6rH4zgH32EHwgW+n
-uFjKUyqfz+5USSFqvVf9H5jDFRlfZq9khX+KPVIjCtqFItQX1mApHAfEIIId1pF+
-bc80Yl69mi6zY62817pfOCEaixDHamrLjOhmbwOxQZX9Rv2loqWJv/wd5GkjVr9i
-mbwaoOWkY6Mbad9Sy/9dIeqmznmg63kjJETYGQ5XHuUG/xJI1VcyvyUIy1mdTNLv
-uRYW9X9MdV601zjzCU3pCARMQ+6tzPmsgjrOA6oAQZBjguxGgXEDbS63o5OmfaBm
-yo+VoQfrVclSNf1ECoYUSFx2qUTPuImqvQTg1zjM3z7rWshXwzca6tKcc0sCB3gw
-s1gnkX+Ac6OSqj3G3LT1AJ6wAKJcclXNazga8jACG2JduXP/UxF8frzOaFbFbuf/
-JfvRAhUpFK55LQk66UDyoy5U9dk7tfkwffH80cIteUEIFCjCEiPgVXBc2YPvahTi
-HHOZLJfSrm9shAFbKUyT+SEfQGXTCmt9LnpCRNhvqMZM6qBOjH80e+2QrPyQPs51
-RytyXihyOZZaX2VxKLbu+R41Zy0Wdz7zaYqM9zSkIuI/UDp2hBET6mrmpMHd8K+y
-8S1ugw0zrPKd+Tu1pZExYZ2vsUzOiMWsL5rYXu3EgREBTTDZYTE1NByzs+ETEUPL
-cPExqcmVPmCxCPtEBoLf52y4+QlsnSxwFyczSJjgut+QxA4bMha4x1Xlrug/Tq1h
-LhtWEF56jJ7TprGfCabtPM29+7SCdQVgM/p9rTHnMdavBUxeYNvLIl2Jh5XXECaQ
-ommnOwOS7c4/DuW8FiPukL5RpI/4ttB/Mlt9MqHhlRnyDBLPGFRAnKYcTHRH0rrn
-/04VyQ8ujJMFh+hEoY4W1HZ2hps/eV6BWDichqKKZpWLuFdGZRlidKj2NSBVxVmd
-YPHLAsKzq9VHf78jjxzVBatevT1NXKfmZ7NWyxJICIdXBwjX77O4fbXeLIhxAD20
-AOn6e9YfeUMqkF8jNrVBs9YJfqQzUJVoLcctDj+11ohr1iTx6AbEO2vNqd48hoaQ
-MOY+19+5+MNA3TKiDeQRjt2tdKPCLhqkK1BRllzKczTIoanPGfuLMPhofGVh5vIa
-LJVrXqyPD3gaZMkkYYZWaxoBS1ZioVmt+ycZmrV/1nT1lTKFFFX3kmJrNwrlLHoY
-MfSm2FNrJfo5x6WqeW2FmQqnHRxokl/DreGxDZDLEEm2tzmtX+4/SQVQfDc8IG7Z
-EOiAQR8aeAQQCjpFxQ2ANoi5LuR1fpcjbdfaHjG923Vbz1x8Pt31KeQW40N9gFPJ
-J/qO4kqDvyPVjZ5qefEwJzmUZvzS/QbZUW1PMh7RPOdooKpNugk8+APOjx8TbtPT
-AZe5wSVE4bhNTtajwoHAtxzftJPvBTExhJntN1otDb6IMEv9YpDKoJG40FXZ0Nms
-EbgaqI5kkYP+8x8QLEdyi3NSmhPOncyr+fOtdy/gGm7XIHUWc6M2LVUnnFKZHflt
-448L1mJufRc9g1kVbpso+f4xxSHTjyYJtSxvxRjC/U+VVzTH+yxmdlbgduncPkR1
-U8Ni0kO3MS0sxiLGn918/DicNR/K3W/9XBojGkttBO1z9H6lw0JsUCzNDkQDsF4K
-xNMLsu9LM2x4z4Jmxl7McjIKPye3KSCz/urbNM5T9SsjOgpVwgKeFxaBPU1Pkyjz
-tPHgruacUEiBA5B85k74kECj1RPEwPxsURX/uipL4Cv8vnWPmbXMDFNoMq5RIOkH
-siPiyXshATYu+MWnAkZuLHf22L9PAOCrGdYXzmtjrIAKUnPBVHc2iwV6ndalwnT1
-IplPjph9Cd2x1TNh5bASUmrpNpFAAXmwZJNeyc8aw538Q2iMhg6RXJMnHo68oE81
-P/CkkIXiruF/Jdmly8C3+4mLbsy7Yu+xMzG1+x6o+Ry887KCTFdK8AGHrXo/+bKJ
-UBoRYAfbW8ZvEg9IY23r+05IXij7cO4joXXiRlGHxHKPq3NQN3yzM8bBAOpiw255
-keokR9C698waJOH++hg527iUvV2T8IZ5bTqkbJLYZ5GZ/QBE5+XIfiwNntVF69Sn
-Ah6aQH0R1WIFQIMnkoNEVXJkcc3ECJSQxXXvv7RRxLW3YHZzbPG7kq3XgqmP8UqA
-g/YgY8mwHppB3KxcuGRiEa8ELc9vf/nqHkENzaWABoM0SaeFeZPIlvllZ/zZgSAB
-4plKZjFsU9aR3Hk1uKdO0Iilp+1PQo4YYGaNJHfeodknmGdT2evCqhJfsnoWTgO6
-7IVAh6NL5GrXiEwXwAfGHJ+Pm8Sf1mZUIIwnE0c5SweH4yeb5T1Eass64UpfWOxw
-T0QYk599ubEr2RGLVBfBM1aMyULb04uc7g3vlumsF7+vcUm9+xO7YkRWml+ZVpWJ
-9HeXE6rVUHvZuE7JZ+sjmZgOOh7MG85GXyxcRXa6Y3u2032geYjUp9Gnmq+aUiC2
-QVoOouByV6QGzM67z35sUmkbnJQOL85nQcxp4APdd1upiYfJ8AfFFEh3uOsyWP40
-zAbcDdwicPo59WfZii28LnqOXr1/cvTD0GeK5Rngi79RMiQ8W2hQtE34sbk7A5aA
-eN859S09K7za6b7/qIxW4RkObTh189sqSaIBCU0jz2vAELTMLjeqWCDHzeDi4lWN
-dME7tb8h2oMPH8lFrQVIrZXj7amKTm9TLfk49DugEVwsBEsGvtBHD5ersClDzAqy
-8eMqPqMQMidsu17t6f7T2M2LbTgO+4T7NjjITCvPUzTR7HHa+uMKl2zNMhkUZUGY
-CX+sj33fPH+W5DGsxbjJElt+w72EjWZj0rQj4oogiL2BO92lE3ZnBX9zr4bdAlNE
-4su0iUc1DmRIADL1lJPEfuprLYiiVm64nKGni1/lP0tlRX/nL/kqiLjjXgD04y4p
-Tn8=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/client-storage/ca-intermediate.crt b/deployment/pki/ca/client-storage/ca-intermediate.crt
deleted file mode 100644
index 41aeacbc9cb43b54d5fec00c14ea485a77b264d8..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/client-storage/ca-intermediate.crt
+++ /dev/null
@@ -1,136 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 256 (0x100)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-storage
- Validity
- Not Before: Nov 22 08:53:37 2019 GMT
- Not After : Nov 19 08:53:37 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_client-storage
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:cc:9f:44:87:1b:82:68:60:69:6e:64:24:25:14:
- 84:c7:8b:02:3b:ac:20:6c:47:b3:04:ba:50:55:a9:
- f9:ea:a7:cb:10:d4:92:40:2d:c7:25:83:49:f6:93:
- 86:04:93:9a:a0:c2:4a:99:be:68:74:b7:13:d6:ae:
- 1c:c9:e4:aa:57:7b:80:a7:f3:27:f7:c5:e5:a0:14:
- ca:ac:9b:20:3e:f7:fc:94:5d:7c:a1:74:2c:39:9c:
- 91:c1:da:39:db:aa:a0:c9:79:09:48:a6:91:8a:09:
- 92:5b:d2:ea:a9:4d:18:c1:ae:00:d5:a1:5d:f1:b3:
- 1d:8b:f2:e7:f7:3a:fe:18:63:45:70:a9:1b:75:d1:
- fc:20:fe:0b:8d:72:47:1c:83:f8:f7:d7:50:7a:07:
- 2d:65:b7:f3:03:57:a6:a2:7a:1d:2b:6e:c8:66:6c:
- 83:cf:f9:74:b3:f8:ab:1c:ab:d7:24:5e:6d:bc:98:
- ee:96:69:16:10:30:02:a3:ea:8e:ed:40:a4:ba:70:
- 01:16:39:f8:f5:87:5d:79:e4:7d:96:3c:85:97:e9:
- b6:f4:16:43:5a:8f:5a:60:ac:04:f6:11:1a:07:9c:
- 05:5f:6a:d8:86:c6:81:e8:9d:b2:a1:6e:87:de:a1:
- 7b:f7:eb:07:98:d3:24:67:5e:a9:4c:a7:93:d7:30:
- 46:e1:ee:81:1c:24:ba:17:c0:81:6c:a2:d6:fd:d3:
- 35:d0:a9:b6:4a:86:d4:68:03:10:f9:cd:22:bb:88:
- 67:65:5b:38:1f:e0:0c:2b:96:ca:79:15:90:9d:c2:
- 35:47:ad:67:47:86:5d:ec:ca:cb:77:c9:fe:ba:c6:
- 86:31:76:73:32:18:76:69:35:c8:94:91:33:14:51:
- 45:c2:41:02:d5:95:55:18:1d:cd:51:9b:9f:34:b1:
- 04:5b:6d:bc:d8:b8:73:6c:ef:e8:54:1b:f6:ed:db:
- 64:a1:05:e6:6c:2a:34:be:1d:08:c3:db:e6:14:ab:
- 29:b3:0c:19:91:43:55:fa:32:d3:99:64:b6:57:0c:
- 99:a2:c5:99:24:dd:ae:dc:38:cc:4e:93:bd:2e:6a:
- 5a:a8:22:6a:64:96:73:9f:00:47:6b:36:a5:81:09:
- a2:ce:f6:91:02:d2:9f:9a:c2:07:66:eb:e7:0f:7e:
- 3d:82:c4:53:99:25:69:b5:d6:1d:98:f1:28:61:e7:
- 7a:0b:6c:78:1b:58:a9:23:7b:06:e7:4d:c1:34:ee:
- db:5b:3a:d4:04:6c:2d:6a:30:33:a4:4f:b4:1f:7d:
- 71:40:ac:11:5e:37:0d:03:47:f3:65:38:31:37:57:
- 7c:ae:89:39:51:84:0b:75:3a:1a:95:34:0d:2d:25:
- 35:af:3b
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Intermediate
- X509v3 Subject Key Identifier:
- 4A:7A:F1:76:63:65:9F:FC:D1:27:32:3F:D1:EA:1A:10:F2:32:CF:16
- X509v3 Authority Key Identifier:
- keyid:CD:07:41:EF:62:B7:F0:79:3D:A7:A6:EE:38:60:EF:FE:89:8F:68:54
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-storage
- serial:FF
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:0
- X509v3 Issuer Alternative Name:
- <EMPTY>
-
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 05:81:57:b6:74:b0:ad:a8:05:c4:fc:2e:0f:16:23:82:f7:f7:
- f8:39:e3:bb:19:79:ad:82:09:b6:c2:9c:c5:99:cc:37:39:e7:
- a6:23:35:0c:b4:26:09:b0:7c:41:4e:d3:85:9e:62:2b:52:94:
- 52:42:ef:ef:63:7e:9b:ca:78:b3:7e:ec:64:a3:c8:8d:45:e5:
- 09:4c:58:47:72:e2:3e:18:9c:8d:cf:29:2e:1a:3c:52:7d:f5:
- aa:36:78:46:34:92:70:68:20:f3:b3:5e:7f:41:3d:ba:9c:67:
- 2e:87:37:6e:9d:5d:03:bf:52:84:c3:a1:61:33:c0:8c:a1:32:
- f2:4c:ed:5f:b5:bd:25:47:e1:51:46:f8:ea:a5:45:f2:06:a8:
- 13:3e:da:03:d6:0d:ba:bd:6f:9a:e4:4b:9a:a5:e4:22:b0:45:
- 98:9b:99:ad:96:f9:7e:dc:c4:f1:bb:54:d5:7f:44:95:ba:2f:
- 6a:f6:a9:3e:42:d1:ae:df:64:ca:49:39:7e:a9:67:e2:9e:c8:
- fa:34:b7:2c:3f:89:fa:80:21:72:7d:75:f5:4a:8b:d6:1d:cb:
- c9:dc:53:11:3b:63:df:ea:2a:1b:82:d0:71:82:9b:95:e2:d3:
- 50:5e:8d:65:14:4a:24:d6:7b:48:8c:28:ac:b1:e8:b9:8d:76:
- 7e:6d:0d:ca:49:c4:89:fa:c9:34:96:bc:15:4f:c9:7f:66:3f:
- 73:7d:96:f9:68:75:f9:a6:7c:21:a5:5b:40:16:96:2e:a0:94:
- a5:03:8b:91:4d:28:22:18:db:b8:33:7e:18:12:7c:ae:36:15:
- 7f:e6:3d:c1:5f:2f:57:c9:84:75:58:04:50:ff:6d:7a:e7:c8:
- ca:65:bb:45:56:fa:ae:9a:a8:6f:72:b5:a7:d4:ff:18:7f:86:
- 97:28:29:3b:4a:30:2e:40:3a:8c:c3:23:df:5d:ac:a6:07:27:
- ae:92:58:12:bd:32:ee:b1:6a:1f:7e:cb:3b:29:0e:c9:4a:e4:
- 1c:26:ee:94:c3:60:cd:fc:a4:f5:d8:7a:6d:35:c4:0f:25:39:
- 4e:06:96:6a:16:a4:13:b1:e4:87:d0:f5:54:c2:23:35:00:b8:
- 44:b9:4f:e2:b7:3e:be:fd:d7:3f:f2:9b:cd:41:17:e0:87:0b:
- a8:5d:22:fd:68:c9:56:87:02:d5:fb:fe:ef:65:2e:49:40:5c:
- 24:40:c3:85:b9:25:ea:9f:2f:a6:fb:4f:cf:cf:1b:1f:70:71:
- 09:23:e0:00:49:a6:36:27:42:76:eb:47:62:2c:98:db:f7:01:
- 70:dc:90:18:cf:7f:1b:28:87:31:b9:e7:9d:57:cb:62:19:f9:
- ab:c2:e0:b3:9d:7e:1b:cf
------BEGIN CERTIFICATE-----
-MIIGjDCCBHSgAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwcjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEfMB0GA1UEAwwWY2Ffcm9vdF9jbGllbnQtc3Rv
-cmFnZTAeFw0xOTExMjIwODUzMzdaFw0yOTExMTkwODUzMzdaMHoxCzAJBgNVBAYT
-AmZyMQwwCgYDVQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRh
-bTEUMBIGA1UECwwLYXV0aG9yaXRpZXMxJzAlBgNVBAMMHmNhX2ludGVybWVkaWF0
-ZV9jbGllbnQtc3RvcmFnZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB
-AMyfRIcbgmhgaW5kJCUUhMeLAjusIGxHswS6UFWp+eqnyxDUkkAtxyWDSfaThgST
-mqDCSpm+aHS3E9auHMnkqld7gKfzJ/fF5aAUyqybID73/JRdfKF0LDmckcHaOduq
-oMl5CUimkYoJklvS6qlNGMGuANWhXfGzHYvy5/c6/hhjRXCpG3XR/CD+C41yRxyD
-+PfXUHoHLWW38wNXpqJ6HStuyGZsg8/5dLP4qxyr1yRebbyY7pZpFhAwAqPqju1A
-pLpwARY5+PWHXXnkfZY8hZfptvQWQ1qPWmCsBPYRGgecBV9q2IbGgeidsqFuh96h
-e/frB5jTJGdeqUynk9cwRuHugRwkuhfAgWyi1v3TNdCptkqG1GgDEPnNIruIZ2Vb
-OB/gDCuWynkVkJ3CNUetZ0eGXezKy3fJ/rrGhjF2czIYdmk1yJSRMxRRRcJBAtWV
-VRgdzVGbnzSxBFttvNi4c2zv6FQb9u3bZKEF5mwqNL4dCMPb5hSrKbMMGZFDVfoy
-05lktlcMmaLFmSTdrtw4zE6TvS5qWqgiamSWc58AR2s2pYEJos72kQLSn5rCB2br
-5w9+PYLEU5klabXWHZjxKGHnegtseBtYqSN7BudNwTTu21s61ARsLWowM6RPtB99
-cUCsEV43DQNH82U4MTdXfK6JOVGEC3U6GpU0DS0lNa87AgMBAAGjggEiMIIBHjAe
-BglghkgBhvhCAQ0EERYPQ0EgSW50ZXJtZWRpYXRlMB0GA1UdDgQWBBRKevF2Y2Wf
-/NEnMj/R6hoQ8jLPFjCBnQYDVR0jBIGVMIGSgBTNB0HvYrfweT2npu44YO/+iY9o
-VKF2pHQwcjELMAkGA1UEBhMCZnIxDDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFy
-aXMxDjAMBgNVBAoMBXZpdGFtMRQwEgYDVQQLDAthdXRob3JpdGllczEfMB0GA1UE
-AwwWY2Ffcm9vdF9jbGllbnQtc3RvcmFnZYICAP8wEgYDVR0TAQH/BAgwBgEB/wIB
-ADAJBgNVHRIEAjAAMAsGA1UdDwQEAwIBBjARBglghkgBhvhCAQEEBAMCAgQwDQYJ
-KoZIhvcNAQELBQADggIBAAWBV7Z0sK2oBcT8Lg8WI4L39/g547sZea2CCbbCnMWZ
-zDc556YjNQy0JgmwfEFO04WeYitSlFJC7+9jfpvKeLN+7GSjyI1F5QlMWEdy4j4Y
-nI3PKS4aPFJ99ao2eEY0knBoIPOzXn9BPbqcZy6HN26dXQO/UoTDoWEzwIyhMvJM
-7V+1vSVH4VFG+OqlRfIGqBM+2gPWDbq9b5rkS5ql5CKwRZibma2W+X7cxPG7VNV/
-RJW6L2r2qT5C0a7fZMpJOX6pZ+KeyPo0tyw/ifqAIXJ9dfVKi9Ydy8ncUxE7Y9/q
-KhuC0HGCm5Xi01BejWUUSiTWe0iMKKyx6LmNdn5tDcpJxIn6yTSWvBVPyX9mP3N9
-lvlodfmmfCGlW0AWli6glKUDi5FNKCIY27gzfhgSfK42FX/mPcFfL1fJhHVYBFD/
-bXrnyMplu0VW+q6aqG9ytafU/xh/hpcoKTtKMC5AOozDI99drKYHJ66SWBK9Mu6x
-ah9+yzspDslK5Bwm7pTDYM38pPXYem01xA8lOU4GlmoWpBOx5IfQ9VTCIzUAuES5
-T+K3Pr791z/ym81BF+CHC6hdIv1oyVaHAtX7/u9lLklAXCRAw4W5JeqfL6b7T8/P
-Gx9wcQkj4ABJpjYnQnbrR2IsmNv3AXDckBjPfxsohzG5551Xy2IZ+avC4LOdfhvP
------END CERTIFICATE-----
diff --git a/deployment/pki/ca/client-storage/ca-intermediate.key b/deployment/pki/ca/client-storage/ca-intermediate.key
deleted file mode 100644
index cd07921031b2b15573ed8c0ef0d3c0ad92a5bdfe..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/client-storage/ca-intermediate.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIEXG1/BmNnHUCAggA
-MBQGCCqGSIb3DQMHBAhuhMRewGjkYgSCCUh3H977noHt+wr+bGO7fO1zj+Zy85Mw
-eAsdGTVwnxmvdlnO+JHfdTT3/KxI4KQOUwRR7QEEgy+994yeRnafj+681mXczt1z
-w0tvYxu7zFXT4uw7oUfrkGkMZEM0DvrhwS+TiDkbmkl2vCnD5oDjnfTQAE8DDjc/
-bsUYpo9EGFYBr4PTHsnZ2oTtXgGtPYXjkS1debKfRJLGjHZ6hpA4lDYN7GmpHqkf
-6saLkbfSP2wN0khzpyUTJdxzZYQGSVw6ZcoZpuCz/ezgUv++Z4nU9c9kc7PgUxgy
-dP+2WLrN8kRYFzPTGDwxr4qSCcvtYnKJ+TuPp4FmzbjKAfvhC99Rtc0maQqSlBc2
-pe7//3HcZyGv0HR4Lhw9HCnJHXyKkGnnjcvmubLo5g0Sspx452xu4QL6utS6B6ba
-4gX3EpzfbLcR6Ab+j0D3SvIQCAvUu8PR/X2vvhWODqTeuP5N3FNwk0hK/UlCL2cW
-QgtrNN4H2bEpji95giG+ivExNEgtGZirOEb/S+44FuSrk6TaFya4J1ZIfxwF5hjT
-ysQ3i4r+Z7YC40wvfarX/s0A1T8dKRfPFOeSbqB4MWwvsbr2oySf4d5bzWJC3q2B
-cPX0kzINT5M4iVdzgFX85uWtqjNwW8PCSy201OavYhOXP1EP8d3Y/4o47xOVCFme
-HXkWXNG1b8dH49V+pfCqWNR5D8EpYr8lfNrpogMKo5khfIsYkUreRBPN6i4cwIUq
-79XNPFOgs/ihRAHLnOqfKTjIr7UoOPQWskTkAt84o/LPuWSe+joJQZ05WiwkhCou
-5OwaSJ9/INqJtfp5nmKTwb1K7feToJV8Ra0QVwyHTyDewwFCWr4knoNpk11ukIGD
-v8V0LboqkLNUsVZR0KRfx/2zXdXZWWt3cZsIEctUViqHCgLVERoHKmz+YnnzENCZ
-G9lPBkyvomzGexGkqu5NiJsRzjxjyCyciHG5EbZsfDmMUQMvtNig/QjhzaPx0DC2
-1iDuYYtoLB3F48Vhk664RBcNbVIMGeSp87mj1iADMeyo5cRj1zUqucEXRQzO+GIf
-+0ifx9Satb1mkJ8kU3a6GTOwvgQQK/Df6gdXIGI/f+de6ohh16NR4NXuW/b1SO7k
-hqksLojcYGxVArqCN7keTUjVrsILrnylUAkPV6eNGMSrEvHvuXe0NbDZdPrYlp9R
-MTipBCs7oOxZS9MhULdxTZdin7r+dTGyF9rlDbG/MvzqgROsgpUcgyjFQbMeX2Uk
-Srj6Ax6JRiOEJnb7sTbDZq8eBin4kTb9uxPHPEwtx6k0i23lLvFuCdQTUMylFueE
-n1NEW1yNA1tjUt2RoOuSqDhY6ilNzRzZjmx0D8NxD6Rb1CW+g8yZs5GwEX4jxcR6
-/8sCIywcku0zJbI89W+jBLf0vl/e/jcjURTLvRbW6INUWN0lgFMHwuMMLRNVuA8W
-c3OHXeAIQV9YQJK2ethtx8de+084gf8oSHMgBS5FGjgYrCP8aKIfNdNtYZp9i9Vu
-iNlLybp0mM0WWiSkcJMal995M46vpmd3T2Xy22YWBgR56wqfWexq8gqyJniZ1xxZ
-SdOIlDSLJcxNGX49AsP9JdJK5RQd3wwg79/Jkzsm1tvxik4wvqi+SBZ8ipzJHFYM
-wx32+rEM9vGjDMaSIoVxacGRkHRCymCWuE25+dmm1EJQgZAFzhK6B6D47e4537ON
-B+Hw4tVc06DSQ90r5vsXX6VxJeCcEfI856IsLqtOiBFBFcKJ48ODO2tbW6iQKlVH
-8JYciCeLHWS5Vw3MFMbR6FHeG7Il1X56a6H/V7ClSevsjgm8t+CxRb/dPhj4MbXC
-VL/rdjVHZUoO8rQP+n0V5b4L2EHuAIa3z82ChsvV0SnmQOTTFMVWP8VF9Ydw+62F
-GW51ftlKpSWs2WgCW8WEKGfUvwhYzyvnjCUUPYVH6Y2ZYe8WH5PlOqNns+U0LuCP
-E8yALTXAMQBN4glidM9M0Mz3JBSU53tOUQkNds/nI+ni91UUBYPmyJ4+U13CGgbG
-V6wlJesRUjy/UrqmTmsUDKJEncYJHOZ2ympB0vMVykFWVqW+jOSHAyvld5BHCV1t
-zBW/igFXB9kz6pgobQx/Vrs1iO/sbVdO44IDRlLTAC88xjg7N+ARLE0DJvRAbt2n
-gs8JtyBESbOpfAWoqlFKotuEYuC3Hn4015geXJsSrnssvYDUtZ51TpUAYECdm3TP
-jinj/H2+Q8Io7jK0mMx6coYmyAFfq1UWaVAq5X7tCZ9L4UAfCYHemE9rEjiQCWve
-LQxJIw0JcOo3M9e5tEPzfyqx0r6881aFx9xizl/Ur92l21jKel8+Xr/WihG/rCnu
-4dnJSUi30OtwFFX8rXSjo99lyCv8UoJCZ3EzpUbsb9BggNUCBpfHdf1Aqvf+CQ1X
-3JtFfQG0ntfGB2sy8zkn5JWvZJWTgXSTvtfpCjNUZR4STwMannogS2vTbR6vR6J8
-8lw7RNqufAeqZswebUY/bM11DlowVGo0EgWJKkB20UptMdqvPxvZQAb0MQz4K8yr
-LlJ1YxXGgGBf8pO0LDDR9eaj+BVXVLvtJxMzry3R8VRRrTicJ8gaIiqZCo6aHgfk
-yuOsxMeLv1xV5hSVMyIMs7xeehpukkLl2DUjfvSnYiMknWTE2aQDFSalflmqjhcx
-aSAB0MXz3IUuOcx80eNeAapciGIbrXIllxQGi4IeszQ/8IUXw2mRniCeXB1PvN2a
-R8IMMi1cd7a1GPaE9o2+KbtQ2PqcjQFVYJdEMSCqSWXBWZLdHE/LrXlQxiCeRKLJ
-oUXB5LVoZBQWhu7Ryi9ZdbsXbXiXZkC63HJV3+frbWunw4tQN7WOaY7mwru98JRw
-dCIEns1bNMJxZGpcwNk6VX2Pt701sfkf3Kn/aE56SZCX9eKymu8lts12vP8UmXP9
-a0lT2MZG8/NHB3rMgbpF/eqPa9v6DiNCh2vupopqs5wjpmmaOHlcozaMWJdjZOo/
-6iFX9abzbFGzCBlownfU2sFMZ90xpEYfUlPhUTTpo5aJDV1lqN/f6wWeBhrJAtIM
-CXwu99xCqBlD9tzSdfjLxR69QlViypLk6hUzH8cChGPfx7efb91q8beJrNk2OkAL
-9Tcod5EMo4PY7IVt5qfXM+6BzaU68FsFjMLWSkWkWXmVcvcltLg0UZdt3Vk7hBKK
-ChY=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/client-storage/ca-root.crt b/deployment/pki/ca/client-storage/ca-root.crt
deleted file mode 100644
index c3f7b1d717a3794b695d71b8835994cb762e0e38..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/client-storage/ca-root.crt
+++ /dev/null
@@ -1,128 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 255 (0xff)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-storage
- Validity
- Not Before: Nov 22 08:53:35 2019 GMT
- Not After : Nov 19 08:53:35 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_client-storage
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:a0:4e:7b:9b:fd:dd:60:fc:94:f8:b4:ce:66:2d:
- bb:e2:aa:e0:7b:58:37:19:0b:50:b5:10:ea:a9:f8:
- ae:45:53:99:32:ff:66:23:5f:f6:a0:94:8e:48:00:
- b8:ba:fe:6f:59:0a:24:4c:5b:c9:19:d6:73:ce:f1:
- aa:75:9e:46:bf:9d:46:40:97:df:cf:34:d6:e0:49:
- 2b:67:7a:aa:b5:03:ed:b3:ff:0b:3f:10:a6:4b:38:
- 34:89:60:85:7b:0c:e6:e3:b7:4f:56:3c:f4:b6:9e:
- 95:00:8e:46:cd:23:8b:5a:36:cd:0c:7d:08:06:37:
- da:f1:d9:1b:9c:3e:c9:c3:8c:36:54:a8:71:83:18:
- 27:52:c1:9d:19:93:0e:bc:52:20:e1:15:10:55:d6:
- d5:a4:29:c4:d4:77:a0:1a:93:dc:d5:39:dc:a0:35:
- 02:59:c8:cc:0f:b3:3c:f7:ee:f9:79:1c:cf:8c:9d:
- fa:21:b0:30:f8:89:45:84:3c:91:81:41:68:94:3e:
- 00:d2:d0:3a:c2:d0:d4:ca:c0:84:a2:b3:74:64:b0:
- c2:e5:6c:63:6d:f5:a6:26:02:68:89:d6:1f:ad:2a:
- d7:d1:15:0b:5c:e7:c0:cc:85:c9:a2:65:71:20:7e:
- e9:53:1d:b1:f0:16:83:74:3f:12:1d:7b:41:97:b7:
- ce:c4:13:c0:c7:45:71:b6:17:03:29:80:6e:2f:b8:
- 92:59:0e:03:75:32:52:9e:b8:1e:3a:a5:39:2d:9f:
- b7:eb:82:48:1d:cf:a4:fc:ba:ef:25:3f:40:08:5d:
- d1:f1:f9:5b:cd:35:46:57:2f:fd:d4:70:f0:d8:a5:
- 5b:81:89:8f:95:63:5d:3b:13:64:95:82:6d:17:05:
- a9:70:2f:3d:9a:03:ad:61:df:55:4b:d1:89:73:d1:
- a5:40:d4:17:c1:bf:3b:5b:72:4d:28:9c:b9:9a:fc:
- 36:24:ea:ea:07:09:b5:13:d1:e0:51:c1:ef:da:c0:
- eb:e1:9f:0f:8e:5c:8c:1b:ff:82:5c:8e:af:c4:40:
- 20:f9:33:00:2f:5a:3a:d1:f9:a6:31:ca:ab:0d:ed:
- ff:42:3f:d9:22:36:e6:d9:76:35:0e:db:59:f1:32:
- 01:f0:b6:34:9f:1d:6d:98:6f:b3:21:a3:ed:ed:6c:
- 67:98:c3:7e:bb:b6:bd:77:59:85:59:9c:04:2d:73:
- c4:44:40:09:e8:66:41:d8:cb:0d:21:12:26:07:e7:
- 86:88:34:7e:70:fe:0c:86:97:86:96:17:4e:7d:f9:
- 15:d5:64:60:af:d5:18:45:cf:10:a4:8c:2a:c7:0a:
- 50:de:80:27:a2:d3:37:83:1c:ce:14:ed:89:58:5c:
- e0:f6:1d
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Root
- X509v3 Subject Key Identifier:
- CD:07:41:EF:62:B7:F0:79:3D:A7:A6:EE:38:60:EF:FE:89:8F:68:54
- X509v3 Authority Key Identifier:
- keyid:CD:07:41:EF:62:B7:F0:79:3D:A7:A6:EE:38:60:EF:FE:89:8F:68:54
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:1
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 5a:74:61:7b:c6:fa:49:5d:e6:91:f9:5d:6c:fc:00:db:11:cf:
- 0f:86:e1:1b:71:9b:5a:91:86:b3:f7:84:3b:cd:f9:59:75:08:
- a3:50:30:b2:43:5e:ff:b8:ce:e6:1d:2a:d6:14:83:76:0e:04:
- e2:17:43:51:4e:17:5b:cb:d2:ec:37:ce:30:98:10:ec:94:49:
- 45:64:43:73:b9:af:02:6b:66:16:37:e6:db:c9:1f:38:d7:a9:
- b7:40:26:20:0d:04:03:db:55:01:52:90:d9:7f:a9:57:2d:c5:
- 28:e9:03:7e:15:ea:52:4b:4b:c9:c0:32:f1:28:c8:e5:0a:2f:
- 32:54:52:c4:18:8e:bb:52:ef:e2:0b:14:23:0b:02:b0:d7:51:
- 64:96:53:af:d7:c8:32:b4:30:41:e4:56:a4:2b:09:c9:1f:ab:
- 97:3e:40:2b:14:f1:bc:8f:64:9d:51:59:76:9b:f5:ed:60:a7:
- 7e:de:e3:33:a4:5a:30:4f:e6:95:e5:36:be:f0:6d:cf:79:ef:
- f2:c0:9a:fd:30:ee:a7:5f:25:5e:0a:32:a1:91:d8:7c:9d:20:
- 1b:c6:49:11:4a:da:0a:4e:ab:8e:28:11:b6:e9:0b:d2:81:f0:
- f2:3a:67:1e:10:b7:7d:4d:7a:bf:ca:a2:00:23:ed:16:95:2a:
- 6f:d7:e0:36:be:1e:a8:e7:ed:db:f9:9a:cb:f9:67:97:5a:fe:
- 22:98:b9:48:e0:48:1d:d4:f9:5b:07:4f:a8:44:cf:52:c5:99:
- 79:42:55:a2:28:bf:dc:a9:42:ff:2a:cf:bc:0c:26:90:3e:45:
- 39:d8:32:6b:f9:dc:92:03:1d:d3:bb:07:eb:4c:74:ae:97:b7:
- c3:f2:2b:78:05:b7:ed:9d:3e:4c:b1:19:e6:0b:9a:b4:8b:81:
- 3b:bc:17:8e:ec:b6:25:52:31:87:35:72:1d:b0:d3:ee:de:91:
- 03:91:1f:4c:58:cb:ff:1b:4e:a0:01:f6:98:06:7a:ec:3c:4e:
- 02:6e:26:58:cc:be:40:5a:19:20:85:c2:73:44:7a:22:42:81:
- 9c:23:ad:e0:cf:5f:5a:20:53:c2:fa:20:26:3d:33:cf:f3:7f:
- f8:65:b9:ec:f7:d9:e2:87:de:b2:65:f9:fe:3d:37:7c:3d:2e:
- 53:2e:90:f5:22:c6:43:ad:60:73:4a:25:24:13:f5:c3:e2:2e:
- 3e:6c:c3:ec:88:b7:93:04:e0:a3:3b:15:ef:a3:fc:45:aa:37:
- 10:9d:95:fb:5e:4c:48:3f:6e:f5:59:64:ab:8b:d6:43:2f:f5:
- e1:03:b0:7a:8a:5e:f8:2a:be:16:83:4e:56:83:c2:dd:3b:77:
- 12:c9:d8:95:05:6b:2e:23
------BEGIN CERTIFICATE-----
-MIIF8DCCA9igAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwcjELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEfMB0GA1UEAwwWY2Ffcm9vdF9jbGllbnQtc3Rv
-cmFnZTAeFw0xOTExMjIwODUzMzVaFw0yOTExMTkwODUzMzVaMHIxCzAJBgNVBAYT
-AmZyMQwwCgYDVQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMQ4wDAYDVQQKDAV2aXRh
-bTEUMBIGA1UECwwLYXV0aG9yaXRpZXMxHzAdBgNVBAMMFmNhX3Jvb3RfY2xpZW50
-LXN0b3JhZ2UwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCgTnub/d1g
-/JT4tM5mLbviquB7WDcZC1C1EOqp+K5FU5ky/2YjX/aglI5IALi6/m9ZCiRMW8kZ
-1nPO8ap1nka/nUZAl9/PNNbgSStneqq1A+2z/ws/EKZLODSJYIV7DObjt09WPPS2
-npUAjkbNI4taNs0MfQgGN9rx2RucPsnDjDZUqHGDGCdSwZ0Zkw68UiDhFRBV1tWk
-KcTUd6Aak9zVOdygNQJZyMwPszz37vl5HM+MnfohsDD4iUWEPJGBQWiUPgDS0DrC
-0NTKwISis3RksMLlbGNt9aYmAmiJ1h+tKtfRFQtc58DMhcmiZXEgfulTHbHwFoN0
-PxIde0GXt87EE8DHRXG2FwMpgG4vuJJZDgN1MlKeuB46pTktn7frgkgdz6T8uu8l
-P0AIXdHx+VvNNUZXL/3UcPDYpVuBiY+VY107E2SVgm0XBalwLz2aA61h31VL0Ylz
-0aVA1BfBvztbck0onLma/DYk6uoHCbUT0eBRwe/awOvhnw+OXIwb/4Jcjq/EQCD5
-MwAvWjrR+aYxyqsN7f9CP9kiNubZdjUO21nxMgHwtjSfHW2Yb7Mho+3tbGeYw367
-tr13WYVZnAQtc8REQAnoZkHYyw0hEiYH54aINH5w/gyGl4aWF059+RXVZGCv1RhF
-zxCkjCrHClDegCei0zeDHM4U7YlYXOD2HQIDAQABo4GPMIGMMBYGCWCGSAGG+EIB
-DQQJFgdDQSBSb290MB0GA1UdDgQWBBTNB0HvYrfweT2npu44YO/+iY9oVDAfBgNV
-HSMEGDAWgBTNB0HvYrfweT2npu44YO/+iY9oVDASBgNVHRMBAf8ECDAGAQH/AgEB
-MAsGA1UdDwQEAwIBBjARBglghkgBhvhCAQEEBAMCAgQwDQYJKoZIhvcNAQELBQAD
-ggIBAFp0YXvG+kld5pH5XWz8ANsRzw+G4Rtxm1qRhrP3hDvN+Vl1CKNQMLJDXv+4
-zuYdKtYUg3YOBOIXQ1FOF1vL0uw3zjCYEOyUSUVkQ3O5rwJrZhY35tvJHzjXqbdA
-JiANBAPbVQFSkNl/qVctxSjpA34V6lJLS8nAMvEoyOUKLzJUUsQYjrtS7+ILFCML
-ArDXUWSWU6/XyDK0MEHkVqQrCckfq5c+QCsU8byPZJ1RWXab9e1gp37e4zOkWjBP
-5pXlNr7wbc957/LAmv0w7qdfJV4KMqGR2HydIBvGSRFK2gpOq44oEbbpC9KB8PI6
-Zx4Qt31Ner/KogAj7RaVKm/X4Da+Hqjn7dv5msv5Z5da/iKYuUjgSB3U+VsHT6hE
-z1LFmXlCVaIov9ypQv8qz7wMJpA+RTnYMmv53JIDHdO7B+tMdK6Xt8PyK3gFt+2d
-PkyxGeYLmrSLgTu8F47stiVSMYc1ch2w0+7ekQORH0xYy/8bTqAB9pgGeuw8TgJu
-JljMvkBaGSCFwnNEeiJCgZwjreDPX1ogU8L6ICY9M8/zf/hluez32eKH3rJl+f49
-N3w9LlMukPUixkOtYHNKJSQT9cPiLj5sw+yIt5ME4KM7Fe+j/EWqNxCdlfteTEg/
-bvVZZKuL1kMv9eEDsHqKXvgqvhaDTlaDwt07dxLJ2JUFay4j
------END CERTIFICATE-----
diff --git a/deployment/pki/ca/client-storage/ca-root.key b/deployment/pki/ca/client-storage/ca-root.key
deleted file mode 100644
index b6546805d1c25a7bd4531a058dcd261ac9e7084a..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/client-storage/ca-root.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIfMCmH2aDLakCAggA
-MBQGCCqGSIb3DQMHBAi/t1R1AYj5igSCCUgz31wK0P3/9S8ynPZFrJwUfLYcmCbM
-CZ3KYX4iJQn+v4m/YMCWnWG0U1cCuy3oLkNQF70U8z3x5v12riheBUNppJuBIokI
-3g1B5iATdBp2bpBTXcd0C8br2/DvUwC2bRa90Fu29KUrzlgs1qLH+mzHDyTcF55G
-1Dk1wikNk5GCg52VfHSlW+VNQZjdEQBaoYVkP8XAsZAU+Y1mlxf3G4H1sPNj59Ss
-6uHM7JIScX/f/VE2W98zoKJRSaZzGjwS/FNSFfsAmRT4ZwkSlSELgDdsb4I8kdgW
-3C++pSTwEa+KKRFuhm0+kSbpUphhaUr/fpps1jepFXE/QBG4o8uH2hU/Qc4Xns1L
-TQhSHG+CHljyzmP+j5ZjsLvydlWaf+cwjUNvlYOwIefLFHlsLYrmKBN1frgF1aZF
-Lqauq6Hx3QjTbl2PURYdcMVCIpJwth8Nm59/+PHAikpHayfqnx8ojKrw0qSM0Yn4
-yaoVsCS4EgZk0glB8uC7LZToZR2VbcyPzR39nlkwMzyECtcr8nqLKm3O3A81wGJM
-JK3CQjb2rFYLkFXos5EPjxKTK6c+i0xUmhE7cwJdRTW4Q91MJsjgCF8usIa/VeGW
-gVu4P3xsF4yO+OR4/BhYNbOSzqbPncIyJmsYeGQoVWcvxKIKUfvLBc8rnhQhyUa4
-7fv3chfGwclQU2TIoigViLFTLWGIx4qIktIDbV2GTptpgyptZYMq4UJdoHSXQLL6
-yjI9ykNCGlYtiFzvj8LIzfCqaXwEVA69mmr1WTRtoapFD7jhNs9Pl88+EkWttcmo
-ofKI+v2pY1gTfTOYFKiOkbHMKNew3PyLhY1dISolYNTmMdGjpZ+UH1Qr9lQACpMY
-X453e+/gtriysExCn4ZceCfUIqCvrLuiKdh41lNa8SJ+r6+CfC70TmxGOYoyJ2vk
-dQZA8UUppQV0gzxFnwTi+8ENWg6EFZx5OVEchBg6ImNf1dkUXK7nlL/8/gu+06/6
-/iHTuUTaEx0OPOvPyHQqS6u4GUaPcDBRJi4zE7IhgEa/rMSvoXe/xkCeoZKsSwwl
-hj3POYmPJVcMrhpS5zrnG5xa1nmNRf6Hoq40GjaV0yWeCleP4EYIE/KhAYq//hkW
-iUVZe1cAwCNo6n9G+M5N4+LCSkozMf/HZb1g9kYmV60Kt/igf5SxSS9ew9jWcH43
-xC+ByWi7tUC3+Z1aLlYGLRyxBoMxO3sRRMPEJmqWdPjFrUQ1Y4kyGJqCumMOEFG1
-vibP0k8idTMil2arqp8W+wgG0EVyy259V+vmmb1pf66F/e5JnVr+ZCws1E+8GAch
-cI+ErKnNx8s3eR4x+MkV1sPcI0tfFpD6tI1puHTGHhPhjfN0CuDAThcuBJI3BcdC
-C+OyZIIauO+PBx8zzvbxEd6/9mbgRtY3ilPgwJwIt15KrMPK1qGRgQoHSIf8NE7A
-x2LQRF/c4G5lt6Zb6QgxOd6SwGcnfbVtn58WZ/VxA+D1LmkJLTZOmTj9khLzZAr4
-gwpLPJ8H75hpZEz052V0OAzvCkF3HEeJv6m3htGUVIJZcjPVu/3JftmWmj9oT3vQ
-KC0A5Xvwuq9yCMfW/u/K4fN1Qa8P8jxdm8fLyhxuKBs2DeBa/UJE+tM3ov/5+ZwQ
-faHxhTnZWbKiDQbkC72IwvXlQFiDYhZKgA1O6I60Ms4oflkXLiH1efgzSgutKDXQ
-g+kXw81oTnjHsUqHZOenjbCXvzObL7Fr5aA+oTsLAx97MnL/2ueKhL+MELcCSahf
-aR8g+JSgAtsn7m6DFPGpqchBHil4mc5V11jco2QTOIZCu/8h/WGjCRXro6552Kpi
-UqRLvKEN9l6VbT3P5ZpPmGSjuguTLN3+kxi5AoFrtlkJKytJfndIY5XGteCA5kS7
-dyDQnv5nw6+utrYKhNvY+lCchkYnAEGxX42W1eBCH0ciz1KwF+LeTWAO9PEJzKwZ
-JeeJOR/BYbtEWMPZ3vUm9oh/V/EKSGGfHZCJRH+8+uABcCIbKzXvPOndOBakcCH/
-kpUC4Lfd8aVCFzhWnrZ7eKG8L/zPmrFGPx4/nGikhdwCTaUDO4zDk6NAt9ZgxPTT
-dUSnh2f7ND9iN6Ek++HZ6ICxZuEL0a2iI3iX9uZHUtFaKExjhScJoc0ioSq3WYAE
-4RQ5EXPe0mZN9MF6z+JESLD0H15s3+lDFimStIbprr8o4vsGi6cW1CR1ijqSJxQ0
-YDEivJeABkApus4IqJsqbkweSYqrTg3CaJ8UR8oT4yZH4+LbNjbDH6CzWPue/eC5
-fJXdVcKWUX6g2OgD72acgc0ym3lY/a0X3MI6mTVuo1Twl1uDaECLR4rCoY6mgbgy
-JcJ3ypBj0s8l8lZRHvdNTVEWL0aBJZMkzF/jPlokHHJNwAxv0dKvyCfyGqRACvD5
-i7ghBi0wFEWhGd+ifP3GfnVVxE660mA+cYHgUk3ZAgSrSSmfr/D+A0SZY4fa3HHH
-K+/aqwGGWUYjgv67BeZBJkG51dcQsKm9DDprKms2BzG1iOM0ZH4JLZRWo7QuS4IN
-0tDQBwEDBoUZ2wVpdHZ28KsDRBhuJjI1pTU2+jKepPX7DX0tk6bPc3xu91qF9yHK
-UDHqPYQgA8pVzjodemlot9L83rh5751MM8WBCWnIJbIoYN8NDGPeJ4p+OVMmGwmB
-SRkkT2rADltUSJX1HzYjJ6aGY7NdCThnB3ZYMvQCDyUH+M6O2UtOy7juX9ctnEUs
-TZLG2sZzBJ0ic0skXlZXkzGw6oIUWZ0XapF9WbxW2byxHwI/2z0Taih9Y4OBeQNA
-mQmidOQ+nQ47IwyoJP7UowH1YL3guveBabSKDeUfMHfWh4hGXZ2Fp0wMmr9lWNho
-ij2+A9YAo9QkNsFfo6nJVPEE5La3+b4O6S9UxzCt+6NVSjBFJ9fk+yFsob2+mKMW
-KS0ZkVd32isiDFAZ9Fcb8kt2kscKeJGp9YdgZlwNYeCzlx65IUfW4J9Y71wFfX/o
-s4gsMAp2XIS5o0FQnul6QvifEDRru6uiwT7w1D/Eg0RTx9Dw5LPDjZODE4e/ATgG
-J8GFwx0UbiLArX3qx/MskmVl8ksU4YhJoYL+6/B+vQwitQdRDbUASNheVDF+cXrX
-fviLGTlhKTU4cRK7/eMRVPcOWOAHMk5K/WXIrPHOL71J93nDjVAYAsRHeswweuo1
-ANQ=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/client-vitam/ca-intermediate.crt b/deployment/pki/ca/client-vitam/ca-intermediate.crt
new file mode 100644
index 0000000000000000000000000000000000000000..84f3df36be4f1106b83b01199b181a514dbd8d2e
--- /dev/null
+++ b/deployment/pki/ca/client-vitam/ca-intermediate.crt
@@ -0,0 +1,136 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 2 (0x2)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-vitam
+ Validity
+ Not Before: May 5 09:13:49 2020 GMT
+ Not After : May 3 09:13:49 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_client-vitam
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:c8:b3:d4:10:7b:e4:45:87:e5:b8:45:dc:8b:49:
+ f0:16:2b:29:15:36:19:81:af:91:42:c3:16:c3:7e:
+ f9:32:f5:f5:07:7f:88:46:14:91:d2:8b:e6:69:34:
+ ba:57:5a:a8:50:82:c1:9f:63:29:1b:e8:e3:24:77:
+ 06:d6:88:76:4f:e5:41:dd:69:61:f0:d0:69:f2:dc:
+ 11:2c:85:92:9c:90:e6:dd:7f:a5:c9:d0:e3:47:06:
+ 9a:97:e5:77:3e:e5:2c:dc:4f:c2:b3:30:36:c0:82:
+ 0d:08:e7:3e:9c:12:5a:c5:f8:86:7c:b5:2d:0b:8f:
+ 18:6b:f8:d2:94:0e:24:f6:95:01:8f:50:94:49:13:
+ a0:25:80:35:7a:a8:84:c7:c3:8d:e8:29:07:57:7b:
+ ea:8a:0b:72:e0:b0:ab:a5:57:67:eb:d4:0c:92:d1:
+ 8b:d7:1f:e9:11:18:29:d7:f8:0c:63:3d:f9:6d:fa:
+ 34:4b:ba:43:6b:58:2c:cf:4a:a9:73:72:8b:d8:a5:
+ ca:88:04:78:ac:b0:43:18:2b:b6:03:b8:42:99:c9:
+ 1d:4f:ba:b3:08:43:51:dc:b2:03:c8:ca:43:f3:22:
+ ac:48:5f:71:ee:aa:de:d0:1b:15:b5:a6:78:f6:17:
+ b5:96:fd:aa:1c:58:55:9c:7a:18:03:36:7d:13:24:
+ d2:d2:f8:1c:81:d7:07:96:39:c3:d8:7a:eb:2e:bf:
+ bd:ee:77:65:d1:10:50:04:17:5c:00:79:67:4b:e5:
+ b7:d9:2c:c5:c5:91:9f:50:41:49:8c:1d:78:28:32:
+ 4d:49:82:4a:8d:a9:e5:f6:34:9c:6f:af:ed:5c:6b:
+ 30:11:c9:33:80:0e:00:94:3e:f9:d9:0a:56:91:ac:
+ a0:78:95:e2:2f:c6:7b:ab:05:fa:fc:e7:13:0e:ce:
+ 9e:75:0f:00:fa:f7:61:fe:f7:87:43:fc:d8:8a:05:
+ 35:d4:4b:c1:f5:71:1b:fc:f7:02:0f:ed:bd:10:4d:
+ 49:2e:a6:cb:bf:df:15:19:2e:ae:4c:8b:aa:cc:8f:
+ 4d:cd:ad:fc:09:85:7a:43:e0:1a:c5:5b:11:dc:44:
+ b5:b1:14:eb:88:1f:a1:90:87:46:fb:b5:bb:48:da:
+ 16:34:34:60:0e:49:5b:bb:92:a5:8e:76:94:5e:ef:
+ b6:d5:ef:01:22:ef:f6:1c:12:9c:86:ab:86:c6:87:
+ 94:57:08:a8:dc:c2:c0:de:a3:50:53:ba:56:bc:60:
+ 9f:e1:4d:63:98:12:9c:6a:df:7e:ac:7c:f1:d3:65:
+ 91:df:29:0a:bf:c2:aa:36:e2:16:85:b1:81:ff:85:
+ 87:c4:2e:1e:6f:44:49:04:de:d5:48:38:e8:a1:08:
+ f6:84:79
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Intermediate
+ X509v3 Subject Key Identifier:
+ 39:AE:EB:0E:A7:FA:47:3C:91:8C:08:24:D2:47:42:76:03:56:84:ED
+ X509v3 Authority Key Identifier:
+ keyid:06:FE:4C:68:B6:B0:FA:83:B5:FC:2D:9E:52:78:59:63:01:E0:8E:B9
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-vitam
+ serial:01
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:0
+ X509v3 Issuer Alternative Name:
+ <EMPTY>
+
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 01:4f:16:22:e7:c6:31:29:10:27:2a:a4:2c:a9:6b:9c:c6:f8:
+ 89:31:5e:5f:96:ea:c1:40:c2:0d:e0:6d:2f:48:54:bc:3d:e4:
+ ef:dd:ea:89:2e:13:a8:da:35:69:d7:44:54:ca:b3:27:9a:c6:
+ e1:d6:87:a9:76:23:be:be:07:17:f0:40:1a:91:f7:46:5b:d8:
+ a8:f6:aa:01:0f:af:b6:bd:63:1e:ee:b7:02:5a:1d:33:1d:85:
+ cc:ae:bf:12:6a:d8:33:d1:6d:69:03:97:59:64:2a:8b:b7:6a:
+ 85:1a:45:80:b9:c5:0d:16:29:47:67:93:cf:27:3d:36:65:64:
+ 90:0e:3e:f8:e4:33:1e:9b:bc:1e:e6:3a:8e:7b:d4:37:12:f3:
+ 0e:03:5b:2f:99:31:ef:ca:da:f5:e6:b7:cd:31:33:4c:5a:8c:
+ 37:5e:2a:e2:71:29:61:8b:3e:42:0e:f7:57:96:af:46:73:66:
+ c7:8f:9d:7e:b7:d2:89:0b:16:2f:cf:56:a6:87:47:a6:10:de:
+ ae:e7:83:75:46:fb:d7:e4:ed:39:c8:7e:f0:e5:2b:8d:f8:eb:
+ 92:7b:00:27:a9:f6:8e:28:9a:52:4f:93:65:45:df:31:5f:a4:
+ 73:23:59:0f:6c:dd:2c:50:24:d7:53:aa:d2:62:5e:b1:2e:99:
+ 5b:00:b8:e3:d3:4c:d6:69:66:0d:c4:f1:28:a5:13:02:f4:aa:
+ 7d:38:34:9f:58:86:19:84:02:01:22:98:2a:5d:88:e7:1d:ea:
+ 0d:4e:1c:bd:34:37:a6:6e:e4:26:68:1e:46:5c:6f:5c:08:5c:
+ b1:3d:42:50:ae:c3:9d:81:13:37:ec:97:9e:6a:01:8a:d3:a6:
+ c5:99:1d:1f:94:52:36:6a:57:db:86:4b:dd:05:1e:1b:95:b6:
+ 25:76:a7:69:75:ee:e3:6d:d2:2e:cd:7e:0c:2f:1e:e1:68:84:
+ a8:19:d6:da:bf:f8:4e:a9:21:ae:ca:da:af:f2:40:4e:4e:55:
+ f9:d8:d4:f2:98:6a:65:48:5d:84:b4:a5:3c:c2:bb:9a:06:a0:
+ df:2e:66:79:d4:da:7c:a2:93:5e:ac:c5:2c:53:46:77:60:1a:
+ 2a:7e:7d:1e:8f:9d:36:58:38:3a:6c:ec:6b:3e:2c:49:01:c6:
+ bc:cd:20:58:c6:f6:62:ac:7c:7a:62:ef:a0:3e:c9:50:72:45:
+ 15:3b:6e:09:4e:10:a8:b3:6a:ef:5d:29:83:db:7b:95:16:aa:
+ 43:0e:48:a6:57:79:d9:aa:43:ed:81:bf:ac:f2:0a:fa:5c:28:
+ c7:48:be:1c:07:a9:da:fa:5f:26:cd:63:33:d6:4b:41:90:4a:
+ 5c:b7:24:1d:50:42:27:c3
+-----BEGIN CERTIFICATE-----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==
+-----END CERTIFICATE-----
diff --git a/deployment/pki/ca/client-vitam/ca-intermediate.key b/deployment/pki/ca/client-vitam/ca-intermediate.key
new file mode 100644
index 0000000000000000000000000000000000000000..97af2240805581df621a5d40b0fe5a54f13869aa
--- /dev/null
+++ b/deployment/pki/ca/client-vitam/ca-intermediate.key
@@ -0,0 +1,54 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----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+-----END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/client-vitam/ca-root.crt b/deployment/pki/ca/client-vitam/ca-root.crt
new file mode 100644
index 0000000000000000000000000000000000000000..e18d3ac69a57465b949e97991ad03e9f1df916ec
--- /dev/null
+++ b/deployment/pki/ca/client-vitam/ca-root.crt
@@ -0,0 +1,128 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 1 (0x1)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-vitam
+ Validity
+ Not Before: May 5 09:13:47 2020 GMT
+ Not After : May 3 09:13:47 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-vitam
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:c4:09:8e:5f:bb:7f:a5:f8:4e:28:02:67:b4:ed:
+ 09:a3:a6:ea:e7:28:8e:42:c7:16:0c:e8:57:fe:1d:
+ 0b:3b:a9:79:22:b3:32:05:a3:06:ad:f1:3f:b9:76:
+ 48:2c:e4:f4:93:a9:b6:30:d3:28:0d:de:b1:25:4a:
+ 5c:7b:32:cf:93:b4:e9:58:5e:c0:fe:f6:3d:4f:75:
+ f2:55:63:02:c8:52:f9:c0:2e:92:af:db:17:90:bc:
+ 65:28:ce:20:a0:6c:1a:14:4c:94:01:50:51:71:e7:
+ 0a:58:e2:7d:31:36:c7:10:92:d2:22:48:a2:81:fa:
+ 02:df:bd:71:4f:69:66:28:65:de:5e:63:5a:ef:3d:
+ 50:46:e3:2d:8e:b8:8f:23:ce:16:6d:40:31:42:60:
+ e5:f0:9b:f9:17:6f:ab:8a:46:5b:b4:e0:0d:1e:4d:
+ d6:d1:7f:f9:6b:44:2e:f3:0d:eb:fa:bd:9e:41:64:
+ 5f:de:5f:70:ae:81:77:9b:c6:c6:0c:42:c5:56:53:
+ cd:bb:8a:3d:73:65:f4:06:a6:59:34:23:33:fa:e4:
+ 78:53:34:e0:9b:82:6e:fd:79:2c:d4:56:59:6d:f3:
+ 19:a6:96:e6:3e:14:19:68:4b:03:b1:9d:38:a1:fc:
+ f8:f9:7a:9d:20:c0:d7:5d:eb:1d:01:06:61:2c:d6:
+ 1c:a6:11:94:25:80:c9:2d:fc:8b:fa:5b:e7:59:1f:
+ 90:2b:fe:de:ce:22:5e:26:d3:79:e6:21:39:e0:53:
+ 0c:0f:b9:22:00:59:e3:ed:54:9c:34:f4:ab:1e:45:
+ 4e:be:d1:b0:bf:10:b5:72:5a:dd:31:23:46:65:9f:
+ 1a:fd:6c:e5:bc:7a:fd:41:cc:1d:b1:e5:43:62:3a:
+ d5:f0:18:0d:8e:ef:28:62:f4:a8:41:03:b6:2a:6e:
+ c1:59:0c:a5:be:e5:a2:ab:ed:0f:a6:9c:bc:ac:b4:
+ 5b:6a:a0:3b:83:08:26:a0:f8:b0:f1:a6:ab:be:ed:
+ c4:ac:df:aa:0f:03:eb:43:48:fd:a7:78:e3:7b:4b:
+ 7d:40:d9:ac:cf:d4:94:8d:8d:8e:d6:2f:71:9c:81:
+ e9:65:2f:6e:57:6f:21:c2:fa:e1:18:1d:e1:69:ba:
+ 5b:4e:e9:db:12:39:be:01:7e:ed:de:52:28:a8:a5:
+ 59:26:1c:c5:f3:12:49:70:e4:7c:e0:dc:57:aa:38:
+ 0e:6d:af:76:87:19:d8:db:f6:e3:7f:cd:1b:9f:32:
+ 25:2e:ec:b0:b5:bb:65:64:ac:30:f5:7d:f5:cf:83:
+ aa:68:41:c8:ba:f0:b3:d9:6c:93:97:b3:89:91:b5:
+ b5:55:37:81:a9:9f:66:eb:c4:01:58:c0:d2:38:d0:
+ af:ce:f5
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Root
+ X509v3 Subject Key Identifier:
+ 06:FE:4C:68:B6:B0:FA:83:B5:FC:2D:9E:52:78:59:63:01:E0:8E:B9
+ X509v3 Authority Key Identifier:
+ keyid:06:FE:4C:68:B6:B0:FA:83:B5:FC:2D:9E:52:78:59:63:01:E0:8E:B9
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:1
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 0d:b6:01:e5:5f:47:4c:87:8e:0a:83:20:52:10:1e:00:c5:c7:
+ bc:da:36:2a:db:73:0e:78:ea:06:7d:97:30:77:68:51:34:ae:
+ d9:8a:ec:7e:f8:3a:aa:e4:15:59:ea:65:1e:84:47:77:03:0d:
+ 4e:43:b7:88:aa:94:35:de:14:cb:c4:6f:07:ef:f8:ff:cd:b8:
+ 18:60:c2:87:eb:23:2a:c2:c6:b4:16:15:24:ad:bb:2f:25:94:
+ a2:36:22:ac:10:61:d1:bb:14:de:bd:b5:f8:58:5e:1d:46:56:
+ f8:0f:7a:45:ea:ef:64:19:17:d6:ca:e3:d9:14:a2:b6:95:f9:
+ 5a:0a:f0:0b:0b:2b:bc:1c:85:6a:a1:39:47:d4:47:e5:91:d2:
+ 9d:82:1d:07:bd:34:fe:05:e7:60:97:77:65:9a:d8:1c:07:4a:
+ 5f:4a:f0:f4:f1:9d:44:6e:0e:ef:d9:ba:20:81:d9:99:d3:0a:
+ 0b:a9:f9:58:ee:de:6b:e2:13:9f:33:4c:2f:8f:03:49:ce:75:
+ 95:aa:de:b0:03:19:5a:ad:99:94:a5:3a:4a:dc:19:94:a3:62:
+ 3d:b3:14:f8:cd:37:42:e8:66:f7:e8:7e:0e:70:c7:be:3b:e9:
+ 04:1e:46:21:2e:8a:dc:13:d3:b3:be:74:77:dc:e9:20:95:ce:
+ 9b:28:0b:60:1f:7e:5a:ea:ea:7e:e3:d0:07:4a:21:0e:f0:9a:
+ 37:bb:98:03:bf:ed:46:b0:2c:6b:9c:19:1a:43:0e:22:62:21:
+ 59:69:b4:31:15:74:06:26:ba:02:83:85:3a:32:d7:71:6d:f9:
+ 95:80:44:d5:09:d4:4f:9c:e1:e9:8d:18:5f:54:89:82:ed:c7:
+ bd:77:66:c5:39:8e:53:60:4d:4f:bd:0b:56:58:5e:b9:9d:ec:
+ ce:48:13:21:74:37:3d:25:9f:e5:b7:40:b4:f0:13:52:a5:7e:
+ 8e:51:da:ce:3e:80:15:b3:a5:7a:39:2e:d8:c8:b0:96:6a:3d:
+ 2a:6a:e5:88:e5:e2:f7:a5:aa:3f:c5:dd:8b:49:9b:2f:04:39:
+ 12:4e:ad:9b:a7:26:be:11:c7:76:ff:85:1a:ac:45:77:aa:90:
+ 81:3e:e1:7d:d6:37:7a:ae:69:8d:4d:8a:bb:72:b4:8f:85:de:
+ b8:72:f2:55:65:cd:61:24:d3:8d:dc:99:54:38:d1:1f:c9:93:
+ d8:e8:da:0a:02:a3:d6:1a:fe:15:08:a4:9f:41:ab:22:c1:7d:
+ 27:29:fc:9b:f0:19:26:a6:73:19:a4:68:97:1d:d4:cf:27:38:
+ 18:26:4b:55:e2:cf:35:b6:cc:5f:dc:a6:5d:07:09:f8:1c:6a:
+ 59:bc:5d:a6:89:43:69:a4
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/deployment/pki/ca/client-vitam/ca-root.key b/deployment/pki/ca/client-vitam/ca-root.key
new file mode 100644
index 0000000000000000000000000000000000000000..3d5fcb0f00ca784b870d2851c8c99414159d38cc
--- /dev/null
+++ b/deployment/pki/ca/client-vitam/ca-root.key
@@ -0,0 +1,54 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----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+-----END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/iam-external/ca-intermediate.crt b/deployment/pki/ca/iam-external/ca-intermediate.crt
deleted file mode 100644
index 80c6c756a605d48148571d7c04e81be14cb0d6be..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/iam-external/ca-intermediate.crt
+++ /dev/null
@@ -1,136 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 288 (0x120)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_iam-external
- Validity
- Not Before: Nov 22 15:20:53 2019 GMT
- Not After : Nov 19 15:20:53 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_iam-external
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:b7:50:4a:72:69:88:5e:1d:7c:b2:5c:ef:e4:81:
- 27:17:61:97:00:87:52:53:4e:3d:f4:77:a3:5a:5a:
- ec:72:8d:73:c3:66:b5:1f:ac:67:b9:d3:98:8a:7a:
- db:11:77:16:fd:87:43:bc:38:be:01:76:80:1d:b4:
- ec:f7:d2:f4:b6:28:cf:9e:21:c9:9a:bb:11:ae:e7:
- c6:1a:91:1b:61:6e:2b:a6:f7:fa:0e:6e:db:41:4f:
- df:3d:18:48:dc:55:f8:c2:6a:fe:40:a8:26:65:85:
- a8:6f:26:e2:66:31:ca:d3:a1:18:d7:7f:df:a9:8c:
- 63:24:57:c7:81:82:bc:ea:98:43:be:73:98:4d:64:
- ca:15:61:56:27:c2:67:77:cb:cd:3d:75:05:59:c5:
- 1c:3d:20:f5:a9:4e:d6:47:57:6b:0b:7c:28:34:82:
- 12:ac:7a:18:09:9f:23:5b:4e:fe:f7:a7:d1:aa:47:
- f8:cc:aa:7d:40:63:8a:da:78:c7:c4:8a:ad:a4:cc:
- f3:5a:93:f4:77:38:cb:4c:a6:8e:a0:ba:7a:6f:f1:
- 45:89:eb:85:b2:40:54:34:37:f6:5c:72:43:66:23:
- 28:18:ce:e9:0e:8a:01:b2:b3:16:95:68:92:e5:2c:
- d1:40:25:9d:42:71:6e:ac:f5:4e:40:49:d4:8a:47:
- 73:34:ea:fc:a3:09:66:24:08:8f:33:25:f1:1b:e5:
- 4f:22:bf:10:ed:28:d9:65:ca:2a:51:79:10:b1:87:
- 69:e7:b2:59:af:1f:27:2b:7c:7a:04:87:22:0b:a5:
- 26:ab:fa:ee:56:8f:e8:b8:ec:d4:74:59:19:03:b5:
- b7:1f:c0:61:56:c2:4a:ce:3a:c6:02:ac:29:00:8f:
- 23:02:10:1f:eb:b6:c6:d0:4a:79:b7:2e:cb:3c:57:
- 41:8c:f1:53:1f:23:aa:a2:65:59:60:ac:35:48:2e:
- ea:0d:f6:d3:b8:5f:6c:ef:11:31:67:2d:75:91:5f:
- 3d:1c:8f:56:52:c9:41:12:ef:9a:ab:ef:a1:de:55:
- aa:cd:48:d2:ff:59:f3:97:9c:fe:a0:d6:54:6a:86:
- a5:49:9e:3a:93:3d:26:1e:ee:e2:76:e6:a7:3d:86:
- ed:57:a0:67:cc:19:a3:d4:bd:f2:ef:e7:68:13:d2:
- f9:2f:fe:7a:96:b3:1d:92:ea:8d:47:07:bb:a9:be:
- d7:ff:47:57:f9:04:27:16:a0:db:9f:01:6b:e5:a6:
- f8:68:38:07:6d:f4:ee:da:b4:fb:4e:86:e0:02:b8:
- df:1a:de:19:80:8d:99:92:8c:9e:c6:99:36:0b:3c:
- d9:1d:ff:e9:0f:6e:b1:bf:9c:de:8f:d1:dc:5a:5a:
- 0a:c9:33
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Intermediate
- X509v3 Subject Key Identifier:
- AA:72:D7:D1:90:F7:B0:9C:B5:C8:D2:84:30:61:CC:9B:D8:6D:30:DF
- X509v3 Authority Key Identifier:
- keyid:D7:C3:37:02:D3:F8:1F:FE:02:00:42:5F:7B:D0:B3:7E:BE:F3:4B:B2
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
- serial:01:1F
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:0
- X509v3 Issuer Alternative Name:
- <EMPTY>
-
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 0b:82:fb:53:7c:67:25:c4:00:09:6f:ce:aa:26:85:88:a6:c8:
- 5b:9d:40:3c:0b:81:a0:66:7a:e1:32:98:49:8a:8f:88:93:5a:
- 16:92:2f:ec:9e:6b:0c:46:eb:c4:50:35:65:2c:0c:ac:e5:3e:
- b4:6a:1d:e0:61:be:c2:7b:34:d0:cb:78:25:4d:aa:04:16:0b:
- 5a:88:27:28:cb:eb:0b:20:4d:1f:ba:65:3a:ca:b6:08:fe:07:
- 9b:49:0c:34:21:70:c8:40:b9:c5:0a:4a:83:02:9d:fa:fb:3c:
- f4:98:5c:48:55:4a:13:d9:9b:ac:f8:19:c2:47:57:e9:47:2d:
- 21:85:26:c4:e0:ea:02:df:50:a5:e1:39:08:cc:4f:90:53:e7:
- e8:99:e6:07:92:23:5d:3c:fe:7b:7d:99:c4:9b:d9:36:f5:5c:
- 7c:cf:ef:c9:ad:45:23:fd:10:2f:0f:80:0a:0c:14:cd:9c:94:
- 78:8e:90:ac:41:9e:34:4b:3b:cc:e5:51:38:23:91:b7:b3:82:
- a3:d6:50:a1:e5:99:38:70:14:6c:56:27:59:cc:04:64:34:04:
- 39:c8:61:09:15:97:a6:2f:13:4b:6a:9d:2e:76:6d:9c:6f:09:
- 64:4e:60:44:11:93:1f:66:4c:8b:4a:40:58:8b:f5:a9:85:d1:
- 81:a6:c1:e2:c9:f1:84:95:1f:b0:bc:81:2b:42:f8:a3:8b:cb:
- 92:fa:dc:56:f1:cf:75:5a:65:2c:11:23:6a:62:d3:8f:7e:db:
- 7f:4f:b2:4f:da:e5:3a:cc:6e:da:37:2e:9a:f9:06:bc:75:ce:
- 83:dd:0a:ec:fb:2f:41:b1:2c:0c:59:5a:4d:18:ae:34:c7:96:
- e7:08:47:f4:66:6e:34:b5:ab:46:b4:f8:2f:0e:b1:13:c6:2d:
- db:1a:10:f9:5a:eb:44:3b:2f:f8:1c:47:0e:c6:5a:f4:56:8d:
- 77:29:3a:e6:cb:71:7c:f4:93:f1:bb:b6:03:7e:b8:f9:91:24:
- 36:42:00:4e:d9:ba:1a:5a:d2:00:46:17:a2:de:f6:18:56:7c:
- 00:09:9c:f9:0d:ae:ce:8b:d3:3f:86:49:d4:22:1a:5e:92:d4:
- 46:ee:3d:92:71:be:39:e1:85:e3:a8:01:0a:9e:41:19:a8:b5:
- fc:4e:6c:ad:b5:a2:ee:e5:bc:db:c8:6d:f8:a2:12:c2:8d:24:
- 61:5f:c5:7b:6f:0c:7d:ba:49:9e:a9:d2:9f:0b:65:e9:24:0e:
- 3a:ae:91:34:c0:7d:e6:a8:e2:8c:4d:42:f1:62:4b:d8:1a:25:
- 7f:20:12:d6:ae:13:c7:1f:64:3d:60:55:03:a8:7e:8d:44:41:
- 1c:34:f7:a0:56:08:96:d7
------BEGIN CERTIFICATE-----
-MIIGhjCCBG6gAwIBAgICASAwDQYJKoZIhvcNAQELBQAwcDELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEdMBsGA1UEAwwUY2Ffcm9vdF9pYW0tZXh0ZXJu
-YWwwHhcNMTkxMTIyMTUyMDUzWhcNMjkxMTE5MTUyMDUzWjB4MQswCQYDVQQGEwJm
-cjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0x
-FDASBgNVBAsMC2F1dGhvcml0aWVzMSUwIwYDVQQDDBxjYV9pbnRlcm1lZGlhdGVf
-aWFtLWV4dGVybmFsMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAt1BK
-cmmIXh18slzv5IEnF2GXAIdSU0499HejWlrsco1zw2a1H6xnudOYinrbEXcW/YdD
-vDi+AXaAHbTs99L0tijPniHJmrsRrufGGpEbYW4rpvf6Dm7bQU/fPRhI3FX4wmr+
-QKgmZYWobybiZjHK06EY13/fqYxjJFfHgYK86phDvnOYTWTKFWFWJ8Jnd8vNPXUF
-WcUcPSD1qU7WR1drC3woNIISrHoYCZ8jW07+96fRqkf4zKp9QGOK2njHxIqtpMzz
-WpP0dzjLTKaOoLp6b/FFieuFskBUNDf2XHJDZiMoGM7pDooBsrMWlWiS5SzRQCWd
-QnFurPVOQEnUikdzNOr8owlmJAiPMyXxG+VPIr8Q7SjZZcoqUXkQsYdp57JZrx8n
-K3x6BIciC6Umq/ruVo/ouOzUdFkZA7W3H8BhVsJKzjrGAqwpAI8jAhAf67bG0Ep5
-ty7LPFdBjPFTHyOqomVZYKw1SC7qDfbTuF9s7xExZy11kV89HI9WUslBEu+aq++h
-3lWqzUjS/1nzl5z+oNZUaoalSZ46kz0mHu7iduanPYbtV6BnzBmj1L3y7+doE9L5
-L/56lrMdkuqNRwe7qb7X/0dX+QQnFqDbnwFr5ab4aDgHbfTu2rT7TobgArjfGt4Z
-gI2Zkoyexpk2CzzZHf/pD26xv5zej9HcWloKyTMCAwEAAaOCASAwggEcMB4GCWCG
-SAGG+EIBDQQRFg9DQSBJbnRlcm1lZGlhdGUwHQYDVR0OBBYEFKpy19GQ97CctcjS
-hDBhzJvYbTDfMIGbBgNVHSMEgZMwgZCAFNfDNwLT+B/+AgBCX3vQs36+80uyoXSk
-cjBwMQswCQYDVQQGEwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEO
-MAwGA1UECgwFdml0YW0xFDASBgNVBAsMC2F1dGhvcml0aWVzMR0wGwYDVQQDDBRj
-YV9yb290X2lhbS1leHRlcm5hbIICAR8wEgYDVR0TAQH/BAgwBgEB/wIBADAJBgNV
-HRIEAjAAMAsGA1UdDwQEAwIBBjARBglghkgBhvhCAQEEBAMCAgQwDQYJKoZIhvcN
-AQELBQADggIBAAuC+1N8ZyXEAAlvzqomhYimyFudQDwLgaBmeuEymEmKj4iTWhaS
-L+yeawxG68RQNWUsDKzlPrRqHeBhvsJ7NNDLeCVNqgQWC1qIJyjL6wsgTR+6ZTrK
-tgj+B5tJDDQhcMhAucUKSoMCnfr7PPSYXEhVShPZm6z4GcJHV+lHLSGFJsTg6gLf
-UKXhOQjMT5BT5+iZ5geSI108/nt9mcSb2Tb1XHzP78mtRSP9EC8PgAoMFM2clHiO
-kKxBnjRLO8zlUTgjkbezgqPWUKHlmThwFGxWJ1nMBGQ0BDnIYQkVl6YvE0tqnS52
-bZxvCWROYEQRkx9mTItKQFiL9amF0YGmweLJ8YSVH7C8gStC+KOLy5L63Fbxz3Va
-ZSwRI2pi049+239Psk/a5TrMbto3Lpr5Brx1zoPdCuz7L0GxLAxZWk0YrjTHlucI
-R/RmbjS1q0a0+C8OsRPGLdsaEPla60Q7L/gcRw7GWvRWjXcpOubLcXz0k/G7tgN+
-uPmRJDZCAE7Zuhpa0gBGF6Le9hhWfAAJnPkNrs6L0z+GSdQiGl6S1EbuPZJxvjnh
-heOoAQqeQRmotfxObK21ou7lvNvIbfiiEsKNJGFfxXtvDH26SZ6p0p8LZekkDjqu
-kTTAfeao4oxNQvFiS9gaJX8gEtauE8cfZD1gVQOofo1EQRw096BWCJbX
------END CERTIFICATE-----
diff --git a/deployment/pki/ca/iam-external/ca-intermediate.key b/deployment/pki/ca/iam-external/ca-intermediate.key
deleted file mode 100644
index 41e41384d21cef8786e3e258ff8441efdc725d52..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/iam-external/ca-intermediate.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIQxnzCxR+li8CAggA
-MBQGCCqGSIb3DQMHBAj6r66/ZrFcmASCCUjT58vxI0VzlhqjedEvP+bQeI8OdduV
-s7R93AzqDAQoFbmnjSBombsK5mMHPbXiL+Zj1nohMK8mB5oqiw3OU9Oj15xGm98r
-M3GltF1wX7bQmxvfGFMZM6DAXkVpu4H4Nd53hYOzuJDftlTmhtLtsLjPvDMYenk0
-hXa78vIM2LKfaNkVaFLhb+Bfrdmx1NEm1mOKj22U8K03dKCvsjtCb7fjdLudXO0G
-yZX0nx8GfkifiDj8k/Wbk9L4s6VUv9GxDJgGn9fRS63pmofuzNvoNCeck+2MMCpb
-2EE+YRjQAHnVRGarXugb9p8SBAynp8kxHoEZAM4FsB4JgJCicR9yoFVemoeNNIHI
-onxxaSpwjvTkFrjwjIBlllxyHsmhFgafZIkGrWa3LC3hYNcUu9/h6modItmKd3Lq
-GZVj8ec+yCoA0+1ovYrmcN9Vxy7REmsdWxczkfI1+OXhPpuUfufYEyU3J5hyELGa
-GQS7I4HqvrX0MN7U0QUPDBUmSVUT7LcVsAPpQEnopZOaYT/rixEFux/UMKmy5pWv
-BdEJPICUuFWrZ5kgVSzDT3ASfjZkKTdV3OFWg71uQt6W78QJz3WunrK6EYOD1p/n
-fwAUqaGMnBg2EU/e4lB8wFm6LrARfR0/tocXbVNsQe60cNxC/ks5RxQuN+Fss54k
-SIpj9dFipdp6Tz41D4H3dYXqA6OCyNbQ9TGIenqskMMSKSHuV/54Fers52iHrePh
-T18hqMsn4dqCDPafxw2l/YA+J0yfdaJga3luVGQ7KoMcs4qABOWh/XId4YhlQA1e
-fgnucdGpGZtkJVnAPAukjscOnBR0cyyBf/967s1rwDIymglQW7VV8daY8veCXC++
-K1TtWKEYYsqKOiyKV5z2Q1mkAmxM1GVFjZaPDyMFpgBoEZKZ7aMxfVsmKz3ZvMhm
-4JnODmNnRTLhL5pWRTlIt++edA3kwour9PP2UvdKMEquI/JrnhZs2nAohLfEQ7t6
-OUFjxqG60cR5S4EWmEmX9vghjNVhc2TlakZ6Y02ax8KjI8JNNKyPJwGBZvbZ1zPd
-iTRO8IgWQQbkLVpMDXC1hwusGOUAf6R5Qbw7bgEoaxbqNEpIMQMLOlEcU3L73K9C
-DpU2NENgN5vDKOMC5Fpy7K2Apd7TFuE2oG4Ob9cDMYqCCu9tCK3PHwqrnHC+GisQ
-n+Rb6TOK5LSEMBHQWsoayCzRPZp/+Sxb2awVT4G5qEXgb8Tzn8w3qToTYOL/g52I
-2UPtbd02ub6NFljIitX60/dYA5ppvSUFUowfL3IQuM9S16J7dNQuOIlzij/DtWgS
-51He5pB3DfAjrQmaqeSD93J9L2hIoLzy2pbII1aZZlQ9EhOueMC74WKKvsLqgp0b
-R7aTU64dwRkXlaL1X46fJDV3U5Vn/HKfsNwzHPpTOVhEAIRnn8Uzy9qQV9pVf6zn
-9meE83QsLF6jburodjB3mZ1PJ12ZXOGk6s9AEkNYmiOX/odivNVF2hMcNeWzsbj8
-rNgKi9EcwglqcqJ8fNtZwOcEIi8vpXAdmHnaPUGRLPK8PK/2QSTty5qfht/ZmEyx
-M3hmEXCbJGDsYNiLCnYxnNITkb/uiW8bSbsk5XpyxlFLFWI5kt4DtMqDYdebdH86
-RVZwOhjNidkGc9rosXlN1bH2yelP6R6L0m5KsmRW0+i1/LzYzMHap1kh0Qa72T1K
-UZnFiw7E1YpM+Pt3E2lT3yBfzUOmgBTfB/bL235wVxrkIndBKv4y4Ki2oD3ac0cI
-Amy8NL/yVjC0+pEstK+3Clt1Dvv3gqRyZpJMmOzaHhvF+KLKCStULAxjuOZkuiCf
-1XtvA3McDs8tEvsAxq7sjEQVd4tTeYkTuWE176zTZFRmRCHID7iU6W3Gd92nSs72
-kuqe9YagB1luAMSWcGQgqK0MoS+T6DfKGHQM7bt9bs0kS1tbqXkCnr4HF7up5ouk
-bVyNZDjhJYz3WQZiUI4GbMC4Z6aOjlkm+s9ROySRUVrm2bD8E6T/MWkD3DuiyNhL
-or9QLHcSxLu5G5bbxtKB5fgCIeoZlKChV/X46gCu/f92eAC0qgHNdutXMR8uadK8
-4jKJF+GY1+GLPmCl8wGJTU6m23wQmXTlNrlDV3j3Ea66MJ7v5T6/QShSWyTWCdUs
-RHxHmzXP83YtsushVaPrkf+pC32fdOnszBdauprKbxgOzGhzup5wK9EmuZKOH0Zs
-42QlZ6nIZvaIvleTZfV/VW/PyRgUPs2+0NOZgB0PAyznafPOB2p+MB9jea5ka64Y
-pTtfl9ddmXumc9vDrOUy9/t9/BosYMS7BI2he/nxx+p8wmix/JtyEdfNIla6xovQ
-vK875oeoApV/gRfFgzdRfNWf8TPKXGTexATvCtOuxE0p9YosdVRTluWnxT2XOnRL
-jlR0M0GWid8+esL0wDaykHJkeUWIH07HDjEn5LXgRM0CtgrekXX9wfiZXadORub8
-JEW67r8n3WoDEJKI8ysIQu8tpt+dbrX35ZkhYPzColgofyKttNHpBU63l938zl6p
-lKb6qA6wXy0rEMn77NQHQ9EsoDPYQcOBQwFZ4NvcZOoY+9N/arPDk83B5+DUsxiu
-3umQ0FABZtD8WU2+8bX2ZrtNahhv0/+PgA6eUmp82TTVOUMlzS/Y0F89XIcDFsrx
-tfZDnwLtICw4DVA7scO7KoIu92A7bLHS7+BD20d/uSkRClFnQFCRWIdIjTl8L0xG
-yNBOdDYNKIcvXz9bGBiuqZLDts7WFTuo6KaH3316aN2oVnpypRFBItSiOaPyU9Dk
-CzmdQ53jaAGLxKqgkg3IHMGyCXmCvvRauZpSJseoPWm8P6pxBajInq+m2MMi72j7
-TffNFg1SOgjvlwVxhVHpQanM5nelQD522db7ztNXyQempZK/3BAHOYcdViJ46UCB
-cPmerSastdRkkypqudNLRU+LuhaPsuA9L3eOhUpp7ImWxy+kBS7Au5XDiaYqL30g
-gG/cONkAFBxugJQrTwB2VHaOu4u5eIt5v9evvnuBQ/IOUS4t93sD1fxaDsG6qYJa
-SW0fnbmXLGNJYFSmumTHyCDRRwupQJZOlPBRBI5//7YYINQRVOaetVYMwxd66QLO
-ZqHImCzrBKdDeJbWI9LNwQPtaU+7YnIlaVt0aLHbjvcShUXMAPCIGkj6hJblSEmg
-Pek=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/iam-external/ca-root.crt b/deployment/pki/ca/iam-external/ca-root.crt
deleted file mode 100644
index 61e3fb7c071dcf7c8b512dba0af875151d0e5fca..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/iam-external/ca-root.crt
+++ /dev/null
@@ -1,128 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 287 (0x11f)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_iam-external
- Validity
- Not Before: Nov 22 15:20:52 2019 GMT
- Not After : Nov 19 15:20:52 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_iam-external
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:c8:84:4d:9f:ff:c4:ef:3b:6c:22:15:0a:ba:58:
- 8b:03:87:4d:29:5f:8b:60:6c:3c:e4:0c:6c:97:28:
- 36:9f:30:b9:bd:3d:85:51:c6:69:ff:65:2e:a8:0f:
- 7d:1e:8c:7a:21:d0:95:85:5b:9e:20:3b:d0:f4:e4:
- 94:14:ed:ef:b1:3a:a5:d9:3e:f0:e2:f6:38:fb:70:
- 5c:b6:e9:db:2e:df:b9:05:18:8f:88:96:93:5f:62:
- ef:e9:31:ca:21:a5:1f:bb:43:71:67:85:04:33:c5:
- bd:2b:e9:c2:57:56:95:e5:19:c9:32:c1:90:34:ee:
- 76:94:3a:12:50:e4:ef:6b:13:bc:61:40:89:04:cd:
- ec:91:c7:88:36:5c:4b:11:8d:42:5c:d4:3e:fb:09:
- 3f:1d:c3:71:15:52:3a:70:7b:18:2f:b2:40:dd:3a:
- 7e:b6:b3:00:98:3d:94:06:42:93:d2:0e:2a:8f:c6:
- b1:31:55:7b:25:a1:fb:30:8c:dd:34:43:7c:f8:58:
- a7:50:41:fc:47:6b:46:d2:8d:d4:1e:bf:b6:64:0b:
- 88:96:25:a5:f3:0e:ff:8b:06:13:fb:29:5d:95:9e:
- 26:66:bb:8f:ee:73:9d:da:54:b9:5a:23:54:4f:b4:
- 1c:89:c1:e1:0e:22:75:af:6a:71:19:2b:a4:7b:56:
- ce:21:7b:08:ed:58:89:15:6e:d5:a4:5d:7b:96:39:
- 6e:0e:e4:d8:13:07:d1:26:f0:a3:15:c5:fd:d0:a5:
- 64:c0:20:07:e6:00:cb:78:4c:d1:1f:53:57:46:cf:
- cc:3b:d6:73:10:ea:19:31:9f:3a:fd:13:95:f9:83:
- f2:0a:e6:29:ec:b5:6e:b5:f4:54:a5:d0:aa:3d:ea:
- a5:96:ff:78:75:9b:15:bc:72:be:c1:1d:47:30:87:
- 28:6f:df:8e:2e:a1:3d:bd:b5:ff:5d:7b:34:3a:63:
- 0d:b9:39:c8:3f:2a:02:dc:1d:e9:de:8b:05:fa:d7:
- 8e:f0:9a:2e:ee:28:a7:dd:18:2c:21:c9:c7:75:6a:
- e8:cd:84:bd:85:74:e5:cb:96:8f:fa:36:c6:57:0d:
- 5b:38:3f:a3:72:7c:bb:b0:c4:da:74:2d:86:30:da:
- 72:3e:8d:68:c9:c0:3a:f0:8e:39:e2:4e:57:83:ea:
- 56:38:b8:2d:ad:81:7c:ba:70:84:d2:bd:b5:69:73:
- 54:b5:ec:42:ce:0f:a3:c2:03:ba:42:00:02:0d:32:
- 2a:f0:63:73:5a:04:b4:a0:b0:23:1c:da:db:81:5c:
- 94:a1:1a:42:40:37:bf:ff:23:3b:aa:09:46:5f:ca:
- 64:0e:dc:13:64:b6:91:4c:63:1d:aa:23:3b:7b:aa:
- 02:22:79
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Root
- X509v3 Subject Key Identifier:
- D7:C3:37:02:D3:F8:1F:FE:02:00:42:5F:7B:D0:B3:7E:BE:F3:4B:B2
- X509v3 Authority Key Identifier:
- keyid:D7:C3:37:02:D3:F8:1F:FE:02:00:42:5F:7B:D0:B3:7E:BE:F3:4B:B2
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:1
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 25:3b:c3:6e:db:6b:d9:50:e8:77:53:3d:67:db:ba:36:36:4d:
- ea:78:34:f2:0e:7b:52:eb:2c:f3:f2:12:0b:8a:02:d5:46:d4:
- 84:fa:bd:9e:09:0a:91:cf:59:8c:5d:14:dc:dd:0f:de:b4:e3:
- 01:d3:b7:1b:7d:79:7a:e0:97:df:19:9a:d7:3e:1b:af:75:a6:
- 9d:a5:d9:cd:29:79:96:44:d9:0f:b9:87:6c:db:b6:bd:04:3c:
- 59:52:00:2b:5c:06:65:35:16:a3:d8:59:11:1b:6c:3a:55:1e:
- b8:75:f3:c7:09:5c:b2:ea:be:19:17:f4:2f:af:94:02:e6:a3:
- 4d:0e:23:61:a6:e8:0a:12:96:e2:b4:e0:14:d1:90:8a:b9:17:
- 02:b9:da:37:93:e1:6c:6f:ab:a0:85:15:73:4d:94:ae:d7:69:
- 79:91:ca:f0:00:ca:03:c2:9c:9c:9c:23:2d:6d:92:e4:6e:87:
- 3b:18:46:51:49:13:71:be:b1:ef:34:6c:f6:89:5f:2d:68:c8:
- 4f:66:84:28:ca:38:d2:93:d2:16:b3:65:01:72:f2:b0:24:96:
- cb:13:9a:b6:00:6a:e0:84:b5:d4:73:7a:43:c4:ad:dc:a6:18:
- f4:6a:01:44:f9:6b:3c:53:c2:1b:be:9c:fe:5d:82:2e:29:cb:
- 7c:42:db:e8:8e:25:cb:d1:e7:b2:83:08:78:94:ef:6e:36:3e:
- 64:ef:63:1f:75:30:6d:a4:9a:44:50:e7:f8:20:09:ac:a3:12:
- bf:19:9e:a7:0e:93:a2:51:8b:bf:7f:e0:d2:86:49:2e:61:33:
- 88:34:43:93:c9:31:ad:78:b7:eb:cf:f6:4e:71:8d:1c:ba:8f:
- a6:54:cf:f2:ce:46:ba:68:3f:76:85:be:d8:ed:e5:f2:2a:36:
- a3:ff:ff:7c:c4:53:39:b6:4f:1e:4e:83:c1:6f:27:6d:a5:6f:
- eb:4f:dc:6e:77:82:b9:1b:65:d0:19:90:db:40:36:d9:e1:13:
- 4e:36:8f:21:40:8a:eb:18:3f:f4:83:d2:54:f8:a5:84:81:aa:
- a7:c9:b1:ce:97:c8:04:db:26:f6:51:4d:0f:23:84:26:c3:5c:
- 1e:7d:71:af:d7:c4:1b:12:41:48:f1:80:a7:79:ba:99:36:27:
- 34:db:b2:9c:a9:b7:48:3b:3a:76:47:83:9f:de:6a:ac:1e:0a:
- 16:b6:5a:cd:bd:bd:f4:39:13:27:1b:33:c9:43:8b:5a:de:ae:
- 0b:9c:c2:72:d4:c6:23:84:a9:43:0d:db:d8:f1:6d:81:21:28:
- f9:c1:c1:ce:eb:9e:ac:a0:e3:72:13:da:36:f3:82:c7:2f:09:
- 67:cb:73:58:b8:25:59:cf
------BEGIN CERTIFICATE-----
-MIIF7DCCA9SgAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwcDELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEdMBsGA1UEAwwUY2Ffcm9vdF9pYW0tZXh0ZXJu
-YWwwHhcNMTkxMTIyMTUyMDUyWhcNMjkxMTE5MTUyMDUyWjBwMQswCQYDVQQGEwJm
-cjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0x
-FDASBgNVBAsMC2F1dGhvcml0aWVzMR0wGwYDVQQDDBRjYV9yb290X2lhbS1leHRl
-cm5hbDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMiETZ//xO87bCIV
-CrpYiwOHTSlfi2BsPOQMbJcoNp8wub09hVHGaf9lLqgPfR6MeiHQlYVbniA70PTk
-lBTt77E6pdk+8OL2OPtwXLbp2y7fuQUYj4iWk19i7+kxyiGlH7tDcWeFBDPFvSvp
-wldWleUZyTLBkDTudpQ6ElDk72sTvGFAiQTN7JHHiDZcSxGNQlzUPvsJPx3DcRVS
-OnB7GC+yQN06frazAJg9lAZCk9IOKo/GsTFVeyWh+zCM3TRDfPhYp1BB/EdrRtKN
-1B6/tmQLiJYlpfMO/4sGE/spXZWeJma7j+5zndpUuVojVE+0HInB4Q4ida9qcRkr
-pHtWziF7CO1YiRVu1aRde5Y5bg7k2BMH0SbwoxXF/dClZMAgB+YAy3hM0R9TV0bP
-zDvWcxDqGTGfOv0TlfmD8grmKey1brX0VKXQqj3qpZb/eHWbFbxyvsEdRzCHKG/f
-ji6hPb21/117NDpjDbk5yD8qAtwd6d6LBfrXjvCaLu4op90YLCHJx3Vq6M2EvYV0
-5cuWj/o2xlcNWzg/o3J8u7DE2nQthjDacj6NaMnAOvCOOeJOV4PqVji4La2BfLpw
-hNK9tWlzVLXsQs4Po8IDukIAAg0yKvBjc1oEtKCwIxza24FclKEaQkA3v/8jO6oJ
-Rl/KZA7cE2S2kUxjHaojO3uqAiJ5AgMBAAGjgY8wgYwwFgYJYIZIAYb4QgENBAkW
-B0NBIFJvb3QwHQYDVR0OBBYEFNfDNwLT+B/+AgBCX3vQs36+80uyMB8GA1UdIwQY
-MBaAFNfDNwLT+B/+AgBCX3vQs36+80uyMBIGA1UdEwEB/wQIMAYBAf8CAQEwCwYD
-VR0PBAQDAgEGMBEGCWCGSAGG+EIBAQQEAwICBDANBgkqhkiG9w0BAQsFAAOCAgEA
-JTvDbttr2VDod1M9Z9u6NjZN6ng08g57Uuss8/ISC4oC1UbUhPq9ngkKkc9ZjF0U
-3N0P3rTjAdO3G315euCX3xma1z4br3WmnaXZzSl5lkTZD7mHbNu2vQQ8WVIAK1wG
-ZTUWo9hZERtsOlUeuHXzxwlcsuq+GRf0L6+UAuajTQ4jYaboChKW4rTgFNGQirkX
-ArnaN5PhbG+roIUVc02UrtdpeZHK8ADKA8KcnJwjLW2S5G6HOxhGUUkTcb6x7zRs
-9olfLWjIT2aEKMo40pPSFrNlAXLysCSWyxOatgBq4IS11HN6Q8St3KYY9GoBRPlr
-PFPCG76c/l2CLinLfELb6I4ly9HnsoMIeJTvbjY+ZO9jH3UwbaSaRFDn+CAJrKMS
-vxmepw6TolGLv3/g0oZJLmEziDRDk8kxrXi368/2TnGNHLqPplTP8s5Gumg/doW+
-2O3l8io2o///fMRTObZPHk6DwW8nbaVv60/cbneCuRtl0BmQ20A22eETTjaPIUCK
-6xg/9IPSVPilhIGqp8mxzpfIBNsm9lFNDyOEJsNcHn1xr9fEGxJBSPGAp3m6mTYn
-NNuynKm3SDs6dkeDn95qrB4KFrZazb299DkTJxszyUOLWt6uC5zCctTGI4SpQw3b
-2PFtgSEo+cHBzuuerKDjchPaNvOCxy8JZ8tzWLglWc8=
------END CERTIFICATE-----
diff --git a/deployment/pki/ca/iam-external/ca-root.key b/deployment/pki/ca/iam-external/ca-root.key
deleted file mode 100644
index efed7940cee2221074af9470347a62da012374eb..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/iam-external/ca-root.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIHkzlUc35UTMCAggA
-MBQGCCqGSIb3DQMHBAi0Kdqz+hT3kQSCCUgmMHq/4R5KmCKGaghBR1EC9Nn/ZwYD
-oAYzwUfeDEPHsRTCBncLRiKFXJ4YiKZln2mhU3VYLZRKuTgYRNOtfxZ54U/nsCCf
-6M5hDiVFWc8jMMkmDrTFTG9kgxAuwdGJPW1TNIqr0yfcdCqY6cAzRGbbvQBEPY5I
-dfVuf7dDOSPNjg3ywSWHy5AE8RsbtDM+BdRTNVFCDf+qf00q95hLblQrtOtC1Miw
-d+nMXZAq00RQjnz14sLTv9QnMrHGsB2NMC/vGuhnnn54LQAgtIuezlIYgUkbHkHL
-TylXvXDX8hKouNoi3MCP33CqrrTDUDw+XW/eF1Dae+KaDF8Q1rKwQ2d2dRePI0sV
-g04phrshQx04Y0kBNUpGOiP+9q2vnY+rKz/7G/dRApPJv/+nDV26vuxmuiqkGp2H
-kb12Jqfrr6KSP5PtXrwfH4yQ8/AwgTAlVUO6OGM2jREI7luVLVdh3acKNsg1OWzU
-6dNHP1CjqzjicRzOPZVjDZiUzAtde4Q4bLJDvFfMcbrKtN5U/yGv204o55ZfQZ8i
-599ZZYDJQT8KzoxVkMtgIo3XfzwxUI+SR2yvkWETkqoCs+xuYiWp3ofrHjWwEMcY
-8+5dhyG6oVomHikv5N0II6d5Hp+9FONQImEhHpfASPBy1rOCYxXBRSjqDbOxVhOc
-rz3VqSsWtjkSVFJYPeQQs79NkV7QybubR7uQQGBdaYMc4nRloAhDcjO7+XMY00PT
-5C0ChVKQsLQBNLtrbWxHfDQKhIZQAG+gNxPu/FSW6fEtuHwYvtcyWMwxKL9SL3Ec
-lEXgCiYh6NRRc5H8p5rzCudUNaqoJa+UwW0Mn53OSkMKgf3fwxa3BdPYYGxz2/zd
-vfDzhPrGBK30jAXw28b6tjnrIfwbzdQUAKCDBUXiCG+vmsPfmU0ZeVyaYm0wvSRH
-5mZf1owmgK1vWCemo5QPZvO8Tskm8FpR6xPQj8dfEYaJ/2jhBOeop9Duqcy9vfQN
-Qtpsz+8Z7LV9xa8HaEGsQ41Ydo/mJB4H0FlkNhEgn4VHKzUY1GNibq423DBvXIsD
-kck+K9jJ7xN9krhPyR2IoxB/LsuDj9J755lPnJOco4OxwGQH22MHGMU31HVD5S7N
-EHVR5xhSalxkSf8LrlZUWc9KH5Rhz0tFFjiWtIDledcgn/m7ZcYm32+qeO16Avtn
-QmwWNu6b/EJgWd92QqytgvqGhmfh01UPWR3LUp9ioa0ee+aeT6XFONHIHV4SxPrd
-pjNgPOE9F3E5AlAo4c5w+91Hmy8jIxqOjqjULA/SOqdtgb1BkP8Tq4oKbiac3E31
-t2SjYFxNJuhjhTDC0VBBZ52+LVLaqpW3MpxFLt8Q+CeL72JxqqAwqCKbFBZOe+UC
-TCYjL20eYJFwH9JfQ71HLA+WWUkGYQGjVq8Zez+VX7Peeq8voc6e7H967hUBgko9
-NERGLtvLkRkHd8yfpG7AEFwA+rw5FbYOzmDy2JWxDyb+scdr+OihDBCfa7aquJrP
-+09900pmKo/vgllmoY8xyimZmgteyRxq73Y42jswf3eBRX/TudItzqeuyuHzMx8U
-FPj2VQkHuYB7A01c5A/74QhZIG+rNADIf/CJh0SmzP4ngNIQD8Zaq457itGUd2bo
-lmS/r+vGPcDE5d3sLrX07/LrHQdLIcaE57EAugWxv3LIIMCT9/bgdQNBGJNgVIqt
-pdJpkZW5qGuh7DDYW80dyOfETFwhH/7fy/xnHt4U9u3SzEEHFeSWTF5q6bcNe98S
-VNplwowCqexdiU8O61ZkmBbPo3bjAipJmuf4ma0+kMGmuiPp+TG3LPZSJrIY0huA
-3vfoiFU+tZPOjmsG3y09XqI9ETmRCIp5fFQebGo2WTzmDocJv4+3KZSDW6GEcr5x
-aQFh1D31qC8+TEH1SagNdHqXmFxm87sMFscxKDBbMBSuTzgsQT0pNVm7SLzXIdcQ
-32yZ7HQH2jMiD5czf9KeWd/QLnm9/zTjmT1+5eFaNupMrXNCykFNvq05mDIxkJUX
-EWLxRtBPihXl7LbCQnpqr9nmaOquAQgrAn9ey3z6F+64VEmLOqaXmbuz1Z0WevHK
-I8oyJN7fd2NKwUVPgx2kDASawo5vAgT6AB+fvDEj3jf624SIhxKApx9PUkxE3YfV
-5MOPjpanShPyoRGa2Xe4WmnPMlaFLkXgroJHNB8innigF3fGB+GKvIghRd0dQQqH
-0gW9NTgz3JwNbnCJPXw88giQX99yGK+V1oUVLMvTLXjHP2La/Us/mseN9G3E6zDG
-r3LfrMz/NT7KGkG+AqGgJypq1JtYgwCKJgd3Oma1pl39ByzuHUMw7sp/eUXfYsLV
-x92IdAQVCz71+uNInfWz6JjfuJPrhXMyvCbLHK7L0mSc346CLXzzZL4lEUwcHKfC
-y0dIPdSixwEyUTmCUa7lH91ux7Xxoqm5UWgQeS1wpB7sqghwygj+UAPGPFbXqNXJ
-61/LE0cCmn7/yrKxtPU+j4ZnApMLZlJqu9j5wvVWfdEnFN4oayISKjEVqH7CfnNR
-APDioxKM6nDKP9vNs5sHd/nCFnuQUvJEB0xE67RQQ3YG6TL9Dfc+/9Hr0dqxTdRd
-biJBrH0p1Y1EzaAE+7BBsDxSvnQPEl6aneG1oVHDHzStna16CzTMSi8+y079iYf0
-YOLMXb/H+xZwVoUV++iyOESulM4fG2ZsUYaKYtxd8Ucakw21OaLc5UDmo2WZ1PN0
-VqlHPgglApdxMmhzUO2J6b1cos1gldYojKG2CccLsMGVfUYFyJOrDf6/nkJ5NWIB
-7PAXSUAtZcGZAfwoKoICQZlpF/EczUhrrvPfEfMk9uIm/cACXjYvsTtRYknwcoUh
-88ezOhDKXemb3MG+V/CBHA7dxXZe0FDST+g+VDmWCDwS2n9pBSMQ+joFmb3wPBh8
-SwKdzV66I64JxLDeiqyHjiHUUDfXNJAZZXbzzuR7xLYY9ywPf4CTXWNKxK/YKNlv
-zJFux9G9z3cEVwZsxY+uQ6fK+3Lm/oisv6fl52kkGQmbttaGzqlVNEo3uzPH1lnv
-N5HEq0sC4NgrijdkljDnZCxtNSsgDMAfX0EJUZFbDdsMSG+hIniJhGhIotarLIij
-7ISwOSyP/4xvau5BBSfjfF7xeMh/tHFog6gWwk25Tja185Hf/n1d1FgqLM9C5Nrs
-rk4=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/iam-internal/ca-intermediate.crt b/deployment/pki/ca/iam-internal/ca-intermediate.crt
deleted file mode 100644
index 05ffefa40ad7befc6a458a5ed7d80b4bb824bab0..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/iam-internal/ca-intermediate.crt
+++ /dev/null
@@ -1,136 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 289 (0x121)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_iam-internal
- Validity
- Not Before: Nov 22 15:20:55 2019 GMT
- Not After : Nov 19 15:20:55 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_iam-internal
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:f0:56:95:ed:69:c9:19:ce:0b:d6:2a:10:4e:61:
- e1:23:71:f8:cb:08:a8:2b:4b:2d:bb:70:ba:ba:04:
- da:eb:d6:4c:9f:5a:da:dd:be:ba:bb:10:f2:eb:82:
- d2:34:1e:14:57:8a:d9:cb:36:a9:f5:b5:2b:67:e3:
- 9b:8d:a6:7b:7e:3b:ae:47:84:73:c6:07:48:4c:93:
- c1:d0:36:9f:60:8e:f0:63:d5:c7:47:6f:dc:0b:31:
- e6:e2:bf:06:e5:e7:56:24:05:01:39:20:04:73:fd:
- 55:06:32:d6:1a:5f:71:0e:42:6d:5b:51:06:80:36:
- d3:85:b6:b7:17:21:2e:76:30:92:94:41:c0:06:4c:
- 45:27:73:e3:37:e4:34:23:42:64:07:84:85:52:1b:
- 4e:66:18:57:20:1a:46:7c:59:33:46:31:ed:77:5d:
- 3a:97:6b:6a:ee:96:dc:13:64:b3:af:39:30:b8:9a:
- c2:5a:b3:42:57:60:7d:55:eb:55:1d:fb:ee:44:58:
- 42:65:7c:56:91:25:87:87:1c:98:82:8c:b1:fe:6c:
- 59:9e:a0:cc:eb:82:b7:b4:97:04:c6:09:9a:7f:bc:
- 85:a3:64:3f:b9:8c:f6:0f:4a:b3:4f:1e:bb:ae:a1:
- 36:6c:7a:1c:11:33:b0:81:31:26:f7:6d:13:c8:98:
- 03:81:1b:bb:19:0f:5d:80:2a:0a:72:b7:e0:69:4b:
- 13:fd:30:82:86:3b:f8:9d:cc:ad:d9:78:12:7c:06:
- 63:eb:d5:72:2f:98:40:91:35:50:59:a9:1f:58:de:
- f3:c2:c4:ba:33:13:36:da:31:b2:59:65:f4:96:ad:
- e7:c9:67:25:2a:0d:1a:ef:36:92:18:6f:1a:bd:eb:
- 36:f3:d2:de:f9:8e:95:82:17:db:52:59:db:e6:c2:
- 72:c4:0d:81:c8:45:11:7f:ec:c0:65:f2:93:08:e1:
- b1:07:f3:6f:0f:5e:3f:09:c8:4b:d3:05:34:e7:36:
- a0:5e:da:08:32:69:1d:ee:b5:48:d7:3b:01:bb:d0:
- 57:8a:03:62:cf:bd:0d:db:34:94:5b:ab:9b:af:53:
- df:a9:6a:43:eb:da:ba:0c:19:ca:98:1e:20:12:2c:
- f1:ca:77:47:e8:8c:5c:12:bd:85:ac:28:90:60:ed:
- 52:af:db:ac:aa:dc:b1:e8:8a:79:74:12:ba:29:85:
- 78:1c:bd:fc:88:40:13:f8:10:12:2d:e2:b5:07:5e:
- 44:d0:df:3a:5b:23:cc:13:59:a6:d3:2b:28:f8:fd:
- 73:e5:60:36:ed:6d:13:7c:8a:c5:bb:e7:9c:a8:3d:
- b9:9a:54:42:7c:5d:ea:b0:14:43:17:e2:a6:5d:9b:
- 6c:dd:b7
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Intermediate
- X509v3 Subject Key Identifier:
- BD:46:A7:30:88:A4:42:FC:6D:94:32:D6:12:AE:E9:9C:7B:80:71:0D
- X509v3 Authority Key Identifier:
- keyid:CD:73:F8:1B:D2:B5:BE:55:9D:DE:C2:65:45:B1:91:D7:39:F6:4E:5E
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
- serial:01:20
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:0
- X509v3 Issuer Alternative Name:
- <EMPTY>
-
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- a1:5a:76:01:5c:4a:f0:5c:9a:1b:96:ff:bc:b1:e2:ca:fd:75:
- a6:ca:7f:1b:2b:16:99:1c:75:cf:83:38:08:d3:1d:fe:1f:90:
- 77:d8:08:bd:df:c0:a4:90:19:a8:e4:70:4b:0f:d8:d1:9b:19:
- d0:43:1b:4c:8f:a4:7b:bf:b1:03:40:ff:6d:0a:1b:59:68:44:
- 45:1c:35:ac:a6:b0:df:b2:47:38:b0:86:fb:fc:61:11:0c:af:
- ac:86:a7:d0:e4:a4:c9:8a:b3:c2:4b:72:7c:f0:b3:14:63:16:
- 65:66:77:ac:7e:bd:85:6b:db:52:94:6b:5b:2d:7b:6b:dc:e4:
- 60:d2:7e:88:00:48:fe:28:2e:2d:67:61:41:40:71:2f:f1:08:
- 2a:10:2d:ae:9a:8b:a2:62:73:8a:13:a1:fb:f9:d1:98:bb:cd:
- ed:86:90:d7:5d:be:dc:77:c9:fb:7b:46:ce:da:a2:15:35:bb:
- c4:24:d4:64:a0:3a:e6:11:41:b8:e0:55:fe:4e:f5:02:24:9c:
- a4:34:2a:b0:44:bf:fc:d5:7a:a7:4b:7f:10:f4:c1:64:44:aa:
- 0d:a3:d9:81:cd:4d:69:cd:07:1f:ad:d9:c2:6d:a8:7a:a1:6c:
- 28:96:a9:8b:db:79:e2:32:fe:48:36:f7:b9:70:06:6b:be:28:
- bb:96:3e:15:f3:a2:a2:92:c3:1a:68:16:a4:bc:78:42:79:14:
- c5:8f:b6:4e:67:96:3e:3c:d0:ed:73:8a:dc:38:db:c1:61:62:
- c7:1f:69:32:12:ef:23:7e:2e:0a:98:98:44:c4:f6:6b:90:f7:
- f1:1c:9c:f7:3e:3d:f9:3b:72:66:75:fa:f5:ca:4d:0f:3c:eb:
- 6c:5f:bc:39:7b:5a:4c:ac:61:1b:ee:b1:d5:4a:fd:3b:9f:bf:
- df:ab:30:83:fa:e2:7f:00:91:98:b2:85:57:e3:85:af:ff:72:
- 2c:90:20:6b:f2:38:c3:07:47:a9:44:63:56:b6:d4:7d:09:2e:
- 52:fd:30:ec:ce:48:6d:fa:92:02:16:b8:4d:73:f3:43:98:3a:
- 63:f6:7e:a1:09:77:66:bc:9e:43:2a:3c:76:06:90:e1:dc:b9:
- 28:22:6e:96:4f:58:33:a1:61:b6:04:1f:d8:ed:37:81:b4:cd:
- 61:07:32:af:69:00:f5:94:99:97:53:b3:cb:00:80:87:95:5e:
- 2a:ff:8c:d8:f5:c2:af:ce:52:f1:7d:7c:2a:0c:b8:56:70:62:
- 55:aa:47:a2:67:c4:fb:02:13:73:1f:f7:bb:3a:d4:62:2b:f3:
- bf:80:24:58:84:c2:26:19:00:87:5a:88:16:20:f9:4e:4a:72:
- 9b:5f:24:56:43:f5:57:7a
------BEGIN CERTIFICATE-----
-MIIGhjCCBG6gAwIBAgICASEwDQYJKoZIhvcNAQELBQAwcDELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEdMBsGA1UEAwwUY2Ffcm9vdF9pYW0taW50ZXJu
-YWwwHhcNMTkxMTIyMTUyMDU1WhcNMjkxMTE5MTUyMDU1WjB4MQswCQYDVQQGEwJm
-cjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0x
-FDASBgNVBAsMC2F1dGhvcml0aWVzMSUwIwYDVQQDDBxjYV9pbnRlcm1lZGlhdGVf
-aWFtLWludGVybmFsMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA8FaV
-7WnJGc4L1ioQTmHhI3H4ywioK0stu3C6ugTa69ZMn1ra3b66uxDy64LSNB4UV4rZ
-yzap9bUrZ+ObjaZ7fjuuR4RzxgdITJPB0DafYI7wY9XHR2/cCzHm4r8G5edWJAUB
-OSAEc/1VBjLWGl9xDkJtW1EGgDbThba3FyEudjCSlEHABkxFJ3PjN+Q0I0JkB4SF
-UhtOZhhXIBpGfFkzRjHtd106l2tq7pbcE2SzrzkwuJrCWrNCV2B9VetVHfvuRFhC
-ZXxWkSWHhxyYgoyx/mxZnqDM64K3tJcExgmaf7yFo2Q/uYz2D0qzTx67rqE2bHoc
-ETOwgTEm920TyJgDgRu7GQ9dgCoKcrfgaUsT/TCChjv4ncyt2XgSfAZj69VyL5hA
-kTVQWakfWN7zwsS6MxM22jGyWWX0lq3nyWclKg0a7zaSGG8aves289Le+Y6Vghfb
-Ulnb5sJyxA2ByEURf+zAZfKTCOGxB/NvD14/CchL0wU05zagXtoIMmkd7rVI1zsB
-u9BXigNiz70N2zSUW6ubr1PfqWpD69q6DBnKmB4gEizxyndH6IxcEr2FrCiQYO1S
-r9usqtyx6Ip5dBK6KYV4HL38iEAT+BASLeK1B15E0N86WyPME1mm0yso+P1z5WA2
-7W0TfIrFu+ecqD25mlRCfF3qsBRDF+KmXZts3bcCAwEAAaOCASAwggEcMB4GCWCG
-SAGG+EIBDQQRFg9DQSBJbnRlcm1lZGlhdGUwHQYDVR0OBBYEFL1GpzCIpEL8bZQy
-1hKu6Zx7gHENMIGbBgNVHSMEgZMwgZCAFM1z+BvStb5Vnd7CZUWxkdc59k5eoXSk
-cjBwMQswCQYDVQQGEwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEO
-MAwGA1UECgwFdml0YW0xFDASBgNVBAsMC2F1dGhvcml0aWVzMR0wGwYDVQQDDBRj
-YV9yb290X2lhbS1pbnRlcm5hbIICASAwEgYDVR0TAQH/BAgwBgEB/wIBADAJBgNV
-HRIEAjAAMAsGA1UdDwQEAwIBBjARBglghkgBhvhCAQEEBAMCAgQwDQYJKoZIhvcN
-AQELBQADggIBAKFadgFcSvBcmhuW/7yx4sr9dabKfxsrFpkcdc+DOAjTHf4fkHfY
-CL3fwKSQGajkcEsP2NGbGdBDG0yPpHu/sQNA/20KG1loREUcNaymsN+yRziwhvv8
-YREMr6yGp9DkpMmKs8JLcnzwsxRjFmVmd6x+vYVr21KUa1ste2vc5GDSfogASP4o
-Li1nYUFAcS/xCCoQLa6ai6Jic4oTofv50Zi7ze2GkNddvtx3yft7Rs7aohU1u8Qk
-1GSgOuYRQbjgVf5O9QIknKQ0KrBEv/zVeqdLfxD0wWREqg2j2YHNTWnNBx+t2cJt
-qHqhbCiWqYvbeeIy/kg297lwBmu+KLuWPhXzoqKSwxpoFqS8eEJ5FMWPtk5nlj48
-0O1zitw428FhYscfaTIS7yN+LgqYmETE9muQ9/EcnPc+Pfk7cmZ1+vXKTQ8862xf
-vDl7WkysYRvusdVK/Tufv9+rMIP64n8AkZiyhVfjha//ciyQIGvyOMMHR6lEY1a2
-1H0JLlL9MOzOSG36kgIWuE1z80OYOmP2fqEJd2a8nkMqPHYGkOHcuSgibpZPWDOh
-YbYEH9jtN4G0zWEHMq9pAPWUmZdTs8sAgIeVXir/jNj1wq/OUvF9fCoMuFZwYlWq
-R6JnxPsCE3Mf97s61GIr87+AJFiEwiYZAIdaiBYg+U5KcptfJFZD9Vd6
------END CERTIFICATE-----
diff --git a/deployment/pki/ca/iam-internal/ca-intermediate.key b/deployment/pki/ca/iam-internal/ca-intermediate.key
deleted file mode 100644
index 3677d95a8b7254fa719378af13c0194dff8f8dce..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/iam-internal/ca-intermediate.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIy1UKG91v3VUCAggA
-MBQGCCqGSIb3DQMHBAhEY2+RdnyAegSCCUh9VP9F1+g87jrQfLIRC2ONibYooBQS
-EzstvTD8TBQKCZqMAguQZARhvHbvw0TiYgCOZIhAUKHN78zcVDCL9VGGXirL8LoR
-Auc8Dqu8JoVtH/r2ksJ6qLNwm/xjenPSrD6C9GQEpIWTQZ1UfEO1PvBVUJOUFJ+l
-zn1KIorSPNU/NylB6CReqk1pXqe9JjTkFqk6jNK3tqCDC9BWwa1eAdvx6uh750tE
-BUPvS2UJQY+HKITwanPvVETFav3eD6l9YicT1yRDze7aFzsiGCXKzuamonIPjV8C
-pH1pzyZfXs2s+VaB108PkhFElpP40HuGqr+PnewvEL7w4ikmJD2A5Bhyc8XjHAVT
-O1NselRBNQBdsKV6pQxAsLRySrknz8W/yLlRN42uJJRaq6ErS3IT8s0e4ZLhsTNj
-yESjnOzHbFvXj9y6Bftf2uC/U80GkLa22uk11wpQhMlu511GwiAGjMznRLQhniaG
-C/zjs8lLHUNA0bB1US3vH2wYaSFVCid7XcES0cKNf0E3EEXeq4VYZzJ8Uac0iKFZ
-/BaZ1/FhV5ufcsQ7oMN8lR0kYrUS7ikSUJHyhue0cRJWZpOFIvNN6fUuaIpGyQMI
-JOK1Naq2xuwyxV4yhk+GSlLCy74zPre5WmS5L6hsNik5KTdkDchCrdXwaVK8urGG
-dXO3iKCOwv8NFRPkQlUtiEbIg3HVOd26hX16S+WREDZva7KKT1pLEEO7Wmaa+BP4
-kXRj4w1V6uawg9/kXXp44wXMwihdQNMsKOngc+/m2WyqKFi5OENNXVOIR3xsVYM3
-BxZVwkewGxYpNKhKrR5Gw2UF0Iv2uC2PEu4WSz8khWkw+u5u8bgAZKj865/qU1YB
-dEsrKLPM0MSWXx//hg8MaYlLkYDPLgZRMy8sEB98Rh93eWh7rAIA0O3iZmvQn582
-hWWFwUrPl+ZEHEG72rwtaGEPLAPoMDgHC03KeM2m0CYRb7KMCxaC9bnXDRsWn5XT
-1uRnbktwAIUweMTUxygdksYGxMOx78yYgJOZs/8ytAJeb1M5ezLYuS0C/03xTjEp
-OTsFAua+uW+Wb3P8IA9FOtWK8SAjVe+PGxBkkGfFGjpwzXrXkFfuguJVdjl+bkI0
-gBcXXCHIxcEL5OJoMcf/An3aX+CqvQx8tDC3SJf/b6BKhS4ZpQPiL7pvqrD7/qWK
-q5fJrjv2IlACFJW8wWr7y9T3+RaXE/VRzlNX2zpK+F4JZKuTupVuSy9+TokT6RXW
-8ZZAautZy2ZM1TG4iiou1kSchT/OUtTEga0idbPeu+VBtwGj3jq39peD3mdiZzW0
-YX4J5uuD8RrAEoQ51KwDI57Gvc27CymAtMs5/M/TeHDACnNcYMyyAnyL1Jp17uhM
-GrCcWl38QGAAwiP1Gsh3Ravy2L+BN1ghreS0nQ3C/NT80cJT9/etfLsrOGES7AQo
-Lx02iKv7t21tFoiXcrF7NETAu2/Um1gN6bRDalnNHU2VUbv37zTBl+PH3+Qkxz4t
-JAETOnVJkwbKjZPwwiic7twnohHWyY+RcrSgnJME9Yk6lCC1FPphgyz28rv3CFPG
-54Mzg5/N3zze63XnmsGHjVH1dlC8NnzbyOi3p+yw2V9MMspsjdm375hkBlA1N5VM
-FCEzZyjJlQS/ZNAzTu8JvOQBiqx0hHfFDZiuTK5QTgNuknMgLeQCinlWfnU8WHRV
-0UyWoNT8vdMoPKZDTrMQN65lI+XB/JcdK2hJeUeTqZ8Mhc9MoB7+yVAt1EN/lWQx
-BaSD6P2YznyLIyutM1e2W7J+jaBhB05wE12teO5SBCCVVEx2LZOTrDydblz+N5Qk
-5RYINP2fpQ7E6/Ypu9Xb15Hyj70qktzJfdqnyi9dalAir8EJrEnJcJFsnyc/jret
-2MEb4j+rBTZuc+S2OXN9XNsbzGRJ2VaY5OdDz0BBmlXExf+0SMwRD/lPrfzigBuq
-LmdimSO0sf3DYzcAFhulpJ1HV4zfsKbtz4msW9DyE+V02xcuSmjC+KLgSrnnJo5m
-C2E3lHUyt7avyguVQs9bxUp/BGkd4bGal4Z+2g+9zuYxHzyNHmNHSW2a5D9va5dz
-K1d/u8ocGrv3OyzODeFw0cpRJ8ObBeRTYKDcBUJctCHd/7nbHpp2VAySqPeYi1O5
-fqlCycVRnK76NQ5NUZsy5b44NVniFCbucsqiKA5HER3Co+95ylXkXs+G71kca8eh
-Mhgs5/viN32oDCY+9GdupfcH7FhA2PolxeIk5StllaenOaWBInzhIAHVlQQsCohp
-ih0hLV4ukOcRku2U2TDNRfr3xfWY61/w2nmCdG9DuGGAgVwKLvunPle2CEz1knyE
-/5wfSOgGRiPR7hp+YW1KDmzGIGsaAXNKGTjuDlEoNLG6mBF9fSdYzMMK2010yybn
-ty8ecjhrejsvAnhyUzc9VEkigfdbn66jgMu8APxJ/oMN/JPWN/pfXvd8jDFkXzjw
-wfXsp+TAdnT0UpRyEOmYpU3KjPmhP7WLE6imIy9KPxMshbwk9KwQC5snoKHeI22O
-nBKQIThS1qqHxI7k/wUaRmZUxXiKyp0oOc7Pq97atzmenu187eaEkcXc62f50P1Y
-ZO76eHTxNu3/sSlWZ/rQLRR3Mm2xi+fv7VnG8qqH4JyoKCP07ek3fBHFzHHPopN9
-Nn7kF61zDxOlphNOqpc6bPYlBY+b7NGLv79uIN6v7ayMPwIECQgy+X0wdgYPN2Go
-rp4bLX0J4mL0r3yg39ReYEP6IaMgJMXo3g6hpStg95HesccLAa7g6EwWnjfE7qhx
-9WC9t1hysvPw/1PQiENPyDY8E+bzRkCvsteAAOWkdpg9SBV8r9TxLVnDiT9A6HyW
-EpFa9au0VWRcq1TSomGR/icuiEucs8ZK6ZCrsqFHYtRXf+Cl/8WgEm5ETD1Llsg2
-IzW40+siiP4DMWLJZ/qDCTuFjrTZhZlZqsdC7Yp2pUssComfUjT1C05LAac24RJz
-W85LAFgpQb5d7cweObElqka1T0nhvMAmTe3zxfXPrJHCbEQje6VWF0AsKPEcjudT
-HxLcpO86IosGSxe7eeCY1oAjyGzjF3sOv9v978eUnhP1he7mLr3lnrVMfAGsCZd2
-Ko22oo7sRycQrZQLggtrfpQdrSyOyH+nobx74IqnLhYwrlPxu7tSWKSSU0wOcS7h
-edI=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/iam-internal/ca-root.crt b/deployment/pki/ca/iam-internal/ca-root.crt
deleted file mode 100644
index ece3ef731d5fa6af8b3020b3d3a91aa11cc5c677..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/iam-internal/ca-root.crt
+++ /dev/null
@@ -1,128 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 288 (0x120)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_iam-internal
- Validity
- Not Before: Nov 22 15:20:54 2019 GMT
- Not After : Nov 19 15:20:54 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_iam-internal
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:b0:14:16:80:02:35:3f:79:3e:2d:60:74:ed:28:
- ad:86:e0:6e:eb:9c:3f:d1:2e:03:31:84:60:74:e1:
- 87:76:24:58:1b:85:a9:7d:64:12:83:54:26:c5:66:
- 26:dd:c1:e4:c9:6f:05:b6:a9:db:a6:6a:5c:92:1e:
- f1:1e:7d:eb:c1:00:15:9c:51:cc:86:02:47:25:40:
- 2b:92:37:d7:59:3e:57:d4:74:3f:2e:4f:ec:12:29:
- 4b:c0:e4:8b:d5:02:e6:da:2b:96:68:59:de:a9:f0:
- b4:55:a3:b7:b3:9f:92:e8:cb:be:16:e5:77:0b:a6:
- 35:50:cb:7e:9f:3c:b1:aa:06:bf:2a:b4:83:c2:e8:
- 0b:b6:f0:43:6b:d1:0f:cb:71:89:fc:f4:7a:55:8d:
- cf:62:fe:fb:5b:fc:52:d9:e2:7f:37:af:4d:05:1d:
- df:da:cc:8a:0d:13:6f:0b:3a:67:d4:39:a7:37:8c:
- 7f:d8:87:c6:a3:11:cb:4d:2a:e4:9d:c6:87:5c:fc:
- d7:e4:5e:bc:cd:24:04:ae:a2:c0:81:cd:1c:f8:ec:
- 00:7b:be:a1:d9:02:c2:9a:cd:fa:fa:a6:0f:27:93:
- 6f:92:35:e4:75:5c:4c:65:51:8b:e2:dc:d1:a6:c8:
- 52:b6:8c:0e:e5:2b:b5:09:f1:91:70:ec:97:78:0b:
- 22:bc:0e:be:e7:07:73:57:74:28:3c:f6:4a:c5:d1:
- dc:6d:7c:54:b9:85:62:59:bb:fc:15:f0:08:6f:fd:
- 3c:24:23:55:3a:fc:12:de:19:21:d5:c3:21:ba:54:
- 05:3d:59:69:17:b9:1a:2a:51:84:f1:58:b9:da:35:
- 63:d9:4a:bf:97:ff:f0:b2:97:a7:2e:a2:45:8b:40:
- 05:5b:94:1c:15:35:3c:d2:c2:88:94:d3:bf:d9:c0:
- 7b:ee:41:bf:89:d2:8a:91:fb:7b:41:39:92:84:f8:
- 43:d7:ac:3c:7c:0e:f6:ef:75:35:74:33:44:96:7f:
- 97:88:b7:39:a0:ae:c3:f0:a0:af:d4:1f:26:9c:04:
- 47:8d:61:78:5b:e3:fc:a5:ff:06:f2:fe:af:75:f2:
- 12:5f:a7:fb:41:1e:81:ed:ad:9d:49:2a:3c:26:47:
- 83:96:12:dc:c9:d9:43:57:7d:6d:4f:e7:ca:14:36:
- 8a:85:5f:78:f0:db:b4:18:1a:68:4d:7c:5f:52:ef:
- 0f:df:99:1a:d2:54:61:25:cd:48:b3:74:aa:20:42:
- f4:47:4d:ec:a1:02:00:87:69:52:ce:ac:46:59:ae:
- 8d:f4:a2:a1:ed:4a:17:58:39:90:5e:06:d5:8c:23:
- 34:0e:5c:88:88:4f:d5:11:ea:d9:fd:ad:d3:36:ff:
- 0e:59:cf
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Root
- X509v3 Subject Key Identifier:
- CD:73:F8:1B:D2:B5:BE:55:9D:DE:C2:65:45:B1:91:D7:39:F6:4E:5E
- X509v3 Authority Key Identifier:
- keyid:CD:73:F8:1B:D2:B5:BE:55:9D:DE:C2:65:45:B1:91:D7:39:F6:4E:5E
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:1
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 8a:d0:4c:52:df:12:9f:7b:64:f1:7f:8c:ac:a0:cc:ff:38:24:
- f3:89:9c:8c:76:be:f7:ce:d9:d5:ab:8f:78:a4:51:6f:34:f4:
- 90:9b:39:9c:db:de:c4:c7:e8:b1:24:26:0d:4c:83:22:ce:c2:
- 1c:7e:b5:38:0d:82:24:3d:f6:8a:4c:35:ca:77:4f:56:03:5a:
- cd:28:c4:42:82:8d:5a:21:26:b6:03:18:05:d8:bf:76:81:29:
- 89:34:24:76:2f:42:87:db:0f:b0:3e:fc:fa:70:77:78:5d:92:
- ae:58:ee:a3:fb:7e:22:37:22:c4:ac:86:78:e9:a5:12:04:fd:
- e6:6f:cd:6e:39:fe:1d:d3:e6:c1:96:2f:2b:d3:42:8a:2c:e0:
- d0:0d:51:50:dc:7e:d9:d4:2c:31:a0:1f:a4:3b:c9:19:88:52:
- 4d:13:5a:cc:74:43:74:90:16:51:d1:09:a9:d8:84:7a:41:71:
- 9d:eb:8d:93:3a:42:eb:a4:3c:37:d5:ba:42:cb:15:1d:71:79:
- be:7c:1f:1b:be:1a:2f:0b:33:03:e4:a1:ed:90:4e:33:93:a1:
- 3b:1e:93:c2:59:4e:e5:8f:d5:e0:87:8b:f6:b0:7e:cc:09:51:
- 80:f4:59:8c:20:0f:e2:f7:02:c5:8c:bc:8b:e4:e8:22:57:c2:
- 21:8a:ac:7b:77:e7:2f:93:69:01:e2:0f:f1:ac:c3:78:9a:c1:
- 09:77:7d:1c:d4:18:f9:ff:98:14:3f:a1:7c:85:b2:54:28:a3:
- 14:cf:f2:26:77:8c:97:79:3f:69:ad:58:ec:de:60:31:4c:c5:
- 8f:25:5c:2b:5c:01:9e:ce:62:50:2e:8b:b3:9c:24:47:7d:ee:
- c2:69:bb:b5:70:b0:ff:ab:0a:f0:40:94:ce:4d:91:3b:75:f5:
- 98:4f:d2:ac:8e:66:2a:ff:af:cf:d8:28:ba:95:98:16:90:29:
- d0:f8:eb:6c:0f:7a:09:55:fb:a0:c2:da:9f:13:86:cb:b3:db:
- 9a:f2:69:61:c0:26:07:4b:25:1e:98:8d:97:b8:6a:3c:e7:c8:
- 76:02:c6:39:7f:51:b8:de:14:f5:ad:49:de:e2:09:09:33:aa:
- 4c:57:3d:da:51:35:a8:c9:d0:12:84:89:2b:f7:e8:70:10:c6:
- 26:12:8e:33:fd:92:c4:53:24:83:23:be:46:64:56:46:1e:e2:
- e8:31:7e:e4:d0:a8:da:84:3c:cd:2c:d0:c8:7e:75:16:c4:09:
- a6:d4:56:4e:5c:bf:50:47:e5:c6:32:1a:85:44:a6:44:1d:0d:
- 1a:9f:ed:df:71:ea:74:4d:25:47:fe:31:8c:72:82:f0:1b:c9:
- 21:a0:87:91:de:01:54:5e
------BEGIN CERTIFICATE-----
-MIIF7DCCA9SgAwIBAgICASAwDQYJKoZIhvcNAQELBQAwcDELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEdMBsGA1UEAwwUY2Ffcm9vdF9pYW0taW50ZXJu
-YWwwHhcNMTkxMTIyMTUyMDU0WhcNMjkxMTE5MTUyMDU0WjBwMQswCQYDVQQGEwJm
-cjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0x
-FDASBgNVBAsMC2F1dGhvcml0aWVzMR0wGwYDVQQDDBRjYV9yb290X2lhbS1pbnRl
-cm5hbDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALAUFoACNT95Pi1g
-dO0orYbgbuucP9EuAzGEYHThh3YkWBuFqX1kEoNUJsVmJt3B5MlvBbap26ZqXJIe
-8R5968EAFZxRzIYCRyVAK5I311k+V9R0Py5P7BIpS8Dki9UC5torlmhZ3qnwtFWj
-t7OfkujLvhbldwumNVDLfp88saoGvyq0g8LoC7bwQ2vRD8txifz0elWNz2L++1v8
-UtnifzevTQUd39rMig0Tbws6Z9Q5pzeMf9iHxqMRy00q5J3Gh1z81+RevM0kBK6i
-wIHNHPjsAHu+odkCwprN+vqmDyeTb5I15HVcTGVRi+Lc0abIUraMDuUrtQnxkXDs
-l3gLIrwOvucHc1d0KDz2SsXR3G18VLmFYlm7/BXwCG/9PCQjVTr8Et4ZIdXDIbpU
-BT1ZaRe5GipRhPFYudo1Y9lKv5f/8LKXpy6iRYtABVuUHBU1PNLCiJTTv9nAe+5B
-v4nSipH7e0E5koT4Q9esPHwO9u91NXQzRJZ/l4i3OaCuw/Cgr9QfJpwER41heFvj
-/KX/BvL+r3XyEl+n+0Eege2tnUkqPCZHg5YS3MnZQ1d9bU/nyhQ2ioVfePDbtBga
-aE18X1LvD9+ZGtJUYSXNSLN0qiBC9EdN7KECAIdpUs6sRlmujfSioe1KF1g5kF4G
-1YwjNA5ciIhP1RHq2f2t0zb/DlnPAgMBAAGjgY8wgYwwFgYJYIZIAYb4QgENBAkW
-B0NBIFJvb3QwHQYDVR0OBBYEFM1z+BvStb5Vnd7CZUWxkdc59k5eMB8GA1UdIwQY
-MBaAFM1z+BvStb5Vnd7CZUWxkdc59k5eMBIGA1UdEwEB/wQIMAYBAf8CAQEwCwYD
-VR0PBAQDAgEGMBEGCWCGSAGG+EIBAQQEAwICBDANBgkqhkiG9w0BAQsFAAOCAgEA
-itBMUt8Sn3tk8X+MrKDM/zgk84mcjHa+987Z1auPeKRRbzT0kJs5nNvexMfosSQm
-DUyDIs7CHH61OA2CJD32ikw1yndPVgNazSjEQoKNWiEmtgMYBdi/doEpiTQkdi9C
-h9sPsD78+nB3eF2Srljuo/t+IjcixKyGeOmlEgT95m/Nbjn+HdPmwZYvK9NCiizg
-0A1RUNx+2dQsMaAfpDvJGYhSTRNazHRDdJAWUdEJqdiEekFxneuNkzpC66Q8N9W6
-QssVHXF5vnwfG74aLwszA+Sh7ZBOM5OhOx6TwllO5Y/V4IeL9rB+zAlRgPRZjCAP
-4vcCxYy8i+ToIlfCIYqse3fnL5NpAeIP8azDeJrBCXd9HNQY+f+YFD+hfIWyVCij
-FM/yJneMl3k/aa1Y7N5gMUzFjyVcK1wBns5iUC6Ls5wkR33uwmm7tXCw/6sK8ECU
-zk2RO3X1mE/SrI5mKv+vz9goupWYFpAp0PjrbA96CVX7oMLanxOGy7PbmvJpYcAm
-B0slHpiNl7hqPOfIdgLGOX9RuN4U9a1J3uIJCTOqTFc92lE1qMnQEoSJK/focBDG
-JhKOM/2SxFMkgyO+RmRWRh7i6DF+5NCo2oQ8zSzQyH51FsQJptRWTly/UEflxjIa
-hUSmRB0NGp/t33HqdE0lR/4xjHKC8BvJIaCHkd4BVF4=
------END CERTIFICATE-----
diff --git a/deployment/pki/ca/iam-internal/ca-root.key b/deployment/pki/ca/iam-internal/ca-root.key
deleted file mode 100644
index f9cfa80b9332dc78e556593e0c688ba89fde3d64..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/iam-internal/ca-root.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJljBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQInt7scA81xLsCAggA
-MBQGCCqGSIb3DQMHBAjTnolDHN+qGgSCCVCctKiMqMOh/H/JWVyozQRgm2T8AOHJ
-K6251yiLmkeQe5QEFwDd+VrOscdeD1lpwjAoZ39kTEXSQYNTa+UQT23ajgMTjRUz
-N0p5oQPlTXsN8znAS0QOvLXbhpX5vTkPzQ/L3/HUsk4psmD94ad1eBi+mwdkRElW
-ESlpaXL4/WdTHP3Ijvot0lAIT0RhOtYak9HVtGH2L4Dgvk2YP8Q7XQfDesz/Q4rh
-zBuAxABbY5OA+RAc4eitovHUkSy3Ye6XUH0U2ivQEay7FkL//lF/F3mej9v/qfwJ
-oQOl5/xmXaN/jd6E347VrZALgFUFzogyfuYB9VtO+tI7zrsL6ljAjAV9JUzmWvr/
-KNQQV7obiYGlunAtL8N9Fdv+yV+Kv/Y/qoUkHJpC0ptBD9Ft/vsGfDA4wLBUrI3H
-J1Owll/tSuddFdeJPTLVOYR8up9QRVlgOjnfFSZTGr2GJ+mbBUuL/vOkyTY2uIW6
-gMTvMqDjJZ3AyDFNFC9nJ+sdrjY5f/oaLB0kZKHptwGs23S5GHAQLUN0zWybYSWa
-j8PJ5cLBTTh+DQfzuftO5asHBUwy+XDwl5tuY2kuQMcf7SldMQPJl1nColoABSmk
-Ex0nmn0SgUGqdou/JhFDoSF+Pm+ByCFKTxhgyJMWz2lcl4yY8qHj0XnQ/opx+gsz
-s6ffHwc+/N4u73wvB4WBmdAV9yd9agOO2IwM0qd9gdLlOccQsD2fQN8s40MNcr40
-0IJfP061rHHZrNCp3Kl9mWCR6mux9XUmK9hzW8iWP0eTnekLF1mLUMmqfmZW7blc
-hKtfpL1dvXPOpDRSPV9hykAIHrJYuGm0TCEKDJZziOwN170THv2LZi/49BiQKN1N
-hRJNqyTESFN0pGdG3cJxfO7q+wZ8yu4Vax7+EX2DLV0xIWoMcJ4TPdIP1DiR1I24
-UvlgXbimju6rQ957EkI9dhRFk7shO7qqb1uNN1RpkNc7qShOgr+1D5GpOrq9ytLX
-/981eqOaNJfktLCLGemLfVDimUTRfxfyRRjWaWNQMepJLLcLgka/8F5b4E6rA79n
-fFytroZvEATlxNNV+Kf8yenpOkpPcw0xa5iRZUU4kCcKbUftAeXeZ6nSD2d+syvr
-C54BAJZC5hPa7yg8G/sCJXSX3l0wbtxbsNedjNUyRXaRYuf3s/HkJa5K+AqDi+x+
-cKYBiqtuwJmkJT2LjotHAE1ti6I1NRR+rpWCiHfdI2yafYuPROLKHRfuPjVuUyQg
-WlI7vyy4sK+I7KmmQGiFUjzQKjQGxM4m2DQcv0mkFDSsuVRLP1YqII5bKt4RSei3
-KAfC/N5+/6WU4Y0GDtZaPEj6aMk/UDJG63KZWrtzsHtuxm7w/UdzBd7EaNc5V4rS
-5SQLFOIvEYiQXeVvf4RoCZ77j7mwn5XKCPebjd7dbOzVhck+LnI7XPhm8jZRbBlb
-XnErIcL9ueR/8ZNL7cmfOEaqxaDb2YXiY64bxETq+LN8ShfDDaPMx+cAnZh+uu1Q
-qgVzoct2Y4RjYuJdEz602itrytBjLJPog2PDiUVbASnxtFIspPjO0y2G2N1W/G3A
-J6FQNS4FvhvoVcHVM4p9XZ+yc83goFD253uCaduio+m+nj+q98FsZtsc7iQTlQHM
-bi3oPASNwb+A3lGjN//V3haQBgbVA88mxw/eqdnL01XIv7z6Qgt0rjZrN5fckldc
-iuWuuOazxAGTvHvA4yhpSSIupvAIxtgExhVhJEZh5uQ6FIX5O0FPMUsyW85isMwD
-Pt02RnXKL33e4twjFKMnUe/pHYRfsIDwc5B908rOuNW/6/rUvZJxHrtkQFBOFwnf
-3EwIQZ1Kk1Y3PaVjHCUfNSEV/YnfDRIpeNCJZG7dhSFLGUH2lu1XRIU+BUinqvU+
-ySAm9u8FLWsQwCgk2ThU75qOyvO6Y0X3UEpkNHx6vjKY5sZtPezDtMqSj1Uz7E25
-tZQ4w4hhsJ2RSsjW/A+lJok4+UbcyFM5YLYURh5t5VyD/O8avbEMqigKXHagyT1W
-xWDeb0XblneFJzhOZoz85WlrF5pjNUkzWtTtnuTyJwi1SRvHjUXlFWQWqzbb8F+q
-PizL6iCfMCT42QHUSsQs+zLsDxpJV2kRrqF/C0aqhGUiTzBAhqtH8QpVgl8O4ZFu
-ghc3bbtHcFH31F7M+HhmO/d4ZwjGHsqBDut8L7iz7JsN2RPTdKVBEPctUTRbGBDL
-8Qjw3muH3DTWHDNGMCAgLeCpWa+PYIZh/lvY7KkGbU5WF9fVSo3T6bkKRH6e8VZE
-XKA7C0tFX/CScK6rf7tDu4SHJQ9PJvLguo/c5sAplXhUfiu6fX7qMuCC9yAetFzY
-X74SkQi0MqE9IUcchw6SsaXM67HpNb73e4y7UJK6yhXsk/2osQbP3l3UoR9MENgn
-GsepGZoYwqLh68nnkBy42J0sGubcS9+p2uh7fFrlT+KDvHa6KVqG6z8kPuxrgu/Z
-AmOcpirMqXLEfFzovFGrFU4F9SD5zSTSTD2HZSwA8v5t3WRfoju3IlWb5WIA3u5N
-Js37Klv1E4aORT0mV7h5/XfbFNDGs21dvD4dNArABq8/DSBp583w3gb9IlZlg8/6
-WzfKpsapZFtdszbdTqPGoNWMKQ4d2dTc2M1kQNvyFLV8PH6ffqHcJmXR/Xh0iBKd
-x5UysW7u6GxIo02zw5X+YvVu9EKE0qZDzt3jxYuVeSyFuADV4lWxEuFPWZtWz5oF
-zrZlQxHsCdXnWeqVRskyJCMERvTDzv/So4a7Mk4Rg65Qljydy1RK7vOteZoU3w2L
-HPBgP20jjsb5Aka9NFBFQ4sRB56cA2/qZMl22vafgHrI3Bnpdxoj0a0kNlZrevFz
-j8W8Gh/kkdfdrHCgThOJ7u0hqzAKiKoNq/S1G1uF1ZgSc9mYM5/SZLSSeFk4OgcM
-Gn6qQ6sG8RG+NITOVAGXgu24R27OHuDXBoylCX96uwQbh8g3Q8uoACgaz7sHlZV7
-VUa88GzcMOGSVfSBhNntIBpV8muXr+EiqGOfVXk5DEMNuL7RRHoTbM/8ymiWX6Rp
-PkzQTYTIaYAQpklETJiB2BxZDKjWLl4ZMZ0A+43xl+5QNneKY8Lf/TQIyhV0KMFy
-vKp/nvLYV4hxjBLHCo/knbjsBC3S37OCZec46Y2Dg8XTLFaIO1xpC3uB2PeNrCeG
-JpcKCtBa3D1EUg==
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/server/ca-intermediate.crt b/deployment/pki/ca/server/ca-intermediate.crt
index 248773c761ab54f596fb76d961d2987b6a597501..30823c0808eb0c9694392556753edc7551d04da5 100644
--- a/deployment/pki/ca/server/ca-intermediate.crt
+++ b/deployment/pki/ca/server/ca-intermediate.crt
@@ -1,136 +1,136 @@
Certificate:
Data:
Version: 3 (0x2)
- Serial Number: 485 (0x1e5)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_server
+ Serial Number: 2 (0x2)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_server
Validity
- Not Before: Dec 12 10:42:42 2019 GMT
- Not After : Dec 9 10:42:42 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_server
+ Not Before: May 5 09:13:40 2020 GMT
+ Not After : May 3 09:13:40 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
+ RSA Public-Key: (4096 bit)
Modulus:
- 00:c6:40:80:8f:e0:81:f9:ec:92:b5:af:60:5a:90:
- 58:a4:1f:e2:1c:ec:63:a5:1b:2c:7a:3a:e9:7c:a5:
- 52:27:d9:df:55:a8:93:47:7f:e6:0c:8a:ad:a3:2c:
- 52:a4:bb:38:06:4d:1d:43:56:de:19:7c:f3:28:02:
- f2:c6:8f:41:c0:a2:fe:78:65:c5:0e:88:3a:1b:34:
- 39:47:f1:9b:16:3a:68:b5:3f:b2:f9:99:81:3a:e8:
- b3:8b:d2:38:1e:77:ba:31:69:af:12:ca:ea:6a:bb:
- 28:01:ff:df:9f:2b:58:4e:fb:18:29:72:fb:63:30:
- f5:73:0e:61:d6:cc:7e:19:40:99:2c:45:fb:5e:51:
- 06:54:bf:0b:5f:6d:e7:d9:cd:b5:3a:ca:bb:20:37:
- 1e:8d:04:33:63:d9:64:47:2a:47:32:5f:1a:14:a8:
- af:b8:da:9b:f3:a7:b4:d5:41:ff:fc:49:20:62:ae:
- 69:a0:ad:37:fc:01:6c:f6:3d:12:53:5f:02:f0:3a:
- fb:1d:ac:3d:61:22:a9:e0:0e:cc:aa:a6:2b:45:d7:
- 1d:c4:a8:6d:04:18:ff:56:11:49:0d:80:8a:31:ab:
- ab:06:b7:fe:07:2b:64:18:0b:50:7e:9a:96:26:ed:
- e6:d5:9d:aa:33:fe:7b:4a:cd:ba:15:85:ad:bb:c5:
- c6:f1:0d:f2:20:71:72:a8:0b:f7:64:14:2d:3a:35:
- 04:8f:a7:68:f6:26:81:e3:68:17:ca:77:37:3b:6b:
- 81:68:05:55:64:6c:13:c0:a2:59:2d:62:2a:39:c5:
- 74:21:ed:95:ba:38:80:65:b2:99:e2:f7:97:80:9c:
- 23:2b:07:79:84:97:b2:5a:c0:db:97:6a:81:3c:ce:
- 4a:0b:3e:fd:fe:9b:6d:29:6b:f4:20:50:ba:a7:77:
- 6c:26:54:22:e0:81:6e:56:3c:cf:e3:a9:8f:8c:cd:
- 91:e1:bc:7d:9c:c4:92:39:7e:01:12:9d:9b:06:93:
- f7:e1:0b:a8:35:2c:fb:16:24:11:a4:91:17:84:91:
- 0e:54:eb:3f:5d:8c:8a:78:f8:65:67:dd:08:c0:6a:
- 88:25:26:47:25:ab:28:09:1b:b0:ce:bd:21:20:f1:
- 73:65:2c:c9:e9:14:8e:cd:76:46:79:43:08:2e:ba:
- 96:ea:3e:05:31:81:4b:b2:eb:6f:0f:5b:54:6b:29:
- 0c:4a:91:a2:8e:99:62:a3:84:8e:3d:71:a9:01:35:
- 4d:08:49:59:84:62:9a:06:47:c8:ce:43:43:bd:9e:
- 88:d2:99:1c:aa:68:a5:31:b1:0b:88:3f:87:ff:7c:
- 8a:1e:1c:12:7b:85:02:aa:b9:6a:11:07:81:4c:50:
- 46:1b:a3
+ 00:cc:59:39:ae:1f:dc:0c:63:0c:cf:23:53:2f:b6:
+ 07:88:58:52:6f:f9:0a:e1:2d:b8:d2:e4:ef:3d:1e:
+ 1b:ca:be:36:80:e2:f4:08:c7:9a:37:2e:00:c2:46:
+ bd:8d:77:64:b3:3f:52:c6:fd:2d:2e:d1:d3:37:52:
+ 82:93:fa:7c:91:1f:70:11:23:e9:28:86:4e:2b:2b:
+ b2:db:c2:5a:48:e0:32:17:13:80:7e:f7:0c:1e:f8:
+ 0b:fb:69:aa:fe:7e:05:f9:d4:77:3f:b0:c2:fb:22:
+ f3:0b:fc:c4:c3:f5:ce:2a:0c:08:af:46:fb:0e:43:
+ e3:07:bd:42:10:d9:4f:d0:9f:65:1a:2d:f4:59:6b:
+ 0e:ec:b0:dd:08:c1:11:a0:aa:53:f1:84:56:57:54:
+ 6d:8b:2d:74:99:99:21:92:5f:a3:4f:57:22:09:4d:
+ 61:96:20:f5:24:3d:98:c1:d6:d9:aa:ed:81:d9:f7:
+ 99:50:d4:ad:e5:45:7b:d9:fb:cb:55:c8:5c:90:af:
+ 1e:9d:8e:71:1a:ce:d6:6a:7c:6f:9e:d8:08:dc:e6:
+ 58:1c:c2:ed:55:58:6f:a0:0e:7d:a3:5b:16:20:28:
+ 1c:9f:9f:10:63:ca:0d:b1:6d:42:ec:05:76:3c:32:
+ a5:ad:02:da:c5:87:a3:8c:c3:0d:c0:13:fd:df:5d:
+ 72:a4:9b:88:73:6f:17:b2:45:8c:a4:93:7b:1b:46:
+ a6:74:07:bf:28:51:fd:cd:20:d4:c5:6c:9a:50:09:
+ 0a:c9:93:84:e9:d4:fd:d2:d7:b7:12:72:5a:3e:0d:
+ fd:5f:e9:64:a5:39:de:96:ec:64:a9:d9:57:f0:31:
+ 35:1f:ea:c9:f8:48:da:2e:74:d8:9d:48:24:1c:af:
+ 37:9e:2a:f3:76:f2:1f:ee:89:9e:a3:81:e9:ef:c3:
+ 5d:d1:cf:b1:15:3d:16:4f:62:9d:da:7a:2f:39:d0:
+ 2b:0c:02:19:4e:d8:2e:cc:1d:1c:b2:31:68:ca:0d:
+ 6a:8d:71:44:18:06:82:cd:03:b2:a4:4b:89:6d:db:
+ 96:87:d1:c6:35:0b:f3:e1:3b:a9:18:ba:ca:91:e4:
+ 40:04:b0:43:0f:7d:1e:58:3f:53:3c:1b:ea:b4:ec:
+ 64:72:34:c0:56:6d:15:3a:07:95:93:15:85:f0:d3:
+ 6b:37:43:d4:ac:d3:a8:61:84:d2:9e:0e:66:93:8e:
+ 7f:96:96:f2:e6:40:a8:d9:3b:a7:bc:53:c8:bb:eb:
+ 0f:b5:34:ba:4c:0f:81:06:a5:54:fe:ad:1f:48:76:
+ 7a:a4:28:1b:42:6b:48:29:a5:bb:12:d1:c6:50:49:
+ 28:ea:96:f0:68:1b:d0:f3:e8:d4:1a:39:c6:f7:a5:
+ ff:dd:99
Exponent: 65537 (0x10001)
X509v3 extensions:
- Netscape Comment:
+ Netscape Comment:
CA Intermediate
- X509v3 Subject Key Identifier:
- 88:CD:41:D7:31:FE:AE:05:33:F5:D4:82:48:A4:0E:1A:9E:EE:BC:B8
- X509v3 Authority Key Identifier:
- keyid:C7:BD:36:FF:58:55:76:8D:DF:07:1F:6F:C8:79:3D:C3:25:DD:D9:80
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
- serial:01:E4
+ X509v3 Subject Key Identifier:
+ E8:D5:71:89:7A:D5:65:64:EC:77:74:B4:D3:93:32:E4:DA:FF:04:7E
+ X509v3 Authority Key Identifier:
+ keyid:57:A4:F9:F5:76:E1:14:88:0A:AB:3A:64:87:DA:A3:41:16:1C:59:DE
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_server
+ serial:01
X509v3 Basic Constraints: critical
CA:TRUE, pathlen:0
- X509v3 Issuer Alternative Name:
+ X509v3 Issuer Alternative Name:
<EMPTY>
- X509v3 Key Usage:
+ X509v3 Key Usage:
Certificate Sign, CRL Sign
- Netscape Cert Type:
+ Netscape Cert Type:
SSL CA
Signature Algorithm: sha256WithRSAEncryption
- 27:b2:fe:12:9c:5f:2f:59:9d:c9:f2:48:6b:7b:f3:07:20:74:
- 24:64:ce:75:9c:8c:01:f1:3d:aa:86:cd:21:f8:35:91:ee:9f:
- 27:3f:92:ab:4e:4f:81:c4:52:60:01:19:15:d8:bc:95:d6:a3:
- 2a:72:3b:32:06:f1:c3:b0:81:fc:06:4e:a6:4c:81:4b:a5:43:
- 23:5b:40:3e:a5:5c:2e:17:08:76:4d:d7:de:90:ad:98:ec:74:
- 5f:2d:6a:71:ec:99:cf:88:07:d9:90:55:44:f2:db:b4:cb:67:
- 1f:ee:b8:54:60:3e:61:5a:45:0b:06:60:05:ed:b3:bb:13:7d:
- 38:8c:51:a4:a0:6a:b7:88:c5:c1:70:11:44:a7:6c:e9:2b:83:
- 75:57:97:d2:16:d6:c0:15:ea:53:2e:56:b7:86:50:88:c3:3a:
- 9e:50:6b:f1:af:03:9e:56:8b:4e:e5:24:f8:0f:2d:00:d8:40:
- b7:04:18:3c:61:58:34:86:2b:ae:99:44:e7:58:34:02:05:ae:
- f9:fb:11:2f:4a:03:f4:7c:66:15:89:04:4c:e8:b1:e5:cf:71:
- 27:d0:fa:e0:52:a2:9b:f9:cf:7e:2b:bd:1d:04:a5:db:52:aa:
- 56:b8:62:b0:aa:a6:32:ac:88:37:e0:01:6a:1b:79:be:ba:7c:
- 20:95:8f:fa:87:26:70:a8:58:9d:93:1c:b1:c1:a2:3b:1e:bc:
- bb:0e:ef:9d:7d:3a:ac:b4:b8:8d:17:6c:b4:e2:e1:82:6c:1b:
- 79:8b:a1:e7:46:c0:0c:3f:c5:4c:3c:d1:84:40:bb:3c:84:48:
- aa:05:7a:2d:09:ad:55:e0:7e:3c:97:44:22:b4:73:80:5c:24:
- e9:5e:8a:0e:dd:1d:f8:3f:c9:f0:b9:93:a8:b6:b8:ea:20:1b:
- 8b:c3:49:87:0b:30:35:9c:d9:da:25:12:96:4a:cb:9a:b1:8e:
- fc:2a:14:eb:50:f9:dc:45:ed:67:85:f6:03:c9:22:57:7c:91:
- 7a:dd:50:eb:e1:e7:0d:5a:d4:4d:27:75:4e:c6:e8:c3:27:f3:
- da:2f:ea:b0:11:0b:1a:b6:9d:45:bc:ef:b3:7f:ae:aa:1a:d8:
- 7a:bd:1a:d9:01:3e:8f:a6:42:09:19:c1:d4:ae:83:8f:d8:fc:
- de:7d:47:7b:78:84:b9:53:44:68:21:c2:4a:94:e6:bf:69:d6:
- 89:d0:4c:54:14:be:cd:a1:b7:01:c9:ae:e5:37:41:49:a0:15:
- d1:0b:bd:40:1c:34:43:6c:72:ee:d0:73:95:2b:49:64:fb:69:
- 5c:77:4d:48:57:3b:7f:a3:9b:b8:1d:b6:e3:0c:34:b4:73:75:
- 0a:59:b4:14:fa:35:6d:2b
+ 29:55:c7:ca:ea:75:6e:e3:e0:d0:bf:7b:2b:bf:74:63:c1:a1:
+ ce:1a:c7:76:c9:bb:8a:ce:ad:74:d4:03:8b:b7:b3:68:26:83:
+ e9:35:40:84:d2:41:fc:44:96:90:19:16:97:c2:7a:7f:37:68:
+ 0d:46:6f:ea:0d:17:31:ac:83:d2:ae:3d:cd:a1:ab:22:34:71:
+ f6:8d:60:7c:24:66:a7:75:99:19:47:eb:ec:03:8f:7a:e8:01:
+ f9:df:70:93:b5:6e:57:e0:06:1f:ea:c4:cd:21:02:e9:14:39:
+ 42:31:8c:3d:0d:29:da:e4:d8:64:43:c8:5b:54:3d:e0:3c:c7:
+ 94:ea:1e:7d:ac:b0:21:2d:b5:74:77:64:56:8f:07:e3:47:68:
+ b2:62:f7:58:53:5d:b7:0f:70:59:93:c7:fc:8a:aa:a1:8e:a8:
+ 8f:6b:c0:a5:ab:7a:25:1f:2b:45:28:9e:49:a8:51:b3:26:63:
+ e9:dd:75:c6:1c:84:d5:45:1a:e8:21:a3:3d:79:ed:05:e1:84:
+ 39:28:c8:68:4c:02:18:45:e3:9b:5b:41:d1:ad:8a:4f:70:51:
+ ed:a2:13:cc:fd:9e:b9:81:0e:c0:a1:bf:f5:d1:fb:e7:28:2c:
+ 99:9e:3d:a6:4e:ce:90:d0:0a:da:26:71:ab:27:c0:f6:c4:fe:
+ 0c:bd:2c:36:6e:66:00:dc:1d:7d:26:46:4c:16:eb:4f:ad:6c:
+ c7:42:9f:b0:e1:1d:9f:49:a4:03:80:ea:ad:5c:87:b7:59:62:
+ 27:49:f5:d1:a4:c5:cf:50:2c:7e:75:bf:46:9a:3d:3a:79:63:
+ d4:7c:97:91:a5:b0:78:8b:f3:4a:36:91:d6:85:35:2b:10:77:
+ 90:36:7e:6c:a9:5f:84:78:51:99:44:60:46:91:78:48:7b:bb:
+ 42:07:c8:97:3b:e5:66:fc:7c:d4:86:22:8c:f5:c3:b2:a4:78:
+ 74:ae:59:b6:09:09:69:24:f0:c9:00:dd:82:35:25:72:ac:65:
+ 2c:4f:ba:7e:0c:13:25:41:d1:66:cd:5b:70:29:7c:6a:ea:3b:
+ 66:f1:19:fb:a9:bb:35:2d:07:d5:61:8d:b3:c3:01:96:cc:b0:
+ f8:5b:ae:ba:a6:af:9a:ca:be:39:4d:9c:b3:7c:ce:2e:b2:86:
+ eb:a1:e3:fb:4f:77:49:e0:bc:e8:e2:83:a3:0d:57:80:d8:4e:
+ d5:29:1b:77:f8:b1:18:05:9f:37:1a:c1:ca:8d:c9:9e:9f:38:
+ 99:8a:db:59:9e:ae:ce:15:66:ae:5b:0c:6f:0d:52:92:80:95:
+ c5:03:2f:47:94:66:29:1f:71:63:ac:89:ae:7f:5c:03:35:4e:
+ 36:44:95:d5:17:8e:3c:3b
-----BEGIN CERTIFICATE-----
-MIIGdDCCBFygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwajELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEXMBUGA1UEAwwOY2Ffcm9vdF9zZXJ2ZXIwHhcN
-MTkxMjEyMTA0MjQyWhcNMjkxMjA5MTA0MjQyWjByMQswCQYDVQQGEwJmcjEMMAoG
-A1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xFDASBgNV
-BAsMC2F1dGhvcml0aWVzMR8wHQYDVQQDDBZjYV9pbnRlcm1lZGlhdGVfc2VydmVy
-MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxkCAj+CB+eySta9gWpBY
-pB/iHOxjpRssejrpfKVSJ9nfVaiTR3/mDIqtoyxSpLs4Bk0dQ1beGXzzKALyxo9B
-wKL+eGXFDog6GzQ5R/GbFjpotT+y+ZmBOuizi9I4Hne6MWmvEsrqarsoAf/fnytY
-TvsYKXL7YzD1cw5h1sx+GUCZLEX7XlEGVL8LX23n2c21Osq7IDcejQQzY9lkRypH
-Ml8aFKivuNqb86e01UH//EkgYq5poK03/AFs9j0SU18C8Dr7Haw9YSKp4A7MqqYr
-RdcdxKhtBBj/VhFJDYCKMaurBrf+BytkGAtQfpqWJu3m1Z2qM/57Ss26FYWtu8XG
-8Q3yIHFyqAv3ZBQtOjUEj6do9iaB42gXync3O2uBaAVVZGwTwKJZLWIqOcV0Ie2V
-ujiAZbKZ4veXgJwjKwd5hJeyWsDbl2qBPM5KCz79/pttKWv0IFC6p3dsJlQi4IFu
-VjzP46mPjM2R4bx9nMSSOX4BEp2bBpP34QuoNSz7FiQRpJEXhJEOVOs/XYyKePhl
-Z90IwGqIJSZHJasoCRuwzr0hIPFzZSzJ6RSOzXZGeUMILrqW6j4FMYFLsutvD1tU
-aykMSpGijplio4SOPXGpATVNCElZhGKaBkfIzkNDvZ6I0pkcqmilMbELiD+H/3yK
-HhwSe4UCqrlqEQeBTFBGG6MCAwEAAaOCARowggEWMB4GCWCGSAGG+EIBDQQRFg9D
-QSBJbnRlcm1lZGlhdGUwHQYDVR0OBBYEFIjNQdcx/q4FM/XUgkikDhqe7ry4MIGV
-BgNVHSMEgY0wgYqAFMe9Nv9YVXaN3wcfb8h5PcMl3dmAoW6kbDBqMQswCQYDVQQG
-EwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0
-YW0xFDASBgNVBAsMC2F1dGhvcml0aWVzMRcwFQYDVQQDDA5jYV9yb290X3NlcnZl
-coICAeQwEgYDVR0TAQH/BAgwBgEB/wIBADAJBgNVHRIEAjAAMAsGA1UdDwQEAwIB
-BjARBglghkgBhvhCAQEEBAMCAgQwDQYJKoZIhvcNAQELBQADggIBACey/hKcXy9Z
-ncnySGt78wcgdCRkznWcjAHxPaqGzSH4NZHunyc/kqtOT4HEUmABGRXYvJXWoypy
-OzIG8cOwgfwGTqZMgUulQyNbQD6lXC4XCHZN196QrZjsdF8tanHsmc+IB9mQVUTy
-27TLZx/uuFRgPmFaRQsGYAXts7sTfTiMUaSgareIxcFwEUSnbOkrg3VXl9IW1sAV
-6lMuVreGUIjDOp5Qa/GvA55Wi07lJPgPLQDYQLcEGDxhWDSGK66ZROdYNAIFrvn7
-ES9KA/R8ZhWJBEzoseXPcSfQ+uBSopv5z34rvR0EpdtSqla4YrCqpjKsiDfgAWob
-eb66fCCVj/qHJnCoWJ2THLHBojsevLsO7519Oqy0uI0XbLTi4YJsG3mLoedGwAw/
-xUw80YRAuzyESKoFei0JrVXgfjyXRCK0c4BcJOleig7dHfg/yfC5k6i2uOogG4vD
-SYcLMDWc2dolEpZKy5qxjvwqFOtQ+dxF7WeF9gPJIld8kXrdUOvh5w1a1E0ndU7G
-6MMn89ov6rARCxq2nUW877N/rqoa2Hq9GtkBPo+mQgkZwdSug4/Y/N59R3t4hLlT
-RGghwkqU5r9p1onQTFQUvs2htwHJruU3QUmgFdELvUAcNENscu7Qc5UrSWT7aVx3
-TUhXO3+jm7gdtuMMNLRzdQpZtBT6NW0r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-----END CERTIFICATE-----
diff --git a/deployment/pki/ca/server/ca-intermediate.key b/deployment/pki/ca/server/ca-intermediate.key
index 680c0b8ccd943cff77fa3ee4d813696780ac3f09..71c36a06905d02cba59e6ec65978d6dde98d4f07 100644
--- a/deployment/pki/ca/server/ca-intermediate.key
+++ b/deployment/pki/ca/server/ca-intermediate.key
@@ -1,54 +1,54 @@
-----BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJljBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQI5+sgDljK2RsCAggA
-MBQGCCqGSIb3DQMHBAhb7SwU2sKA4ASCCVAmMpInGnYYhCi1q4TGaJpNBS/fn6s0
-LNkF0tMSfnbi6AWZupVd25Z7HIyFiDdCo/mmBEC/hPdret/1O4tG0xIlalLnwhEE
-wiCQKSNKRO88Xy9reNU3p+73j9Q+vjeeH4nEs4RQOjqZgmqrN3NLH5ej8EqnyK85
-xx1QAQ7BbX67UXGgrWQ/ay59uT8l4pfQzZGqI7U7c6VgQTiabnhx0icqm5URjqty
-/O7U1kdnyjMx/7YBNfSIKxy4X9RAIqJFkkU16BQAz8i1Sozl5dA8289lYPvbJJeI
-MTjhj97qqF6q/gg79FigYhfxvbiftqf7KO28E3Ze5ZM5JOv30pWlH6m+NybN2z5n
-53FTrhxwJ+NPvXXqjRUaYv3uyXYayt07OStQ6UJ5EuE1VvUF2V4qUk8MvpbrMCvg
-UUO3pqsSrm5pp36g8V4SAYGD/b/Z6YiRkSrhwzY1+gXMW+U/1DthBeG0chVnMImD
-6s4T8bDiusoiOzaqMR3Ix0DS3PDDo2MpEdT/WrFcqPgsvSehx7zUmuCFBkSdMS7E
-Jp1IOTbc1BC4Il+C3FGOfamDfu+gLtl1U1DrKIsSsJAaWsX4XMiSGMoW+i9BvlfF
-2cnnC8iKaVboMzOiGy5UJUKsOADJ2tPY2wdeDHo+X/5rOOVlxqm+bv8gQksYFc7M
-gD4Rg4ClCTTNG0oJB/DEFWqC4qaNeSJssxS2Cp4FIf8zHOEJjtHrEmjnBLMA/c8f
-TWTWP7OL0EXx8RGx/o4NsIMeAJP8BP9BleLJZzYnyugGs3OwTL/xMQ+IFTBgeIlG
-Tjv+D621DlVlxmgssecfDhguRGgXSwLC3FPOhh+gqIdFi6UrGOfu5p9wbLVK5JNi
-b0FxyZiXaWjrpIUCj6jNcy0rJtorfDvb8lNc9PYqBxMGjp5tjW0mDXyIK+trS+bu
-LwQ4+IDLCJJsh7rpSKiOw33DRfHbcKkzF3dHtFiB6LbtcbLaPFoKvo0vJhx2J9Yq
-wg8tv3f6rpjj8zveXfyRSnJX7VROpEYvJboEizQ9qiOHpjR1vKVJfqeDV0svjj4x
-jFuu21KBcoGSmhJoomfYaS9UyZSESNRPLBkHo91CYFZIRgpglDa+zccNDG/X2Q8h
-aB5neK4H+wx1dAIYRG26lY/8F8IAfGMf3AMq4pRNbBiqAAtQqhZr4uHoVIyKqtWN
-jYa3h3A+6GdOmZu5Djy4g0wPkNi6J9q21qZo4eMLRch9gC78qIZy9Lx5esNM3Cn1
-ledJaWXxOKkD1Ok9fEADoJMwukX58xqJ+/buU4oBVEj2GdIII8yXYwe9fk3/77Vz
-nMmjzZe82gQWuS+Ml1RaqyoKdu36FFR/dvEP75zobYTcC2kzZdonnTIbW5shLQ7x
-hJe6VjmmtId0Eas2Yeak1KHGQPF0+YDuJ477Qxh/AcD6jAw9dv1Y5fk+wQHEUn7c
-bjkEAgM1+e+/Qyw1GqmRIKl8XbL0cYrIH4Cbn4g/NQRSuCS4cH4RvPclReVDWF2K
-PHNyDET2/4+mk/rc5tUggeREmxU3TTsk+djlIdezdJ1wT3OJ0TFBPXjXWq33aLix
-UbTsoH1JQzQGQQQCEat/TmphMcNJVAvRJnVG++5t30gHDebUA7eV4bQM65oIf/ZQ
-Xz/dz7+22KkSsX+ppy2BZo6nS3n35DmNF4moS+bWTV7OEVsEnAiIv1C0yB8LosDu
-/KGqa7LK8HY089j2zcBmbY5kbep6FbNNJO/SQtVIFSNdB7/CWSQ72RZ8XQC8MKWs
-smyUgUgoOAS6cSzh3+OGrcY2vmspKRfLHGy4XIJbNwYyBgeUYbrxWoLfjxcZoLwb
-EnPxAUuWRiDM5k+PtqRcCfhEOrlRfGyQLxJaaJCd7S/PmD7rszeghqgO1juFdquA
-iilDs32xchKVbPMhlrzVPhStT8Y57kU9g00nBnhcKNIY7h1D0nWGinkQLuBrnkR9
-P9n+zyN/vOWOP3qoMLzt2MxOzEuR//tEg5p5/8eLXytJE/st+un4x6L4/GRrRNHT
-AYul0zURlUHPsv+P2BH9BHwan0/ZKZ3KEquZ0Fi2NT6XycHPxfsOQ/MUdhY60wES
-aQq//g0+WIQgpGrLwGNWlOYYJ7O8Du3TxWPhRgclz0OqjfYC5OU6OOn0ivEoHdp1
-qOoFo/l7wwU6U0mI+pPqGx8O42ATW9wUhsOFalyWmSqCi8dwfMp06ijStezrq6vv
-jeSpbQJS3jYDso4snSvsHFQ6Bvihad6Z1U6FEzw7MyIzfTzVmP0ceIMhnpqIIpS8
-EZlo1cOVUiAc4UUe1VqiLPMb8cwa/pRSmkeduEkx1PTnmC2RqSfs/CZ3Bb1GQ2LZ
-7Whpnt04UtBbcoFogAyho5sWXlPektbvGJ9pkisxaPrN9J1yXyQp4j8AoMgg5HEN
-tBUDmK+uKp77VJvoZDe4Nw2Zx69URKpQDBVKmYiWQMzeg6DIoVEbRScGjDBJ/rtj
-dQMcI39eLuGWKREAVcKjtApjbTVSqoyrRbU+PP1Rven5OdGeKX2QUH9NZOIJ/2tt
-EFYQWySowNjGm3ItqcJn/ZA5rKWVhOaBAvjgsFN09kKJUOcjYpCU++g8uEk40vjG
-mq776kM3V9qpQ+9MLJ8lqk7yYKFihQA+QlnitK59CaJAfwWos5Aw7+EwiGgVLm5j
-eLH331Xu2V+/SO+mglNYmvNIq2MRcgeJ0Uez7AG7Na/aeNMDSt3MM2YWg9NQUdS7
-Tw8CP2jjenzQrJCyUUQOvKi8Dw4he1Ejxtc77/4xas7he63LGMMc4vzEDNQozPZF
-eyUo09dMeG9QDRKfSzbx3aCSwGT+5O0NvBCbijPc7bpIZypwpELxJsso6VREk0Tw
-+UbsxRz5fA35J5ECIZFRHZ5Bspb26gqOb4lx3C62yvb7/DbzmXh19vAQh3zNmf93
-ToRXLBdloolw2nVGZFq1J52E2bh3lU7siiKz8d3LTMSAxsFbKPAtXhxMj6tajufv
-epKc9TGlZA1gUkoFfdwocykBrjPGcXfXC5hUPOGG09wTaf1fl4zcslZpIMOWo7nW
-i2yzp7KGjaeM/4HR23socZyn5FcnlocQpc8l3wrKDmHbYbGGY6N1MyrdchaYoK+U
-5KjDfrL6vucti6WRnQgPOUxk7s5c6etgSRWAQASV/aER8mgTljWT2I/r0Wlr2TW4
-OGZLLs8HEWimYw==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-----END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/server/ca-root.crt b/deployment/pki/ca/server/ca-root.crt
index 6972ec2f3fc7a7c2f6fa40fd51fc366df96d3ccb..27bd64a86e8e34d317dfc3f575186b23d91ba00a 100644
--- a/deployment/pki/ca/server/ca-root.crt
+++ b/deployment/pki/ca/server/ca-root.crt
@@ -1,128 +1,128 @@
Certificate:
Data:
Version: 3 (0x2)
- Serial Number: 484 (0x1e4)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_server
+ Serial Number: 1 (0x1)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_server
Validity
- Not Before: Dec 12 10:42:41 2019 GMT
- Not After : Dec 9 10:42:41 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_server
+ Not Before: May 5 09:13:39 2020 GMT
+ Not After : May 3 09:13:39 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_server
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
+ RSA Public-Key: (4096 bit)
Modulus:
- 00:c0:8c:d9:8e:fa:5c:84:34:43:32:a7:8e:b8:74:
- f1:52:da:97:73:ef:fd:3a:45:3d:bb:a9:94:28:41:
- f8:f9:1e:ab:c9:d9:00:ca:26:aa:ce:67:9f:f6:e7:
- 89:55:18:fd:1f:d9:7d:9f:fc:d9:5e:a8:b3:5d:23:
- e7:09:96:57:03:e0:61:36:e7:2c:5b:37:01:0d:0f:
- b9:1d:d5:5e:22:1f:c2:ed:fd:36:53:fc:12:60:e0:
- 46:52:b7:51:a4:12:aa:d1:ab:b8:c5:90:25:39:a5:
- 6d:43:3b:a6:a1:64:36:69:5c:56:9b:23:be:b6:f0:
- 7b:50:f8:a9:34:39:f0:2b:8f:db:e1:b0:64:8a:46:
- 14:2e:38:ba:01:90:1d:df:94:99:9e:f2:85:1c:52:
- 0f:8f:da:bd:0c:2f:fb:e1:ca:65:a3:10:6c:58:e8:
- 2d:1a:6d:28:f1:0f:98:5a:9e:f6:80:03:75:43:9b:
- 86:f3:6d:14:38:bf:e7:71:c2:e5:eb:67:d6:7f:19:
- e1:8f:b3:af:fc:d9:79:06:08:c5:69:02:f0:7e:79:
- ce:b8:b6:48:56:24:5a:d6:27:9f:bb:5c:c6:d8:ea:
- 22:2a:76:16:f6:64:a4:c6:29:43:73:28:cf:6a:00:
- 82:64:e0:3a:ac:a1:0b:e6:70:a0:92:d7:cc:a2:39:
- 79:8e:e6:d1:cb:f5:1b:ae:e9:3d:05:f3:71:c1:2a:
- 21:eb:b7:1f:9a:e3:5f:22:13:e9:2d:f1:e8:db:2c:
- 8b:81:a7:0d:d1:47:ed:5e:6b:54:e9:12:78:18:ad:
- b1:1e:7a:0b:e7:ef:7e:f6:fc:6d:ee:08:ae:19:c2:
- 6b:5a:3e:cb:36:1a:17:0a:09:7e:ad:b4:77:e0:30:
- 34:b3:8c:31:26:96:4b:ad:1a:d9:3c:df:cd:29:94:
- a7:93:3d:76:5d:a8:85:7f:22:be:93:ae:1c:af:63:
- 60:62:78:d8:d3:cd:40:8f:cd:14:80:07:bd:d6:f0:
- b1:0b:82:aa:d4:52:69:59:89:3b:e2:5a:c3:32:4a:
- 20:57:22:f9:67:59:25:f8:3a:e1:5b:b7:f9:0d:39:
- 1d:8f:70:ce:fb:fa:33:05:03:cb:75:18:5b:19:d6:
- 1d:e2:5c:9c:6a:6f:11:f3:d6:b0:ba:44:9c:bb:c1:
- 87:8b:b1:b7:a9:9d:0b:29:1d:39:0f:5a:2b:af:01:
- be:2f:73:b3:6c:9c:e0:eb:f7:ec:e7:9a:de:84:b4:
- 8a:10:a2:53:af:96:f4:20:c4:a8:22:86:8c:47:87:
- db:f2:64:e2:d4:80:03:4a:96:27:a2:fa:3a:8d:df:
- a0:1c:4a:46:f9:da:e3:2d:0e:2a:81:e6:e6:45:6d:
- 6c:3b:89
+ 00:da:6e:48:80:4f:ab:34:e3:22:05:d3:c2:09:d4:
+ 57:63:b0:93:ae:c2:89:69:0f:de:9f:14:27:41:e9:
+ d9:cd:97:12:50:a5:d2:5f:0f:57:7c:ef:be:0e:1e:
+ 7d:db:ae:d3:8a:2b:78:6e:87:f5:8d:ce:02:fd:2c:
+ 91:82:f9:72:4e:57:46:7a:50:65:0f:ff:e7:cd:cb:
+ d7:77:7f:53:7e:f0:3e:8e:3d:97:ab:e5:04:18:03:
+ 74:89:65:5a:de:3b:f8:b0:8a:90:96:4d:05:98:c3:
+ 91:e2:04:cb:30:e8:36:be:e6:52:7a:50:c0:0d:af:
+ 72:5b:f5:34:fb:f5:16:62:87:df:32:1e:6d:f6:33:
+ 08:0b:13:83:34:ff:92:77:4f:eb:76:ff:38:bf:62:
+ f9:29:d3:41:74:58:17:b2:37:3c:e8:45:f6:cc:cd:
+ e5:00:de:e1:7e:70:9d:d0:21:66:3b:99:1e:8c:72:
+ a5:68:95:74:0a:27:44:bf:4a:7e:44:35:2a:0c:49:
+ 23:44:86:3f:23:64:b6:3b:96:3a:4f:15:13:25:e0:
+ 2d:90:c8:ff:b2:ee:10:b4:c4:a9:97:5f:68:2e:77:
+ 9e:70:62:65:68:30:28:85:c2:9f:08:f5:c1:fe:7b:
+ 15:12:93:6d:58:d6:e6:3e:24:b5:6a:38:36:46:8f:
+ 35:8a:27:b2:0d:9e:aa:eb:92:ad:d9:08:d5:22:d5:
+ 35:d1:f6:3c:59:80:1c:0f:0f:72:98:3d:03:3c:c5:
+ e8:81:45:12:b3:8f:99:4a:06:f0:14:07:94:5a:43:
+ a3:88:8a:d4:d4:04:c4:bf:ab:ed:72:7d:ec:8b:bf:
+ 50:e2:96:32:6f:ad:1d:ed:42:22:00:2d:1e:ba:9d:
+ c7:c3:e1:31:75:a3:75:fe:40:db:4d:87:16:3e:b4:
+ 0a:dc:64:37:3d:73:92:7a:ed:b2:95:bc:eb:46:b6:
+ 7f:c5:e1:1d:ec:fb:e8:5b:35:35:81:a1:3a:af:9e:
+ a7:3c:26:b9:34:72:e4:3d:81:18:b0:45:fb:6f:8a:
+ 23:6b:d7:c2:af:a2:94:ed:f9:55:61:83:50:ad:5e:
+ d8:7f:45:32:1e:ba:c5:fc:c0:a9:ac:d2:5e:14:67:
+ 2d:45:b3:ec:7c:dc:ea:15:ff:cc:ec:41:a7:99:2e:
+ 60:0b:51:b9:7b:1b:a2:db:18:f4:f6:d3:88:9e:37:
+ 77:59:2b:b5:90:22:a1:86:04:f7:e6:11:53:05:13:
+ 56:17:ed:5a:1e:b8:40:57:18:4f:de:3d:27:c7:24:
+ d2:4f:42:b9:10:49:0a:07:47:5d:1f:cb:cf:eb:86:
+ ca:62:c9:50:74:fa:57:fe:f8:e7:15:41:ca:0f:89:
+ ae:7d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
- Netscape Comment:
+ Netscape Comment:
CA Root
- X509v3 Subject Key Identifier:
- C7:BD:36:FF:58:55:76:8D:DF:07:1F:6F:C8:79:3D:C3:25:DD:D9:80
- X509v3 Authority Key Identifier:
- keyid:C7:BD:36:FF:58:55:76:8D:DF:07:1F:6F:C8:79:3D:C3:25:DD:D9:80
+ X509v3 Subject Key Identifier:
+ 57:A4:F9:F5:76:E1:14:88:0A:AB:3A:64:87:DA:A3:41:16:1C:59:DE
+ X509v3 Authority Key Identifier:
+ keyid:57:A4:F9:F5:76:E1:14:88:0A:AB:3A:64:87:DA:A3:41:16:1C:59:DE
X509v3 Basic Constraints: critical
CA:TRUE, pathlen:1
- X509v3 Key Usage:
+ X509v3 Key Usage:
Certificate Sign, CRL Sign
- Netscape Cert Type:
+ Netscape Cert Type:
SSL CA
Signature Algorithm: sha256WithRSAEncryption
- 13:99:86:4c:dd:ea:44:ec:18:36:c1:c3:4b:98:b1:a3:1f:d7:
- 0e:04:f3:62:25:1f:07:ea:27:c2:26:79:76:2a:63:34:04:73:
- 86:5f:35:f9:f9:a8:aa:ba:45:5b:6f:c5:1c:44:25:f4:0d:64:
- 4d:16:f8:88:8b:db:17:8b:e8:22:24:d8:9a:5b:0c:5f:e5:6d:
- c4:e0:be:89:73:2a:3d:c7:56:2e:a7:c6:c2:4c:fa:29:9d:a7:
- 5d:b4:bb:eb:67:ce:ae:94:83:04:4a:52:e2:31:48:53:db:53:
- 54:11:2a:08:58:d3:9e:f5:ed:5a:9d:50:4a:cf:eb:e7:52:ae:
- bc:be:49:92:bc:dc:5b:ae:dc:6f:55:97:48:1d:fb:a9:35:e2:
- 5c:57:2f:41:8b:68:78:54:b6:58:01:75:ad:31:81:3a:fc:da:
- c2:41:59:51:00:12:e9:5c:94:45:84:f2:f8:fc:a8:c2:84:37:
- d4:12:e6:b0:a5:21:30:06:c8:45:bc:64:db:cd:da:a4:f8:4e:
- f5:5b:26:d3:9b:ed:88:a1:56:fc:99:bb:96:cd:03:e8:52:2f:
- 88:ed:c2:72:3f:0c:10:8a:b1:08:50:c1:bf:04:d6:65:90:62:
- 0a:9b:e8:61:e4:be:1a:ea:da:69:50:2f:01:87:5f:39:19:6e:
- fc:f8:4e:39:98:8d:c5:6b:c3:2e:df:1e:99:8c:31:cb:00:37:
- af:70:2b:12:dc:3b:c0:76:77:45:55:95:09:6e:74:f1:e6:8a:
- 08:af:bb:58:4f:45:4e:ef:77:b3:c3:7b:a4:5b:98:1b:e6:19:
- e3:ff:f7:14:98:95:85:89:f5:e2:ff:46:70:59:e0:a6:51:bc:
- 6d:e9:61:e9:74:26:67:3d:23:40:15:a3:d5:20:17:bb:47:74:
- 52:7e:a1:0f:b2:76:9f:e5:3b:60:c2:24:4e:2c:15:db:0b:cf:
- be:86:c5:f2:42:53:5e:ee:c4:73:d4:08:e4:22:df:65:26:d2:
- 42:90:2b:7d:13:a6:ab:52:a9:b1:61:37:d9:9f:e0:56:a9:7c:
- 42:55:f1:c5:fa:56:9a:fe:b0:08:19:30:77:ad:2c:d9:15:7e:
- db:10:3d:7a:58:e8:8f:b9:e0:1c:f2:27:0a:1f:bf:18:13:c8:
- 56:a3:ef:b3:eb:f9:d0:ad:b3:10:62:fe:91:02:64:0b:7b:9e:
- c7:f5:82:20:b0:d4:74:88:ed:29:62:ba:5d:ac:69:ea:df:e3:
- 82:b5:ff:47:81:66:1a:b4:d9:80:88:1a:6d:48:ff:db:07:2d:
- 68:c6:28:41:5e:da:04:df:37:f5:83:bb:77:f3:16:47:df:53:
- 8b:66:ad:ff:23:40:f0:a5
+ 17:49:1d:33:7b:48:e5:58:9b:b5:d5:85:50:3a:71:c6:81:6b:
+ 0c:62:c2:6e:b8:f8:b9:8f:9c:83:f2:c6:6d:f8:ca:bd:8f:e4:
+ 54:5f:5b:50:ef:05:4b:21:a0:96:4f:f2:4c:1d:1f:aa:19:05:
+ 8d:1c:86:7f:11:53:7c:21:66:66:05:8d:78:b3:da:53:da:9e:
+ cd:a3:af:7e:f9:59:93:a0:31:f4:25:37:c5:33:18:ed:eb:a7:
+ bb:35:9c:d5:1b:0e:83:11:9b:72:89:3f:c4:3d:7b:b7:d0:d7:
+ 0e:a2:fd:81:56:e6:11:3a:2d:e9:4e:bc:59:7a:b2:a5:7d:db:
+ 26:da:01:a2:95:df:84:02:68:36:04:c1:48:0b:54:92:a2:a8:
+ 6f:43:18:72:9c:eb:3d:b3:d4:73:34:c5:29:4a:4e:9b:4a:6a:
+ 43:06:16:4d:91:b6:85:a2:34:60:1f:4c:64:34:b6:ce:b4:b6:
+ 56:2b:76:19:72:f3:0b:d5:08:63:d1:ca:92:75:19:8a:13:8c:
+ 56:e1:20:69:28:58:79:ca:fc:59:e5:64:87:1f:58:7e:98:ba:
+ 36:b0:64:e8:fa:28:16:6f:0a:7c:b6:11:49:6f:4f:93:72:bb:
+ be:25:75:fa:5a:c9:c4:34:6d:32:8a:61:88:8a:f6:df:17:98:
+ 61:c5:bd:58:8f:30:eb:d6:03:75:92:a2:fe:2b:d2:76:87:55:
+ ca:9e:2a:de:e6:d5:34:67:68:1a:b1:47:90:28:73:ab:32:41:
+ 98:2a:13:15:e0:7a:9c:46:a4:af:e5:83:23:08:7a:9c:da:50:
+ 4e:a5:bf:4e:68:6d:84:2e:8e:e4:ab:94:0d:f1:1a:7e:dc:df:
+ 0f:ab:f8:f2:db:9b:2b:a1:4b:62:e7:38:23:25:d9:31:b8:4d:
+ 3d:4e:41:56:9d:f0:55:72:8c:fd:f6:4b:fd:93:b1:ec:8b:ae:
+ 50:1b:00:5c:35:ce:b0:da:55:82:01:86:dd:c1:06:51:ae:0b:
+ ef:fa:ed:e5:09:6a:32:ac:cc:7f:d5:b8:08:b6:9a:ba:4f:5b:
+ 52:3a:15:ee:ec:20:7a:dc:3e:05:69:58:14:af:dd:9c:df:6d:
+ 95:a5:39:05:24:a2:5e:06:71:23:2b:b6:61:d4:f0:46:1f:4c:
+ 52:df:5a:22:6a:ff:17:72:4b:f5:a6:89:40:bd:1c:e8:75:69:
+ e3:34:ab:2c:c3:3b:07:49:2c:f8:c8:47:72:dd:7e:2c:b9:52:
+ db:76:19:46:14:aa:64:ba:30:67:a9:4f:37:f8:7f:38:c8:4c:
+ 1f:21:0d:28:08:85:0d:8a:c2:ae:b8:64:35:f7:7f:1b:9d:c4:
+ b3:4c:6b:ef:29:29:38:e0
-----BEGIN CERTIFICATE-----
-MIIF4DCCA8igAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwajELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEXMBUGA1UEAwwOY2Ffcm9vdF9zZXJ2ZXIwHhcN
-MTkxMjEyMTA0MjQxWhcNMjkxMjA5MTA0MjQxWjBqMQswCQYDVQQGEwJmcjEMMAoG
-A1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0xFDASBgNV
-BAsMC2F1dGhvcml0aWVzMRcwFQYDVQQDDA5jYV9yb290X3NlcnZlcjCCAiIwDQYJ
-KoZIhvcNAQEBBQADggIPADCCAgoCggIBAMCM2Y76XIQ0QzKnjrh08VLal3Pv/TpF
-PbuplChB+Pkeq8nZAMomqs5nn/bniVUY/R/ZfZ/82V6os10j5wmWVwPgYTbnLFs3
-AQ0PuR3VXiIfwu39NlP8EmDgRlK3UaQSqtGruMWQJTmlbUM7pqFkNmlcVpsjvrbw
-e1D4qTQ58CuP2+GwZIpGFC44ugGQHd+UmZ7yhRxSD4/avQwv++HKZaMQbFjoLRpt
-KPEPmFqe9oADdUObhvNtFDi/53HC5etn1n8Z4Y+zr/zZeQYIxWkC8H55zri2SFYk
-WtYnn7tcxtjqIip2FvZkpMYpQ3Moz2oAgmTgOqyhC+ZwoJLXzKI5eY7m0cv1G67p
-PQXzccEqIeu3H5rjXyIT6S3x6Nssi4GnDdFH7V5rVOkSeBitsR56C+fvfvb8be4I
-rhnCa1o+yzYaFwoJfq20d+AwNLOMMSaWS60a2TzfzSmUp5M9dl2ohX8ivpOuHK9j
-YGJ42NPNQI/NFIAHvdbwsQuCqtRSaVmJO+JawzJKIFci+WdZJfg64Vu3+Q05HY9w
-zvv6MwUDy3UYWxnWHeJcnGpvEfPWsLpEnLvBh4uxt6mdCykdOQ9aK68Bvi9zs2yc
-4Ov37Oea3oS0ihCiU6+W9CDEqCKGjEeH2/Jk4tSAA0qWJ6L6Oo3foBxKRvna4y0O
-KoHm5kVtbDuJAgMBAAGjgY8wgYwwFgYJYIZIAYb4QgENBAkWB0NBIFJvb3QwHQYD
-VR0OBBYEFMe9Nv9YVXaN3wcfb8h5PcMl3dmAMB8GA1UdIwQYMBaAFMe9Nv9YVXaN
-3wcfb8h5PcMl3dmAMBIGA1UdEwEB/wQIMAYBAf8CAQEwCwYDVR0PBAQDAgEGMBEG
-CWCGSAGG+EIBAQQEAwICBDANBgkqhkiG9w0BAQsFAAOCAgEAE5mGTN3qROwYNsHD
-S5ixox/XDgTzYiUfB+onwiZ5dipjNARzhl81+fmoqrpFW2/FHEQl9A1kTRb4iIvb
-F4voIiTYmlsMX+VtxOC+iXMqPcdWLqfGwkz6KZ2nXbS762fOrpSDBEpS4jFIU9tT
-VBEqCFjTnvXtWp1QSs/r51KuvL5JkrzcW67cb1WXSB37qTXiXFcvQYtoeFS2WAF1
-rTGBOvzawkFZUQAS6VyURYTy+PyowoQ31BLmsKUhMAbIRbxk283apPhO9Vsm05vt
-iKFW/Jm7ls0D6FIviO3Ccj8MEIqxCFDBvwTWZZBiCpvoYeS+GuraaVAvAYdfORlu
-/PhOOZiNxWvDLt8emYwxywA3r3ArEtw7wHZ3RVWVCW508eaKCK+7WE9FTu93s8N7
-pFuYG+YZ4//3FJiVhYn14v9GcFngplG8belh6XQmZz0jQBWj1SAXu0d0Un6hD7J2
-n+U7YMIkTiwV2wvPvobF8kJTXu7Ec9QI5CLfZSbSQpArfROmq1KpsWE32Z/gVql8
-QlXxxfpWmv6wCBkwd60s2RV+2xA9eljoj7ngHPInCh+/GBPIVqPvs+v50K2zEGL+
-kQJkC3uex/WCILDUdIjtKWK6Xaxp6t/jgrX/R4FmGrTZgIgabUj/2wctaMYoQV7a
-BN839YO7d/MWR99Ti2at/yNA8KU=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-----END CERTIFICATE-----
diff --git a/deployment/pki/ca/server/ca-root.key b/deployment/pki/ca/server/ca-root.key
index dd76f1b6c4a7ee1d827ebed8e8b2eaebeee58068..41ba8db457f5a269d07d29f450292e89e3598ef2 100644
--- a/deployment/pki/ca/server/ca-root.key
+++ b/deployment/pki/ca/server/ca-root.key
@@ -1,54 +1,54 @@
-----BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIXJ//n8u3ROsCAggA
-MBQGCCqGSIb3DQMHBAg+UDsSk7ZtaQSCCUix5c3LatFe476EVW+ZYVahr57T0USU
-8f/GNwEMmOfi3ikgsDYoyT8KoABAvvD6GwQJRAYG7HGmbJUjcLBgVJ0emV9NXaYW
-FT9Z2GmgsFB8xCvseODFfCrHZNLUCCQ1KJL3kxHRWLODF/Ng9IbrgPZvUoJWHneG
-JkJfzsCsU6wGOyj9yu2QuuVAYA1EY1Lxbw1UUGns2gLnbOxeIKVBLg5CJwbnveBc
-yc5XX5qUXmdxwqbqaIA9FDj6gJRRopKKH1ZdV0KXsukfrKrrnbzkO62gDIr0+JO7
-IzmXasKmBJvPLy4GHZkv2N6dGEdAyBrNkhdfZ98Sx3G5VDGAripOXVp/x8LNynW+
-PMjDgnjkH70yYVgG2EzyLZHP6rT67o14Zkrs1iki3bjYOL7RlO4v1crnzfW4y89V
-0aQgmz+ffn3B8LpBfBJ3abcdfDvL4WdMDjRU77QbtuUu/g6lJsHGEPGwOSnVvOmi
-lYlGWp7aB06cHoEg2giFx3vpt+TXUU0vSp+sdWNEuXxIT7wvcfa4m1mvPvZ/7vPH
-NJXbQY+9CfUTlX7ZJ4DJvxT2vt+pvIqoJp2qp52Sgkf+KzD0DiCv7Joo4yKcGFAo
-IyqX3jxqWvpjWELZUkK2Lkx5p+bYGrJEsvcweg9etEYZ3bbzx8sZJmjO57g4Z6Cj
-6Lo+78JJwl1YRYJNaOZNgerchnSGUB9JHGzKyKS1rLNHbJlSLsH6yPKn2TrSMkff
-diTeIfL6XQPkYSUaTd90+XlmzI2/VXLhnCcFNaIdewFJocqSwcJ3LejNaAq4tF3U
-opRUwsEtVseApm/4sn+ozNYA1hNcNbfNMHB3WD8SgXqRPJbM+6woqE6fetBu+Icb
-2BCBK5GdQHtv820CiZyJeelanHbvcMJ1sygW6FE1ZSSv21LTXWJmFLziVN5u7760
-S3hkEXQoCfGm69uQgImrX0eBiI98euQWxzbTae6M3T+nAnNwLcI1uuZQMqHxNcBY
-+TenA3nSBlXMlD1nn/vyJwxtPO0M696Y4PkS6RqzZjicL8XcFw+Ekx5gAolwy4Wu
-oFaeMoE0GBb3ZJR1iHRiGnaGDdkVeRQSpojhsfNB78wQlxIEtKdpXCuVNmLTf3Sd
-SYOWOimjdq2vsbOKj9IN7jrcarJPSK61gKMaVF7eK+kcGdeUsQNfH4lksfDrh3HE
-cT4rNq20W32QjYH6Rop1FcMD6bu4OkyNDCP0VvN1dgfMmmk+ViEEos4tsXchjygP
-QKoMJjMHpQ0vmww2beGLZewjGozOr4X76A+rfAjkIKYiSEFdlLDRXqc/KEiLRgYW
-oCF97QifjcQx1VPQqnMpCMYeZjCNONi1j+b/wOXD37uDvZb+ueESEi8zs7O3OHBn
-eADkjg3e2X1LZcAcTOjRFq5JW6xgNEkqYpZfmDREuRbiuqrSpaNqQr9WgIZcjWxP
-doXTxFTK5s94874MnEOeDLRS+k+ub+YuhPg1W6xb9l/TSMoJer/sOyJ0VafNqaNK
-5FppGDJSGiLbiwhvHm3I8TiUZk+ajkZMXYwhOaoVL8w2RlJmttfuNlpyFisTqt1y
-TAD0ahdR/7SDBewTYxTOe9y255RwtbLaKgRPI0owsUtaNHLVOxLW4IgfTyuoDSeI
-Y+oPjmgPHdix2HnZ8InP5WGL5RIsCVzD9BY5+kAUVczT4y8RLQqdf1jQC8Q29b1W
-JtepEVhoDr6f7cp2isB8mLoswhfsYtrOKlBLYRWLjHXI1TowYZpIgnhUh8ZuCYE+
-KYjGah8M9Xr02AKKNwI12yk5+EcO78NdchjA+IWb6Gsju4LXKCLlchji8TlFzfne
-PEJ+RbXtQPBguqEqS/g5SIP9rDdLjrRb1+IRItLOKEoBWke5rBqdj5MQr2E0m5ob
-jvWhQ1vAwyNQCuN1jNH79pk+9pN3QTosfgs15SHg5LtaPfwH77WIWp9bVOWI89v9
-QXwMFggtQQUvpUILeslCiiWc178qEY1JsNLjanD97Va+JabpMka8u+wlBizcYXsL
-UAwWz7oyQ2860RU7k/SZA9rzzwHFxa1fGVClOoL7k21T1poQH7+DSLIujmDW5Zhp
-mHvMdo/LmRAPjSOApxgcInIs2UfZHB7I7pCdlEah6GBHQpkZwYgr8DnBm4WJrS+C
-PHyHkUjobAemtXAMlniDSmkeIA7FqrkZtHUh79FqKA9NukGaK9sKaHFE/t0ZXI8x
-V4m9di+TW32t76OUfSKcYc53LHjepTwxDwr7Kp1ofJw4XJhqBYAZJXCSjbap8g84
-vjDCJDqyVyTkxqWJY33dbm0PvCRt/KzPxfVjVam6qb3LMvvH0YyejirliECrcml1
-sgox29+fWadjpmEJJrUux3xY5+GfmbjaD2Hzie7oejYYsf/c7WoKtBawwRoygaUN
-0eIdtfUxMN4of6ckQumn3e579IlyXih2o4Y+tGbwIv0qN9To+TDI6C0S2cvIYrgH
-6TC5KPjbQ6j0+SYJYVgI1VntLLPeexVWlTkvGm7fPzp/7Oesyfk3np+e3yeCxrui
-zqJ0t+gPgGh4nHmXue3UGbPhDuP34VrRSKmst7LWVpziTf5h/nZEEGJ1hcEPYawB
-irDlPzkTqkUCZ2vLv3mEYoLAmNdv8L0wYA0jaBlUou/IELEYhzQCYWxwZ/GStKj4
-0LC+v00XSo3uJq8YlRWBK9nbNRoy3ANHmeowFHtFKyY9RqqsKKf1Y6VELOwacQeC
-5zwcEVR180s+6R9Oyo66YITUkr4cxuMaaoA0M37etL7W1x+BAFsAxTkAowyABerZ
-5O6dFlSNoAJdksNVKZUS57Qq60vjw44aIWM553CCJ5WLZLhi1h6OvuKPeDilHmOn
-B3AhlD3O9aVO3RtpFXJxW2H65braiEFTMFD7jSgivqALO6on3YztW1AIieTt5W01
-6ustzmOpg8n7o7cdozqIkLc0o+cOsfoyYFJFa28n64YCoyIFWuGJxSARYPt0j7ZY
-wuJuBztfG7cm+CYVqKfMDoq9b/5EFoAkWJbfiavPX0VAePEsb85wQIUHbMmzO/o5
-AARAAlBVKYeWVeS70gVPLM7o7he+7Spypb4mr2+9IiDPk55v6FGJuPUvR7WSEX0g
-MWUKBIDAQ0pwQL2gJEHx7gs7WWDvKebFFkREiC+7M64/99sVE3mShElNCqlpNS9P
-1K8=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-----END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/timestamping/ca-intermediate.crt b/deployment/pki/ca/timestamping/ca-intermediate.crt
deleted file mode 100644
index 8f122c0abf0f2c1f0ea89ac6eb57eeafa5b7b913..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/timestamping/ca-intermediate.crt
+++ /dev/null
@@ -1,136 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 219 (0xdb)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_timestamping
- Validity
- Not Before: Nov 22 08:53:40 2019 GMT
- Not After : Nov 19 08:53:40 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_intermediate_timestamping
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:a0:8c:9a:27:40:97:96:53:c5:31:f4:98:be:a2:
- 47:5c:52:6a:67:e1:43:4e:b9:fd:e5:aa:b1:58:18:
- 3d:94:f5:bd:d6:ea:a8:37:d9:82:a6:e3:94:20:b3:
- 63:89:7c:76:da:8e:50:e9:c7:c4:04:e3:62:2c:8f:
- cb:ce:32:4a:3c:6e:5f:56:1e:87:58:c9:af:62:56:
- 90:6d:b9:b1:54:41:df:30:d1:90:f4:91:e3:16:0f:
- 4d:c2:ea:98:16:ff:93:2c:01:13:e9:c6:12:68:c0:
- ff:15:be:21:be:c2:bc:be:db:4b:06:7d:95:a2:80:
- 87:b7:c5:cc:46:15:e7:19:fd:b3:3d:08:0e:34:66:
- 71:8c:3a:b7:b0:40:25:eb:96:02:d8:72:29:0d:fc:
- f9:e7:35:58:1a:c5:87:0f:82:77:73:04:bd:4c:bc:
- cb:19:18:2c:28:33:eb:53:3b:c7:98:64:da:3a:74:
- af:42:a4:6d:64:d9:54:4a:1f:b8:7d:a2:d4:e4:01:
- 20:34:32:ca:20:c2:0e:0d:5c:d4:ec:94:fb:7d:c7:
- 7b:89:11:01:d4:32:bb:f8:22:d2:e3:3d:8a:b6:35:
- 7a:cc:3e:a5:ad:2e:35:23:12:33:53:37:d4:1f:7f:
- b4:b3:ef:e5:21:b4:e5:0b:60:b1:10:8b:16:db:85:
- 14:c9:12:59:6e:ab:95:d2:85:61:a2:86:a9:2f:1d:
- 28:09:06:33:83:13:58:aa:73:0a:41:8a:b6:26:c6:
- 25:3b:02:38:06:54:7d:bb:d7:d0:16:a5:96:d8:13:
- c8:75:8e:10:d0:6c:33:47:49:28:ae:8c:77:c5:9b:
- 09:56:6e:1e:5a:3a:f2:f9:36:01:fe:fa:7a:b6:7e:
- a4:c8:6f:8c:87:f2:d8:55:c0:d3:ad:eb:8c:d8:bb:
- fd:3d:f6:3b:62:af:bf:b1:e8:60:0b:7f:44:4e:a0:
- f1:8b:40:22:80:37:9a:9a:b3:de:3e:fe:04:e5:85:
- c9:58:8b:a1:18:6f:ea:cd:d8:99:e5:1a:4e:28:74:
- a7:69:ca:de:2f:5c:38:a7:b4:a4:8f:9d:2d:6e:9d:
- 9b:43:90:85:91:55:7a:27:21:78:84:1b:b0:b6:1a:
- 2a:97:71:61:6b:8f:bb:c2:9f:aa:3f:08:1b:7a:98:
- e0:17:77:83:21:36:3b:cb:96:f4:02:e0:a1:f7:98:
- c1:65:ba:4a:d8:12:4d:13:75:1d:81:57:d8:62:f9:
- cd:06:d3:96:73:61:a4:62:11:d3:1a:b3:9f:ed:a0:
- 0e:33:31:56:37:d4:28:c5:2d:8f:c8:7d:ad:79:80:
- e0:17:a7:52:55:34:f4:e9:ca:0f:3f:a2:ce:f9:23:
- 49:57:61
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Intermediate
- X509v3 Subject Key Identifier:
- 71:79:25:BD:14:A9:7A:A5:49:C3:F6:51:B7:B5:36:A4:D6:04:CF:2D
- X509v3 Authority Key Identifier:
- keyid:B3:B4:54:D9:35:6A:F9:9E:C8:65:00:11:20:7D:9A:66:30:96:14:D2
- DirName:/C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_timestamping
- serial:DA
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:0
- X509v3 Issuer Alternative Name:
- <EMPTY>
-
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 9b:0e:95:5f:79:7e:a0:ef:bd:bb:79:05:14:79:55:e9:0d:e0:
- ba:6a:99:69:49:5e:ee:fe:b9:b5:9d:7f:ec:cc:fd:b9:2e:72:
- 27:20:9a:03:57:e8:5b:af:fc:f8:36:2b:ad:21:f4:5b:31:46:
- 6d:3a:92:c4:42:b5:09:e4:11:21:97:09:cd:72:71:ba:a1:25:
- fd:78:7a:73:b2:4a:a4:4a:53:a3:fa:ca:dc:f2:3c:03:c6:51:
- d8:34:f3:d8:e5:ef:c3:4c:28:26:8e:d9:95:75:fc:5a:3b:4f:
- 18:9d:83:ef:b8:9f:09:3e:cc:26:e5:d6:b5:a7:6c:1e:c5:7a:
- 88:63:2e:8b:e3:df:ba:0c:2a:41:0c:4b:53:30:a1:2c:48:c4:
- f9:43:c1:fd:a9:8a:9b:ed:8a:d6:0d:3c:cf:7f:25:23:c7:d1:
- 6c:5e:3f:68:fc:b6:6b:6a:35:4d:7e:ea:42:6f:a6:a6:94:83:
- 74:f8:29:32:0a:28:d3:03:31:3e:12:ed:35:07:e1:4f:4b:e5:
- 49:52:e2:7e:22:31:b9:2d:c1:8b:14:47:f7:6d:90:82:28:e1:
- 41:b5:f7:d8:26:60:84:12:56:ca:29:ec:f9:b5:34:b5:f7:cc:
- 62:7f:6a:ef:a7:ff:05:01:64:32:8c:73:ea:e5:ad:8e:3b:17:
- 04:e8:80:10:54:4d:f8:9f:f4:c5:d2:65:cd:60:e8:a9:3a:f7:
- 72:c3:a6:49:1e:55:ff:f4:50:b7:d6:a4:d8:14:fb:17:fa:b1:
- 29:ea:57:38:41:0a:05:4f:1e:68:70:bd:96:81:84:4e:1b:cd:
- 3e:3a:43:28:6b:3c:6b:a7:1a:56:e6:cd:7d:a2:be:a8:c9:ff:
- 54:b4:b6:10:af:77:4b:2b:3b:ee:57:8d:be:aa:33:60:05:ae:
- 12:a2:56:58:47:42:61:72:71:33:cb:2a:31:c3:a3:aa:34:13:
- 96:6f:8e:e5:ce:19:2f:20:9e:c5:bc:b1:c6:7b:df:49:fa:66:
- e8:30:14:0c:be:04:0e:60:57:c0:2f:66:eb:39:14:08:85:bd:
- 9d:bd:70:7f:e9:28:2a:31:fe:61:d0:90:19:ee:27:f3:e1:e0:
- f1:16:95:1a:c5:ae:47:b0:71:0c:53:8f:87:a4:a1:6f:98:a0:
- 05:64:36:ca:b9:35:10:69:aa:3d:a9:e6:1f:d2:79:5d:3a:d4:
- fe:59:92:b3:c7:26:94:26:58:d5:9e:91:87:31:ef:9a:56:f4:
- 88:5a:b6:96:ff:82:2a:c4:84:06:b8:d2:cd:87:1c:9d:53:be:
- 4d:ea:2c:67:6e:d3:52:ff:7d:d9:35:c3:3d:8a:9a:61:12:5d:
- e7:2a:0f:3b:a7:08:a7:ab
------BEGIN CERTIFICATE-----
-MIIGhjCCBG6gAwIBAgICANswDQYJKoZIhvcNAQELBQAwcDELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEdMBsGA1UEAwwUY2Ffcm9vdF90aW1lc3RhbXBp
-bmcwHhcNMTkxMTIyMDg1MzQwWhcNMjkxMTE5MDg1MzQwWjB4MQswCQYDVQQGEwJm
-cjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0x
-FDASBgNVBAsMC2F1dGhvcml0aWVzMSUwIwYDVQQDDBxjYV9pbnRlcm1lZGlhdGVf
-dGltZXN0YW1waW5nMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoIya
-J0CXllPFMfSYvqJHXFJqZ+FDTrn95aqxWBg9lPW91uqoN9mCpuOUILNjiXx22o5Q
-6cfEBONiLI/LzjJKPG5fVh6HWMmvYlaQbbmxVEHfMNGQ9JHjFg9NwuqYFv+TLAET
-6cYSaMD/Fb4hvsK8vttLBn2VooCHt8XMRhXnGf2zPQgONGZxjDq3sEAl65YC2HIp
-Dfz55zVYGsWHD4J3cwS9TLzLGRgsKDPrUzvHmGTaOnSvQqRtZNlUSh+4faLU5AEg
-NDLKIMIODVzU7JT7fcd7iREB1DK7+CLS4z2KtjV6zD6lrS41IxIzUzfUH3+0s+/l
-IbTlC2CxEIsW24UUyRJZbquV0oVhooapLx0oCQYzgxNYqnMKQYq2JsYlOwI4BlR9
-u9fQFqWW2BPIdY4Q0GwzR0korox3xZsJVm4eWjry+TYB/vp6tn6kyG+Mh/LYVcDT
-reuM2Lv9PfY7Yq+/sehgC39ETqDxi0AigDeamrPePv4E5YXJWIuhGG/qzdiZ5RpO
-KHSnacreL1w4p7Skj50tbp2bQ5CFkVV6JyF4hBuwthoql3Fha4+7wp+qPwgbepjg
-F3eDITY7y5b0AuCh95jBZbpK2BJNE3UdgVfYYvnNBtOWc2GkYhHTGrOf7aAOMzFW
-N9QoxS2PyH2teYDgF6dSVTT06coPP6LO+SNJV2ECAwEAAaOCASAwggEcMB4GCWCG
-SAGG+EIBDQQRFg9DQSBJbnRlcm1lZGlhdGUwHQYDVR0OBBYEFHF5Jb0UqXqlScP2
-Ube1NqTWBM8tMIGbBgNVHSMEgZMwgZCAFLO0VNk1avmeyGUAESB9mmYwlhTSoXSk
-cjBwMQswCQYDVQQGEwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEO
-MAwGA1UECgwFdml0YW0xFDASBgNVBAsMC2F1dGhvcml0aWVzMR0wGwYDVQQDDBRj
-YV9yb290X3RpbWVzdGFtcGluZ4ICANowEgYDVR0TAQH/BAgwBgEB/wIBADAJBgNV
-HRIEAjAAMAsGA1UdDwQEAwIBBjARBglghkgBhvhCAQEEBAMCAgQwDQYJKoZIhvcN
-AQELBQADggIBAJsOlV95fqDvvbt5BRR5VekN4LpqmWlJXu7+ubWdf+zM/bkucicg
-mgNX6Fuv/Pg2K60h9FsxRm06ksRCtQnkESGXCc1ycbqhJf14enOySqRKU6P6ytzy
-PAPGUdg089jl78NMKCaO2ZV1/Fo7Txidg++4nwk+zCbl1rWnbB7FeohjLovj37oM
-KkEMS1MwoSxIxPlDwf2pipvtitYNPM9/JSPH0WxeP2j8tmtqNU1+6kJvpqaUg3T4
-KTIKKNMDMT4S7TUH4U9L5UlS4n4iMbktwYsUR/dtkIIo4UG199gmYIQSVsop7Pm1
-NLX3zGJ/au+n/wUBZDKMc+rlrY47FwTogBBUTfif9MXSZc1g6Kk693LDpkkeVf/0
-ULfWpNgU+xf6sSnqVzhBCgVPHmhwvZaBhE4bzT46QyhrPGunGlbmzX2ivqjJ/1S0
-thCvd0srO+5Xjb6qM2AFrhKiVlhHQmFycTPLKjHDo6o0E5ZvjuXOGS8gnsW8scZ7
-30n6ZugwFAy+BA5gV8AvZus5FAiFvZ29cH/pKCox/mHQkBnuJ/Ph4PEWlRrFrkew
-cQxTj4ekoW+YoAVkNsq5NRBpqj2p5h/SeV061P5ZkrPHJpQmWNWekYcx75pW9Iha
-tpb/girEhAa40s2HHJ1Tvk3qLGdu01L/fdk1wz2KmmESXecqDzunCKer
------END CERTIFICATE-----
diff --git a/deployment/pki/ca/timestamping/ca-intermediate.key b/deployment/pki/ca/timestamping/ca-intermediate.key
deleted file mode 100644
index dcd0992c7ad1c2b058f594be955ffe05a9b7eda2..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/timestamping/ca-intermediate.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQID+hGaj5Idb0CAggA
-MBQGCCqGSIb3DQMHBAgQb1eEKPkx2ASCCUg16WY4Vo/nRJAuuuhaV34eA/lHokyC
-IgdKq03bjpclWdAtn3myiaSGllBGLvZHaAKR0lm+wWKZWWL89HAJzW5+C9WZJ7xL
-0Qd51a1nHNXQWPt2KTfsf9OxOXETjmPewMs+4StLB2lKuRgtnM6L9awWUspJnyXX
-lFnKprIuZ5RDFsQTfXty4/MXsEJmohvPMJyZ/TfpeNMDTzvbd6QNGbj13NraPw9i
-16GQ75sS4UPU4VkrB4HdrcALiADl+jUNIV9RMQ5YP/Fh71dJUZYUOAJvT4bwzFJ0
-PrLhVBsGX1q8yHj9DKaPnh61af1YNmqFmjaM0rHNGZsFuHR3nPsJDsUF77ETVinn
-qjn7CLZFnfyJtlBWVWnwTAqYoSraA10Ev2hysZnBcEFK82OBsMZxVuyOtwfLreQn
-E3pbH/Trqr9LCtBbrQTQ1f89Is9DMLD2aPLyihd/oBOLeK6kG8SCT14me4s65xfK
-cEQvDnFs1W8je1HWpyUXFfVMEv6UBsMHt+JYSv7WkVZfcpDK2HGID/BYcRHryaCy
-ND5MAhqN5O70amjrwV6JIIMOi0DDT1U3/s8rAa5q/ipkK9rjTszKYT2aZm550tSY
-rzkhCXfi1AkI3LLptbBVU1GOcZblyXBtdhrjnHz9OZY2/iuJUguAft3xgBdmLb7g
-7Spy+3+lY8A0Y6hrtfXyf3z/iGKFS8sh6oE4B6sNgYd2TwCQBuZ8sVeSxSh8aju5
-OVOBSl3He5ynp7GrY4moiom5msFXcHsg5UsZZFl1nEKBJ5UzlEz5MQ3L00tqOMPC
-KRbJdVkN+cpm9gjt8mbMsAtgFdy4o8Cy/BWG3fg6yfKSvf63m15i7wRb11erfuev
-bW3N8cwa2i1MP/ceSFKNIzw38OrrY3L4treOePkhq8v21VaoUXl/hf20D58UPYLz
-bN/PiP0HI1sGsnjO7BkBOUhGWpMDHoYigWRxhPy9rnfX9Iq3Pa9fxfRVpgE1XCRH
-JR5Pp8wuzoWhG66/fuddEkMa8mPEcatCNUSqOdYbe9LVt2pToPP4EI+hq6MEOV6F
-ugVuUcUQb+I0viagP/LTw4e2XAwplzFc3L0erc7nMk98SJkWCSN9mX499fHgMB+W
-YBb9izWM8K6fQdN2UaF+NQ6pN3ZRdBLPL6+Jivdbkg8gcRG1VX0lIpulDStZNt2v
-GKYZONIGXdcoODGypVsELGFQuH6ZEa6yIw5DHAUE27nqlHOwzdouVYD7v7RJ3PWi
-gfdQ3+ZCSRsJOpLrklxSzmdEMaUgevEljJxm6gKr4h9ADtgJeqM6+QjsX3MhdDLq
-RRKXzpO5C2amJORXz9/T1I/APIs1ouIpSoQdBtn8s3BLYgPDADwroeD0AmYRiN2e
-hPibv62ldsnIOMnu4ylR1mSh9CCeLtC9jAJUyXASy2ZL1Yjci6epB0mhLmQ0KT98
-5ixc9/l7Q7M/5aEkjK1QsD98L8doSxKIwDZ1TIAi4SdkVUES/Tj1Lgdx7JVEsuMO
-qZnIM62Lvi/ZN3kBhDRJNjWdWr2OyLGghQcL4sDEZCLU0cuwmdl/mM9CbjOaqJ1m
-PS6F0SYLDLgpxwCaGlfKsGbjVjame9f3wftvCmTSbpp4t5VIUAYIiO9I0X72q3gU
-DFnst/C5I58SrWThB0RqQqZ9GTEWoN7EPrhPlJz/0Ti1Z2wuVczM258NJo9enIxk
-viPSPQczFtrc1IhJ4GeT2usf4AvEM8bzxJoTt4dWBnCgyqJnS3KMa5QolPjAaQDY
-3LXP3XJzUhNlGV622Ugx355ceQDjj/OIeSIvFgWAn4bsQfnpAi27McKovzoEsSL3
-VF1A4+lBEwRDMyIGVv+l4O1OQZ/CS23SPnlPcn1w1g6rBY2KAHmhJeBaiWLKjHMW
-zOlDCxbQHOs2gUqxIEYW440wHzSiOcKFt/iG1fkTunxvF2be4LZaRS/oepiTMyHj
-MM9uVGOPdEwRTYzyGLpM0yp/K0qi7Ep6AX/HSfZwi6rlJXD9fyX1eIeThgb7SWup
-fkue9LgDRaK6VuAxgHStxfR9mzPOSc254Vrt0qfIVXKxm6JfcR3VNr7FV+o5qbtW
-csq2XbXweoj017hbyohIDzgHFoIPyvtXHbNRIBycA5ShPqgrnyZ+3NZb66MAn0Br
-nqwrQSoPL4e1RwOXWYC0QZ9/uzeAS5g8dvFPvMHF6AYPA75/uWU5RNyINnDrFtUI
-aG7mFiUmUtmfuOBxNbyOaESSej4IJ/uP1wIJbDxscOtbtbCMUZS34zLYZnhcCXtg
-NRkd792ukcxBcpZed23ZenSQ5aQWCBDkmMWWj7QswP93MpA4VwrgnGmBleAnMV7E
-QDfKdabEbYr7qb3KlSLJONEM7lY5SQJmTPuSef6pQARP+3uvLGfun+s9VlkZ0l7Z
-3NMG9owCio8XbUuYELRv97quA5P+AwHf92JHIvrPx0VlDQL49iExjmFAOWTyLywb
-LZ7QVu9ryE0aDcb8iJ8CDOHCmSc8PSgHBNsK1Xuv1ftsEXrybXyU4EewsBEl7rPS
-X+5ODX0K6E1a77ZJCjLq1NeTD0IUEuGAOYhtrQc/Q6myrw9CkuHUL93t5nv33Ult
-iPdjGnC2upmuv9ur4R4F+Xqz7pFGwCvje0bBUWh066WqVXI741jsGD/5VRJ6YBek
-DEOusbk8yDz4MuYOnWCyl//be8Qw+FgmbbUjp4DzwfNKT5wjt3DR2viLteuX30xR
-lcL/s8FnI1fJ6/13cUbWqy3qGF3m5S3QnpftSrieM9D5yKGl91cAEx6WMQN4DhbP
-aC/4oV4RBxfIWgjSY1MuH4HZIrLo/yJBWlYYDy31eQ3EvWspKre0Sts5KUBHcKfM
-IIr6u89kqaCoBtQzxJydi7P5jTas3ev/FLiF8FD/N6Vw3DORZTJNL+XKmgyVgXAX
-D0LQSy6NBifzLao8yK6tQIgE1p7teNVsBgIcqkbVXZz80sOCU9bBt9Phi1cgUBkE
-hQd23DBfRyYXB535+fPu5N+TnfarznILPMDRG/EWzPUZ1wSEvzSWzDNTvUGAut/9
-ej7YJApjruo5Y1svDxfPvX8bBpBjmBtUvwmdHokZLnl9zeOu7Tbi5o9bd04pk/2Q
-RMonGaFcLfD85Qa2A+GqZ3o0PPssAPyE4QzkKp9RkBKRbHawDvbDYbkguzZHPE3v
-q1s=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/ca/timestamping/ca-root.crt b/deployment/pki/ca/timestamping/ca-root.crt
deleted file mode 100644
index 896545f1f5e42898bf14a4581e0ea65482a75694..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/timestamping/ca-root.crt
+++ /dev/null
@@ -1,128 +0,0 @@
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number: 218 (0xda)
- Signature Algorithm: sha256WithRSAEncryption
- Issuer: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_timestamping
- Validity
- Not Before: Nov 22 08:53:39 2019 GMT
- Not After : Nov 19 08:53:39 2029 GMT
- Subject: C=fr, ST=idf, L=paris, O=vitam, OU=authorities, CN=ca_root_timestamping
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- Public-Key: (4096 bit)
- Modulus:
- 00:ba:75:32:29:cb:32:26:58:92:65:29:35:d3:a9:
- bc:72:7a:1d:3d:5d:f5:5d:bd:b5:5f:a8:7c:05:c7:
- 58:80:1b:75:a9:33:b4:50:a8:18:52:63:c7:3e:0b:
- 29:6a:d3:65:09:fa:e1:d6:9a:63:83:c4:6d:0e:0d:
- 81:ca:95:c1:c3:c2:b4:d6:39:dd:8b:82:e6:64:10:
- 51:eb:41:4f:68:e4:b1:ec:cb:f2:80:02:51:ef:c1:
- 63:ac:cb:10:59:12:c5:44:4c:6c:b2:c0:fd:33:5e:
- 96:0e:73:22:4b:7c:b7:0b:a2:48:c1:ab:fc:6b:fa:
- c2:16:58:a8:7b:ba:8b:7f:42:2a:79:21:c8:d5:b3:
- f3:bc:99:76:ca:0d:cc:ab:ed:7a:b3:a0:44:cf:0b:
- bd:ab:32:d5:58:54:bf:a9:3b:80:1b:bd:55:18:4f:
- 09:c4:b4:8a:9a:73:c8:0d:07:7a:b9:2c:aa:1f:88:
- c6:ff:37:32:20:04:75:13:e7:80:db:2a:95:8d:86:
- f1:48:65:70:52:0f:2f:62:f9:de:ac:10:f6:9e:c3:
- a2:30:2e:a2:51:e1:d5:d4:0a:36:97:c8:f3:35:c3:
- ea:74:4d:49:c9:10:c5:56:14:15:c4:08:a5:4f:aa:
- cd:e0:05:25:6d:d3:30:25:eb:e4:01:e8:d1:59:54:
- 16:8e:22:06:f6:11:b7:16:a6:ee:07:0a:66:12:db:
- e9:7c:3e:9d:60:fd:22:31:ed:51:1e:3a:33:39:16:
- c2:3d:0b:9b:b4:95:49:61:81:92:8a:49:61:e4:04:
- 22:40:27:8d:c4:0a:5f:c5:64:44:7f:bf:a7:4a:09:
- a6:36:ee:23:24:aa:46:44:50:46:a1:83:eb:48:e7:
- fe:80:70:67:b0:8e:78:29:19:a1:55:56:69:60:4e:
- 75:13:34:f5:5d:33:78:2b:74:e7:ba:6f:44:9c:14:
- e6:40:4a:3c:97:c8:be:a3:54:b3:b0:f1:5d:0d:69:
- d8:0e:26:18:b5:67:4f:e0:a6:79:ac:13:f7:2c:c6:
- 08:09:5c:ef:e9:9e:7c:4a:ea:49:8e:26:9b:73:bf:
- 84:c9:14:c5:94:c3:27:46:c9:65:38:9f:aa:1c:b8:
- c3:6e:42:94:0e:2e:93:66:24:58:b3:fc:98:62:9c:
- ab:42:4e:bd:4f:93:a6:1f:2d:31:87:41:b2:26:19:
- f6:f6:a5:d0:5b:32:81:1f:14:85:79:4f:7a:cf:bd:
- ff:f4:25:be:b0:f4:07:4d:54:79:df:77:8f:ff:fa:
- 14:5a:ca:42:4c:2c:8a:89:08:f5:18:8c:17:9e:09:
- 34:a5:8e:77:b4:e1:59:11:9f:ff:b9:e2:ac:3c:c1:
- d9:71:17
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- Netscape Comment:
- CA Root
- X509v3 Subject Key Identifier:
- B3:B4:54:D9:35:6A:F9:9E:C8:65:00:11:20:7D:9A:66:30:96:14:D2
- X509v3 Authority Key Identifier:
- keyid:B3:B4:54:D9:35:6A:F9:9E:C8:65:00:11:20:7D:9A:66:30:96:14:D2
-
- X509v3 Basic Constraints: critical
- CA:TRUE, pathlen:1
- X509v3 Key Usage:
- Certificate Sign, CRL Sign
- Netscape Cert Type:
- SSL CA
- Signature Algorithm: sha256WithRSAEncryption
- 28:a6:3b:44:6a:1f:13:8e:5e:5c:6d:58:86:bd:fc:68:cc:c3:
- 1d:54:0a:4b:41:7c:a8:3e:aa:c0:b2:d3:fb:a0:34:5a:40:ba:
- 2e:4d:41:1f:fe:23:ab:db:34:b5:ad:de:81:c7:b9:0f:47:47:
- 96:42:41:ad:2a:93:65:9d:08:cc:c1:97:3e:46:a6:70:de:bc:
- 64:9f:40:b5:19:88:89:8a:a5:de:70:85:a6:b2:df:7c:72:b5:
- 47:d4:a5:d7:52:bf:ea:32:78:0e:a9:82:ea:8e:4c:6b:83:63:
- 17:e9:36:df:4f:62:a3:87:8b:4f:3b:55:7f:8e:64:80:ea:e3:
- 69:7b:d6:43:d0:c8:8f:f2:98:6b:f1:08:dc:1c:a6:b6:06:9b:
- 45:18:7b:ca:20:06:6f:7a:82:87:57:21:bb:5a:f6:81:9f:f7:
- ec:26:71:b7:cd:b5:4d:c7:de:4d:07:06:d3:80:0a:bd:36:6e:
- eb:e4:ad:f8:8a:41:46:3c:6c:88:72:d9:a3:1c:30:e2:fc:8c:
- 8f:a9:8c:60:84:94:62:17:f5:9f:08:27:6b:78:fc:e2:65:ae:
- 03:66:19:94:9b:1b:3f:93:43:7d:76:e7:6c:fe:32:19:3c:d4:
- ca:cd:19:4f:ca:43:5a:ce:44:29:79:58:55:91:f1:10:3f:79:
- 38:46:0e:5b:f8:1f:4a:e1:53:43:dc:6b:f3:00:2b:9f:dd:25:
- 55:ae:e1:5f:b5:7b:19:f1:0c:22:6d:13:c6:c9:39:4d:75:73:
- eb:bc:89:bf:56:eb:05:87:27:2f:d8:27:55:32:79:61:d1:ad:
- ea:cc:1e:f2:9b:b9:c6:25:13:d5:6c:01:4b:2a:9e:93:f8:d0:
- 13:88:46:3c:27:bc:af:bd:a6:1e:93:f8:a2:2d:3f:6b:8b:d4:
- 41:2e:b3:a4:00:62:5c:d7:d7:07:7d:e6:a1:7a:44:4b:92:65:
- eb:7a:02:4e:b2:98:62:6a:42:1a:05:3a:91:aa:0b:11:b3:f5:
- 0e:f7:6d:7c:d4:1e:b8:03:9f:dd:a7:c6:a1:05:90:f9:f8:99:
- 6b:2d:8b:68:ae:5c:78:ed:1b:eb:40:a8:ee:11:e4:bf:de:f2:
- 9e:2a:de:e6:d2:13:b9:c0:91:45:bb:2f:49:e4:58:db:8c:86:
- f3:76:25:67:87:e3:05:1e:3c:61:62:f8:3d:71:63:21:06:20:
- cc:df:09:53:d8:c5:15:a0:82:98:7c:72:4b:44:f7:81:04:1e:
- 8b:7e:fd:60:90:a5:38:c5:6f:ec:79:db:d6:fd:4e:b6:7b:f9:
- 27:9c:29:3e:0c:6f:d4:2e:32:d8:0a:9b:ef:52:e5:90:14:d8:
- 54:f0:3a:c8:25:e1:df:1c
------BEGIN CERTIFICATE-----
-MIIF7DCCA9SgAwIBAgICANowDQYJKoZIhvcNAQELBQAwcDELMAkGA1UEBhMCZnIx
-DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxDjAMBgNVBAoMBXZpdGFtMRQw
-EgYDVQQLDAthdXRob3JpdGllczEdMBsGA1UEAwwUY2Ffcm9vdF90aW1lc3RhbXBp
-bmcwHhcNMTkxMTIyMDg1MzM5WhcNMjkxMTE5MDg1MzM5WjBwMQswCQYDVQQGEwJm
-cjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEOMAwGA1UECgwFdml0YW0x
-FDASBgNVBAsMC2F1dGhvcml0aWVzMR0wGwYDVQQDDBRjYV9yb290X3RpbWVzdGFt
-cGluZzCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALp1MinLMiZYkmUp
-NdOpvHJ6HT1d9V29tV+ofAXHWIAbdakztFCoGFJjxz4LKWrTZQn64daaY4PEbQ4N
-gcqVwcPCtNY53YuC5mQQUetBT2jksezL8oACUe/BY6zLEFkSxURMbLLA/TNelg5z
-Ikt8twuiSMGr/Gv6whZYqHu6i39CKnkhyNWz87yZdsoNzKvterOgRM8Lvasy1VhU
-v6k7gBu9VRhPCcS0ippzyA0Herksqh+Ixv83MiAEdRPngNsqlY2G8UhlcFIPL2L5
-3qwQ9p7DojAuolHh1dQKNpfI8zXD6nRNSckQxVYUFcQIpU+qzeAFJW3TMCXr5AHo
-0VlUFo4iBvYRtxam7gcKZhLb6Xw+nWD9IjHtUR46MzkWwj0Lm7SVSWGBkopJYeQE
-IkAnjcQKX8VkRH+/p0oJpjbuIySqRkRQRqGD60jn/oBwZ7COeCkZoVVWaWBOdRM0
-9V0zeCt057pvRJwU5kBKPJfIvqNUs7DxXQ1p2A4mGLVnT+CmeawT9yzGCAlc7+me
-fErqSY4mm3O/hMkUxZTDJ0bJZTifqhy4w25ClA4uk2YkWLP8mGKcq0JOvU+Tph8t
-MYdBsiYZ9val0FsygR8UhXlPes+9//QlvrD0B01Ued93j//6FFrKQkwsiokI9RiM
-F54JNKWOd7ThWRGf/7nirDzB2XEXAgMBAAGjgY8wgYwwFgYJYIZIAYb4QgENBAkW
-B0NBIFJvb3QwHQYDVR0OBBYEFLO0VNk1avmeyGUAESB9mmYwlhTSMB8GA1UdIwQY
-MBaAFLO0VNk1avmeyGUAESB9mmYwlhTSMBIGA1UdEwEB/wQIMAYBAf8CAQEwCwYD
-VR0PBAQDAgEGMBEGCWCGSAGG+EIBAQQEAwICBDANBgkqhkiG9w0BAQsFAAOCAgEA
-KKY7RGofE45eXG1Yhr38aMzDHVQKS0F8qD6qwLLT+6A0WkC6Lk1BH/4jq9s0ta3e
-gce5D0dHlkJBrSqTZZ0IzMGXPkamcN68ZJ9AtRmIiYql3nCFprLffHK1R9Sl11K/
-6jJ4DqmC6o5Ma4NjF+k2309io4eLTztVf45kgOrjaXvWQ9DIj/KYa/EI3Bymtgab
-RRh7yiAGb3qCh1chu1r2gZ/37CZxt821TcfeTQcG04AKvTZu6+St+IpBRjxsiHLZ
-oxww4vyMj6mMYISUYhf1nwgna3j84mWuA2YZlJsbP5NDfXbnbP4yGTzUys0ZT8pD
-Ws5EKXlYVZHxED95OEYOW/gfSuFTQ9xr8wArn90lVa7hX7V7GfEMIm0Txsk5TXVz
-67yJv1brBYcnL9gnVTJ5YdGt6swe8pu5xiUT1WwBSyqek/jQE4hGPCe8r72mHpP4
-oi0/a4vUQS6zpABiXNfXB33moXpES5Jl63oCTrKYYmpCGgU6kaoLEbP1DvdtfNQe
-uAOf3afGoQWQ+fiZay2LaK5ceO0b60Co7hHkv97ynire5tITucCRRbsvSeRY24yG
-83YlZ4fjBR48YWL4PXFjIQYgzN8JU9jFFaCCmHxyS0T3gQQei379YJClOMVv7Hnb
-1v1Otnv5J5wpPgxv1C4y2Aqb71LlkBTYVPA6yCXh3xw=
------END CERTIFICATE-----
diff --git a/deployment/pki/ca/timestamping/ca-root.key b/deployment/pki/ca/timestamping/ca-root.key
deleted file mode 100644
index 44e736172616e204bf0718daf0299016069120ef..0000000000000000000000000000000000000000
--- a/deployment/pki/ca/timestamping/ca-root.key
+++ /dev/null
@@ -1,54 +0,0 @@
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJjjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG9w0BBQwwDgQIEjVb1ex40+kCAggA
-MBQGCCqGSIb3DQMHBAjvFx+rQlMX3ASCCUhzM4X2SSqUzlIBIDPQ6KlUVDwFZMTa
-tpEsf420Lxuy+0mtZ6RF+E+QDvv+Agr5ivtl5iD0W5vxNM/e0RqiAlLfJwLuuX3w
-G0e0qRoUtmjm6rhHpsp5Du/tBgOLVgGzyEeGvKh3EUyFiscXawjBNTHBJPolQEcI
-xdBvnNRl3rASEOTgXXJfFKEVReVrab96Mv6Kzz36D06RF4Q63r3Lwa3ILwTeEBa5
-5xnbERdHfPj1822N3c62INrBmXF3q2wZk+HQ6iId9xKSxnnz6tM2uRMxyzB46IRw
-YPtFM/l2PWJLMHMgLtkJfXzWS1wT3cn9GUbBbuPAn+My3QFJacLAJYbOxEZksdl2
-WWde2Yg/eciXcrBBCKP3quyuuEnc1gYJ/ZbPPVIISWyPn2Ord2bV7HYXOe3GEgZQ
-q0smzVqm/mJfnYyR3tSEbu2pHqp34yyG88QtJCzQAjNjmHM0SDB6w3Hf9naZfEHo
-pQo0A2Y8Ftb0Wlj2Y2kUXTL40yUgVRgxV6QE5bChvNdCdDRaP0SAqjryP3Q0LnWT
-eW6P5I2T4V9vx8uxotd5c5I0gMZrI3PheMRFOAQ1HZShR7ZTogxwBgvVYh8XkDmQ
-Gx3CRpAG8+tx9ZEvGQs1wRPjU7cRi+ItfuzkLkMGVAJjBXHxPaxaA1kT5mVe7XH7
-kX9G2oJPZfk7Tqkli6jZIX9yFbZL5IgCLH95ZuIvUOf8Ne9f3kjZOH2IfPC7z2C+
-S0P9hula/yc/ZCljx5MV6bVh3sWmzM2YnImzhridH/sV1UEEtGJm5urn15ULrj9E
-TNIczPFtj+UjVEBmC9GpQjytHZOU2iO2zCm/Nw1gdM8ici0tM5w+GBS0rLXzJxk7
-ylm+hEIYiLMV5EMFvMYluvfPNaW+70of/rk/LZazr+boLhJF3quHzDn22FUd0QFM
-92ChutsIYORg9qN8r1P+ufi+TRL8+35FWRQFS5U/bbStOS1/nhZZozZr9HzYWscM
-oqWaJQLGF1Iwcw7Rsf1tWLzAEKwKb42SBM7M1heM3qiJZFenhOuTHwIsOeKw+y5e
-ov7TQZNC1tqQr1UcIdn7dkAwicQ0b3QNJ8QxMagUXA8m+GJhWhLhXnTZGdQdluWJ
-DTy7DYWUyWkYX+wNHCvYgsj3dAt8cjdwG+U1JZn3vjt8rqnNlE6lgDJnhzlAseXS
-d8MKcAFCakFfqnbJvssb+la2VCxPnsCj9xejqTpfYBZ5WZdbxGf1T7jlkLcmSwKd
-miYu7PuJs8J2P2ZdsdSiMJv7ERk0R9w/Ao8Jwg8Ym27rmovgvrRQJjv5VuKqsjii
-tC3srLkbnEhvp2oMC8RLixIb5v3iW8wxjrQVASGP8cXyqsU20g2TgXB2vWDoOexG
-YxRiDY3A0L1KEIFb+IFBiFzxeJz4yPWSyKXxBdX0edye+U3QawgcSpRVinJIhmku
-RGv9Zxl0QnBhrIWD8wjgGyYMYECVmJFr7gy8avV5GBPGgcb+ZM5F9eirCqoQW54D
-ZDnweyX85g9XDoDrelcOJ7fVI+z9NyRCCCxXlnjuWk63JVyPui07gvMPXp5BBtIG
-j5syUZR0GryfVjklgji+hN0mXAZIdMWlEpvFqlDhl/q/AicCL98HR2QJC1/EhL9I
-ZYdNOwzAHTtDf+jLF1HbfnsDbmFym10SlV1qZQyBzH7zFw//w7uF12ZmTqO2QxZ4
-8WMu/SK6BVmsSrZ5tzbpdZ8ml2Xt0NtFZWyllgAuuNJcQGg6jDNtPbUX31WbqN8W
-wjRtW5UFNSYRlP7d8INGDf4HlPt3yLFxz1+G6uxRC+JknveZdxUof/H2333O3Vom
-8ZwyqtUK0T4ubrQBMMxY6rYDtdfb0shJ8t9ZGzg+YcmLRBGBiTZIqsmdYC7ERy/M
-42UuuunezSPZR/2ilYVHAh1kjG78f32KwfBWKR5eXtXJ13YSN9P4ENJKroLcXyBr
-Mosl5h3sL13+EHoTRa5HBrru97S7VBz+nmfn/1i9YyzPhw5ve+1JPf6TMCUXICVa
-MOVE/l+9PwXbTXFQG9Nh3MbgYrhdYOqGVLpE0xKk8/FWlFEQ4B+91kNS8RsLj5E7
-tNqvOLS9yfj8sww41GCMAyJkYyy1iaHfx/yUwdVcJ6/WRjxtM4ScC5/beflgJIs3
-6iy3EPPlLXbayclEi33ajTSdhye9CugQrSVvZLcSmEgsz4Hi2eHNoHdes7dCfNYt
-pYNWx0ZXuV+ObjjbklTFquL2lTr9XiWteuD9Yh4quh9gFzbX6N9RfGcBmUSu6wxl
-UhZLdbI5LV/kmOEEZC9AXHi253tReiJN9F7Re9IQpl5DQ6Xe56rKMo9D8FEEjmfA
-nQSLmU4lBKCw7ruk9rISFzO+Y4SaUIMuOURaBzjRufjBJBp6yaAHPet1/bdhPBUu
-yH2mQKNGEJsOzGcA6GZFVNVHxoKisJ+91qnVewUNouuETKSUzy91eA1V2dONi6La
-E2gECknhmzJ16QTWREgn2Smawgw61jxGk96xB685CP4NyZoZDGTxVMaefkhnJyRP
-+AdMhmQsuDsrR1NschDp8f51ZXwrbkNsaPzOnNzRm6XW9E/vAM+0tcBvK4s7L99Q
-CplO3ZMK7VVikW6dPOQToQU+BalJMUZLhFVh3Ze82o1SEhSh0lWZ7qoGBpYbNky1
-WuyL5vPM6ybKuX/at5bJ9OE6ZEj5Ed/aUsaqhYnUeib/WSbK4LzSsk1O67p1LLkg
-T5WeYKGdyBF40eE1KCLnefxBRDC1M2asG5dBRJ1oB3/7r95QI+G6vt0kEaXd8IOT
-q796xfwls3fwJwBAFpNj/kLl9SaGaB8oLYmUR4+o/PXOK+m7Dbmr+6yedUY5Hqrl
-MopyiY9B7z0wh1sWmVcLnTQx4oKQXC4hD/bTep+40QSmbCd0eLeO7ceHLw3JPoAY
-zXVQA3CKv4hqRqTTxYye5Wxun1aTffXLG7WmOwADON9y8G9pkdstMqML4izuw+yY
-WBk0JwIXLBa0XqQAJcJRoqyqEpEECbu8M1Y+MiPgmFC2aFmwm6zKDOGOZJwNzEiY
-UNVOvYNttOZUwknfYl96dMY4W2qhP21MGOVqYb0sYWryL/BJMCV4emcSQ1dB02pJ
-9FUHV6fjx583WEMVz6vCQ0Ac8tDZe78P0T4jIWJ/ObXRetV1xhbyhkuc7IAjYNwk
-pDQ=
------END ENCRYPTED PRIVATE KEY-----
diff --git a/deployment/pki/config/ca-config b/deployment/pki/config/ca-config
index 79ced3e5188324b037b964ef9bba68b720f5318a..98f79f9fce7f2341d2972fbf64b957fc1516aff8 100644
--- a/deployment/pki/config/ca-config
+++ b/deployment/pki/config/ca-config
@@ -40,7 +40,7 @@ distinguished_name = req_distinguished_name
C = fr
ST = idf
L = paris
-O = vitam
+O = vitamui
OU = authorities
CN = ${ENV::OPENSSL_CN}
diff --git a/deployment/pki/config/cas-server/index.txt b/deployment/pki/config/cas-server/index.txt
deleted file mode 100644
index 833a2d8974ce8c89ea55d73ba0080b3270ef1078..0000000000000000000000000000000000000000
--- a/deployment/pki/config/cas-server/index.txt
+++ /dev/null
@@ -1,32 +0,0 @@
-V 291119085709Z 0101 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119085710Z 0102 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 221121085722Z 0103 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119085949Z 0104 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119085950Z 0105 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 221121090009Z 0106 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121114842Z 0107 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121115135Z 0108 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119121405Z 0109 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119121408Z 010A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119121447Z 010B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119121448Z 010C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119121541Z 010D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_cas-server
-V 291119121542Z 010E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_cas-server
-V 291119130038Z 010F unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_cas-server
-V 291119130039Z 0110 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_cas-server
-V 291119130200Z 0111 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_cas-server
-V 291119130200Z 0112 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_cas-server
-V 291119130226Z 0113 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_cas-server
-V 291119130227Z 0114 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_cas-server
-V 291119131702Z 0115 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_cas-server
-V 291119131703Z 0116 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_cas-server
-V 291119131834Z 0117 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_cas-server
-V 291119131836Z 0118 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_cas-server
-V 291119131951Z 0119 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_cas-server
-V 291119131952Z 011A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_cas-server
-V 291119132233Z 011B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_cas-server
-V 291119132234Z 011C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_cas-server
-V 291119132607Z 011D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_cas-server
-V 291119132608Z 011E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_cas-server
-V 291119152058Z 011F unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_cas-server
-V 291119152059Z 0120 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_cas-server
diff --git a/deployment/pki/config/cas-server/serial b/deployment/pki/config/cas-server/serial
deleted file mode 100644
index 9bc3765d7f161bd120eac4502f9d204410d17382..0000000000000000000000000000000000000000
--- a/deployment/pki/config/cas-server/serial
+++ /dev/null
@@ -1 +0,0 @@
-0121
diff --git a/deployment/pki/config/cas-server/crlnumber b/deployment/pki/config/client-external/crlnumber
similarity index 100%
rename from deployment/pki/config/cas-server/crlnumber
rename to deployment/pki/config/client-external/crlnumber
diff --git a/deployment/pki/config/client-external/index.txt b/deployment/pki/config/client-external/index.txt
new file mode 100644
index 0000000000000000000000000000000000000000..18578e0a4e7f618a29c0eed0029b930782696a5e
--- /dev/null
+++ b/deployment/pki/config/client-external/index.txt
@@ -0,0 +1,4 @@
+V 300503091342Z 01 unknown /C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-external
+V 300503091344Z 02 unknown /C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_intermediate_client-external
+V 230505091435Z 03 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=customer_x
+V 230505114425Z 04 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=customer_x
diff --git a/deployment/pki/config/client-external/serial b/deployment/pki/config/client-external/serial
new file mode 100644
index 0000000000000000000000000000000000000000..eeee65ec419f2fcb5e45c19008cd23793bea8932
--- /dev/null
+++ b/deployment/pki/config/client-external/serial
@@ -0,0 +1 @@
+05
diff --git a/deployment/pki/config/client-iam-internal/index.txt b/deployment/pki/config/client-iam-internal/index.txt
deleted file mode 100644
index 11911a982fc2cd08fa27b8597fbebc88c4b6ec00..0000000000000000000000000000000000000000
--- a/deployment/pki/config/client-iam-internal/index.txt
+++ /dev/null
@@ -1,81 +0,0 @@
-V 291119085709Z 0101 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119085710Z 0102 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 221121085722Z 0103 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119085949Z 0104 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119085950Z 0105 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 221121090009Z 0106 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121114842Z 0107 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121115135Z 0108 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119121405Z 0109 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119121408Z 010A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119121447Z 010B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119121448Z 010C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119121539Z 010D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
-V 291119121540Z 010E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-internal
-V 221121121600Z 010F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119130036Z 0110 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
-V 291119130037Z 0111 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-internal
-V 291119130228Z 0112 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam
-V 291119130229Z 0113 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam
-V 221121130244Z 0114 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121130401Z 0115 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121130453Z 0116 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121130617Z 0117 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121131025Z 0118 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119131704Z 0119 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291119131705Z 011A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 291119131836Z 011B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291119131838Z 011C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 291119131953Z 011D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291119131954Z 011E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 221121132108Z 011F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119132235Z 0120 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291119132236Z 0121 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 221121132305Z 0122 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121132549Z 0123 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119132609Z 0124 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291119132610Z 0125 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 221121132630Z 0126 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119152100Z 0127 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291119152101Z 0128 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 291119152600Z 0129 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291119152601Z 012A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 221121152641Z 012B unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121152656Z 012C unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121152819Z 012D unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121152857Z 012E unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121153057Z 012F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121153128Z 0130 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221124114513Z 0131 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221124115129Z 0132 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221124115131Z 0133 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 221125145640Z 0134 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221125145641Z 0135 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 221125151147Z 0136 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221125151148Z 0137 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 221125173114Z 0138 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221125173116Z 0139 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 221125173549Z 013A unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221125173551Z 013B unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 221125174626Z 013C unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221125174628Z 013D unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 221125181004Z 013E unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221125181006Z 013F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 291124122139Z 0140 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291124122139Z 0141 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 221126122335Z 0142 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221126122338Z 0143 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 291125102102Z 0144 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam-internal
-V 291125102103Z 0145 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam-internal
-V 221127102201Z 0146 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external
-V 291125102709Z 0147 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam-internal
-V 291125102709Z 0148 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam-internal
-V 221127102738Z 0149 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external
-V 291209104247Z 014A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam-internal
-V 291209104248Z 014B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam-internal
-V 221211104322Z 014C unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external
-V 221211104435Z 014D unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external
-V 221215104525Z 014E unknown /C=fr/ST=idf/L=paris/O=vitam/CN=reverse
-V 221215104526Z 014F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external
-V 221215105210Z 0150 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external
-V 221218124613Z 0151 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external
diff --git a/deployment/pki/config/client-iam-internal/serial b/deployment/pki/config/client-iam-internal/serial
deleted file mode 100644
index 5bdffa45d0942b9211757d70bb81c1f940e1faac..0000000000000000000000000000000000000000
--- a/deployment/pki/config/client-iam-internal/serial
+++ /dev/null
@@ -1 +0,0 @@
-0152
diff --git a/deployment/pki/config/client-iam/index.txt b/deployment/pki/config/client-iam/index.txt
deleted file mode 100644
index 1fd4744486e8cd64dccc17678ea9ec34cb594f8c..0000000000000000000000000000000000000000
--- a/deployment/pki/config/client-iam/index.txt
+++ /dev/null
@@ -1,79 +0,0 @@
-V 291119085709Z 0101 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119085710Z 0102 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 221121085722Z 0103 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119085949Z 0104 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119085950Z 0105 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 221121090009Z 0106 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121114842Z 0107 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121115135Z 0108 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119121405Z 0109 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119121408Z 010A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119121447Z 010B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119121448Z 010C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119121539Z 010D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
-V 291119121540Z 010E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-internal
-V 221121121600Z 010F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119130036Z 0110 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
-V 291119130037Z 0111 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-internal
-V 291119130228Z 0112 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam
-V 291119130229Z 0113 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam
-V 221121130244Z 0114 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121130401Z 0115 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121130453Z 0116 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121130617Z 0117 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121131025Z 0118 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119131704Z 0119 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291119131705Z 011A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 291119131836Z 011B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291119131838Z 011C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 291119131953Z 011D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291119131954Z 011E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 221121132108Z 011F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119132235Z 0120 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291119132236Z 0121 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 221121132305Z 0122 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121132549Z 0123 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119132609Z 0124 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291119132610Z 0125 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 221121132630Z 0126 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119152100Z 0127 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291119152101Z 0128 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 291119152600Z 0129 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291119152601Z 012A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 221121152641Z 012B unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121152656Z 012C unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121152819Z 012D unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121152857Z 012E unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121153057Z 012F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121153128Z 0130 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221124114513Z 0131 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221124115129Z 0132 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221124115131Z 0133 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 221125145640Z 0134 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221125145641Z 0135 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 221125151147Z 0136 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221125151148Z 0137 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 221125173114Z 0138 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221125173116Z 0139 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 221125173549Z 013A unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221125173551Z 013B unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 221125174626Z 013C unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221125174628Z 013D unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 221125181004Z 013E unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221125181006Z 013F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 291124122139Z 0140 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291124122139Z 0141 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 221126122335Z 0142 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221126122338Z 0143 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_internal
-V 291125101905Z 0144 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291125101906Z 0145 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 291125101941Z 0146 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291125101943Z 0147 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 291125102059Z 0148 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291125102100Z 0149 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 291125102705Z 014A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291125102707Z 014B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 291209104244Z 014C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-iam
-V 291209104246Z 014D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-iam
-V 221215105209Z 014E unknown /C=fr/ST=idf/L=paris/O=vitam/CN=reverse
-V 221218124612Z 014F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=reverse
diff --git a/deployment/pki/config/client-iam/serial b/deployment/pki/config/client-iam/serial
deleted file mode 100644
index 4496b641b5cc9a3fd14401b867864cb192bef941..0000000000000000000000000000000000000000
--- a/deployment/pki/config/client-iam/serial
+++ /dev/null
@@ -1 +0,0 @@
-0150
diff --git a/deployment/pki/config/client-storage/index.txt b/deployment/pki/config/client-storage/index.txt
deleted file mode 100644
index 3d126f155bbbff30904f9fb92c6ebeec5baa8ce5..0000000000000000000000000000000000000000
--- a/deployment/pki/config/client-storage/index.txt
+++ /dev/null
@@ -1,62 +0,0 @@
-V 270101164145Z C3 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client
-V 270101164145Z C4 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client_intermediate
-V 200103164147Z C5 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=ihm-demo
-V 200103164149Z C6 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=ihm-recette
-V 200103164149Z C7 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=reverse
-V 270214142840Z C8 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client
-V 270214142841Z C9 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client_intermediate
-V 200216145305Z CA unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=ihm-demo
-V 200216145306Z CB unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=ihm-recette
-V 200216145306Z CC unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=reverse
-V 200216145625Z CD unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=ihm-demo
-V 200216145625Z CE unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=ihm-recette
-V 200216145626Z CF unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=reverse
-V 270227163946Z D0 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client-storage
-V 270227163946Z D1 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client-storage
-V 200229164031Z D2 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=storage-engine
-V 270227174338Z D3 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client-storage
-V 270227174339Z D4 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client-storage
-V 200229174401Z D5 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=storage-engine
-V 270228082240Z D6 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client-storage
-V 270228082241Z D7 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client-storage
-V 270228082648Z D8 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client-storage
-V 270228082648Z D9 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client-storage
-V 200301083155Z DA unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=storage-engine
-V 270304180340Z DB unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client-storage
-V 270304180342Z DC unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client-storage
-V 200305180422Z DD unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=storage
-V 270313121842Z DE unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client-storage
-V 270313121842Z DF unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_client-storage
-V 200314121855Z E0 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=storage
-V 270710142903Z E1 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-storage
-V 270710142905Z E2 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-storage
-V 200711143001Z E3 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=storage
-V 270806093256Z E4 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-storage
-V 270806093257Z E5 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-storage
-V 200807093437Z E6 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=storage
-V 270807160406Z E7 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-storage
-V 270807160407Z E8 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-storage
-V 200808160457Z E9 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=storage
-V 280219163457Z EA unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-storage
-V 280219163458Z EB unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-storage
-V 210220171539Z EC unknown /C=fr/ST=idf/L=paris/O=vitam/CN=storage
-V 210221091843Z ED unknown /C=fr/ST=idf/L=paris/O=vitam/CN=storage
-V 210221092208Z EE unknown /C=fr/ST=idf/L=paris/O=vitam/CN=storage
-V 210221093304Z EF unknown /C=fr/ST=idf/L=paris/O=vitam/CN=storage
-V 210221093741Z F0 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=storage
-V 210221143002Z F1 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=storage
-V 210221163522Z F2 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=storage
-V 210221163712Z F3 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=storage
-V 281016083100Z F4 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-storage
-V 281016083101Z F5 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-storage
-V 211018084110Z F6 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=storage
-V 291103094229Z F7 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-storage
-V 291103094230Z F8 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-storage
-V 291103094801Z F9 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-storage
-V 291103094803Z FA unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-storage
-V 291118093717Z FB unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-storage
-V 291118093718Z FC unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-storage
-V 291118100028Z FD unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-storage
-V 291118100028Z FE unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-storage
-V 291119085335Z FF unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_client-storage
-V 291119085337Z 0100 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_client-storage
diff --git a/deployment/pki/config/client-storage/serial b/deployment/pki/config/client-storage/serial
deleted file mode 100644
index 7d0d318d147e57072e85c633cad01aefe17d7e91..0000000000000000000000000000000000000000
--- a/deployment/pki/config/client-storage/serial
+++ /dev/null
@@ -1 +0,0 @@
-0101
diff --git a/deployment/pki/config/client-iam-internal/crlnumber b/deployment/pki/config/client-vitam/crlnumber
similarity index 100%
rename from deployment/pki/config/client-iam-internal/crlnumber
rename to deployment/pki/config/client-vitam/crlnumber
diff --git a/deployment/pki/config/client-vitam/index.txt b/deployment/pki/config/client-vitam/index.txt
new file mode 100644
index 0000000000000000000000000000000000000000..02b538fb6810ea4301accac436939f8fe787145f
--- /dev/null
+++ b/deployment/pki/config/client-vitam/index.txt
@@ -0,0 +1,3 @@
+V 300503091347Z 01 unknown /C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-vitam
+V 300503091349Z 02 unknown /C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_intermediate_client-vitam
+V 230505091439Z 03 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=vitamui
diff --git a/deployment/pki/config/client-vitam/serial b/deployment/pki/config/client-vitam/serial
new file mode 100644
index 0000000000000000000000000000000000000000..64969239d5f72d674bbedc24eb0a155a59d0e607
--- /dev/null
+++ b/deployment/pki/config/client-vitam/serial
@@ -0,0 +1 @@
+04
diff --git a/deployment/pki/config/crt-config b/deployment/pki/config/crt-config
index abf014121aa2353b04e8315ae4e7acc00ad415e4..f8fd66494bf95f048bda3bb4b7552fa37488c03b 100644
--- a/deployment/pki/config/crt-config
+++ b/deployment/pki/config/crt-config
@@ -40,7 +40,7 @@ distinguished_name = req_distinguished_name
C = fr
ST = idf
L = paris
-O = vitam
+O = vitamui
CN = ${ENV::OPENSSL_CN}
diff --git a/deployment/pki/config/iam-external/index.txt b/deployment/pki/config/iam-external/index.txt
deleted file mode 100644
index c39b1f9dacd9f3f6ff70163219ad6504d90e5a61..0000000000000000000000000000000000000000
--- a/deployment/pki/config/iam-external/index.txt
+++ /dev/null
@@ -1,32 +0,0 @@
-V 291119085709Z 0101 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119085710Z 0102 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 221121085722Z 0103 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119085949Z 0104 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119085950Z 0105 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 221121090009Z 0106 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121114842Z 0107 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121115135Z 0108 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119121405Z 0109 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119121408Z 010A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119121447Z 010B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119121448Z 010C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119121537Z 010D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119121538Z 010E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119130033Z 010F unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119130034Z 0110 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119130154Z 0111 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119130156Z 0112 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119130221Z 0113 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119130223Z 0114 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119131658Z 0115 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119131659Z 0116 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119131827Z 0117 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119131829Z 0118 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119131946Z 0119 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119131947Z 011A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119132229Z 011B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119132230Z 011C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119132602Z 011D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119132603Z 011E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119152052Z 011F unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119152053Z 0120 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
diff --git a/deployment/pki/config/iam-external/serial b/deployment/pki/config/iam-external/serial
deleted file mode 100644
index 9bc3765d7f161bd120eac4502f9d204410d17382..0000000000000000000000000000000000000000
--- a/deployment/pki/config/iam-external/serial
+++ /dev/null
@@ -1 +0,0 @@
-0121
diff --git a/deployment/pki/config/iam-internal/crlnumber b/deployment/pki/config/iam-internal/crlnumber
deleted file mode 100644
index e69de29bb2d1d6434b8b29ae775ad8c2e48c5391..0000000000000000000000000000000000000000
diff --git a/deployment/pki/config/iam-internal/index.txt b/deployment/pki/config/iam-internal/index.txt
deleted file mode 100644
index b523ec94c39e63c7d3d6c473056b91198f1b0b9c..0000000000000000000000000000000000000000
--- a/deployment/pki/config/iam-internal/index.txt
+++ /dev/null
@@ -1,33 +0,0 @@
-V 291119085709Z 0101 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119085710Z 0102 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 221121085722Z 0103 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119085949Z 0104 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119085950Z 0105 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 221121090009Z 0106 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121114842Z 0107 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 221121115135Z 0108 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119121405Z 0109 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119121408Z 010A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119121447Z 010B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-external
-V 291119121448Z 010C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-external
-V 291119121539Z 010D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
-V 291119121540Z 010E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-internal
-V 221121121600Z 010F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam_external
-V 291119130036Z 0110 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
-V 291119130037Z 0111 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-internal
-V 291119130157Z 0112 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
-V 291119130158Z 0113 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-internal
-V 291119130224Z 0114 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
-V 291119130225Z 0115 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-internal
-V 291119131700Z 0116 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
-V 291119131701Z 0117 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-internal
-V 291119131830Z 0118 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
-V 291119131831Z 0119 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-internal
-V 291119131949Z 011A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
-V 291119131950Z 011B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-internal
-V 291119132231Z 011C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
-V 291119132232Z 011D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-internal
-V 291119132604Z 011E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
-V 291119132605Z 011F unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-internal
-V 291119152054Z 0120 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_iam-internal
-V 291119152055Z 0121 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_iam-internal
diff --git a/deployment/pki/config/iam-internal/serial b/deployment/pki/config/iam-internal/serial
deleted file mode 100644
index fb5886dd7e7b9520f46fe1aee62c8aaf1ff98c31..0000000000000000000000000000000000000000
--- a/deployment/pki/config/iam-internal/serial
+++ /dev/null
@@ -1 +0,0 @@
-0122
diff --git a/deployment/pki/config/server/index.txt b/deployment/pki/config/server/index.txt
index 399e410b9d7a3158cbc082c1337dad10a711942e..c00cd3cccf51fa2fd7e95ec7dfc25e5ea972ff43 100644
--- a/deployment/pki/config/server/index.txt
+++ b/deployment/pki/config/server/index.txt
@@ -1,358 +1,18 @@
-V 270101164145Z A4 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server
-V 270101164145Z A5 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server_intermediate
-V 270101164146Z A6 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_timestamping_intermediate
-V 200103164150Z A7 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=ingest-external.service.consul
-V 200103164151Z A8 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=access-external.service.consul
-V 200103164152Z A9 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=logbook.service.consul
-V 270214131108Z AA unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server
-V 270214131109Z AB unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server_intermediate
-V 270227163944Z AC unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server
-V 270227163945Z AD unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server
-V 200229164023Z AE unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=ingest-external.service.consul
-V 200229164025Z AF unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=access-external.service.consul
-V 200229164027Z B0 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=storage-offer-default.service.consul
-V 270227174338Z B1 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server
-V 270227174338Z B2 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server
-V 200229174352Z B3 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=ingest-external.service.consul
-V 200229174353Z B4 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=access-external.service.consul
-V 200229174354Z B5 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=storage-offer-default.service.consul
-V 270228082239Z B6 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server
-V 270228082239Z B7 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server
-V 270228082645Z B8 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server
-V 270228082647Z B9 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server
-V 200301083147Z BA unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=ingest-external.service.consul
-V 200301083148Z BB unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=access-external.service.consul
-V 200301083150Z BC unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=storage-offer-default.service.consul
-V 270304180338Z BD unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server
-V 270304180339Z BE unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server
-V 200305180413Z BF unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=ingest-external.service.consul
-V 200305180414Z C0 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=access-external.service.consul
-V 200305180416Z C1 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=storage-offer-default.service.consul
-V 270313121839Z C2 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server
-V 270313121840Z C3 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_server
-V 200314121844Z C4 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=ingest-external.service.consul
-V 200314121846Z C5 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=access-external.service.consul
-V 200314121848Z C6 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=storage-offer-default.service.consul
-V 270710142900Z C7 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 270710142900Z C8 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 200711142948Z C9 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ingest-external.service.consul
-V 200711142950Z CA unknown /C=fr/ST=idf/L=paris/O=vitam/CN=access-external.service.consul
-V 200711142952Z CB unknown /C=fr/ST=idf/L=paris/O=vitam/CN=offer.service.consul
-V 270806093254Z CC unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 270806093254Z CD unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 200807093423Z CE unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ingest-external.service.consul
-V 200807093426Z CF unknown /C=fr/ST=idf/L=paris/O=vitam/CN=access-external.service.consul
-V 200807093428Z D0 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=offer.service.consul
-V 200807093430Z D1 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-recette.service.consul
-V 270807160402Z D2 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 270807160403Z D3 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 200808160443Z D4 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ingest-external.service.consul
-V 200808160445Z D5 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=access-external.service.consul
-V 200808160447Z D6 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=offer.service.consul
-V 200808160449Z D7 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-recette.service.consul
-V 201220155740Z D8 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-demo.service.consul
-V 201220162151Z D9 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-demo.service.consul
-V 280219163449Z DA unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 280219163450Z DB unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 210220171510Z DC unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ingest-external.service.consul
-V 210220171512Z DD unknown /C=fr/ST=idf/L=paris/O=vitam/CN=access-external.service.consul
-V 210220171517Z DE unknown /C=fr/ST=idf/L=paris/O=vitam/CN=offer.service.consul
-V 210220171521Z DF unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-recette.service.consul
-V 210220171524Z E0 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-demo.service.consul
-V 210221091813Z E1 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ingest-external.service.consul
-V 210221091817Z E2 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=access-external.service.consul
-V 210221091820Z E3 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=offer.service.consul
-V 210221091823Z E4 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-recette.service.consul
-V 210221091826Z E5 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-demo.service.consul
-V 210221092131Z E6 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ingest-external.service.consul
-V 210221092135Z E7 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=access-external.service.consul
-V 210221092139Z E8 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=offer.service.consul
-V 210221092143Z E9 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-recette.service.consul
-V 210221092148Z EA unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-demo.service.consul
-V 210221093224Z EB unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ingest-external.service.consul
-V 210221093229Z EC unknown /C=fr/ST=idf/L=paris/O=vitam/CN=access-external.service.consul
-V 210221093233Z ED unknown /C=fr/ST=idf/L=paris/O=vitam/CN=offer.service.consul
-V 210221093236Z EE unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-recette.service.consul
-V 210221093240Z EF unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-demo.service.consul
-V 210221093705Z F0 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ingest-external.service.consul
-V 210221093710Z F1 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=access-external.service.consul
-V 210221093712Z F2 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=offer.service.consul
-V 210221093716Z F3 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-recette.service.consul
-V 210221093719Z F4 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-demo.service.consul
-V 210221142940Z F5 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ingest-external.service.consul
-V 210221142942Z F6 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=access-external.service.consul
-V 210221142944Z F7 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=offer.service.consul
-V 210221142946Z F8 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-recette.service.consul
-V 210221142949Z F9 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-demo.service.consul
-V 210221163500Z FA unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ingest-external.service.consul
-V 210221163502Z FB unknown /C=fr/ST=idf/L=paris/O=vitam/CN=access-external.service.consul
-V 210221163504Z FC unknown /C=fr/ST=idf/L=paris/O=vitam/CN=offer.service.consul
-V 210221163507Z FD unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-recette.service.consul
-V 210221163510Z FE unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-demo.service.consul
-V 210221163652Z FF unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ingest-external.service.consul
-V 210221163654Z 0100 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=access-external.service.consul
-V 210221163656Z 0101 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=offer.service.consul
-V 210221163658Z 0102 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-recette.service.consul
-V 210221163700Z 0103 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-demo.service.consul
-V 281016083056Z 0104 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 281016083057Z 0105 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 211018084049Z 0106 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ingest-external.service.consul
-V 211018084050Z 0107 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=access-external.service.consul
-V 211018084053Z 0108 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=offer.service.consul
-V 211018084055Z 0109 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-recette.service.consul
-V 211018084057Z 010A unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ihm-demo.service.consul
-V 291103093535Z 010B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291103094225Z 010C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291103094226Z 010D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221105094303Z 010E unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221105094522Z 010F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 291103094757Z 0110 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291103094758Z 0111 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221105094828Z 0112 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 291118093713Z 0113 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291118093715Z 0114 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221120093742Z 0115 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221120093745Z 0116 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221120095150Z 0117 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221120095151Z 0118 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221120095452Z 0119 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221120095455Z 011A unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 291118100016Z 011B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291118100023Z 011C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291118100024Z 011D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221120100044Z 011E unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221120100046Z 011F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221120100055Z 0120 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221120100057Z 0121 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 291119085330Z 0122 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119085331Z 0123 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221121085353Z 0124 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121085354Z 0125 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 291119085546Z 0126 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119085547Z 0127 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 291119085641Z 0128 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119085642Z 0129 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 291119085707Z 012A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119085708Z 012B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221121085718Z 012C unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121085721Z 012D unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 291119085946Z 012E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119085947Z 012F unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221121090006Z 0130 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121090008Z 0131 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221121114837Z 0132 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121114839Z 0133 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221121115129Z 0134 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121115131Z 0135 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221121115133Z 0136 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service..
-V 221121121205Z 0137 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121121207Z 0138 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221121121209Z 0139 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service..
-V 291119121403Z 013A unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119121404Z 013B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 291119121445Z 013C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119121445Z 013D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 291119121535Z 013E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119121536Z 013F unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221121121555Z 0140 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121121557Z 0141 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221121121558Z 0142 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service..
-V 221121125643Z 0143 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121125645Z 0144 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221121125647Z 0145 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service..
-V 291119130031Z 0146 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119130031Z 0147 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221121130107Z 0148 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121130109Z 0149 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221121130110Z 014A unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service..
-V 291119130152Z 014B unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119130153Z 014C unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 291119130219Z 014D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119130220Z 014E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221121130239Z 014F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121130240Z 0150 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221121130242Z 0151 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service..
-V 221121130355Z 0152 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121130357Z 0153 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221121130359Z 0154 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service..
-V 221121130447Z 0155 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121130449Z 0156 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221121130451Z 0157 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service..
-V 221121130612Z 0158 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121130614Z 0159 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221121130615Z 015A unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service..
-V 221121131019Z 015B unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.local.consul
-V 221121131022Z 015C unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.local.consul
-V 221121131024Z 015D unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.local.consul
-V 291119131655Z 015E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119131657Z 015F unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221121131715Z 0160 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.local.consul
-V 221121131717Z 0161 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.local.consul
-V 221121131718Z 0162 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.local.consul
-V 291119131825Z 0163 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119131826Z 0164 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221121131848Z 0165 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.local.consul
-V 221121131850Z 0166 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.local.consul
-V 221121131852Z 0167 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.local.consul
-V 291119131944Z 0168 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119131946Z 0169 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221121132002Z 016A unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.local.consul
-V 221121132004Z 016B unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.local.consul
-V 221121132006Z 016C unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.local.consul
-V 221121132103Z 016D unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.local.consul
-V 221121132105Z 016E unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.local.consul
-V 221121132106Z 016F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.local.consul
-V 291119132226Z 0170 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119132228Z 0171 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221121132259Z 0172 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.local.consul
-V 221121132301Z 0173 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.local.consul
-V 221121132303Z 0174 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.local.consul
-V 221121132543Z 0175 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.local.consul
-V 221121132546Z 0176 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.local.consul
-V 221121132548Z 0177 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.local.consul
-V 291119132556Z 0178 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119132600Z 0179 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221121132624Z 017A unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.local.consul
-V 221121132626Z 017B unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.local.consul
-V 221121132628Z 017C unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.local.consul
-V 291119152050Z 017D unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119152051Z 017E unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 291119152341Z 017F unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119152342Z 0180 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221121152508Z 0181 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.local.consul
-V 221121152510Z 0182 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.local.consul
-V 221121152512Z 0183 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.local.consul
-V 291119152559Z 0184 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291119152559Z 0185 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221121152635Z 0186 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.local.consul
-V 221121152637Z 0187 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.local.consul
-V 221121152639Z 0188 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.local.consul
-V 221121152651Z 0189 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121152653Z 018A unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221121152813Z 018B unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121152816Z 018C unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221121152853Z 018D unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service..
-V 221121152855Z 018E unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service..
-V 221121153052Z 018F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.vitamuifo.'consul#DONOTMODIFY'
-V 221121153054Z 0190 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.vitamuifo.'consul#DONOTMODIFY'
-V 221121153056Z 0191 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.vitamuifo.'consul#DONOTMODIFY'
-V 221121153123Z 0192 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.vitamuifo.consul
-V 221121153125Z 0193 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.vitamuifo.consul
-V 221121153127Z 0194 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.vitamuifo.consul
-V 221124114505Z 0195 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.local.consul
-V 221124114507Z 0196 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.local.consul
-V 221124114509Z 0197 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.local.consul
-V 221124115121Z 0198 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.local.consul
-V 221124115124Z 0199 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.local.consul
-V 221124115125Z 019A unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.local.consul
-V 221124115127Z 019B unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-external.service.local.consul
-V 221125145632Z 019C unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.local.consul
-V 221125145634Z 019D unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.local.consul
-V 221125145636Z 019E unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.local.consul
-V 221125145638Z 019F unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-external.service.local.consul
-V 221125151133Z 01A0 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-cas-server.service.local.consul
-V 221125151135Z 01A1 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-security-internal.service.local.consul
-V 221125151137Z 01A2 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-internal.service.local.consul
-V 221125151139Z 01A3 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-iam-external.service.local.consul
-V 221125151141Z 01A4 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-ui-portal.service.local.consul
-V 221125151143Z 01A5 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-ui-identity.service.local.consul
-V 221125151145Z 01A6 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=vitamui-ui-identity-admin.service.local.consul
-V 221125173057Z 01A7 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=cas-server.service.local.consul
-V 221125173058Z 01A8 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=security-internal.service.local.consul
-V 221125173101Z 01A9 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-internal.service.local.consul
-V 221125173103Z 01AA unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external.service.local.consul
-V 221125173105Z 01AB unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-portal.service.local.consul
-V 221125173108Z 01AC unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity.service.local.consul
-V 221125173111Z 01AD unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity-admin.service.local.consul
-V 221125173536Z 01AE unknown /C=fr/ST=idf/L=paris/O=vitam/CN=cas-server.service.local.consul
-V 221125173538Z 01AF unknown /C=fr/ST=idf/L=paris/O=vitam/CN=security-internal.service.local.consul
-V 221125173540Z 01B0 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-internal.service.local.consul
-V 221125173542Z 01B1 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external.service.local.consul
-V 221125173544Z 01B2 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-portal.service.local.consul
-V 221125173546Z 01B3 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity.service.local.consul
-V 221125173548Z 01B4 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity-admin.service.local.consul
-V 221125174612Z 01B5 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=cas-server.service.local.consul
-V 221125174615Z 01B6 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=security-internal.service.local.consul
-V 221125174616Z 01B7 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-internal.service.local.consul
-V 221125174618Z 01B8 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external.service.local.consul
-V 221125174620Z 01B9 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-portal.service.local.consul
-V 221125174622Z 01BA unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity.service.local.consul
-V 221125174624Z 01BB unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity-admin.service.local.consul
-V 221125180950Z 01BC unknown /C=fr/ST=idf/L=paris/O=vitam/CN=cas-server.service.local.consul
-V 221125180953Z 01BD unknown /C=fr/ST=idf/L=paris/O=vitam/CN=security-internal.service.local.consul
-V 221125180954Z 01BE unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-internal.service.local.consul
-V 221125180957Z 01BF unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external.service.local.consul
-V 221125180959Z 01C0 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-portal.service.local.consul
-V 221125181001Z 01C1 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity.service.local.consul
-V 221125181003Z 01C2 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity-admin.service.local.consul
-V 291124122136Z 01C3 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291124122137Z 01C4 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221126122318Z 01C5 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=cas-server.service.consul
-V 221126122320Z 01C6 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=security-internal.service.consul
-V 221126122324Z 01C7 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-internal.service.consul
-V 221126122326Z 01C8 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external.service.consul
-V 221126122329Z 01C9 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-portal.service.consul
-V 221126122331Z 01CA unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity.service.consul
-V 221126122333Z 01CB unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity-admin.service.consul
-V 291125101902Z 01CC unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291125101903Z 01CD unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 291125101939Z 01CE unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291125101940Z 01CF unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 291125102055Z 01D0 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291125102057Z 01D1 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221127102120Z 01D2 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=cas-server.service.consul
-V 221127102123Z 01D3 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=security-internal.service.consul
-V 221127102143Z 01D4 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=cas-server.service.consul
-V 221127102145Z 01D5 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=security-internal.service.consul
-V 221127102148Z 01D6 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-internal.service.consul
-V 221127102151Z 01D7 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external.service.consul
-V 221127102153Z 01D8 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-portal.service.consul
-V 221127102156Z 01D9 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity.service.consul
-V 221127102158Z 01DA unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity-admin.service.consul
-V 291125102703Z 01DB unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291125102704Z 01DC unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221127102719Z 01DD unknown /C=fr/ST=idf/L=paris/O=vitam/CN=cas-server.service.consul
-V 221127102722Z 01DE unknown /C=fr/ST=idf/L=paris/O=vitam/CN=security-internal.service.consul
-V 221127102725Z 01DF unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-internal.service.consul
-V 221127102727Z 01E0 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external.service.consul
-V 221127102730Z 01E1 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-portal.service.consul
-V 221127102734Z 01E2 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity.service.consul
-V 221127102736Z 01E3 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity-admin.service.consul
-V 291209104241Z 01E4 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_server
-V 291209104242Z 01E5 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_server
-V 221211104307Z 01E6 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=cas-server.service.consul
-V 221211104310Z 01E7 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=security-internal.service.consul
-V 221211104312Z 01E8 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-internal.service.consul
-V 221211104314Z 01E9 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external.service.consul
-V 221211104316Z 01EA unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-portal.service.consul
-V 221211104318Z 01EB unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity.service.consul
-V 221211104320Z 01EC unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity-admin.service.consul
-V 221211104419Z 01ED unknown /C=fr/ST=idf/L=paris/O=vitam/CN=cas-server.service.consul
-V 221211104422Z 01EE unknown /C=fr/ST=idf/L=paris/O=vitam/CN=security-internal.service.consul
-V 221211104424Z 01EF unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-internal.service.consul
-V 221211104426Z 01F0 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external.service.consul
-V 221211104428Z 01F1 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-portal.service.consul
-V 221211104430Z 01F2 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity.service.consul
-V 221211104433Z 01F3 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity-admin.service.consul
-V 221215104510Z 01F4 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=cas-server.service.consul
-V 221215104512Z 01F5 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=security-internal.service.consul
-V 221215104515Z 01F6 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-internal.service.consul
-V 221215104517Z 01F7 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external.service.consul
-V 221215104519Z 01F8 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-portal.service.consul
-V 221215104521Z 01F9 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity.service.consul
-V 221215104523Z 01FA unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity-admin.service.consul
-V 221215105153Z 01FB unknown /C=fr/ST=idf/L=paris/O=vitam/CN=cas-server.service.consul
-V 221215105155Z 01FC unknown /C=fr/ST=idf/L=paris/O=vitam/CN=security-internal.service.consul
-V 221215105158Z 01FD unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-internal.service.consul
-V 221215105200Z 01FE unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external.service.consul
-V 221215105202Z 01FF unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-portal.service.consul
-V 221215105204Z 0200 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity.service.consul
-V 221215105207Z 0201 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity-admin.service.consul
-V 221218124552Z 0202 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=cas-server.service.consul
-V 221218124555Z 0203 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=security-internal.service.consul
-V 221218124557Z 0204 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-internal.service.consul
-V 221218124600Z 0205 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=iam-external.service.consul
-V 221218124602Z 0206 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-portal.service.consul
-V 221218124605Z 0207 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity.service.consul
-V 221218124607Z 0208 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=ui-identity-admin.service.consul
-V 221218124610Z 0209 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=reverse.service.consul
+V 300503091339Z 01 unknown /C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_server
+V 300503091340Z 02 unknown /C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_intermediate_server
+V 230505091408Z 03 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=security-internal.service.consul
+V 230505091411Z 04 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=iam-internal.service.consul
+V 230505091415Z 05 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=iam-external.service.consul
+V 230505091418Z 06 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=cas-server.service.consul
+V 230505091421Z 07 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=ui-portal.service.consul
+V 230505091425Z 08 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=ui-identity.service.consul
+V 230505091428Z 09 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=ui-identity-admin.service.consul
+V 230505091432Z 0A unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=reverse.service.consul
+V 230505114356Z 0B unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=security-internal.service.consul
+V 230505114400Z 0C unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=iam-internal.service.consul
+V 230505114403Z 0D unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=iam-external.service.consul
+V 230505114407Z 0E unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=cas-server.service.consul
+V 230505114410Z 0F unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=ui-portal.service.consul
+V 230505114414Z 10 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=ui-identity.service.consul
+V 230505114418Z 11 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=ui-identity-admin.service.consul
+V 230505114422Z 12 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=reverse.service.consul
diff --git a/deployment/pki/config/server/serial b/deployment/pki/config/server/serial
index 8c1949a07910d763586a66c92182e7eb83be3ded..b1bd38b62a0800a4f6a80c34e21c5acffae52c7e 100644
--- a/deployment/pki/config/server/serial
+++ b/deployment/pki/config/server/serial
@@ -1 +1 @@
-020A
+13
diff --git a/deployment/pki/config/timestamping/crlnumber b/deployment/pki/config/timestamping/crlnumber
deleted file mode 100644
index e69de29bb2d1d6434b8b29ae775ad8c2e48c5391..0000000000000000000000000000000000000000
diff --git a/deployment/pki/config/timestamping/index.txt b/deployment/pki/config/timestamping/index.txt
deleted file mode 100644
index f8272ad78a7fa0fd09eafde74cb164776f13618a..0000000000000000000000000000000000000000
--- a/deployment/pki/config/timestamping/index.txt
+++ /dev/null
@@ -1,56 +0,0 @@
-V 270227163946Z A4 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_timestamping
-V 270227163947Z A5 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_timestamping
-V 200229164027Z A6 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=logbook.service.consul
-V 270227174339Z A7 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_timestamping
-V 270227174340Z A8 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_timestamping
-V 200229174356Z A9 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=logbook.service.consul
-V 270228082241Z AA unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_timestamping
-V 270228082241Z AB unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_timestamping
-V 270228082648Z AC unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_timestamping
-V 270228082648Z AD unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_timestamping
-V 200301083151Z AE unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=logbook.service.consul
-V 270304180342Z AF unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_timestamping
-V 270304180342Z B0 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_timestamping
-V 200305180417Z B1 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=logbook.service.consul
-V 270313121842Z B2 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_timestamping
-V 270313121843Z B3 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=CA_timestamping
-V 200314121849Z B4 unknown /C=FR/ST=idf/L=paris/O=Vitam./CN=logbook.service.consul
-V 270710142905Z B5 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_timestamping
-V 270710142907Z B6 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_timestamping
-V 200711142954Z B7 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-logbook
-V 270806093258Z B8 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_timestamping
-V 270806093258Z B9 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_timestamping
-V 200807093432Z BA unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-logbook
-V 270807160407Z BB unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_timestamping
-V 270807160408Z BC unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_timestamping
-V 200808160450Z BD unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-logbook
-V 280219163459Z BE unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_timestamping
-V 280219163500Z BF unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_timestamping
-V 210220171526Z C0 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-logbook
-V 210221091828Z C1 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-logbook
-V 210221092152Z C2 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-logbook
-V 210221092154Z C3 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-storage
-V 210221093244Z C4 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-logbook
-V 210221093249Z C5 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-storage
-V 210221093722Z C6 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-logbook
-V 210221093724Z C7 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-storage
-V 210221142951Z C8 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-logbook
-V 210221142952Z C9 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-storage
-V 210221163511Z CA unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-logbook
-V 210221163513Z CB unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-storage
-V 210221163702Z CC unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-logbook
-V 210221163703Z CD unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-storage
-V 281016083101Z CE unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_timestamping
-V 281016083102Z CF unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_timestamping
-V 211018084059Z D0 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-logbook
-V 211018084100Z D1 unknown /C=fr/ST=idf/L=paris/O=vitam/CN=secure-storage
-V 291103094232Z D2 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_timestamping
-V 291103094233Z D3 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_timestamping
-V 291103094804Z D4 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_timestamping
-V 291103094805Z D5 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_timestamping
-V 291118093720Z D6 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_timestamping
-V 291118093721Z D7 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_timestamping
-V 291118100029Z D8 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_timestamping
-V 291118100030Z D9 unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_timestamping
-V 291119085339Z DA unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_root_timestamping
-V 291119085340Z DB unknown /C=fr/ST=idf/L=paris/O=vitam/OU=authorities/CN=ca_intermediate_timestamping
diff --git a/deployment/pki/config/timestamping/serial b/deployment/pki/config/timestamping/serial
deleted file mode 100644
index f41fada93d25c19ff4c85c5d50fdbe5bd1232962..0000000000000000000000000000000000000000
--- a/deployment/pki/config/timestamping/serial
+++ /dev/null
@@ -1 +0,0 @@
-DC
diff --git a/deployment/pki/scripts/generate_ca.sh b/deployment/pki/scripts/generate_ca.sh
index 60909fd1df9325057ac9f0961cbc90de8fdc745e..8c812e84e81e7c37d821a2c134d1bd2c337e3a4e 100755
--- a/deployment/pki/scripts/generate_ca.sh
+++ b/deployment/pki/scripts/generate_ca.sh
@@ -5,128 +5,18 @@ set -e
############################# Includes ##############################
######################################################################
-. $(dirname $0)/lib/functions.sh
+. $(dirname $0)/lib/ca.sh
######################################################################
-############################# Functions ##############################
+######################### Overriding ###########################
######################################################################
-# Génération de la CA root
-function generate_ca_root {
- local MDP_CAROOT_KEY="${1}"
- local REPERTOIRE_SORTIE="${2}"
- local CONFIG_DIR="${3}"
-
- # Correctly set certificate CN (env var is read inside the openssl configuration file)
- export OPENSSL_CN=ca_root_${REPERTOIRE_SORTIE}
- # Correctly set certificate DIRECTORY (env var is read inside the openssl configuration file)
- export OPENSSL_CA_DIR=${REPERTOIRE_SORTIE}
-
- if [ ! -d ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE} ]; then
- pki_logger "Création du sous-répertoire ${REPERTOIRE_SORTIE}"
- mkdir -p ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE};
- fi
-
- pki_logger "Create CA request..."
- openssl req \
- -config ${REPERTOIRE_CONFIG}/ca-config \
- -new \
- -out ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-root.req \
- -keyout ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-root.key \
- -passout pass:${MDP_CAROOT_KEY} \
- -batch
-
- pki_logger "Create CA certificate..."
- openssl ca \
- -config ${REPERTOIRE_CONFIG}/ca-config \
- -selfsign \
- -extensions extension_ca_root \
- -in ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-root.req \
- -passin pass:${MDP_CAROOT_KEY} \
- -out ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-root.crt \
- -batch
-}
-
-# Génération de la CA intermédiaire
-function generate_ca_interm {
- local MDP_CAINTERMEDIATE_KEY="${1}"
- local MDP_CAROOT_KEY="${2}"
- local REPERTOIRE_SORTIE="${3}"
- local TYPE_CA="${4}"
-
- # Correctly set certificate CN (env var is read inside the openssl configuration file)
- export OPENSSL_CN=ca_intermediate_${REPERTOIRE_SORTIE}
- # Correctly set certificate DIRECTORY (env var is read inside the openssl configuration file)
- export OPENSSL_CA_DIR=${REPERTOIRE_SORTIE}
-
- if [ ! -d ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE} ]; then
- pki_logger "Création du sous-répertoire ${REPERTOIRE_SORTIE}"
- mkdir -p ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE};
- fi
-
- pki_logger "Generate intermediate request..."
- openssl req \
- -config ${REPERTOIRE_CONFIG}/ca-config \
- -new \
- -newkey ${PARAM_KEY_CHIFFREMENT} \
- -out ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-intermediate.req \
- -keyout ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-intermediate.key \
- -passout pass:${MDP_CAINTERMEDIATE_KEY} \
- -batch
-
- pki_logger "Sign..."
- openssl ca \
- -config ${REPERTOIRE_CONFIG}/ca-config \
- -extensions extension_ca_intermediate \
- -in ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-intermediate.req \
- -passin pass:${MDP_CAROOT_KEY} \
- -out ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-intermediate.crt \
- -batch
+function get_autorities() {
+ echo "server client-external client-vitam"
}
######################################################################
############################# Main #############################
######################################################################
-cd $(dirname $0)/../..
-
-pki_logger "Lancement de la procédure de création des CA"
-pki_logger "=============================================="
-if [ ! -d ${REPERTOIRE_CA} ]; then
- pki_logger "Répertoire ${REPERTOIRE_CA} absent ; création..."
- mkdir -p ${REPERTOIRE_CA};
-fi
-if [ ! -d ${TEMP_CERTS} ]; then
- pki_logger "Création du répertoire de travail temporaire tempcerts sous ${TEMP_CERTS}..."
- mkdir -p ${TEMP_CERTS}
-fi
-
-# Cleaning or creating vault file for CA
-initVault ca
-
-# Création des répertoires pour les différentes CA
-# Création des CA root dans pki/ca
-# Création des CA intermédiaires pki/ca
-for ITEM in server client-iam client-iam-internal # Supposed there is only one CA for all IHM contrib
-do
- mkdir -p ${REPERTOIRE_CA}/${ITEM}
-
- pki_logger "Création de CA root pour ${ITEM}..."
- # Génération du CA_ROOT_PASSWORD & stockage dans le vault-ca
- CA_ROOT_PASSWORD=$(generatePassphrase)
- setComponentPassphrase ca "ca_root_${ITEM}" "${CA_ROOT_PASSWORD}"
- generate_ca_root ${CA_ROOT_PASSWORD} ${ITEM} ${ITEM}
-
- pki_logger "Création de la CA intermediate pour ${ITEM}..."
- # Génération du CA_INTERMEDIATE_PASSWORD & stockage dans le vault-ca
- CA_INTERMEDIATE_PASSWORD=$(generatePassphrase)
- setComponentPassphrase ca "ca_intermediate_${ITEM}" "${CA_INTERMEDIATE_PASSWORD}"
- generate_ca_interm ${CA_INTERMEDIATE_PASSWORD} ${CA_ROOT_PASSWORD} ${ITEM} ${ITEM}
-
- purge_directory "${REPERTOIRE_CONFIG}/${ITEM}"
- purge_directory "${REPERTOIRE_CA}/${ITEM}"
-
- pki_logger "----------------------------------------------"
-done
-pki_logger "=============================================="
-pki_logger "Fin de la procédure de création des CA"
+main "$@"
diff --git a/deployment/pki/scripts/generate_ca_dev.sh b/deployment/pki/scripts/generate_ca_dev.sh
new file mode 100755
index 0000000000000000000000000000000000000000..d61e2e63ed93f1936c07475891462f47334d3fe1
--- /dev/null
+++ b/deployment/pki/scripts/generate_ca_dev.sh
@@ -0,0 +1,24 @@
+#!/usr/bin/env bash
+set -e
+
+######################################################################
+############################# Includes ##############################
+######################################################################
+
+. $(dirname $0)/lib/ca.sh
+
+######################################################################
+######################### Overriding ###########################
+######################################################################
+
+REPERTOIRE_ROOT="$( cd "$( readlink -f $(dirname ${BASH_SOURCE[0]}) )/../../../dev-deployment" ; pwd )"
+
+function get_autorities() {
+ echo "server client-external client-vitam"
+}
+
+######################################################################
+############################# Main #############################
+######################################################################
+
+main "$@"
diff --git a/deployment/pki/scripts/generate_certs.sh b/deployment/pki/scripts/generate_certs.sh
index 34739e33b8e0ed725c596121795c212fdecb6f68..35b06d49eba5ca615a792a4d4648cfa84a11c696 100755
--- a/deployment/pki/scripts/generate_certs.sh
+++ b/deployment/pki/scripts/generate_certs.sh
@@ -5,274 +5,44 @@ set -e
############################# Includes ##############################
######################################################################
-. "$(dirname $0)/lib/functions.sh"
+. "$(dirname $0)/lib/certs.sh"
######################################################################
-############################# Functions ##############################
+######################### Overriding ###########################
######################################################################
-# Génération d'un certificat serveur
-function generateHostCertificate {
- local COMPOSANT="${1}"
- local CERT_KEY="${2}"
- local INTERMEDIATE_CA_KEY="${3}"
- local HOSTNAME="${4}"
- local TYPE_CERTIFICAT="${5}"
- local SERVICE_HOSTNAME="${6}"
- local SERVICE_DC_HOSTNAME="${7}"
-
- # Correctly set Subject Alternate Name (env var is read inside the openssl configuration file)
- export OPENSSL_SAN="DNS:${SERVICE_HOSTNAME},DNS:${HOSTNAME},DNS:${SERVICE_DC_HOSTNAME}"
- # Correctly set certificate CN (env var is read inside the openssl configuration file)
- export OPENSSL_CN="${SERVICE_DC_HOSTNAME}"
- # Correctly set certificate DIRECTORY (env var is read inside the openssl configuration file)
- export OPENSSL_CRT_DIR=${TYPE_CERTIFICAT}
-
- pki_logger "Création du certificat ${TYPE_CERTIFICAT} pour ${COMPOSANT} hébergé sur ${HOSTNAME}..."
- mkdir -p "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/hosts/${HOSTNAME}"
- pki_logger "Generation de la clé..."
- openssl req -newkey "${PARAM_KEY_CHIFFREMENT}" \
- -passout pass:"${CERT_KEY}" \
- -keyout "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/hosts/${HOSTNAME}/${COMPOSANT}.key" \
- -out "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/hosts/${HOSTNAME}/${COMPOSANT}.req" \
- -nodes \
- -config "${REPERTOIRE_CONFIG}/crt-config" \
- -batch
-
- pki_logger "Generation du certificat signé avec CA ${TYPE_CERTIFICAT}..."
- openssl ca -config "${REPERTOIRE_CONFIG}/crt-config" \
- -passin pass:"${INTERMEDIATE_CA_KEY}" \
- -out "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/hosts/${HOSTNAME}/${COMPOSANT}.crt" \
- -in "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/hosts/${HOSTNAME}/${COMPOSANT}.req" -batch
- # -extensions extension_${TYPE_CERTIFICAT} -batch
-
- openssl x509 \
- -in "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/hosts/${HOSTNAME}/${COMPOSANT}.crt" \
- -out "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/hosts/${HOSTNAME}/${COMPOSANT}.pem"
-
- purge_directory "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/hosts/${HOSTNAME}"
- purge_directory "${REPERTOIRE_CONFIG}/${TYPE_CERTIFICAT}"
-}
-
-# Génération d'un certificat de timestamping ; le nom du certificat est dérivé de son usage
-function generateTimestampCertificate {
- local USAGE="${1}"
- local CERT_KEY="${2}"
- local INTERMEDIATE_CA_KEY="${3}"
- local CN_VALEUR="${USAGE}"
- local TYPE_CERTIFICAT="timestamping"
-
- # Correctly set certificate CN (env var is read inside the openssl configuration file)
- export OPENSSL_CN="${CN_VALEUR}"
- # Correctly set certificate DIRECTORY (env var is read inside the openssl configuration file)
- export OPENSSL_CRT_DIR=${TYPE_CERTIFICAT}
-
- pki_logger "Création du certificat ${TYPE_CERTIFICAT} pour usage ${USAGE}"
- mkdir -p "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/vitam"
- pki_logger "Generation de la clé..."
- openssl req -newkey "${PARAM_KEY_CHIFFREMENT}" \
- -passout pass:"${CERT_KEY}" \
- -keyout "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/vitam/${USAGE}.key" \
- -out "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/vitam/${USAGE}.req" \
- -nodes \
- -config "${REPERTOIRE_CONFIG}/crt-config" \
- -batch
-
- pki_logger "Generation du certificat signé avec CA ${TYPE_CERTIFICAT}..."
- openssl ca -config "${REPERTOIRE_CONFIG}/crt-config" \
- -passin pass:"${INTERMEDIATE_CA_KEY}" \
- -out "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/vitam/${USAGE}.crt" \
- -in "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/vitam/${USAGE}.req" \
- -extensions extension_${TYPE_CERTIFICAT} -batch
-
- purge_directory "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/vitam"
- purge_directory "${REPERTOIRE_CONFIG}/${TYPE_CERTIFICAT}"
-}
-
-# Génération d'un certificat client
-function generateClientCertificate {
- local CLIENT_NAME="${1}"
- local MDP_KEY="${2}"
- local MDP_CAINTERMEDIATE_KEY="${3}"
- local CLIENT_TYPE="${4}"
- local TYPE_CERTIFICAT="client"
-
- # Correctly set certificate CN (env var is read inside the openssl configuration file)
- export OPENSSL_CN="${CLIENT_NAME}"
- # Correctly set certificate DIRECTORY (env var is read inside the openssl configuration file)
- export OPENSSL_CRT_DIR=${CLIENT_TYPE}
-
- pki_logger "Création du certificat ${TYPE_CERTIFICAT} pour ${CLIENT_NAME}"
- mkdir -p "${REPERTOIRE_CERTIFICAT}/${CLIENT_TYPE}/clients/${CLIENT_NAME}"
- pki_logger "Generation de la clé..."
- openssl req -newkey "${PARAM_KEY_CHIFFREMENT}" \
- -passout pass:"${MDP_KEY}" \
- -keyout "${REPERTOIRE_CERTIFICAT}/${CLIENT_TYPE}/clients/${CLIENT_NAME}/${CLIENT_NAME}.key" \
- -out "${REPERTOIRE_CERTIFICAT}/${CLIENT_TYPE}/clients/${CLIENT_NAME}/${CLIENT_NAME}.req" \
- -config "${REPERTOIRE_CONFIG}/crt-config" \
- -batch
-
- pki_logger "Generation du certificat signé avec ${CLIENT_TYPE}..."
- openssl ca -config "${REPERTOIRE_CONFIG}/crt-config" \
- -passin pass:"${MDP_CAINTERMEDIATE_KEY}" \
- -out "${REPERTOIRE_CERTIFICAT}/${CLIENT_TYPE}/clients/${CLIENT_NAME}/${CLIENT_NAME}.crt" \
- -in "${REPERTOIRE_CERTIFICAT}/${CLIENT_TYPE}/clients/${CLIENT_NAME}/${CLIENT_NAME}.req" \
- -extensions extension_${TYPE_CERTIFICAT} -batch
-
- purge_directory "${REPERTOIRE_CERTIFICAT}/${CLIENT_TYPE}/clients/${CLIENT_NAME}"
- purge_directory "${REPERTOIRE_CONFIG}/${CLIENT_TYPE}"
-}
-
-# Génération des certificats serveur et stockage de la passphrase pour tous les hosts d'un host group donné
-function generateHostCertAndStorePassphrase {
- local COMPONENT="${1}"
- local HOSTS_GROUP="${2}"
-
- # Récupération du password de la CA_INTERMEDIATE dans le vault-ca
- CA_INTERMEDIATE_PASSWORD=$(getComponentPassphrase ca "ca_intermediate_server")
-
- # sed "1 d" : remove the first line
- for SERVER in $(ansible -i ${ENVIRONNEMENT_FILE} --list-hosts ${HOSTS_GROUP} ${ANSIBLE_VAULT_PASSWD}| sed "1 d"); do
- # Generate the key
- local CERT_KEY=$(generatePassphrase)
- # Create the certificate
- generateHostCertificate ${COMPONENT} \
- ${CERT_KEY} \
- ${CA_INTERMEDIATE_PASSWORD} \
- ${SERVER} \
- "server" \
- "${COMPONENT}.service.${CONSUL_DOMAIN}" \
- "${COMPONENT}.service.${CONSUL_DOMAIN}"
- # Store the key to the vault
- setComponentPassphrase certs "server_${COMPONENT}_key" \
- "${CERT_KEY}"
- done
-}
-
-# Génération d'un certificat timestamp (utilise la fonction de génération de certificats serveur)
-function generateTimestampCertAndStorePassphrase {
- local USAGE="${1}"
-
- # Récupération du password de la CA_INTERMEDIATE dans le vault-ca
- CA_INTERMEDIATE_PASSWORD=$(getComponentPassphrase ca "ca_intermediate_timestamping")
-
- # Generate the key
- local CERT_KEY=$(generatePassphrase)
- # Create the certificate
- generateTimestampCertificate ${USAGE} \
- ${CERT_KEY} \
- ${CA_INTERMEDIATE_PASSWORD}
- # Store the key to the vault
- setComponentPassphrase certs "timestamping_${USAGE}_key" \
- "${CERT_KEY}"
-}
-
-# Génération du certificat client et stockage de la passphrase
-function generateClientCertAndStorePassphrase {
- local COMPONENT="${1}"
- local CLIENT_TYPE="${2}"
-
- # Récupération du password de la CA_INTERMEDIATE dans le vault-ca
- CA_INTERMEDIATE_PASSWORD=$(getComponentPassphrase ca "ca_intermediate_${CLIENT_TYPE}")
-
- # Generate the key
- local CERT_KEY=$(generatePassphrase)
- # Create the certificate
- generateClientCertificate ${COMPONENT} \
- ${CERT_KEY} \
- ${CA_INTERMEDIATE_PASSWORD} \
- ${CLIENT_TYPE}
- # Store the key to the vault
- setComponentPassphrase certs "client_${CLIENT_TYPE}_${COMPONENT}_key" \
- "${CERT_KEY}"
-}
-
-# Recopie de la CA de pki/CA vers environments/cert/cert-type/CA
-function copyCAFromPki {
- local CERT_TYPE="${1}"
-
- pki_logger "Copie de la CA (root + intermediate) de ${CERT_TYPE}"
- mkdir -p "${REPERTOIRE_CERTIFICAT}/${CERT_TYPE}/ca"
- for CA in $(ls ${REPERTOIRE_CA}/${CERT_TYPE}/*.crt); do
- cp -f "${CA}" "${REPERTOIRE_CERTIFICAT}/${CERT_TYPE}/ca/$(basename ${CA})"
- done
+function generateCerts {
+
+ # Copy CA
+ pki_logger "Recopie des clés publiques des CA"
+ copyCAFromPki client-external
+ copyCAFromPki client-vitam
+ copyCAFromPki server
+
+ # Generate hosts certificates
+ pki_logger "Génération des certificats serveurs"
+ # Zone interne
+ generateHostCertAndStorePassphrase security-internal hosts_vitamui_security_internal
+ generateHostCertAndStorePassphrase iam-internal hosts_vitamui_iam_internal
+ #Zone externe
+ generateHostCertAndStorePassphrase iam-external hosts_vitamui_iam_external
+ generateHostCertAndStorePassphrase cas-server hosts_cas_server
+ #Zone UI
+ generateHostCertAndStorePassphrase ui-portal hosts_ui_portal
+ generateHostCertAndStorePassphrase ui-identity hosts_ui_identity
+ generateHostCertAndStorePassphrase ui-identity-admin hosts_ui_identity_admin
+ #Reverse
+ generateHostCertAndStorePassphrase reverse hosts_vitamui_reverseproxy
+
+ # Example of generated client cert for a customer allowing to perform request on external APIs
+ generateClientCertAndStorePassphrase customer_x client-external
+
+ # Generate Vitam certificates for VitamUI
+ generateClientCertAndStorePassphrase vitamui client-vitam
}
######################################################################
############################# Main #############################
######################################################################
-cd $(dirname $0)/../..
-
-# Vérification des paramètres
-if [ "${1}" == "" ]; then
- pki_logger "ERROR" "This script needs to know on which environment you want to apply to !"
- exit 1
-fi
-ENVIRONNEMENT="${1}"
-
-ENVIRONNEMENT_FILE="${1}"
-
-if [ ! -f "${ENVIRONNEMENT_FILE}" ]; then
- pki_logger "ERROR" "Cannot find environment file: ${ENVIRONNEMENT_FILE}"
- exit 1
-fi
-
-# Get consul_domain
-CONSUL_DOMAIN=$(read_ansible_var "consul_domain" "hosts_vitamui_iam_internal[0]")
-
-# Get vitam_site_name
-VITAM_SITE_NAME=$(read_ansible_var "vitam_site_name" "hosts_vitamui_iam_internal[0]")
-
-# Cleaning or creating vault file for certs
-initVault certs
-
-# Copy CA
-pki_logger "Recopie des clés publiques des CA"
-copyCAFromPki client-iam
-copyCAFromPki client-iam-internal
-# copyCAFromPki client-storage
-copyCAFromPki server
-# copyCAFromPki timestamping
-
-# Generate hosts certificates
-pki_logger "Génération des certificats serveurs"
-# Method # Component name # Host group name
-generateHostCertAndStorePassphrase cas-server hosts_cas_server
-generateHostCertAndStorePassphrase security-internal hosts_vitamui_security_internal
-generateHostCertAndStorePassphrase iam-internal hosts_vitamui_iam_internal
-generateHostCertAndStorePassphrase iam-external hosts_vitamui_iam_external
-
-generateHostCertAndStorePassphrase ui-portal hosts_ui_portal
-generateHostCertAndStorePassphrase ui-identity hosts_ui_identity
-generateHostCertAndStorePassphrase ui-identity-admin hosts_ui_identity_admin
-generateHostCertAndStorePassphrase reverse hosts_vitamui_reverseproxy
-# generateHostCertAndStorePassphrase access-external hosts_access_external
-# generateHostCertAndStorePassphrase offer hosts_storage_offer_default
-# generateHostCertAndStorePassphrase ihm-recette hosts_ihm_recette
-# generateHostCertAndStorePassphrase ihm-demo hosts_ihm_demo
-
-# Generate timestamp certificates
-pki_logger "Génération des certificats timestamping"
-# Method # Usage
-# generateTimestampCertAndStorePassphrase secure-logbook
-# generateTimestampCertAndStorePassphrase secure-storage
-
-# Generate clients certificates
-pki_logger "Génération des certificats clients"
-# Method # Component name # Client type
-# generateClientCertAndStorePassphrase ihm-demo client-external
-# generateClientCertAndStorePassphrase gatling client-external
-# generateClientCertAndStorePassphrase vitam-admin-int client-external
-# generateClientCertAndStorePassphrase ihm-recette client-external
-generateClientCertAndStorePassphrase reverse client-iam
-generateClientCertAndStorePassphrase iam-external client-iam-internal
-# generateClientCertAndStorePassphrase iam-internal client-iam
-# generateClientCertAndStorePassphrase access_external client-external
-
-# Generate storage certificates
-pki_logger "Génération des certificats storage"
-# Method # Component name # Client type
-# generateClientCertAndStorePassphrase storage client-storage
-
-pki_logger "Fin de script"
+main "$@"
\ No newline at end of file
diff --git a/deployment/pki/scripts/generate_certs_dev.sh b/deployment/pki/scripts/generate_certs_dev.sh
new file mode 100755
index 0000000000000000000000000000000000000000..f002ba227dfa5852927112853279ef7814d8683d
--- /dev/null
+++ b/deployment/pki/scripts/generate_certs_dev.sh
@@ -0,0 +1,54 @@
+#!/usr/bin/env bash
+set -e
+
+######################################################################
+############################# Includes ##############################
+######################################################################
+
+. "$(dirname $0)/lib/certs.sh"
+
+######################################################################
+######################### Overriding ###########################
+######################################################################
+
+REPERTOIRE_ROOT="$( cd "$( readlink -f $(dirname ${BASH_SOURCE[0]}) )/../../../dev-deployment" ; pwd )"
+
+function getHostCertificateCn {
+ echo "dev.vitamui.com"
+}
+
+function generateCerts {
+
+ # Copy CA
+ pki_logger "Recopie des clés publiques des CA"
+ copyCAFromPki client-external
+ copyCAFromPki client-vitam
+ copyCAFromPki server
+
+ # Generate hosts certificates
+ pki_logger "Génération des certificats serveurs"
+ # Zone interne
+ generateHostCertAndStorePassphrase security-internal hosts_vitamui_security_internal
+ generateHostCertAndStorePassphrase iam-internal hosts_vitamui_iam_internal
+ #Zone externe
+ generateHostCertAndStorePassphrase iam-external hosts_vitamui_iam_external
+ generateHostCertAndStorePassphrase cas-server hosts_cas_server
+ #Zone UI
+ generateHostCertAndStorePassphrase ui-portal hosts_ui_portal
+ generateHostCertAndStorePassphrase ui-identity hosts_ui_identity
+ generateHostCertAndStorePassphrase ui-identity-admin hosts_ui_identity_admin
+ #Reverse
+ generateHostCertAndStorePassphrase reverse hosts_vitamui_reverseproxy
+
+ # Example of generated client cert for a customer allowing to perform request on external APIs
+ generateClientCertAndStorePassphrase customer_x client-external
+
+ # Generate Vitam certificates for VitamUI
+ generateClientCertAndStorePassphrase vitamui client-vitam
+}
+
+######################################################################
+############################# Main #############################
+######################################################################
+
+main "$@"
\ No newline at end of file
diff --git a/deployment/pki/scripts/lib/ca.sh b/deployment/pki/scripts/lib/ca.sh
new file mode 100755
index 0000000000000000000000000000000000000000..8deb2ea51cb2ac5dd6768def628a27ccc7521d60
--- /dev/null
+++ b/deployment/pki/scripts/lib/ca.sh
@@ -0,0 +1,180 @@
+#!/usr/bin/env bash
+set -e
+
+######################################################################
+############################# Includes ##############################
+######################################################################
+
+. "$(dirname $0)/lib/commons.sh"
+
+######################################################################
+############################# Functions ##############################
+######################################################################
+
+# Génération de la CA root
+function generate_ca_root {
+ local MDP_CAROOT_KEY="${1}"
+ local REPERTOIRE_SORTIE="${2}"
+ local CONFIG_DIR="${3}"
+
+ # Correctly set certificate CN (env var is read inside the openssl configuration file)
+ export OPENSSL_CN=ca_root_${REPERTOIRE_SORTIE}
+ # Correctly set certificate DIRECTORY (env var is read inside the openssl configuration file)
+ export OPENSSL_CA_DIR=${REPERTOIRE_SORTIE}
+
+ if [ ! -d ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE} ]; then
+ pki_logger "Création du sous-répertoire ${REPERTOIRE_SORTIE}"
+ mkdir -p ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE};
+ fi
+
+ pki_logger "Create CA request..."
+ openssl req \
+ -config ${REPERTOIRE_CONFIG}/ca-config \
+ -new \
+ -out ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-root.req \
+ -keyout ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-root.key \
+ -passout pass:${MDP_CAROOT_KEY} \
+ -batch
+
+ pki_logger "Create CA certificate... $(pwd)"
+ openssl ca \
+ -config ${REPERTOIRE_CONFIG}/ca-config \
+ -selfsign \
+ -extensions extension_ca_root \
+ -in ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-root.req \
+ -passin pass:${MDP_CAROOT_KEY} \
+ -out ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-root.crt \
+ -batch
+}
+
+# Génération de la CA intermédiaire
+function generate_ca_interm {
+ local MDP_CAINTERMEDIATE_KEY="${1}"
+ local MDP_CAROOT_KEY="${2}"
+ local REPERTOIRE_SORTIE="${3}"
+ local TYPE_CA="${4}"
+
+ # Correctly set certificate CN (env var is read inside the openssl configuration file)
+ export OPENSSL_CN=ca_intermediate_${REPERTOIRE_SORTIE}
+ # Correctly set certificate DIRECTORY (env var is read inside the openssl configuration file)
+ export OPENSSL_CA_DIR=${REPERTOIRE_SORTIE}
+ pki_logger "OPENSSL_CA_DIR : ${CAROOT_DIR}"
+ if [ ! -d ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE} ]; then
+ pki_logger "Création du sous-répertoire ${REPERTOIRE_SORTIE}"
+ mkdir -p ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE};
+ fi
+
+ pki_logger "Generate intermediate request..."
+ openssl req \
+ -config ${REPERTOIRE_CONFIG}/ca-config \
+ -new \
+ -newkey ${PARAM_KEY_CHIFFREMENT} \
+ -out ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-intermediate.req \
+ -keyout ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-intermediate.key \
+ -passout pass:${MDP_CAINTERMEDIATE_KEY} \
+ -batch
+
+ pki_logger "Sign..."
+ openssl ca \
+ -config ${REPERTOIRE_CONFIG}/ca-config \
+ -extensions extension_ca_intermediate \
+ -in ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-intermediate.req \
+ -passin pass:${MDP_CAROOT_KEY} \
+ -out ${REPERTOIRE_CA}/${REPERTOIRE_SORTIE}/ca-intermediate.crt \
+ -batch
+}
+
+# Génération de la CA intermédiaire
+function init_config_ca {
+ local CA_DIR="${1}"
+
+ # Suppression de la configuration existante.
+ rm -Rf "${REPERTOIRE_CONFIG}/${CA_DIR}"
+ mkdir -p "${REPERTOIRE_CONFIG}/${CA_DIR}"
+ touch "${REPERTOIRE_CONFIG}/${CA_DIR}/index.txt"
+ echo '01' > "${REPERTOIRE_CONFIG}/${CA_DIR}/serial"
+ touch "${REPERTOIRE_CONFIG}/${CA_DIR}/crlnumber"
+}
+
+function get_autorities() {
+ # To override
+ echo ""
+}
+
+function main() {
+
+ # FIXME Why ? it seems to be related to the variable 'dir' set in the configuration of certificates.
+ cd $(dirname $0)/../..
+ init
+
+ ERASE="false"
+
+ if [ "$#" -gt 0 ]; then
+ if [ "${1,,}" == "true" ]; then
+ ERASE="true"
+ fi
+ fi
+
+ pki_logger "Paramètres d'entrée:"
+ pki_logger " -> Ecraser les CA existants: ${ERASE}"
+
+ # Cleaning or creating vault file for CA
+ initVault ca ${ERASE}
+
+ if [ "${ERASE}" == "true" ]; then
+ if [ -d ${REPERTOIRE_CA} ]; then
+ # We remove all generated CA
+ find "${REPERTOIRE_CA}/" -mindepth 1 -maxdepth 1 -type d -exec rm -Rf {} \;
+ fi
+ if [ -d ${REPERTOIRE_CONFIG} ]; then
+ # We remove all configurations linked to CA (except main config files)
+ find "${REPERTOIRE_CONFIG}/" -mindepth 1 -maxdepth 1 -type d -exec rm -Rf {} \;
+ fi
+ fi
+
+ pki_logger "Lancement de la procédure de création des CA"
+ pki_logger "=============================================="
+ if [ ! -d ${REPERTOIRE_CA} ]; then
+ pki_logger "Répertoire ${REPERTOIRE_CA} absent ; création..."
+ mkdir -p ${REPERTOIRE_CA};
+ fi
+ if [ ! -d ${TEMP_CERTS} ]; then
+ pki_logger "Création du répertoire de travail temporaire tempcerts sous ${TEMP_CERTS}..."
+ mkdir -p ${TEMP_CERTS}
+ fi
+
+ # Création des CA par autorités
+ autorities="$(get_autorities)"
+ for ITEM in ${autorities[@]}
+ do
+ if [ ! -d ${REPERTOIRE_CA}/${ITEM} ]; then
+ mkdir -p ${REPERTOIRE_CA}/${ITEM}
+ init_config_ca ${ITEM}
+
+ pki_logger "Création de CA root pour ${ITEM}..."
+ # Génération du CA_ROOT_PASSWORD & stockage dans le vault-ca
+ CA_ROOT_PASSWORD=$(generatePassphrase)
+ setComponentPassphrase ca "ca_root_${ITEM}" "${CA_ROOT_PASSWORD}"
+ generate_ca_root ${CA_ROOT_PASSWORD} ${ITEM} ${ITEM}
+
+ pki_logger "Création du CA intermediate pour ${ITEM}..."
+ # Génération du CA_INTERMEDIATE_PASSWORD & stockage dans le vault-ca
+ CA_INTERMEDIATE_PASSWORD=$(generatePassphrase)
+ setComponentPassphrase ca "ca_intermediate_${ITEM}" "${CA_INTERMEDIATE_PASSWORD}"
+ generate_ca_interm ${CA_INTERMEDIATE_PASSWORD} ${CA_ROOT_PASSWORD} ${ITEM} ${ITEM}
+
+ purge_directory "${REPERTOIRE_CONFIG}/${ITEM}"
+ purge_directory "${REPERTOIRE_CA}/${ITEM}"
+ else
+ pki_logger "Le CA ${ITEM} existe déjà , il ne sera pas recrée ..."
+ fi
+ pki_logger "----------------------------------------------"
+ done
+ if [ -d ${TEMP_CERTS} ]; then
+ pki_logger "=============================================="
+ pki_logger "Nettoyage du répertoire de travail temporaire tempcerts"
+ rm -Rf ${TEMP_CERTS}
+ fi
+ pki_logger "=============================================="
+ pki_logger "Fin de la procédure de création des CA"
+}
diff --git a/deployment/pki/scripts/lib/certs.sh b/deployment/pki/scripts/lib/certs.sh
new file mode 100755
index 0000000000000000000000000000000000000000..e78b7e5dc04957bc2caa82096255969d3bda1b36
--- /dev/null
+++ b/deployment/pki/scripts/lib/certs.sh
@@ -0,0 +1,329 @@
+#!/usr/bin/env bash
+set -e
+
+######################################################################
+############################# Includes ##############################
+######################################################################
+
+. "$(dirname $0)/lib/commons.sh"
+
+######################################################################
+############################# Functions ##############################
+######################################################################
+
+# Génération du chemin d'un certificat serveur
+function getHostCertificatePath {
+ local TYPE_CERTIFICAT="${1}"
+ local HOSTNAME="${2}"
+ echo "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/hosts/${HOSTNAME}"
+}
+
+# Génération du SubjectAlternate Name pour les certificats serveur.
+function getHostCertificateSan {
+ local HOSTNAME="${1}"
+ local SERVICE_HOSTNAME="${2}"
+ local SERVICE_DC_HOSTNAME="${3}"
+ echo "DNS:${SERVICE_HOSTNAME},DNS:${HOSTNAME},DNS:${SERVICE_DC_HOSTNAME}"
+}
+
+# Génération du CN Name pour les certificats serveur.
+function getHostCertificateCn {
+ local SERVICE_DC_HOSTNAME="${1}"
+ echo "${SERVICE_DC_HOSTNAME}"
+}
+
+# Génération d'un certificat serveur
+function generateHostCertificate {
+ local COMPOSANT="${1}"
+ local CERT_KEY="${2}"
+ local INTERMEDIATE_CA_KEY="${3}"
+ local HOSTNAME="${4}"
+ local TYPE_CERTIFICAT="${5}"
+ local SERVICE_HOSTNAME="${6}"
+ local SERVICE_DC_HOSTNAME="${7}"
+
+ # Correctly set Subject Alternate Name (env var is read inside the openssl configuration file)
+ export OPENSSL_SAN="$(getHostCertificateSan $HOSTNAME $SERVICE_HOSTNAME $SERVICE_DC_HOSTNAME)"
+ # Correctly set certificate CN (env var is read inside the openssl configuration file)
+ export OPENSSL_CN="$(getHostCertificateCn $SERVICE_DC_HOSTNAME)"
+ # Correctly set certificate DIRECTORY (env var is read inside the openssl configuration file)
+ export OPENSSL_CRT_DIR=${TYPE_CERTIFICAT}
+
+ pki_logger "Création du certificat ${TYPE_CERTIFICAT} pour ${COMPOSANT} hébergé sur ${HOSTNAME}..."
+ local HOST_CERTIFICATE_PATH=$(getHostCertificatePath ${TYPE_CERTIFICAT} ${HOSTNAME})
+ mkdir -p "${HOST_CERTIFICATE_PATH}"
+ pki_logger "Generation de la clé..."
+ openssl req -newkey "${PARAM_KEY_CHIFFREMENT}" \
+ -passout pass:"${CERT_KEY}" \
+ -keyout "${HOST_CERTIFICATE_PATH}/${COMPOSANT}.key" \
+ -out "${HOST_CERTIFICATE_PATH}/${COMPOSANT}.req" \
+ -nodes \
+ -config "${REPERTOIRE_CONFIG}/crt-config" \
+ -batch
+
+ pki_logger "Generation du certificat signé avec CA ${TYPE_CERTIFICAT}..."
+ openssl ca -config "${REPERTOIRE_CONFIG}/crt-config" \
+ -passin pass:"${INTERMEDIATE_CA_KEY}" \
+ -out "${HOST_CERTIFICATE_PATH}/${COMPOSANT}.crt" \
+ -in "${HOST_CERTIFICATE_PATH}/${COMPOSANT}.req" -batch
+ # -extensions extension_${TYPE_CERTIFICAT} -batch
+
+ openssl x509 \
+ -in "${HOST_CERTIFICATE_PATH}/${COMPOSANT}.crt" \
+ -out "${HOST_CERTIFICATE_PATH}/${COMPOSANT}.pem"
+
+ purge_directory "${HOST_CERTIFICATE_PATH}"
+ purge_directory "${REPERTOIRE_CONFIG}/${TYPE_CERTIFICAT}"
+}
+
+# Génération du chemin d'un certificat de timestamping
+function getTimestampCertificatePath {
+ local TYPE_CERTIFICAT="${1}"
+ local HOSTNAME="${2}"
+ echo "${REPERTOIRE_CERTIFICAT}/${TYPE_CERTIFICAT}/vitam"
+}
+
+# Génération d'un certificat de timestamping ; le nom du certificat est dérivé de son usage
+function generateTimestampCertificate {
+ local USAGE="${1}"
+ local CERT_KEY="${2}"
+ local INTERMEDIATE_CA_KEY="${3}"
+ local TYPE_CERTIFICAT="${4}"
+ local CN_VALEUR="${USAGE}"
+
+ # Correctly set certificate CN (env var is read inside the openssl configuration file)
+ export OPENSSL_CN="${CN_VALEUR}"
+ # Correctly set certificate DIRECTORY (env var is read inside the openssl configuration file)
+ export OPENSSL_CRT_DIR=${TYPE_CERTIFICAT}
+
+ pki_logger "Création du certificat ${TYPE_CERTIFICAT} pour usage ${USAGE}"
+ local TIMESTAMP_CERTIFICATE_PATH=$(getTimestampCertificatePath ${TYPE_CERTIFICAT})
+ mkdir -p "${TIMESTAMP_CERTIFICATE_PATH}"
+ pki_logger "Generation de la clé..."
+ openssl req -newkey "${PARAM_KEY_CHIFFREMENT}" \
+ -passout pass:"${CERT_KEY}" \
+ -keyout "${TIMESTAMP_CERTIFICATE_PATH}/${USAGE}.key" \
+ -out "${TIMESTAMP_CERTIFICATE_PATH}/${USAGE}.req" \
+ -nodes \
+ -config "${REPERTOIRE_CONFIG}/crt-config" \
+ -batch
+
+ pki_logger "Generation du certificat signé avec CA ${TYPE_CERTIFICAT}..."
+ openssl ca -config "${REPERTOIRE_CONFIG}/crt-config" \
+ -passin pass:"${INTERMEDIATE_CA_KEY}" \
+ -out "${TIMESTAMP_CERTIFICATE_PATH}/${USAGE}.crt" \
+ -in "${TIMESTAMP_CERTIFICATE_PATH}/${USAGE}.req" \
+ -extensions extension_${TYPE_CERTIFICAT} -batch
+
+ purge_directory "${TIMESTAMP_CERTIFICATE_PATH}"
+ purge_directory "${REPERTOIRE_CONFIG}/${TYPE_CERTIFICAT}"
+}
+
+
+# Génération du chemin d'un certificat client
+function getClientCertificatePath {
+ local CLIENT_TYPE="${1}"
+ local CLIENT_NAME="${2}"
+ echo "${REPERTOIRE_CERTIFICAT}/${CLIENT_TYPE}/clients/${CLIENT_NAME}"
+}
+
+# Génération d'un certificat client
+function generateClientCertificate {
+ local CLIENT_NAME="${1}"
+ local MDP_KEY="${2}"
+ local MDP_CAINTERMEDIATE_KEY="${3}"
+ local CLIENT_TYPE="${4}"
+ local TYPE_CERTIFICAT="client"
+
+ # Correctly set certificate CN (env var is read inside the openssl configuration file)
+ export OPENSSL_CN="${CLIENT_NAME}"
+ # Correctly set certificate DIRECTORY (env var is read inside the openssl configuration file)
+ export OPENSSL_CRT_DIR=${CLIENT_TYPE}
+
+ pki_logger "Création du certificat ${TYPE_CERTIFICAT} pour ${CLIENT_NAME}"
+ local CLIENT_CERTIFICATE_PATH=$(getClientCertificatePath ${CLIENT_TYPE} ${CLIENT_NAME})
+ mkdir -p "${CLIENT_CERTIFICATE_PATH}"
+ pki_logger "Generation de la clé..."
+ openssl req -newkey "${PARAM_KEY_CHIFFREMENT}" \
+ -passout pass:"${MDP_KEY}" \
+ -keyout "${CLIENT_CERTIFICATE_PATH}/${CLIENT_NAME}.key" \
+ -out "${CLIENT_CERTIFICATE_PATH}/${CLIENT_NAME}.req" \
+ -config "${REPERTOIRE_CONFIG}/crt-config" \
+ -batch
+
+ pki_logger "Generation du certificat signé avec ${CLIENT_TYPE}..."
+ openssl ca -config "${REPERTOIRE_CONFIG}/crt-config" \
+ -passin pass:"${MDP_CAINTERMEDIATE_KEY}" \
+ -out "${CLIENT_CERTIFICATE_PATH}/${CLIENT_NAME}.crt" \
+ -in "${CLIENT_CERTIFICATE_PATH}/${CLIENT_NAME}.req" \
+ -extensions extension_${TYPE_CERTIFICAT} -batch
+
+ purge_directory "${CLIENT_CERTIFICATE_PATH}"
+ purge_directory "${REPERTOIRE_CONFIG}/${CLIENT_TYPE}"
+}
+
+# Génération des certificats serveur et stockage de la passphrase pour tous les hosts d'un host group donné
+function generateHostCertAndStorePassphrase {
+ local COMPONENT="${1}"
+ local HOSTS_GROUP="${2}"
+
+ # Récupération du password de la CA_INTERMEDIATE dans le vault-ca
+ CA_INTERMEDIATE_PASSWORD=$(getComponentPassphrase ca "ca_intermediate_server")
+
+ # sed "1 d" : remove the first line
+ for SERVER in $(ansible -i ${ENVIRONNEMENT_FILE} --list-hosts ${HOSTS_GROUP} ${ANSIBLE_VAULT_PASSWD}| sed "1 d"); do
+
+ local SERVER_CERTIFICATE_PATH=$(getHostCertificatePath "server" ${SERVER})
+ if [ ! -f "${SERVER_CERTIFICATE_PATH}/${COMPONENT}.crt" ]; then
+ # Generate the key
+ local CERT_KEY=$(generatePassphrase)
+ # Create the certificate
+ generateHostCertificate ${COMPONENT} \
+ ${CERT_KEY} \
+ ${CA_INTERMEDIATE_PASSWORD} \
+ ${SERVER} \
+ "server" \
+ "${COMPONENT}.service.${CONSUL_DOMAIN}" \
+ "${COMPONENT}.service.${CONSUL_DOMAIN}"
+ # Store the key to the vault
+ setComponentPassphrase certs "server_${COMPONENT}_key" \
+ "${CERT_KEY}"
+ else
+ pki_logger "Le certificat SERVER - ${SERVER} - ${COMPONENT}.crt existe déjà . Il ne sera pas recrée..."
+ fi
+ done
+}
+
+# Génération d'un certificat timestamp (utilise la fonction de génération de certificats serveur)
+function generateTimestampCertAndStorePassphrase {
+ local USAGE="${1}"
+
+ # Récupération du password de la CA_INTERMEDIATE dans le vault-ca
+ CA_INTERMEDIATE_PASSWORD=$(getComponentPassphrase ca "ca_intermediate_timestamping")
+ local TIMESTAMP_CERTIFICAT_TYPE="timestamping"
+ local TIMESTAMP_CERTIFICATE_PATH=$(getTimestampCertificatePath ${TIMESTAMP_CERTIFICAT_TYPE})
+ if [ ! -f "${SERVER_CERTIFICATE_PATH}/${USAGE}.crt" ]; then
+ # Generate the key
+ local CERT_KEY=$(generatePassphrase)
+ # Create the certificate
+ generateTimestampCertificate ${USAGE} \
+ ${CERT_KEY} \
+ ${CA_INTERMEDIATE_PASSWORD}
+ ${TIMESTAMP_CERTIFICAT_TYPE}
+ # Store the key to the vault
+ setComponentPassphrase certs "timestamping_${USAGE}_key" \
+ "${CERT_KEY}"
+ else
+ pki_logger "Le certificat ${TIMESTAMP_CERTIFICAT_TYPE} - ${USAGE}.crt existe déjà . Il ne sera pas recrée..."
+ fi
+}
+
+# Génération du certificat client et stockage de la passphrase
+function generateClientCertAndStorePassphrase {
+ local COMPONENT="${1}"
+ local CLIENT_TYPE="${2}"
+
+ local CLIENT_CERTIFICATE_PATH=$(getClientCertificatePath ${CLIENT_TYPE} ${COMPONENT})
+ if [ ! -d "${CLIENT_CERTIFICATE_PATH}" ]; then
+ # Récupération du password de la CA_INTERMEDIATE dans le vault-ca
+ CA_INTERMEDIATE_PASSWORD=$(getComponentPassphrase ca "ca_intermediate_${CLIENT_TYPE}")
+
+ # Generate the key
+ local CERT_KEY=$(generatePassphrase)
+ # Create the certificate
+ generateClientCertificate ${COMPONENT} \
+ ${CERT_KEY} \
+ ${CA_INTERMEDIATE_PASSWORD} \
+ ${CLIENT_TYPE}
+ # Store the key to the vault
+ setComponentPassphrase certs "client_${CLIENT_TYPE}_${COMPONENT}_key" \
+ "${CERT_KEY}"
+ else
+ pki_logger "Le certificat CLIENT - ${CLIENT_TYPE} - ${COMPONENT} existe déjà . Il ne sera pas recrée..."
+ fi
+}
+
+# Recopie de la CA de pki/CA vers environments/cert/cert-type/CA
+function copyCAFromPki {
+ local CERT_TYPE="${1}"
+
+ mkdir -p "${REPERTOIRE_CERTIFICAT}/${CERT_TYPE}/ca"
+ pki_logger "Copie des CA de ${CERT_TYPE}"
+ for CA in $(ls ${REPERTOIRE_CA}/${CERT_TYPE}/*.crt); do
+ cp -f "${CA}" "${REPERTOIRE_CERTIFICAT}/${CERT_TYPE}/ca/$(basename ${CA})"
+ done
+}
+
+function generateCerts {
+ # To override
+ pki_logger "Generation of certificates"
+}
+
+######################################################################
+############################# Main #############################
+######################################################################
+
+function main {
+
+ # FIXME Why ? it seems to be related to the variable 'dir' set in the configuration of certificates.
+ cd $(dirname $0)/../..
+ init
+
+ ERASE="false"
+
+ # Vérification des paramètres
+ if [ "${1}" == "" ]; then
+ pki_logger "ERROR" "This script needs to know on which environment you want to apply to !"
+ exit 1
+ fi
+ if [ "$#" -gt 1 ]; then
+ if [ "${2,,}" == "true" ]; then
+ ERASE="true"
+ fi
+ fi
+ ENVIRONNEMENT="${1}"
+ ENVIRONNEMENT_FILE="${1}"
+
+ if [ ! -f "${ENVIRONNEMENT_FILE}" ]; then
+ pki_logger "ERROR" "Cannot find environment file: ${ENVIRONNEMENT_FILE}"
+ exit 1
+ fi
+
+ pki_logger "Paramètres d'entrée:"
+ pki_logger " -> Environnement: ${ENVIRONNEMENT}"
+ pki_logger " -> Ecraser les certificats existants: ${ERASE}"
+
+ # Get consul_domain
+ CONSUL_DOMAIN=$(read_ansible_var "consul_domain" "hosts_vitamui_iam_internal[0]")
+
+ # Cleaning or creating vault file for certs
+ initVault certs ${ERASE}
+
+ if [ "${ERASE}" == "true" ]; then
+ if [ -d ${REPERTOIRE_CERTIFICAT} ]; then
+ # We remove all generated certs
+ find ${REPERTOIRE_CERTIFICAT} -type f -name *.crt -exec rm -f {} \;
+ find ${REPERTOIRE_CERTIFICAT} -type f -name *.key -exec rm -f {} \;
+ find ${REPERTOIRE_CERTIFICAT} -type f -name *.pem -exec rm -f {} \;
+ find ${REPERTOIRE_CERTIFICAT} -type d -empty -delete
+ fi
+ fi
+ if [ ! -d ${REPERTOIRE_CERTIFICAT} ]; then
+ pki_logger "Création du répertoire des certicats sous ${REPERTOIRE_CERTIFICAT}..."
+ mkdir -p ${REPERTOIRE_CERTIFICAT}
+ fi
+ if [ ! -d ${TEMP_CERTS} ]; then
+ pki_logger "Création du répertoire de travail temporaire tempcerts sous ${TEMP_CERTS}..."
+ mkdir -p ${TEMP_CERTS}
+ fi
+
+ generateCerts
+
+ if [ -d ${TEMP_CERTS} ]; then
+ pki_logger "=============================================="
+ pki_logger "Nettoyage du répertoire de travail temporaire tempcerts"
+ rm -Rf ${TEMP_CERTS}
+ fi
+ pki_logger "=============================================="
+ pki_logger "Fin de la procédure de création des certificats"
+}
diff --git a/deployment/pki/scripts/lib/commons.sh b/deployment/pki/scripts/lib/commons.sh
new file mode 100755
index 0000000000000000000000000000000000000000..988a6c745aeb449b5fd15db5fa34b0670172b2cf
--- /dev/null
+++ b/deployment/pki/scripts/lib/commons.sh
@@ -0,0 +1,315 @@
+#!/usr/bin/env bash
+set -e
+
+REPERTOIRE_ROOT="$( cd "$( readlink -f $(dirname ${BASH_SOURCE[0]}) )/../../.." ; pwd )"
+
+function init () {
+
+ REPERTOIRE_CERTIFICAT="${REPERTOIRE_ROOT}/environments/certs"
+ REPERTOIRE_CA="${REPERTOIRE_ROOT}/pki/ca"
+ CA_ROOT_TYPE="all"
+ REPERTOIRE_CONFIG="${REPERTOIRE_ROOT}/pki/config"
+ TEMP_CERTS="${REPERTOIRE_ROOT}/pki/tempcerts"
+ PARAM_KEY_CHIFFREMENT="rsa:4096"
+ ENVIRONMENT_VARIABLES="${REPERTOIRE_ROOT}/environments/group_vars/all"
+
+ if [ -f "${REPERTOIRE_ROOT}/vault_pass.txt" ]; then
+ ANSIBLE_VAULT_PASSWD="--vault-password-file ${REPERTOIRE_ROOT}/vault_pass.txt"
+ else
+ ANSIBLE_VAULT_PASSWD="--ask-vault-pass"
+ fi
+ if [ -f "${REPERTOIRE_ROOT}/vault_pki.pass" ]; then
+ ANSIBLE_VAULT_PKI_PASSWD="--vault-password-file ${REPERTOIRE_ROOT}/vault_pki.pass"
+ else
+ ANSIBLE_VAULT_PKI_PASSWD="--ask-vault-pass"
+ fi
+
+ # Check if gawk is present
+ hash gawk
+
+}
+
+function read_ansible_var {
+ local ANSIBLE_VAR="${1}"
+ local ANSIBLE_HOST="${2}"
+
+ ANSIBLE_CONFIG="${REPERTOIRE_ROOT}/pki/scripts/lib/ansible.cfg" \
+ ansible ${ANSIBLE_HOST} -i ${ENVIRONNEMENT_FILE} ${ANSIBLE_VAULT_PASSWD} -m debug -a "var=${ANSIBLE_VAR}" \
+ | grep "${ANSIBLE_VAR}" | gawk -F ":" '{gsub("\\s","",$2); print $2}'
+}
+
+# Delete useless files
+function purge_directory {
+ local DIR_TO_PURGE="${1}"
+
+ if [ ! -d "${DIR_TO_PURGE}" ]; then
+ pki_logger "ERROR" "Directory ${DIR_TO_PURGE} does not exists"
+ return 1
+ fi
+
+ find "${DIR_TO_PURGE}" -type f -name "*.attr" -exec rm -f {} \;
+ find "${DIR_TO_PURGE}" -type f -name "*.old" -exec rm -f {} \;
+ find "${DIR_TO_PURGE}" -type f -name "*.req" -exec rm -f {} \;
+}
+
+function generatePassphrase {
+ cat /dev/urandom | tr -dc 'a-zA-Z0-9' | head -c 48
+}
+
+function normalize_key {
+ local KEY="${1}"
+
+ echo "${KEY}" | sed 's/[\\/\.-]/_/g'
+}
+
+# Method allowing to initialize a vault file.
+# @param TYPE Type of vault
+# @param ERASE_VAULT Boolean indicating if the vault file must be reset if it exists.
+function initVault {
+ local TYPE="${1}"
+ local ERASE_VAULT="${2:=true}"
+
+ local VAULT_FILE=$(getVaultFile "$TYPE")
+ local VAULT_PASS=$(getVaultPass "$TYPE")
+
+ if [ ! -f "${VAULT_FILE}" ]; then
+ pki_logger "Création du fichier ${VAULT_FILE}"
+ ansible-vault create ${VAULT_FILE} ${VAULT_PASS}
+ echo '---' > "${VAULT_FILE}.example"
+ elif [ "$ERASE_VAULT" == "true" ]; then
+ pki_logger "Réinitialisation du fichier ${VAULT_FILE}"
+ ansible-vault decrypt ${VAULT_FILE} ${VAULT_PASS}
+ echo '---' > ${VAULT_FILE}
+ ansible-vault encrypt ${VAULT_FILE} ${VAULT_PASS}
+ echo '---' > "${VAULT_FILE}.example"
+ fi
+}
+
+# Method allowing to determinate the path of a vault file accoring its type
+# @param TYPE Type of vault
+# @return The path of the vault file.
+function getVaultFile() {
+ local TYPE="${1}"
+
+ case $TYPE in
+ "ca" | "certs")
+ echo -n "${REPERTOIRE_CERTIFICAT}/vault-${TYPE}.yml"
+ ;;
+ "keystores")
+ echo -n "${ENVIRONMENT_VARIABLES}/vault-${TYPE}.yml"
+ ;;
+ *)
+ pki_logger "ERROR" "Unable to determinate vault file for the type: ${TYPE}"
+ return 1;
+ ;;
+ esac
+}
+
+# Method allowing to determinate the password of a vault file accoring its type
+# @param TYPE Type of vault
+# @return The password of the vault file.
+function getVaultPass() {
+ local TYPE="${1}"
+
+ case $TYPE in
+ "ca" | "certs")
+ echo -n "${ANSIBLE_VAULT_PKI_PASSWD}"
+ ;;
+ "keystores")
+ echo -n "${ANSIBLE_VAULT_PASSWD}"
+ ;;
+ *)
+ pki_logger "ERROR" "Unable to determinate vault password for the type: ${TYPE}"
+ return 1;
+ ;;
+ esac
+}
+
+# Method allowing to determinate the prefix of a key in a vault file.
+# @param TYPE Type of vault.
+# @return The prefix of the key.
+function getKeyPrefix() {
+ local TYPE="${1}"
+
+ case $TYPE in
+ "ca" | "certs")
+ echo -n "certKey_"
+ ;;
+ "keystores")
+ echo -n "stores_"
+ ;;
+ *)
+ pki_logger "ERROR" "Unable to determinate the template of the key for the type: ${TYPE}"
+ return 1;
+ ;;
+ esac
+}
+
+# Method allowing to retrieve a key in a vault file (ONLY a single level of tree structure).
+# @param TYPE Type of vault.
+# @param KEY Key linked to the data to retrieve.
+# @return The value linked to the provided key, if it exists.
+function getComponentPassphrase {
+ local TYPE="${1}"
+ local KEY="${2}"
+
+ local RETURN_CODE=0
+ local VAULT_FILE=$(getVaultFile "$TYPE")
+ local VAULT_PASS=$(getVaultPass "$TYPE")
+ local KEY_PREFIX=$(getKeyPrefix "$TYPE")
+
+ if [ ! -f "${VAULT_FILE}" ]; then
+ pki_logger "ERROR" "The vault file is not found. Please, initialize it before call me ! Vault file: ${VAULT_FILE}"
+ return 1
+ fi
+
+ # Decrypt vault file
+ ansible-vault decrypt ${VAULT_FILE} ${VAULT_PASS}
+ # Try/catch/finally stuff with bash (to make sure the vault stay encrypted)
+ {
+ # Try
+ # Generate bash vars with the yml file:
+ # $certKey_blah
+ # $certKey_blahblah
+ # $certKey_........
+ eval $(parse_yaml ${VAULT_FILE} "$KEY_PREFIX") && \
+ # Get the value of the variable we are interested in
+ # And store it into another var: $CERT_KEY
+ eval $(echo "CERT_KEY=\$$KEY_PREFIX$(normalize_key ${KEY})") && \
+ # Print the $CERT_KEY var
+ echo "${CERT_KEY}"
+ } || {
+ # Catch
+ RETURN_CODE=1
+ pki_logger "ERROR" "Error while reading certificate passphrase for ${KEY} in certificates vault: ${VAULT_FILE}"
+ } && {
+ # Finally
+ if [ "${CERT_KEY}" == "" ]; then
+ pki_logger "ERROR" "Error while retrieving the key: ${KEY}"
+ RETURN_CODE=1
+ fi
+ ansible-vault encrypt ${VAULT_FILE} ${VAULT_PASS}
+ return ${RETURN_CODE}
+ }
+}
+
+
+# Method allowing to check if a key is declared in a vault file (ONLY a single level of tree structure).
+# @param TYPE Type of vault.
+# @param KEY Key linked to the data to retrieve.
+# @return True if the value exists, false otherwise.
+function hasComponentPassphrase {
+ local TYPE="${1}"
+ local KEY="${2}"
+
+ local VAULT_FILE=$(getVaultFile "$TYPE")
+ local VAULT_PASS=$(getVaultPass "$TYPE")
+ local KEY_PREFIX=$(getKeyPrefix "$TYPE")
+
+ if [ ! -f "${VAULT_FILE}" ]; then
+ pki_logger "ERROR" "The vault file is not found. Please, initialize it before call me ! Vault file: ${VAULT_FILE}"
+ return 1
+ fi
+
+ # Decrypt vault file
+ ansible-vault decrypt ${VAULT_FILE} ${VAULT_PASS}
+ # Try/catch/finally stuff with bash (to make sure the vault stay encrypted)
+ {
+ # Try
+ # Generate bash vars with the yml file:
+ # $certKey_blah
+ # $certKey_blahblah
+ # $certKey_........
+ eval $(parse_yaml ${VAULT_FILE} "$KEY_PREFIX") && \
+ # Get the value of the variable we are interested in
+ # And store it into another var: $CERT_KEY
+ eval $(echo "CERT_KEY=\$$KEY_PREFIX$(normalize_key ${KEY})")
+
+ if [ "${CERT_KEY}" == "" ]; then
+ echo "false"
+ else
+ echo "true"
+ fi
+ } || {
+ # Catch
+ RETURN_CODE=1
+ pki_logger "ERROR" "Error while reading certificate passphrase for ${KEY} in certificates vault: ${VAULT_FILE}"
+ } && {
+ # Finally
+ ansible-vault encrypt ${VAULT_FILE} ${VAULT_PASS}
+ return 0
+ }
+}
+
+
+# Method allowing to save a key/value in a vault file (ONLY a single level of tree structure).
+# @param TYPE Type of vault.
+# @param KEY Key of the data.
+# @param VALUE Value of the data.
+function setComponentPassphrase {
+ local TYPE="${1}"
+ local KEY="${2}"
+ local VALUE="${3}"
+
+ # KWA TODO: explain & comonize the sed usage ;
+ # KWA TODO: change replacement string in sed : /_/ ==> /__/
+ local RETURN_CODE=0
+ local VAULT_FILE=$(getVaultFile "$TYPE")
+ local VAULT_PASS=$(getVaultPass "$TYPE")
+
+ if [ ! -f "${VAULT_FILE}" ]; then
+ pki_logger "ERROR" "The vault file is not found. Please, initialize it before call me ! Vault file: ${VAULT_FILE}"
+ return 1
+ fi
+
+ # Decrypt vault file
+ ansible-vault decrypt ${VAULT_FILE} ${VAULT_PASS}
+
+ # Try/catch/finally stuff with bash (to make sure the vault stay encrypted)
+ {
+ local NORMALIZED_KEY=$(normalize_key "${KEY}")
+ # If the key is already present, we remove it (i.e all line beginning with $NORMALIZED_KEY will be removed)
+ sed -i "/^${NORMALIZED_KEY}/d" "${VAULT_FILE}"
+ # Add key to vault
+ echo "${NORMALIZED_KEY}: ${VALUE}" >> "${VAULT_FILE}"
+ # The same for the example file
+ sed -i "/^${NORMALIZED_KEY}/d" "${VAULT_FILE}.example"
+ echo "${NORMALIZED_KEY}: changeme" >> "${VAULT_FILE}.example"
+ } || {
+ # Catch
+ RETURN_CODE=1
+ pki_logger "ERROR" "Error while writing to vault file: ${VAULT_FILE}"
+ } && {
+ # Finally
+ ansible-vault encrypt ${VAULT_FILE} ${VAULT_PASS}
+ return ${RETURN_CODE}
+ }
+}
+
+function pki_logger {
+ if (( ${#} >= 2 )); then
+ local ERR_LEVEL="${1}"
+ local MESSAGE="${2}"
+ else
+ local ERR_LEVEL="INFO"
+ local MESSAGE="${1}"
+ fi
+ echo "[${ERR_LEVEL}] [$(basename ${0}): ${FUNCNAME[ 1 ]}] ${MESSAGE}" 1>&2
+}
+
+# https://gist.github.com/pkuczynski/8665367
+function parse_yaml {
+ local prefix=$2
+ local s='[[:space:]]*' w='[a-zA-Z0-9_]*' fs=$(echo @|tr @ '\034')
+ sed -ne "s|^\($s\)\($w\)$s:$s\"\(.*\)\"$s\$|\1$fs\2$fs\3|p" \
+ -e "s|^\($s\)\($w\)$s:$s\(.*\)$s\$|\1$fs\2$fs\3|p" $1 |
+ gawk -F$fs '{
+ indent = length($1)/2;
+ vname[indent] = $2;
+ for (i in vname) {if (i > indent) {delete vname[i]}}
+ if (length($3) > 0) {
+ vn=""; for (i=0; i<indent; i++) {vn=(vn)(vname[i])("_")}
+ printf("%s%s%s=\"%s\"\n", "'$prefix'",vn, $2, $3);
+ }
+ }'
+}
diff --git a/deployment/pki/scripts/lib/functions.sh b/deployment/pki/scripts/lib/functions.sh
deleted file mode 100755
index a19382cb88f462667a4522a19062f2d1af95dc6a..0000000000000000000000000000000000000000
--- a/deployment/pki/scripts/lib/functions.sh
+++ /dev/null
@@ -1,189 +0,0 @@
-#!/usr/bin/env bash
-set -e
-
-REPERTOIRE_ROOT="$( cd "$( readlink -f $(dirname ${BASH_SOURCE[0]}) )/../../.." ; pwd )"
-REPERTOIRE_CERTIFICAT="${REPERTOIRE_ROOT}/environments/certs"
-REPERTOIRE_CA="${REPERTOIRE_ROOT}/pki/ca"
-REPERTOIRE_CONFIG="${REPERTOIRE_ROOT}/pki/config"
-TEMP_CERTS="${REPERTOIRE_ROOT}/pki/tempcerts"
-PARAM_KEY_CHIFFREMENT="rsa:4096"
-VAULT_KEYSTORES="${REPERTOIRE_ROOT}/environments/group_vars/all/vault-keystores.yml"
-
-if [ -f "${REPERTOIRE_ROOT}/vault_pass.txt" ]; then
- ANSIBLE_VAULT_PASSWD="--vault-password-file ${REPERTOIRE_ROOT}/vault_pass.txt"
-else
- ANSIBLE_VAULT_PASSWD="--ask-vault-pass"
-fi
-if [ -f "${REPERTOIRE_ROOT}/vault_pki.pass" ]; then
- ANSIBLE_VAULT_PKI_PASSWD="--vault-password-file ${REPERTOIRE_ROOT}/vault_pki.pass"
-else
- ANSIBLE_VAULT_PKI_PASSWD="--ask-vault-pass"
-fi
-
-# Check if gawk is present
-hash gawk
-
-function read_ansible_var {
- local ANSIBLE_VAR="${1}"
- local ANSIBLE_HOST="${2}"
-
- ANSIBLE_CONFIG="${REPERTOIRE_ROOT}/pki/scripts/lib/ansible.cfg" \
- ansible ${ANSIBLE_HOST} -i ${ENVIRONNEMENT_FILE} ${ANSIBLE_VAULT_PASSWD} -m debug -a "var=${ANSIBLE_VAR}" \
- | grep "${ANSIBLE_VAR}" | gawk -F ":" '{gsub("\\s","",$2); print $2}'
-}
-
-# Delete useless files
-function purge_directory {
- local DIR_TO_PURGE="${1}"
-
- if [ ! -d "${DIR_TO_PURGE}" ]; then
- pki_logger "ERROR" "Directory ${DIR_TO_PURGE} does not exists"
- return 1
- fi
-
- find "${DIR_TO_PURGE}" -type f -name "*.attr" -exec rm -f {} \;
- find "${DIR_TO_PURGE}" -type f -name "*.old" -exec rm -f {} \;
- find "${DIR_TO_PURGE}" -type f -name "*.req" -exec rm -f {} \;
-}
-
-function generatePassphrase {
- cat /dev/urandom | tr -dc 'a-zA-Z0-9' | head -c 48
-}
-
-function normalize_key {
- local KEY="${1}"
-
- echo "${KEY}" | sed 's/[\\/\.-]/_/g'
-}
-
-function initVault {
- local TYPE="${1}"
-
- VAULT_FILE="${REPERTOIRE_CERTIFICAT}/vault-${TYPE}.yml"
-
- if [ -f "${VAULT_FILE}" ]; then
- pki_logger "Réinitialisation du fichier ${VAULT_FILE}"
- ansible-vault decrypt ${VAULT_FILE} ${ANSIBLE_VAULT_PKI_PASSWD}
- echo '---' > ${VAULT_FILE}
- ansible-vault encrypt ${VAULT_FILE} ${ANSIBLE_VAULT_PKI_PASSWD}
- else
- pki_logger "Création du fichier ${VAULT_FILE}"
- ansible-vault create ${VAULT_FILE} ${ANSIBLE_VAULT_PKI_PASSWD}
- fi
-
- if [ -f "${VAULT_FILE}.example" ]; then
- rm -f "${VAULT_FILE}.example"
- fi
-}
-
-function getComponentPassphrase {
- local TYPE="${1}"
- local KEY_FILE="${2}"
- local RETURN_CODE=0
-
- VAULT_FILE="${REPERTOIRE_CERTIFICAT}/vault-${TYPE}.yml"
-
- if [ ! -f "${VAULT_FILE}" ]; then
- return 1
- fi
-
- # Decrypt vault file
- ansible-vault decrypt ${VAULT_FILE} ${ANSIBLE_VAULT_PKI_PASSWD}
- # Try/catch/finally stuff with bash (to make sure the vault stay encrypted)
- {
- # Try
- # Generate bash vars with the yml file:
- # $certKey_blah
- # $certKey_blahblah
- # $certKey_........
- eval $(parse_yaml ${VAULT_FILE} "certKey_") && \
- # Get the value of the variable we are interested in
- # And store it into another var: $CERT_KEY
- eval $(echo "CERT_KEY=\$certKey_$(normalize_key ${KEY_FILE})") && \
- # Print the $CERT_KEY var
- echo "${CERT_KEY}"
- } || {
- # Catch
- RETURN_CODE=1
- pki_logger "ERROR" "Error while reading certificate passphrase for ${KEY_FILE} in certificates vault: ${VAULT_FILE}"
- } && {
- # Finally
- if [ "${CERT_KEY}" == "" ]; then
- pki_logger "ERROR" "Error while retrieving the key: ${KEY_FILE}"
- RETURN_CODE=1
- fi
- ansible-vault encrypt ${VAULT_FILE} ${ANSIBLE_VAULT_PKI_PASSWD}
- return ${RETURN_CODE}
- }
-}
-
-# KWA TODO: explain & comonize the sed usage ;
-# KWA TODO: change replacement string in sed : /_/ ==> /__/
-# TODO: produce an example cert vault
-function setComponentPassphrase {
- local TYPE="${1}"
- local KEY_FILE="${2}"
- local KEY="${3}"
- local RETURN_CODE=0
-
- VAULT_FILE="${REPERTOIRE_CERTIFICAT}/vault-${TYPE}.yml"
-
- # if [ ! -f ${REPERTOIRE_CERTIFICAT}/${KEY_FILE} ]; then
- # pki_logger "ERROR" "The certificate key file does exists: ${REPERTOIRE_CERTIFICAT}/${KEY_FILE}"
- # return 1
- # fi
-
- # Manage initial state (non-existing vault)
- if [ -f "${VAULT_FILE}" ]; then
- ansible-vault decrypt ${VAULT_FILE} ${ANSIBLE_VAULT_PKI_PASSWD}
- else
- if [ -f "${VAULT_FILE}.example" ]; then
- rm -f "${VAULT_FILE}.example"
- fi
- fi
-
- # Try/catch/finally stuff with bash (to make sure the vault stay encrypted)
- {
- # Try
- # Add key to example vault
- normalize_key "${KEY_FILE}: changeme" >> "${VAULT_FILE}.example" && \
- # Add key to vault
- normalize_key "${KEY_FILE}: ${KEY}" >> "${VAULT_FILE}"
- } || {
- # Catch
- RETURN_CODE=1
- pki_logger "ERROR" "Error while writing to vault file: ${VAULT_FILE}"
- } && {
- # Finally
- ansible-vault encrypt ${VAULT_FILE} ${ANSIBLE_VAULT_PKI_PASSWD}
- return ${RETURN_CODE}
- }
-}
-
-function pki_logger {
- if (( ${#} >= 2 )); then
- local ERR_LEVEL="${1}"
- local MESSAGE="${2}"
- else
- local ERR_LEVEL="INFO"
- local MESSAGE="${1}"
- fi
- echo "[${ERR_LEVEL}] [$(basename ${0}): ${FUNCNAME[ 1 ]}] ${MESSAGE}" 1>&2
-}
-
-# https://gist.github.com/pkuczynski/8665367
-function parse_yaml {
- local prefix=$2
- local s='[[:space:]]*' w='[a-zA-Z0-9_]*' fs=$(echo @|tr @ '\034')
- sed -ne "s|^\($s\)\($w\)$s:$s\"\(.*\)\"$s\$|\1$fs\2$fs\3|p" \
- -e "s|^\($s\)\($w\)$s:$s\(.*\)$s\$|\1$fs\2$fs\3|p" $1 |
- gawk -F$fs '{
- indent = length($1)/2;
- vname[indent] = $2;
- for (i in vname) {if (i > indent) {delete vname[i]}}
- if (length($3) > 0) {
- vn=""; for (i=0; i<indent; i++) {vn=(vn)(vname[i])("_")}
- printf("%s%s%s=\"%s\"\n", "'$prefix'",vn, $2, $3);
- }
- }'
-}
diff --git a/deployment/pki/scripts/lib/stores.sh b/deployment/pki/scripts/lib/stores.sh
new file mode 100755
index 0000000000000000000000000000000000000000..eeae4fd98ef956b6e4ad17cee7bd9aa7bb3c02fa
--- /dev/null
+++ b/deployment/pki/scripts/lib/stores.sh
@@ -0,0 +1,290 @@
+#!/usr/bin/env bash
+set -e
+
+######################################################################
+############################# Includes ##############################
+######################################################################
+
+. "$(dirname $0)/pki/scripts/lib/commons.sh"
+
+######################################################################
+############################# Functions ##############################
+######################################################################
+
+# Pour incorporer un certificat dans un store
+function addCrtInJks {
+ local STORE="${1}"
+ local MDP_STORE="${2}"
+ local CERTIFICAT="${3}"
+ local ALIAS="${4}"
+
+ keytool -import -keystore ${STORE} \
+ -file ${CERTIFICAT} \
+ -storepass ${MDP_STORE} \
+ -keypass ${MDP_STORE} \
+ -noprompt \
+ -alias ${ALIAS}
+}
+
+# Pour incorporer une CA dans un store
+function addCaInJks {
+ local STORE="${1}"
+ local MDP_STORE="${2}"
+ local CERTIFICAT="${3}"
+ local ALIAS="${4}"
+
+ keytool -import -trustcacerts -keystore ${STORE} \
+ -file ${CERTIFICAT} \
+ -storepass ${MDP_STORE} \
+ -keypass ${MDP_STORE} \
+ -noprompt \
+ -alias ${ALIAS}
+}
+
+# Génération d'un p12 et d'un pem depuis un certificat
+function crtKeyToP12 {
+ local BASEFILE="${1}"
+ local MDP_KEY="${2}"
+ local KEYPAIR_NAME="${3}"
+ local MDP_P12="${4}"
+ local TARGET_FILE="${5}"
+
+ openssl pkcs12 -export \
+ -inkey "${BASEFILE}/${KEYPAIR_NAME}.key" \
+ -in "${BASEFILE}/${KEYPAIR_NAME}.crt" \
+ -name "${KEYPAIR_NAME}" \
+ -passin pass:"${MDP_KEY}" \
+ -out "${BASEFILE}/${KEYPAIR_NAME}.p12" \
+ -passout pass:"${MDP_P12}"
+
+ if [ "${BASEFILE}/${KEYPAIR_NAME}.p12" != "${TARGET_FILE}" ]; then
+ mkdir -p $(dirname ${TARGET_FILE})
+ mv "${BASEFILE}/${KEYPAIR_NAME}.p12" "${TARGET_FILE}"
+ fi
+}
+
+# Pour incorporer un certificat p12 dans un keystore jks
+function addP12InJks {
+ local JKS_KEYSTORE="${1}"
+ local JKS_KEYSTORE_PASSWORD="${2}"
+ local P12_KEYSTORE="${3}"
+ local P12_STORE_PASSWORD="${4}"
+
+ mkdir -p "$(dirname ${JKS_KEYSTORE})"
+
+ keytool -importkeystore \
+ -srckeystore ${P12_KEYSTORE} -srcstorepass ${P12_STORE_PASSWORD} -srcstoretype PKCS12 \
+ -destkeystore ${JKS_KEYSTORE} -storepass ${JKS_KEYSTORE_PASSWORD} \
+ -keypass ${JKS_KEYSTORE_PASSWORD} -deststorepass ${JKS_KEYSTORE_PASSWORD} \
+ -destkeypass ${JKS_KEYSTORE_PASSWORD} -deststoretype JKS
+}
+
+# Renvoie la clé du keystore pour un composant donné
+function getKeystorePassphrase {
+ local KEY="${1}"
+ local RETURN_CODE=0
+
+ local EXISTS=$(hasComponentPassphrase "keystores" "${KEY}")
+ if [ "${EXISTS}" == "false" ]; then
+ # We generate a random key
+ local PASSPHRASE=$(generatePassphrase)
+ setComponentPassphrase keystores "${KEY}" "${PASSPHRASE}"
+ echo "${PASSPHRASE}"
+ else
+ echo $(getComponentPassphrase "keystores" "${KEY}")
+ fi
+}
+
+# Generate a trustore
+function generateTrustStore {
+ local TRUSTORE_TYPE=${1}
+ local CLIENT_TYPE=${2}
+
+ if [ "${TRUSTORE_TYPE}" != "server" ] && [ ${TRUSTORE_TYPE} != "client" ]; then
+ pki_logger "ERROR" "Invalid trustore type: ${TRUSTORE_TYPE}"
+ return 1
+ fi
+
+ # Set truststore path and delete the store if already exists
+ if [ "${TRUSTORE_TYPE}" == "client" ]; then
+ JKS_TRUST_STORE=${REPERTOIRE_KEYSTORES}/client-${CLIENT_TYPE}/truststore_${CLIENT_TYPE}.jks
+ TRUST_STORE_PASSWORD=$(getKeystorePassphrase "truststores_client_${CLIENT_TYPE}")
+ elif [ "${TRUSTORE_TYPE}" == "server" ]; then
+ JKS_TRUST_STORE=${REPERTOIRE_KEYSTORES}/server/truststore_server.jks
+ TRUST_STORE_PASSWORD=$(getKeystorePassphrase "truststores_server")
+ else
+ pki_logger "ERROR" "Invalid trustore type: ${TRUSTORE_TYPE}"
+ return 1
+ fi
+
+ if [ -f "${JKS_TRUST_STORE}" ]; then
+ rm -f "${JKS_TRUST_STORE}"
+ fi
+
+ # Add the public client ca certificates to the truststore
+ pki_logger "Ajout des certificats client dans le truststore"
+ if [ "${TRUSTORE_TYPE}" == "client" ]; then
+
+ for CRT_FILE in $(ls ${REPERTOIRE_CERTIFICAT}/client-${CLIENT_TYPE}/ca/*.crt); do
+ pki_logger "Ajout de ${CRT_FILE} dans le truststore ${CLIENT_TYPE}"
+ ALIAS="client-${CLIENT_TYPE}-$(basename ${CRT_FILE})"
+ addCrtInJks ${JKS_TRUST_STORE} \
+ ${TRUST_STORE_PASSWORD} \
+ ${CRT_FILE} \
+ ${ALIAS}
+ done
+
+ fi
+
+ # Add the server certificates to the truststore
+ pki_logger "Ajout des certificats serveur dans le truststore"
+ for CRT_FILE in $(ls ${REPERTOIRE_CERTIFICAT}/server/ca/*.crt); do
+ pki_logger "Ajout de ${CRT_FILE} dans le truststore ${CLIENT_TYPE}"
+ ALIAS="server-$(basename ${CRT_FILE})"
+ addCrtInJks ${JKS_TRUST_STORE} \
+ ${TRUST_STORE_PASSWORD} \
+ ${CRT_FILE} \
+ ${ALIAS}
+ done
+}
+
+function generateHostKeystore {
+ local COMPONENT="${1}"
+ local JKS_KEYSTORE="${2}"
+ local P12_KEYSTORE="${3}"
+ local CRT_KEY_PASSWORD="${4}"
+ local JKS_PASSWORD="${5}"
+ local TMP_P12_PASSWORD="${6}"
+
+ if [ -f ${JKS_KEYSTORE} ]; then
+ rm -f ${JKS_KEYSTORE}
+ fi
+
+ pki_logger "Génération du p12"
+ crtKeyToP12 $(dirname ${P12_KEYSTORE}) \
+ ${CRT_KEY_PASSWORD} \
+ ${COMPONENT} \
+ ${TMP_P12_PASSWORD} \
+ ${P12_KEYSTORE}
+
+ pki_logger "Génération du jks"
+ addP12InJks ${JKS_KEYSTORE} \
+ ${JKS_PASSWORD} \
+ ${P12_KEYSTORE} \
+ ${TMP_P12_PASSWORD}
+
+ pki_logger "Suppression du p12"
+ if [ -f ${P12_KEYSTORE} ]; then
+ rm -f ${P12_KEYSTORE}
+ fi
+}
+
+######################################################################
+############################# Main #############################
+######################################################################
+
+function main() {
+ cd $(dirname $0)
+ init
+ ERASE="false"
+
+ if [ "$#" -gt 0 ]; then
+ if [ "${1,,}" == "true" ]; then
+ ERASE="true"
+ fi
+ fi
+
+ pki_logger "Paramètres d'entrée:"
+ pki_logger " -> Ecraser la configuration des keystores/PKI: ${ERASE}"
+
+ TMP_P12_PASSWORD="$(generatePassphrase)"
+ REPERTOIRE_KEYSTORES="${REPERTOIRE_ROOT}/environments/keystores"
+
+ if [ ! -d ${REPERTOIRE_KEYSTORES} ]; then
+ pki_logger "Création du répertoire des keystores ..."
+ mkdir -p ${REPERTOIRE_KEYSTORES};
+ fi
+
+ # We create vault files if they don't exist.
+ initVault keystores ${ERASE}
+
+ # Remove old keystores & servers directories
+ find ${REPERTOIRE_KEYSTORES} -mindepth 1 -maxdepth 1 -type d -exec rm -rf {} \;
+
+ # Generate the server keystores
+ for SERVER in $(ls ${REPERTOIRE_CERTIFICAT}/server/hosts/); do
+
+ mkdir -p ${REPERTOIRE_KEYSTORES}/server/${SERVER}
+
+ # awk : used to strip extension
+ for COMPONENT in $( ls ${REPERTOIRE_CERTIFICAT}/server/hosts/${SERVER}/ 2>/dev/null | awk -F "." '{for (i=1;i<NF;i++) print $i}' | sort | uniq ); do
+
+ pki_logger "-------------------------------------------"
+ pki_logger "Creation du keystore de ${COMPONENT} pour le serveur ${SERVER}"
+ JKS_KEYSTORE=${REPERTOIRE_KEYSTORES}/server/${SERVER}/keystore_${COMPONENT}.jks
+ P12_KEYSTORE=${REPERTOIRE_CERTIFICAT}/server/hosts/${SERVER}/${COMPONENT}.p12
+ CRT_KEY_PASSWORD=$(getComponentPassphrase certs "server_${COMPONENT}_key")
+ JKS_PASSWORD=$(getKeystorePassphrase "keystores_server_${COMPONENT}")
+
+ generateHostKeystore ${COMPONENT} \
+ ${JKS_KEYSTORE} \
+ ${P12_KEYSTORE} \
+ ${CRT_KEY_PASSWORD} \
+ ${JKS_PASSWORD} \
+ ${TMP_P12_PASSWORD}
+ done
+
+ done
+
+ # Keystores generation foreach client type (storage, external)
+ # for CLIENT_TYPE in external storage; do
+ for CLIENT_TYPE in external vitam; do
+
+ # # Set grantedstore path and delete the store if already exists
+ # JKS_GRANTED_STORE=${REPERTOIRE_KEYSTORES}/client-${CLIENT_TYPE}/grantedstore_${CLIENT_TYPE}.jks
+ # GRANTED_STORE_PASSWORD=$(getKeystorePassphrase "grantedstores_client_${CLIENT_TYPE}")
+
+ # # Delete the old granted store if already exists
+ # if [ -f ${JKS_GRANTED_STORE} ]; then
+ # rm -f ${JKS_GRANTED_STORE}
+ # fi
+ mkdir -p ${REPERTOIRE_KEYSTORES}/client-${CLIENT_TYPE}
+ # # client-${CLIENT_TYPE} keystores generation
+ for COMPONENT in $( ls ${REPERTOIRE_CERTIFICAT}/client-${CLIENT_TYPE}/clients 2>/dev/null | grep -v "^external$"); do
+
+ # Generate the p12 keystore
+ pki_logger "-------------------------------------------"
+ pki_logger "Creation du keystore client de ${COMPONENT}"
+ CERT_DIRECTORY=${REPERTOIRE_CERTIFICAT}/client-${CLIENT_TYPE}/clients/${COMPONENT}
+ CRT_KEY_PASSWORD=$(getComponentPassphrase certs "client_client-${CLIENT_TYPE}_${COMPONENT}_key")
+ P12_KEYSTORE=${REPERTOIRE_KEYSTORES}/client-${CLIENT_TYPE}/keystore_${COMPONENT}.p12
+ P12_PASSWORD=$(getKeystorePassphrase "keystores_client_${CLIENT_TYPE}_${COMPONENT}")
+
+ if [ -f ${P12_KEYSTORE} ]; then
+ rm -f ${P12_KEYSTORE}
+ fi
+
+ pki_logger "Génération du p12"
+ crtKeyToP12 ${CERT_DIRECTORY} \
+ ${CRT_KEY_PASSWORD} \
+ ${COMPONENT} \
+ ${P12_PASSWORD} \
+ ${P12_KEYSTORE}
+ done
+
+ # Generate the CLIENT_TYPE truststore
+ pki_logger "-------------------------------------------"
+ pki_logger "Génération du truststore client-${CLIENT_TYPE}"
+ generateTrustStore "client" ${CLIENT_TYPE}
+
+ done
+
+ # Generate the server trustore
+ pki_logger "-------------------------------------------"
+ pki_logger "Génération du truststore server"
+ generateTrustStore "server" "server"
+
+ pki_logger "-------------------------------------------"
+ pki_logger "Fin de la génération des stores"
+
+}
\ No newline at end of file
diff --git a/deployment/pom.xml b/deployment/pom.xml
index 62fc912455af9fcefa4c54ce3303c9fcd72daeb1..23ae9aefe49103ab7d1a2764153640e3fa385424 100644
--- a/deployment/pom.xml
+++ b/deployment/pom.xml
@@ -10,4 +10,5 @@
<artifactId>deployment</artifactId>
<name>VITAMUI Deployment - Stub</name>
<packaging>pom</packaging>
-</project>
+
+</project>
\ No newline at end of file
diff --git a/deployment/roles/bootstrap_repo/tasks/main.yml b/deployment/roles/bootstrap_repo/tasks/main.yml
index 5fd21b3e7d02092570015c739e62d5a21962d11f..6270b63ae85e383f5412d4c4f1d34a9d2ca6076b 100644
--- a/deployment/roles/bootstrap_repo/tasks/main.yml
+++ b/deployment/roles/bootstrap_repo/tasks/main.yml
@@ -4,8 +4,8 @@
- name: create VITAM repositories for CentOS
template:
- src: vitam.repo.j2
- dest: /etc/yum.repos.d/vitam-repositories.repo
+ src: vitamui.repo.j2
+ dest: /etc/yum.repos.d/vitamui-repositories.repo
owner: root
group: root
mode: 0644
@@ -19,8 +19,8 @@
- name: create VITAM repositories for Debian
template:
- src: vitam-source-list.j2
- dest: /etc/apt/sources.list.d/vitam-repositories.list
+ src: vitamui-source-list.j2
+ dest: /etc/apt/sources.list.d/vitamui-repositories.list
owner: root
group: root
mode: 0644
diff --git a/deployment/roles/bootstrap_repo/templates/vitam-source-list.j2 b/deployment/roles/bootstrap_repo/templates/vitamui-source-list.j2
similarity index 100%
rename from deployment/roles/bootstrap_repo/templates/vitam-source-list.j2
rename to deployment/roles/bootstrap_repo/templates/vitamui-source-list.j2
diff --git a/deployment/roles/bootstrap_repo/templates/vitam.repo.j2 b/deployment/roles/bootstrap_repo/templates/vitamui.repo.j2
similarity index 100%
rename from deployment/roles/bootstrap_repo/templates/vitam.repo.j2
rename to deployment/roles/bootstrap_repo/templates/vitamui.repo.j2
diff --git a/deployment/roles/init_bdd/tasks/cas.yml b/deployment/roles/init_bdd/tasks/cas.yml
deleted file mode 100644
index 278498a93831de6a2533d85ac286e1f788e13cf2..0000000000000000000000000000000000000000
--- a/deployment/roles/init_bdd/tasks/cas.yml
+++ /dev/null
@@ -1,27 +0,0 @@
----
-- name: prepare directory for cas scripts
- file:
- path: "{{ vitamui_defaults.folder.root_path }}/app/mongod/cas"
- state: directory
- owner: "{{ vitamui_defaults.users.vitamuidb }}"
- group: "{{ vitamui_defaults.users.group }}"
- mode: 0755
-
-- name: Copy the cas database scripts files
- template:
- src: "{{ item }}"
- dest: "{{ vitamui_defaults.folder.root_path }}/app/mongod/cas/{{ item | basename | regex_replace('\\.j2$') }}"
- owner: "{{ vitamui_defaults.users.vitamuidb }}"
- group: "{{ vitamui_defaults.users.group }}"
- mode: 0755
- with_fileglob:
- - "{{ role_path }}/templates/cas/*"
- tags:
- - update_mongodb_configuration
-
-- name: Load cas scripts in database
- command: "mongo {{ ip_service }}:{{ mongodb.mongod_port }}/admin {{ mongo_credentials }} {{ vitamui_defaults.folder.root_path }}/app/mongod/cas/{{ item | basename | regex_replace('\\.j2$') }}"
- no_log: "{{ hide_passwords_during_deploy }}"
- loop: "{{ query('fileglob', \"{{ role_path }}/templates/cas/*\")|sort }}"
- tags:
- - update_mongodb_configuration
diff --git a/deployment/roles/init_bdd/tasks/iam.yml b/deployment/roles/init_bdd/tasks/iam.yml
deleted file mode 100644
index 6e9ccabe199d00ce56734edcaf795199c85ad1ac..0000000000000000000000000000000000000000
--- a/deployment/roles/init_bdd/tasks/iam.yml
+++ /dev/null
@@ -1,28 +0,0 @@
----
-- name: prepare directory for iam scripts
- file:
- path: "{{ vitamui_defaults.folder.root_path }}/app/mongod/iam"
- state: directory
- owner: "{{ vitamui_defaults.users.vitamuidb }}"
- group: "{{ vitamui_defaults.users.group }}"
- mode: 0755
-
-
-- name: Copy the database scripts files for iam
- template:
- src: "{{ item }}"
- dest: "{{ vitamui_defaults.folder.root_path }}/app/mongod/iam/{{ item | basename | regex_replace('\\.j2$') }}"
- owner: "{{ vitamui_defaults.users.vitamuidb }}"
- group: "{{ vitamui_defaults.users.group }}"
- mode: 0755
- with_fileglob:
- - "{{ role_path }}/templates/iam/*"
- tags:
- - update_mongodb_configuration
-
-- name: Load iam scripts in database
- command: "mongo {{ ip_service }}:{{ mongodb.mongod_port }}/admin {{ mongo_credentials }} {{ vitamui_defaults.folder.root_path }}/app/mongod/iam/{{ item | basename | regex_replace('\\.j2$') }}"
- no_log: "{{ hide_passwords_during_deploy }}"
- loop: "{{ query('fileglob', \"{{ role_path }}/templates/iam/*\")|sort }}"
- tags:
- - update_mongodb_configuration
diff --git a/deployment/roles/init_bdd/tasks/main.yml b/deployment/roles/init_bdd/tasks/main.yml
deleted file mode 100644
index 8b1e89f8bf0059386e7ac02ff997403e5fb00ab7..0000000000000000000000000000000000000000
--- a/deployment/roles/init_bdd/tasks/main.yml
+++ /dev/null
@@ -1,8 +0,0 @@
----
-- import_tasks: check_auth.yml
-
-- import_tasks: iam.yml
-
-- import_tasks: security.yml
-
-- import_tasks: cas.yml
diff --git a/deployment/roles/init_bdd/tasks/security.yml b/deployment/roles/init_bdd/tasks/security.yml
deleted file mode 100644
index 480784ee36b581fff03238fde036003a9367ff02..0000000000000000000000000000000000000000
--- a/deployment/roles/init_bdd/tasks/security.yml
+++ /dev/null
@@ -1,28 +0,0 @@
----
-- name: prepare directory for security scripts
- file:
- path: "{{ vitamui_defaults.folder.root_path }}/app/mongod/security"
- state: directory
- owner: "{{ vitamui_defaults.users.vitamuidb }}"
- group: "{{ vitamui_defaults.users.group }}"
- mode: 0755
-
-
-- name: Copy the security database scripts files
- template:
- src: "{{ item }}"
- dest: "{{ vitamui_defaults.folder.root_path }}/app/mongod/security/{{ item | basename | regex_replace('\\.j2$') }}"
- owner: "{{ vitamui_defaults.users.vitamuidb }}"
- group: "{{ vitamui_defaults.users.group }}"
- mode: 0755
- with_fileglob:
- - "{{ role_path }}/templates/security/*"
- tags:
- - update_mongodb_configuration
-
-- name: Load security scripts in database
- command: "mongo {{ ip_service }}:{{ mongodb.mongod_port }}/admin {{ mongo_credentials }} {{ vitamui_defaults.folder.root_path }}/app/mongod/security/{{ item | basename | regex_replace('\\.j2$') }}"
- no_log: "{{ hide_passwords_during_deploy }}"
- loop: "{{ query('fileglob', \"{{ role_path }}/templates/security/*\")|sort }}"
- tags:
- - update_mongodb_configuration
diff --git a/deployment/roles/init_bdd/templates/iam/01_iam_ref.js.j2 b/deployment/roles/init_bdd/templates/iam/01_iam_ref.js.j2
deleted file mode 100644
index 7d945de962df9eaf88382367c6feb47b23405e37..0000000000000000000000000000000000000000
--- a/deployment/roles/init_bdd/templates/iam/01_iam_ref.js.j2
+++ /dev/null
@@ -1,718 +0,0 @@
-db = db.getSiblingDB('{{ mongodb.iam.db }}')
-
-print("START 01_iam_ref.js");
-
-db.users.remove({});
-db.groups.remove({});
-db.profiles.remove({});
-db.tenants.remove({});
-db.providers.remove({});
-db.owners.remove({});
-db.customers.remove({});
-db.sequences.remove({});
-db.tokens.remove({});
-db.createCollection('events');
-db.createCollection('operations');
-
-// ========================================= CUSTOMERS =========================================
-
-db.customers.insert({
- "_id": "system_customer",
- "code": "000000",
- "identifier" : NumberInt(1),
- "name": "{{ vitamui_platform_informations.name }}",
- "description": "{{ vitamui_platform_informations.description }}",
- "companyName": "{{ vitamui_platform_informations.company_name }}",
- "enabled": true,
- "readonly": true,
- "subrogeable": false,
- "language": "FRENCH",
- "passwordRevocationDelay": NumberInt(1),
- "otp": "OPTIONAL",
- "emailDomains": ["{{ vitamui_platform_informations.email_domains }}"],
- "defaultEmailDomain": "{{ vitamui_platform_informations.default_email_domain }}",
- "address": {
- street: "{{ vitamui_platform_informations.address.street }}",
- zipCode: "{{ vitamui_platform_informations.address.zip_code }}",
- city: "{{ vitamui_platform_informations.address.city }}",
- country: "{{ vitamui_platform_informations.address.country }}"
- }
-});
-
-// ========================================= OWNERS =========================================
-
-db.owners.insert({
- "_id": "system_owner",
- "identifier" : NumberInt(1),
- "enabled": true,
- "readonly": true,
- "code": "000001",
- "name": "system_owner",
- "companyName": "system_company",
- "customerId": "system_customer",
- "address": {
- street: "{{ vitamui_platform_informations.address.street }}",
- zipCode: "{{ vitamui_platform_informations.address.zip_code }}",
- city: "{{ vitamui_platform_informations.address.city }}",
- country: "{{ vitamui_platform_informations.address.country }}"
- }
-});
-
-db.owners.insert({
- "_id": "system_owner_cas",
- "identifier" : NumberInt(2),
- "enabled": true,
- "readonly": true,
- "code": "000002",
- "name": "system_owner_cas",
- "companyName": "system_owner_cas",
- "customerId": "system_customer",
- "address": {
- street: "{{ vitamui_platform_informations.address.street }}",
- zipCode: "{{ vitamui_platform_informations.address.zip_code }}",
- city: "{{ vitamui_platform_informations.address.city }}",
- country: "{{ vitamui_platform_informations.address.country }}"
- }
-});
-
-// ========================================= PROVIDERS =========================================
-
-db.providers.insert({
- "_id": "system_idp",
- "identifier" : NumberInt(1),
- "code": "000002",
- "name": "system_idp",
- "internal": true,
- "enabled": true,
- "readonly": true,
- "patterns": [
- "admin.*@{{ vitamui_platform_informations.default_email_domain }}", "support.*@{{ vitamui_platform_informations.default_email_domain }}", "superadmin.*@{{ vitamui_platform_informations.default_email_domain }}"
- ],
- "keystoreBase64": "",
- "keystorePassword": "",
- "privateKeyPassword": "",
- "idpMetadata": "",
- "spMetadata": "",
- "customerId": "system_customer"
-});
-
-// ========================================= SEQUENCES =========================================
-
-db.sequences.insert({
- "_id": "tenant_identifier",
- "name": "tenantIdentifier",
- "sequence": NumberInt({{ vitamui_platform_informations.first_customer_tenant }})
-});
-
-db.sequences.insert({
- "_id": "user_identifier",
- "name": "userIdentifier",
- "sequence": NumberInt(100)
-});
-
-db.sequences.insert({
- "_id": "profile_identifier",
- "name": "profileIdentifier",
- "sequence": NumberInt(200)
-});
-
-db.sequences.insert({
- "_id": "group_identifier",
- "name": "groupIdentifier",
- "sequence": NumberInt(100)
-});
-
-db.sequences.insert({
- "_id": "provider_identifier",
- "name": "providerIdentifier",
- "sequence": NumberInt(50)
-});
-
-db.sequences.insert({
- "_id": "customer_identifier",
- "name": "customerIdentifier",
- "sequence": NumberInt(10)
-});
-
-db.sequences.insert({
- "_id": "owner_identifier",
- "name": "ownerIdentifier",
- "sequence": NumberInt(50)
-});
-
-// ========================================= TENANTS =========================================
-
-db.tenants.insert({
- "_id": "system_tenant",
- "name": "Tenant système",
- "proof": true,
- "enabled": true,
- "readonly": false,
- "identifier": NumberInt({{ vitamui_platform_informations.proof_tenant }}),
- "ownerId": "system_owner",
- "customerId": "system_customer",
- "ingestContractHoldingIdentifier" : "IC-000001",
- "itemIngestContractIdentifier" : "IC-000001",
- "accessContractHoldingIdentifier" : "AC-000001",
- "accessContractLogbookIdentifier" : "AC-000002"
-});
-
-db.tenants.insert({
- "_id": "cas_tenant",
- "name": "Tenant CAS",
- "enabled": true,
- "readonly": false,
- "identifier": NumberInt({{ vitamui_platform_informations.cas_tenant }}),
- "ownerId": "system_owner_cas",
- "customerId": "system_customer"
-});
-
-// ========================================= PROFILES =========================================
-
-// ----------------------------------------- LEVEL "0" -----------------------------------------
-
-
-db.profiles.insert({
- "_id": "system_user_profile",
- "identifier" : NumberInt(1),
- "name": "User Profile",
- "description": "User Profile",
- "tenantIdentifier": NumberInt({{ vitamui_platform_informations.proof_tenant }}),
- "applicationName": "USERS_APP",
- "enabled": true,
- "readonly": true,
- "level": "",
- "customerId": "system_customer",
- "roles": [{
- "name": "ROLE_GET_USERS"
- },
- {
- "name": "ROLE_CREATE_USERS"
- },
- {
- "name": "ROLE_UPDATE_USERS"
- },
- {
- "name": "ROLE_UPDATE_STANDARD_USERS"
- },
- {
- "name": "ROLE_MFA_USERS"
- },
- {
- "name": "ROLE_ANONYMIZATION_USERS"
- },
- {
- "name": "ROLE_GENERIC_USERS"
- },
- {
- "name": "ROLE_GET_GROUPS"
- }
- ]
-});
-
-db.profiles.insert({
- "_id": "system_group_profile",
- "identifier" : NumberInt(2),
- "name": "Group Profile",
- "description": "Group Profile",
- "tenantIdentifier": NumberInt({{ vitamui_platform_informations.proof_tenant }}),
- "applicationName": "GROUPS_APP",
- "enabled": true,
- "level": "",
- "readonly": true,
- "customerId": "system_customer",
- "roles": [{
- "name": "ROLE_GET_GROUPS"
- },
- {
- "name": "ROLE_CREATE_GROUPS"
- },
- {
- "name": "ROLE_UPDATE_GROUPS"
- },
- {
- "name": "ROLE_DELETE_GROUPS"
- },
- {
- "name": "ROLE_GET_PROFILES"
- },
- {
- "name": "ROLE_GET_PROFILES_ALL_TENANTS"
- }
- ]
-});
-
-db.profiles.insert({
- "_id": "system_profile_profile",
- "identifier" : NumberInt(3),
- "name": "Profile System",
- "description": "Profile System Profile",
- "tenantIdentifier": NumberInt({{ vitamui_platform_informations.proof_tenant }}),
- "applicationName": "PROFILES_APP",
- "level": "",
- "enabled": true,
- "readonly": true,
- "customerId": "system_customer",
- "roles": [{
- "name": "ROLE_GET_PROFILES"
- },
- {
- "name": "ROLE_CREATE_PROFILES"
- },
- {
- "name": "ROLE_UPDATE_PROFILES"
- },
- {
- "name": "ROLE_DELETE_PROFILES"
- },
- {
- "name": "ROLE_GET_GROUPS"
- }
- ]
-});
-
-db.profiles.insert({
- "_id": "system_customer_profile",
- "identifier" : NumberInt(4),
- "name": "Customer Profile",
- "description": "Customer Profile",
- "tenantIdentifier": NumberInt({{ vitamui_platform_informations.proof_tenant }}),
- "applicationName": "CUSTOMERS_APP",
- "level": "",
- "enabled": true,
- "readonly": true,
- "customerId": "system_customer",
- "roles": [{
- "name": "ROLE_GET_CUSTOMERS"
- },
- {
- "name": "ROLE_CREATE_CUSTOMERS"
- },
- {
- "name": "ROLE_UPDATE_CUSTOMERS"
- },
- {
- "name": "ROLE_GET_OWNERS"
- },
- {
- "name": "ROLE_CREATE_OWNERS"
- },
- {
- "name": "ROLE_UPDATE_OWNERS"
- },
- {
- "name": "ROLE_GET_ALL_TENANTS"
- },
- {
- "name": "ROLE_GET_TENANTS"
- },
- {
- "name": "ROLE_CREATE_TENANTS"
- },
- {
- "name": "ROLE_CREATE_TENANTS_ALL_CUSTOMERS"
- },
- {
- "name": "ROLE_UPDATE_TENANTS"
- },
- {
- "name": "ROLE_UPDATE_TENANTS_ALL_CUSTOMERS"
- },
- {
- "name": "ROLE_GET_PROVIDERS"
- },
- {
- "name": "ROLE_CREATE_PROVIDERS"
- },
- {
- "name": "ROLE_UPDATE_PROVIDERS"
- },
- {
- "name": "ROLE_CREATE_ACCESS_CONTRACTS"
- }
- ]
-});
-
-db.profiles.insert({
- "_id": "system_surrogate_profile",
- "identifier" : NumberInt(5),
- "name": "Surrogate Profile",
- "description": "Surrogate Profile",
- "tenantIdentifier": NumberInt({{ vitamui_platform_informations.proof_tenant }}),
- "applicationName": "SUBROGATIONS_APP",
- "level": "",
- "enabled": true,
- "readonly": true,
- "customerId": "system_customer",
- "roles": [{
- "name": "ROLE_GET_SUBROGATIONS"
- },
- {
- "name": "ROLE_CREATE_SUBROGATIONS"
- },
- {
- "name": "ROLE_DELETE_SUBROGATIONS",
- },
- {
- "name": "ROLE_GET_CUSTOMERS",
- },
- {
- "name": "ROLE_GET_GROUPS_SUBROGATIONS",
- },
- {
- "name": "ROLE_GET_USERS_SUBROGATIONS",
- }
- ]
-});
-
-
-db.profiles.insert({
- "_id": "system_account_profile",
- "identifier" : NumberInt(13),
- "name": "Account Profile",
- "description": "Account Profile",
- "tenantIdentifier": NumberInt({{ vitamui_platform_informations.proof_tenant }}),
- "applicationName": "ACCOUNTS_APP",
- "level": "",
- "enabled": true,
- "readonly": true,
- "customerId": "system_customer",
- "roles": [
- {
- "name": "ROLE_UPDATE_ME_USERS"
- }
- ]
-});
-
-db.profiles.insert({
- "_id": "system_hierarchy_profile",
- "identifier" : NumberInt(17),
- "name": "Hierarchy profile",
- "description": "Hierarchy profile",
- "tenantIdentifier": NumberInt({{ vitamui_platform_informations.proof_tenant }}),
- "applicationName": "HIERARCHY_PROFILE_APP",
- "level": "",
- "enabled": true,
- "readonly": true,
- "customerId": "system_customer",
- "roles": [
- {
- "name": "ROLE_GET_PROFILES",
- },
- {
- "name": "ROLE_CREATE_PROFILES"
- },
- {
- "name": "ROLE_UPDATE_PROFILES"
- },
- {
- "name": "ROLE_DELETE_PROFILES"
- }
- ]
-});
-
-
-// ----------------------------------------- LEVEL "CAS" -----------------------------------------
-
-db.profiles.insert({
- "_id": "cas_profile",
- "identifier" : NumberInt(25),
- "name": "Cas Profile",
- "description": "Cas Profile",
- "tenantIdentifier": NumberInt({{ vitamui_platform_informations.cas_tenant }}),
- "applicationName": "",
- "level": "",
- "enabled": true,
- "readonly": true,
- "customerId": "system_customer",
- "roles": [{
- "name": "ROLE_GET_USERS"
- },
- {
- "name": "ROLE_CAS_LOGIN"
- },
- {
- "name": "ROLE_CAS_CHANGE_PASSWORD"
- },
- {
- "name": "ROLE_CAS_USERS"
- },
- {
- "name": "ROLE_CAS_SUBROGATIONS"
- },
- {
- "name": "ROLE_CAS_LOGOUT"
- },
- {
- "name": "ROLE_GET_PROVIDERS"
- },
- {
- "name": "ROLE_GET_USERS"
- },
- {
- "name": "ROLE_GET_GROUPS"
- },
- {
- "name": "ROLE_GET_PROFILES_ALL_TENANTS"
- }
- ]
-});
-
-db.profiles.insert({
- "_id": "cas_system_profile",
- "identifier" : NumberInt(26),
- "name": "Cas System Profile",
- "description": "Cas System Profile",
- "tenantIdentifier": NumberInt({{ vitamui_platform_informations.proof_tenant }}),
- "applicationName": "",
- "level": "",
- "enabled": true,
- "readonly": true,
- "customerId": "system_customer",
- "roles": []
-});
-
-
-
-// ----------------------------------------- LEVEL "SUPPORT" -----------------------------------------
-
-db.profiles.insert({
- "_id": "system_account_profile_support",
- "identifier" : NumberInt(28),
- "name": "Account Profile Support",
- "description": "Account Profile Support",
- "tenantIdentifier": NumberInt({{ vitamui_platform_informations.proof_tenant }}),
- "applicationName": "ACCOUNTS_APP",
- "level": "SUPPORT",
- "enabled": true,
- "readonly": true,
- "customerId": "system_customer",
- "roles": [
- {
- "name": "ROLE_UPDATE_ME_USERS"
- }
- ]
-});
-
-
-db.profiles.insert({
- "_id": "system_surrogate_profile_support",
- "identifier" : NumberInt(32),
- "name": "Surrogate Profile Support",
- "description": "Surrogate Profile Support",
- "tenantIdentifier": NumberInt({{ vitamui_platform_informations.proof_tenant }}),
- "applicationName": "SUBROGATIONS_APP",
- "level": "SUPPORT",
- "enabled": true,
- "readonly": true,
- "customerId": "system_customer",
- "roles": [{
- "name": "ROLE_GET_SUBROGATIONS"
- },
- {
- "name": "ROLE_CREATE_SUBROGATIONS"
- },
- {
- "name": "ROLE_DELETE_SUBROGATIONS"
- },
- {
- "name": "ROLE_GET_CUSTOMERS"
- },
- {
- "name": "ROLE_GET_GROUPS_SUBROGATIONS",
- },
- {
- "name": "ROLE_GET_USERS_SUBROGATIONS",
- }
- ]
-});
-
-// ========================================= GROUPS =========================================
-
-// ----------------------------------------- LEVEL "0" -----------------------------------------
-
-db.groups.insert({
- "_id": "admin_group",
- "identifier" : NumberInt(1),
- "name": "Groupe de l'administrateur VitamUI",
- "level": "",
- "enabled": true,
- "readonly": true,
- "description": "Groupe de l'administrateur VitamUI",
- "profileIds": [
- "system_user_profile",
- "system_group_profile",
- "system_profile_profile",
- "system_account_profile",
- "system_hierarchy_profile"
- ],
- "customerId": "system_customer"
-});
-
-db.groups.insert({
- "_id": "super_admin_group",
- "identifier" : NumberInt(2),
- "name": "Groupe de l'adminstrateur de l'instance",
- "level": "",
- "enabled": true,
- "readonly": true,
- "description": "Groupe de l'adminstrateur de l'instance",
- "profileIds": [
- "system_customer_profile",
- "system_surrogate_profile",
- "system_account_profile"
- ],
- "customerId": "system_customer"
-});
-
-// ----------------------------------------- LEVEL "SUPPORT" -----------------------------------------
-
-db.groups.insert({
- "_id": "support_group",
- "identifier" : NumberInt(4),
- "name": "Groupe de l'utilisateur support",
- "level": "SUPPORT",
- "enabled": true,
- "readonly": true,
- "description": "Acces à la subrogation",
- "profileIds": [
- "system_surrogate_profile_support",
- "system_account_profile_support"
- ],
- "customerId": "system_customer"
-});
-
-// ----------------------------------------- LEVEL "CAS" -----------------------------------------
-
-db.groups.insert({
- "_id": "cas_group",
- "identifier" : NumberInt(5),
- "name": "Groupe d'accès à IAM",
- "level": "",
- "enabled": true,
- "readonly": true,
- "description": "Groupe d'accès à IAM",
- "profileIds": [
- "cas_profile",
- "cas_system_profile"
- ],
- "customerId": "system_customer"
-});
-
-// ========================================= USERS =========================================
-
-// ----------------------------------------- LEVEL "0" -----------------------------------------
-
-db.users.insert({
- "_id": "admin_user",
- "level": "",
- "enabled": true,
- "readonly": true,
- "identifier": "1",
- "password": "{{ vitamui_platform_informations.default_password }}",
- "email": "admin@{{ vitamui_platform_informations.default_email_domain }}",
- "firstname": "Admin",
- "lastname": "ADMIN",
- "phone": "+33178956321",
- "mobile": "+33674892746",
- "otp": false,
- "language": "FRENCH",
- "type": "NOMINATIVE",
- "status": "ENABLED",
- "subrogeable": false,
- "mfa": false,
- "surrogates": [],
- "groupId": "admin_group",
- "canLogin": true,
- "customerId": "system_customer",
- "passwordExpirationDate": "2021-01-01T00:00:00.000+01:00"
-});
-
-db.users.insert({
- "_id": "superadmin_user",
- "level": "",
- "enabled": true,
- "readonly": true,
- "identifier": "2",
- "password": "{{ vitamui_platform_informations.default_password }}",
- "email": "superadmin@{{ vitamui_platform_informations.default_email_domain }}",
- "firstname": "Super",
- "lastname": "Admin",
- "phone": "+33178956321",
- "mobile": "+33674892746",
- "otp": false,
- "language": "FRENCH",
- "type": "NOMINATIVE",
- "status": "ENABLED",
- "subrogeable": false,
- "mfa": false,
- "surrogates": [],
- "groupId": "super_admin_group",
- "canLogin": true,
- "customerId": "system_customer",
- "passwordExpirationDate": "2021-01-01T00:00:00.000+01:00"
-});
-
-// ----------------------------------------- LEVEL "SUPPORT" -----------------------------------------
-
-db.users.insert({
- "_id": "support_user",
- "level": "SUPPORT",
- "enabled": true,
- "readonly": true,
- "identifier": "3",
- "password": "{{ vitamui_platform_informations.default_password }}",
- "email": "support@{{ vitamui_platform_informations.default_email_domain }}",
- "firstname": "VITAMUI",
- "lastname": "Support",
- "phone": "+33178956321",
- "mobile": "+33674892746",
- "otp": false,
- "language": "FRENCH",
- "type": "NOMINATIVE",
- "status": "ENABLED",
- "subrogeable": false,
- "mfa": false,
- "surrogates": [],
- "groupId": "support_group",
- "canLogin": true,
- "customerId": "system_customer",
- "passwordExpirationDate": "2021-01-01T00:00:00.000+01:00"
-});
-
-// ----------------------------------------- LEVEL "CAS" -----------------------------------------
-
-db.users.insert({
- "_id": "casuser",
- "level": "",
- "enabled": true,
- "readonly": true,
- "identifier": "4",
- "password": "{{ vitamui_platform_informations.default_password }}",
- "email": "cas@{{ vitamui_platform_informations.default_email_domain }}",
- "firstname": "Cas",
- "lastname": "Admin",
- "phone": "+33275984137",
- "mobile": "+33785142960",
- "otp": false,
- "language": "FRENCH",
- "type": "NOMINATIVE",
- "status": "ENABLED",
- "subrogeable": false,
- "mfa": false,
- "surrogates": [],
- "groupId": "cas_group",
- "canLogin": false,
- "customerId": "system_customer",
- "passwordExpirationDate": "2021-01-01T00:00:00.000+01:00"
-});
-
-// ========================================= TOKENS =========================================
-
-db.tokens.insert({
- "_id": "tokcas_ie6UZsEcHIWrfv2x",
- "updatedDate": "May 15, 2008 6:30:58 PM",
- "refId": "casuser"
-});
-
-print("END 01_iam_ref.js");
diff --git a/deployment/roles/init_bdd/templates/iam/04_add_graphic_identity_all_customers_ref.js.j2 b/deployment/roles/init_bdd/templates/iam/04_add_graphic_identity_all_customers_ref.js.j2
deleted file mode 100644
index 6d5700a5d4c7cab1e3bc393768448224f06ecdf7..0000000000000000000000000000000000000000
--- a/deployment/roles/init_bdd/templates/iam/04_add_graphic_identity_all_customers_ref.js.j2
+++ /dev/null
@@ -1,17 +0,0 @@
-db = db.getSiblingDB('{{ mongodb.iam.db }}')
-
-print("START add_graphic_identity_all_customers_ref.js");
-
-// ========================================= ADD GRAPHIC IDENTITY ALL CUSTOMERS =========================================
-
-db.customers.updateMany(
- {},
- {
- $set: {
- "graphicIdentity": {
- "hasCustomGraphicIdentity": false
- }
- }
- });
-
-print("END add_graphic_identity_all_customers_ref.js");
diff --git a/deployment/roles/init_bdd/templates/security/02_security_ref.js.j2 b/deployment/roles/init_bdd/templates/security/02_security_ref.js.j2
deleted file mode 100644
index 2f2769c632ed0891560021ef7d3bb1a20be73945..0000000000000000000000000000000000000000
--- a/deployment/roles/init_bdd/templates/security/02_security_ref.js.j2
+++ /dev/null
@@ -1,56 +0,0 @@
-db = db.getSiblingDB('{{ mongodb.security.db }}')
-
-print("START 02_security_ref.js");
-
-db.contexts.remove({});
-db.createCollection('events');
-
-db.contexts.insert({
- "_id": "cas_context",
- "name": "Contexte CAS",
- "fullAccess": false,
- "tenants": [NumberInt({{ vitamui_platform_informations.cas_tenant }})],
- "roleNames": ["ROLE_CAS_LOGIN", "ROLE_CAS_CHANGE_PASSWORD", "ROLE_CAS_USERS", "ROLE_CAS_SUBROGATIONS", "ROLE_CAS_LOGOUT", "ROLE_GET_PROVIDERS", "ROLE_GET_USERS"]
-});
-
-db.contexts.insert({
- "_id" : "ui_portal_context",
- "name": "Contexte UI Portal",
- "fullAccess" : true,
- "tenants" : [],
- "roleNames" : []
-});
-
-db.contexts.insert({
- "_id" : "ui_identity_context",
- "name": "Contexte UI Identity",
- "fullAccess" : true,
- "tenants" : [NumberInt({{ vitamui_platform_informations.proof_tenant }}), NumberInt({{ vitamui_platform_informations.cas_tenant }})],
- "roleNames" : [
- "ROLE_GET_USERS", "ROLE_CREATE_USERS", "ROLE_UPDATE_USERS", "ROLE_UPDATE_STANDARD_USERS", "ROLE_GENERIC_USERS", "ROLE_MFA_USERS", "ROLE_ANONYMIZATION_USERS",
- "ROLE_UPDATE_ME_USERS",
- "ROLE_GET_PROFILES", "ROLE_CREATE_PROFILES", "ROLE_UPDATE_PROFILES", "ROLE_DELETE_PROFILES",
- "ROLE_GET_GROUPS", "ROLE_CREATE_GROUPS", "ROLE_UPDATE_GROUPS", "ROLE_DELETE_GROUPS", "ROLE_GET_PROFILES_ALL_TENANTS"
- ]
-});
-
-db.contexts.insert({
- "_id" : "ui_admin_identity_context",
- "name": "Contexte UI Identity",
- "fullAccess" : true,
- "tenants" : [NumberInt({{ vitamui_platform_informations.proof_tenant }}), NumberInt({{ vitamui_platform_informations.cas_tenant }})],
- "roleNames" : [
- "ROLE_GET_CUSTOMERS", "ROLE_CREATE_CUSTOMERS", "ROLE_UPDATE_CUSTOMERS",
- "ROLE_GET_USERS", "ROLE_CREATE_USERS", "ROLE_UPDATE_USERS", "ROLE_UPDATE_STANDARD_USERS", "ROLE_GENERIC_USERS", "ROLE_MFA_USERS", "ROLE_ANONYMIZATION_USERS",
- "ROLE_UPDATE_ME_USERS",
- "ROLE_GET_PROFILES", "ROLE_CREATE_PROFILES", "ROLE_UPDATE_PROFILES", "ROLE_DELETE_PROFILES",
- "ROLE_GET_PROVIDERS", "ROLE_CREATE_PROVIDERS", "ROLE_UPDATE_PROVIDERS",
- "ROLE_GET_GROUPS", "ROLE_CREATE_GROUPS", "ROLE_UPDATE_GROUPS", "ROLE_DELETE_GROUPS", "ROLE_GET_PROFILES_ALL_TENANTS",
- "ROLE_GET_TENANTS", "ROLE_CREATE_TENANTS", "ROLE_CREATE_TENANTS_ALL_CUSTOMERS", "ROLE_UPDATE_TENANTS", "ROLE_UPDATE_TENANTS_ALL_CUSTOMERS", "ROLE_GET_ALL_TENANTS",
- "ROLE_GET_OWNERS", "ROLE_CREATE_OWNERS", "ROLE_UPDATE_OWNERS",
- "ROLE_GET_SUBROGATIONS", "ROLE_CREATE_SUBROGATIONS", "ROLE_DELETE_SUBROGATIONS", "ROLE_GET_USERS_SUBROGATIONS", "ROLE_GET_GROUPS_SUBROGATIONS",
- "ROLE_CREATE_ACCESS_CONTRACTS"
- ]
-});
-
-print("END 02_security_ref.js");
diff --git a/deployment/roles/init_bdd/templates/security/security.populate_certificates_ref.js.j2 b/deployment/roles/init_bdd/templates/security/security.populate_certificates_ref.js.j2
deleted file mode 100644
index 0cb7a6a44d9251124dc434d98bca4d63918d1e66..0000000000000000000000000000000000000000
--- a/deployment/roles/init_bdd/templates/security/security.populate_certificates_ref.js.j2
+++ /dev/null
@@ -1,26 +0,0 @@
-db = db.getSiblingDB('{{ mongodb.security.db }}')
-
-print("START security.populate_certificates_ref.js");
-
-{% macro insertCertififcate(pemFile, contextId) -%}
-db.certificates.remove(
- {"_id" : "{{ pemFile | basename | replace('.pem','_cert')}}"},
- { justOne: true }
-)
-db.certificates.insert({
- "_id": "{{ pemFile | basename | replace('.pem','_cert')}}",
- "contextId": "{{ contextId }}",
- "subjectDN": "subjectDN",
- "issuerDN": "issuerDN",
- "serialNumber": "serialNumberAdmin",
- "data": "{{ lookup('file', pemFile) | cert_to_str() }}"
-})
-
-{%- endmacro %}
-
-{{ insertCertififcate('{{ inventory_dir }}/certs/server/hosts/{{ groups["hosts_ui_identity"]|first }}/ui-identity.pem', 'ui_identity_context') }}
-{{ insertCertififcate('{{ inventory_dir }}/certs/server/hosts/{{ groups["hosts_ui_portal"]|first }}/ui-portal.pem', 'ui_portal_context') }}
-{{ insertCertififcate('{{ inventory_dir }}/certs/server/hosts/{{ groups["hosts_cas_server"]|first }}/cas-server.pem', 'cas_context') }}
-{{ insertCertififcate('{{ inventory_dir }}/certs/server/hosts/{{ groups["hosts_ui_identity_admin"]|first }}/ui-identity-admin.pem', 'ui_admin_identity_context') }}
-
-print("END security.populate_certificates_ref.js");
diff --git a/deployment/roles/mongo_configure/tasks/main.yml b/deployment/roles/mongo_configure/tasks/main.yml
index 29401d847deaf5a21e81446a80c2b8cf5bf0eed6..1caf3b499c3f1cc73e1e498b21a92ba8c9f8f903 100644
--- a/deployment/roles/mongo_configure/tasks/main.yml
+++ b/deployment/roles/mongo_configure/tasks/main.yml
@@ -33,48 +33,7 @@
tags:
- update_mongodb_configuration
-# Copy the mongodb scripts
-
-- name: Copy the database scripts files
- template:
- src: "{{ item }}"
- dest: "{{ vitamui_defaults.folder.root_path }}/app/mongod/{{ item | basename | regex_replace('\\.j2$') }}"
- owner: "{{ vitamui_defaults.users.vitamuidb }}"
- group: "{{ vitamui_defaults.users.group }}"
- mode: "{{ vitamui_defaults.folder.conf_permission }}"
- with_fileglob:
- - "{{ role_path }}/templates/mongo-vitamui/*"
- tags:
- - update_mongodb_configuration
-
-# Enable sharding for specific databases and collections
-
-# - name: Enable the sharding
-# command: mongo {{ ip_service }}:{{ mongodb.mongos_port }}/admin {{ mongo_credentials }} {{ vitam_defaults.folder.root_path }}/app/mongos/enable-sharding.js
-# no_log: "{{ hide_passwords_during_deploy }}"
-# tags:
-# - update_mongodb_configuration
-
-# Initiate the databases and the related users
-# FIXME: use mongodb_user module which is curently in extras modules -> need to install pymongo on mongodb servers
-
-- name: Create the users
- command: "mongo {{ ip_service }}:{{ mongodb.mongod_port }}/admin {{ mongo_credentials }} {{ vitamui_defaults.folder.root_path }}/app/mongod/users-{{ item }}.js"
- with_items:
- - admin
- - security
- - iam
- - cas
- no_log: "{{ hide_passwords_during_deploy }}"
- tags:
- - update_mongodb_configuration
-
# Activate security on mongo instances
-
-# TODO: check if we can activate security by default and then create the users
-# (caution : it seems that we can only create one user while being anonymous after security enabling)
-
-
- name: Activate security on mongod instances
blockinfile:
dest: "{{ mongod_config_path }}/mongod.conf"
@@ -84,13 +43,10 @@
authorization: enabled
clusterAuthMode: keyFile
keyFile: "{{ mongod_config_path }}/keyfile"
- # delegate_to: "{{ item }}"
- # with_items: "{{ groups['hosts_vitamui_mongod'] }}"
tags:
- update_mongodb_configuration
# Restart the mongo instances (to enable auth)
-
- name: "restart {{ mongodb.service_name }} service"
service:
name: "{{ mongodb.service_name }}"
@@ -101,41 +57,11 @@
tags:
- update_mongodb_configuration
-
# Make sure the service is open (mongos listening on 27017)
-
- name: "Wait for the service port {{ mongodb.mongod_port }} to be open"
wait_for:
host: "{{ ip_service }}"
port: "{{ mongodb.mongod_port }}"
timeout: "{{ vitamui_defaults.services.start_timeout }}"
tags:
- - update_mongodb_configuration
-
-# # Initiate the databases (now we know that authentication is enabled)
-
-- name: Initiate the databases
- command: "mongo {{ ip_service }}:{{ mongodb.mongod_port }}/admin -u {{ mongodb.admin.user }} -p {{ mongodb.admin.password }} --quiet {{ vitamui_defaults.folder.root_path }}/app/mongod/init-{{ item }}-database.js"
- with_items:
- - admin
- - security
- - iam
- - cas
- no_log: "{{ hide_passwords_during_deploy }}"
- tags:
- - update_mongodb_configuration
-
-- name: Copy the database script files to Set_feature_compatibility
- template:
- src: "{{ item }}"
- dest: "{{ vitamui_defaults.folder.root_path }}/app/mongod/{{ item | basename | regex_replace('\\.j2$') }}"
- owner: "{{ vitamui_defaults.users.vitamuidb }}"
- group: "{{ vitamui_defaults.users.group }}"
- mode: "{{ vitamui_defaults.folder.conf_permission }}"
- with_fileglob:
- - "{{ role_path }}/templates/mongo-vitamui/set_feature_compatibility.js.j2*"
- tags:
- - update_mongodb_configuration
-
-- name: "Set_feature_compatibility to {{ mongo_version }}"
- shell: "mongo {{ ip_service }}:{{ mongodb.mongod_port }}/admin -u {{ mongodb.admin.user }} -p {{ mongodb.admin.password }} --quiet {{ vitamui_defaults.folder.root_path }}/app/mongod/set_feature_compatibility.js"
+ - update_mongodb_configuration
\ No newline at end of file
diff --git a/deployment/roles/mongo_configure/templates/mongo-vitamui/versioning.js.j2 b/deployment/roles/mongo_configure/templates/mongo-vitamui/versioning.js.j2
deleted file mode 100644
index a6028cac24672ad36f325c8434b2767f3920f750..0000000000000000000000000000000000000000
--- a/deployment/roles/mongo_configure/templates/mongo-vitamui/versioning.js.j2
+++ /dev/null
@@ -1,26 +0,0 @@
-use admin;
-
-print("START versioning.js");
-
-db.getCollection("versioning").find({})
-var now = new Date();
-
-{% for version in mongodb_vitamuiScripts_version %}
-
-db.versioning.insert({
- "_id": ObjectId(),
- "version": "{{ version }}",
- "date": now,
- "changelog": [
- {% for filename in mongod_addedScripts if version in filename %}
- {
- "script": "{{ filename }}",
- "content": md5sumFile("{{ filename }}")
- },
- {% endfor %}
- ]
-});
-
-{% endfor %}
-
-print("END versioning.js");
diff --git a/deployment/roles/mongo_configure/vars/main.yml b/deployment/roles/mongo_configure/vars/main.yml
index 6af33a93c82cb55de98aede61dacd752d6dbcdaf..b5408481efdb3001997c50b9a43fbb6a94254481 100644
--- a/deployment/roles/mongo_configure/vars/main.yml
+++ b/deployment/roles/mongo_configure/vars/main.yml
@@ -1,4 +1,3 @@
---
-mongod_config_path: '{{ vitamui_defaults.folder.root_path }}/conf/mongod'
-mongo_version: "4.0"
\ No newline at end of file
+mongod_config_path: '{{ vitamui_defaults.folder.root_path }}/conf/mongod'
\ No newline at end of file
diff --git a/deployment/roles/init_bdd/tasks/check_auth.yml b/deployment/roles/mongo_init/tasks/check_auth.yml
similarity index 75%
rename from deployment/roles/init_bdd/tasks/check_auth.yml
rename to deployment/roles/mongo_init/tasks/check_auth.yml
index fbf5c3cc4f07a89ef2e338f42f0ef95091388169..95e7b2d89e9908a8cab0a10f7be73a2cff7275f7 100644
--- a/deployment/roles/init_bdd/tasks/check_auth.yml
+++ b/deployment/roles/mongo_init/tasks/check_auth.yml
@@ -1,7 +1,7 @@
---
- name: Check if authent is enabled
- command: "mongo {{ ip_service }}:{{ mongodb.mongod_port }}/admin -u {{ mongodb.admin.user }} -p {{ mongodb.admin.password }} --quiet --eval 'db.help()'"
+ command: "mongo {{ ip_service }}:{{ mongodb.mongod_port }}/admin -u {{ mongodb.localadmin.user }} -p {{ mongodb.localadmin.password }} --quiet --eval 'db.help()'"
register: mongo_authent_enabled
failed_when: false
no_log: "{{ hide_passwords_during_deploy }}"
@@ -27,7 +27,7 @@
# When authentication is required, we set mongodb admin credentials
- name: Set mongodb authentication credentials
set_fact:
- mongo_credentials: " -u {{ mongodb.admin.user }} -p {{ mongodb.admin.password }} --quiet"
+ mongo_credentials: " -u {{ mongodb.localadmin.user }} -p {{ mongodb.localadmin.password }} --authenticationDatabase {{ mongodb.localadmin.db }} "
when: "mongo_authent_enabled.rc == 0"
no_log: "{{ hide_passwords_during_deploy }}"
diff --git a/deployment/roles/mongo_init/tasks/execute_script.yml b/deployment/roles/mongo_init/tasks/execute_script.yml
new file mode 100644
index 0000000000000000000000000000000000000000..38e1f13689eac398740512c2305635a98249b69c
--- /dev/null
+++ b/deployment/roles/mongo_init/tasks/execute_script.yml
@@ -0,0 +1,65 @@
+---
+
+- fail: msg="Variable '{{ mongo_file }}' is not defined"
+ when: mongo_file is undefined
+
+- name:
+ debug:
+ msg: ">>>> Execution of the file {{ mongo_file.finalname }} <<<<"
+
+- name: Check if the script exists
+ stat:
+ path: "{{ mongod_output_dir_entry_point }}/{{ mongo_file.finalname }}"
+ register: stat_result
+
+- fail: msg="The file '{{ mongo_file.finalname }}' is not exist"
+ when: not stat_result.stat.exists
+
+- block:
+
+ - name: Check if the script has already been executed
+ shell: "mongo {{ ip_service }}:{{ mongodb.mongod_port }}/versioning {{ mongo_credentials }} --quiet --eval \"db.changelog.find({filename: '{{ mongo_file.finalname }}', checksum: '{{ stat_result.stat.checksum}}'});\""
+ no_log: "{{ hide_passwords_during_deploy }}"
+ register: mongo_versionning_result
+
+ - name: Debug mongo return
+ debug:
+ msg: "{{ mongo_versionning_result.stdout }}"
+
+ - block:
+ - name: Load script in database
+ shell: "mongo {{ ip_service }}:{{ mongodb.mongod_port }}/admin {{ mongo_credentials }} {{ mongod_output_dir_entry_point }}/{{ mongo_file.finalname }}"
+ no_log: "{{ hide_passwords_during_deploy }}"
+ when: mock_insert_data is not defined
+
+ - name: Update changelog
+ shell: "mongo {{ ip_service }}:{{ mongodb.mongod_port }}/versioning {{ mongo_credentials }} --eval \"db.changelog.insertOne({filename: '{{ mongo_file.finalname }}', date: new Date(), version: '{{ mongo_file.version }}', checksum: '{{ stat_result.stat.checksum}}'});\""
+ no_log: "{{ hide_passwords_during_deploy }}"
+ when:
+ - "'_id' not in mongo_versionning_result.stdout"
+
+ when: mongodb.docker is not defined or not mongodb.docker.enable
+
+- block:
+ - name: Check if the script has already been executed (docker)
+ shell: "docker exec --tty vitamui-mongo /bin/bash -c \"mongo {{ ip_service }}:{{ mongodb.mongod_port }}/versioning {{ mongo_credentials }} --quiet --eval \\\"db.changelog.find({filename: '{{ mongo_file.finalname }}', checksum: '{{ stat_result.stat.checksum}}'});\\\"\""
+ no_log: "{{ hide_passwords_during_deploy }}"
+ register: mongo_versionning_result
+
+ - name: Debug mongo return (Docker)
+ debug:
+ msg: "{{ mongo_versionning_result.stdout }}"
+
+ - block:
+ - name: Load script in database (docker)
+ command: "docker exec --tty vitamui-mongo /bin/bash -c \"mongo {{ ip_service }}:{{ mongodb.mongod_port }}/admin {{ mongo_credentials }} {{ mongodb.docker.internal_dir}}/app/mongod/{{ mongo_file.finalname }}\""
+ no_log: "{{ hide_passwords_during_deploy }}"
+ when: mock_insert_data is not defined
+
+ - name: Update changelog (docker)
+ shell: "docker exec --tty vitamui-mongo /bin/bash -c \"mongo {{ ip_service }}:{{ mongodb.mongod_port }}/versioning {{ mongo_credentials }} --quiet --eval \\\"db.changelog.insertOne({filename: '{{ mongo_file.finalname }}', date: new Date(), version: '{{ mongo_file.version }}', checksum: '{{ stat_result.stat.checksum}}'});\\\"\""
+ no_log: "{{ hide_passwords_during_deploy }}"
+
+ when:
+ - "'_id' not in mongo_versionning_result.stdout"
+ when: mongodb.docker is defined and mongodb.docker.enable
diff --git a/deployment/roles/mongo_init/tasks/main.yml b/deployment/roles/mongo_init/tasks/main.yml
new file mode 100644
index 0000000000000000000000000000000000000000..67c70501ca94732383d0a4a1c72b6784acdf1119
--- /dev/null
+++ b/deployment/roles/mongo_init/tasks/main.yml
@@ -0,0 +1,70 @@
+---
+
+- fail: msg="Variable '{{ mongod_source_template_dir }}' is not defined"
+ when: mongod_source_template_dir is undefined
+
+- name: Set mongod_output_dir_entry_point
+ set_fact:
+ mongod_output_dir_entry_point: "{{ vitamui_defaults.folder.root_path }}/app/mongod/"
+
+- import_tasks: check_auth.yml
+
+- name: Initialize directory if it doesn't exist.
+ file:
+ path: "{{ mongod_output_dir_entry_point }}"
+ state: directory
+
+- name: "Clean directory {{ mongod_output_dir_entry_point }}"
+ shell: "rm -Rf {{ mongod_output_dir_entry_point }}/*"
+
+# We sort directories by theirs versions
+- name: List script files versions in the directory {{ mongod_source_template_dir }}
+ delegate_to: localhost
+ shell:
+ cmd: find * -maxdepth 1 -type d | sort -V
+ chdir: "{{ mongod_source_template_dir }}"
+ register: versions
+
+# For each version, we apply a second sort on the index of the script file.
+- name: List script files in the directory {{ mongod_source_template_dir }}
+ delegate_to: localhost
+ shell:
+ cmd: find {{ version }}/* -type f -print | sort -V -t '_' -k1
+ chdir: "{{ mongod_source_template_dir }}"
+ register: output
+ loop: "{{ versions.stdout_lines }}"
+ loop_control:
+ loop_var: version
+
+- name: "Compute file scripts"
+ delegate_to: localhost
+ set_fact:
+ mongod_files: "{{ (mongod_files| default([])) + item.stdout_lines }}"
+ loop: "{{ output.results }}"
+
+# We apply regex for included and excludes files in order to compute the eligible scripts.
+- name: Compute list of eligibles files
+ delegate_to: localhost
+ set_fact:
+ mongod_eligible_files : "{{ (mongod_eligible_files| default([])) + [ {'name': item.0, 'version': item.0 | regex_replace('^(.+)/(.+)$', '\\1') ,'finalname': item.0 | regex_replace('/', '_') | basename | regex_replace('\\.j2$')} ] }}"
+ when: item.0 is match(item.1) and item.0 is not match(item.2)
+ with_nested:
+ - "{{ mongod_files }}"
+ - "{{ mongodb.included_scripts }}"
+ - "{{ mongodb.excluded_scripts }}"
+
+# We generate scripts and upload on remote host
+- name: Compute and copy script files
+ template:
+ src: "{{ mongod_source_template_dir }}/{{ item.name }}"
+ dest: "{{ mongod_output_dir_entry_point }}/{{ item.finalname }}"
+ owner: "{{ vitamui_defaults.users.vitamuidb }}"
+ group: "{{ vitamui_defaults.users.group }}"
+ mode: 0755
+ loop: "{{ mongod_eligible_files | unique }}"
+
+- name: "Execute file"
+ include_tasks: "execute_script.yml"
+ loop: "{{ mongod_eligible_files | unique }}"
+ loop_control:
+ loop_var: mongo_file
\ No newline at end of file
diff --git a/deployment/roles/mongo_init/vars/main.yml b/deployment/roles/mongo_init/vars/main.yml
new file mode 100644
index 0000000000000000000000000000000000000000..99656d7e69ccfc242299c6ce62c856dfa700f55d
--- /dev/null
+++ b/deployment/roles/mongo_init/vars/main.yml
@@ -0,0 +1,2 @@
+---
+mongo_version: "4.0"
\ No newline at end of file
diff --git a/deployment/roles/reverse/templates/nginx/conf.d/vitam_proxy.conf.j2 b/deployment/roles/reverse/templates/nginx/conf.d/vitam_proxy.conf.j2
index eb1d979b358416ee85c21a431635f362ed2cb1e8..2eff337d27a1437a2b522b6d11c33e124eb3db5d 100644
--- a/deployment/roles/reverse/templates/nginx/conf.d/vitam_proxy.conf.j2
+++ b/deployment/roles/reverse/templates/nginx/conf.d/vitam_proxy.conf.j2
@@ -3,7 +3,7 @@
# upstream_portal
upstream vitam_ihm_demo {
ip_hash;
-{% for h in groups['hosts-ihm-demo'] %}
+{% for h in groups['hosts_ihm_demo'] %}
server {{ hostvars[h].ip_service }}:{{ vitam_vars.ihm_demo.port_service }};
{% endfor %}
}
diff --git a/deployment/roles/vitamui/files/customer-init.yml b/deployment/roles/vitamui/files/customer-init.yml
index 2b3f6eab923021259349430f7280b32ac8c8e544..e549a6d7c9c57f17a1f2b4dce26a57e22bd27d61 100644
--- a/deployment/roles/vitamui/files/customer-init.yml
+++ b/deployment/roles/vitamui/files/customer-init.yml
@@ -50,4 +50,4 @@ customer-init:
# - role_1
# - role_2
# - role_3
- # ...
+ # ...
\ No newline at end of file
diff --git a/deployment/roles/vitamui/handlers/main.yml b/deployment/roles/vitamui/handlers/main.yml
index 119cf20016f9f523a6c9a4236664903c103fb843..55587c25515319dced3d42b653c9517be1b7efd3 100644
--- a/deployment/roles/vitamui/handlers/main.yml
+++ b/deployment/roles/vitamui/handlers/main.yml
@@ -3,8 +3,7 @@
service:
name: "{{ service_consul }}"
state: restarted
- listen: restart service
- when: service_name == 'vitamui-cas-server'
+ listen: restart consul
- name: restart the service
service:
diff --git a/deployment/roles/vitamui/tasks/cas-server.yml b/deployment/roles/vitamui/tasks/cas-server.yml
new file mode 100644
index 0000000000000000000000000000000000000000..31f3a30bc97d4ebdc84e282efd9c0ad572ade28a
--- /dev/null
+++ b/deployment/roles/vitamui/tasks/cas-server.yml
@@ -0,0 +1,10 @@
+- name: apply consul conf when cas-server ONLY
+ template:
+ src: "cas-server/vitamui-cas-server.json.j2"
+ dest: "{{ vitamui_conf_consul }}/vitamui-cas-server.json"
+ owner: "{{ vitamui_defaults.users.vitamui }}"
+ group: "{{ vitamui_defaults.users.group }}"
+ mode: "{{ vitamui_defaults.folder.folder_permission }}"
+ notify:
+ - restart consul
+ - restart service
\ No newline at end of file
diff --git a/deployment/roles/vitamui/tasks/iam-internal.yml b/deployment/roles/vitamui/tasks/iam-internal.yml
new file mode 100644
index 0000000000000000000000000000000000000000..ccacaaf9b100ea17d5f9a0b9c8e27f1093c14a57
--- /dev/null
+++ b/deployment/roles/vitamui/tasks/iam-internal.yml
@@ -0,0 +1,27 @@
+- name: "Copy vitam certificates"
+ copy:
+ src: "{{ item }}"
+ dest: "{{ vitamui_folder_conf }}/{{ item | basename }}"
+ owner: "{{ vitamui_defaults.users.vitamui }}"
+ group: "{{ vitamui_defaults.users.group }}"
+ mode: "{{ vitamui_defaults.folder.folder_permission }}"
+ with_fileglob:
+ - "{{ inventory_dir }}/keystores/client-vitam/*.*"
+ when:
+ - vitam_cert is defined
+ tags:
+ - update_vitam_configuration
+ notify:
+ - restart service
+
+- name: Deploy customer-init.yml
+ copy:
+ src: "customer-init.yml"
+ dest: "{{ vitamui_folder_conf }}/customer-init.yml"
+ owner: "{{ vitamui_defaults.users.vitamui }}"
+ group: "{{ vitamui_defaults.users.group }}"
+ mode: "{{ vitamui_defaults.folder.conf_permission }}"
+ tags:
+ - update_vitam_configuration
+ notify:
+ - restart service
\ No newline at end of file
diff --git a/deployment/roles/vitamui/tasks/main.yml b/deployment/roles/vitamui/tasks/main.yml
index 72ba64bb9a7f7f0eeae595e29afc4641afd6996e..aad7ad14a9a5b16b103e339ea112726957eea4fa 100644
--- a/deployment/roles/vitamui/tasks/main.yml
+++ b/deployment/roles/vitamui/tasks/main.yml
@@ -52,13 +52,17 @@
notify:
- restart service
-- name: Ensure that the templates sub-directory exists
+- name: Create custom sub-directories
file:
- path: "{{ vitamui_folder_conf }}/templates"
+ path: "{{ item }}"
state: directory
owner: "{{ vitamui_defaults.users.vitamui }}"
group: "{{ vitamui_defaults.users.group }}"
mode: "{{ vitamui_defaults.folder.folder_permission }}"
+ loop: "{{ vitamui_struct.dirs }}"
+ when:
+ - vitamui_struct.dirs is defined
+ - vitamui_struct.dirs|length > 0
notify:
- restart service
@@ -101,19 +105,6 @@
notify:
- restart service
-- name: Deploy customer-init.yml on iam-* components
- copy:
- src: "customer-init.yml"
- dest: "{{ vitamui_folder_conf }}/customer-init.yml"
- owner: "{{ vitamui_defaults.users.vitamui }}"
- group: "{{ vitamui_defaults.users.group }}"
- mode: "{{ vitamui_defaults.folder.conf_permission }}"
- when: vitamui_struct.vitamui_component in ["iam-external","iam-internal"]
- tags:
- - update_vitam_configuration
- notify:
- - restart service
-
- name: "Copy {{ vitamui_struct.package_name }} jks keystore (server)"
copy:
src: "{{ inventory_dir }}/keystores/server/{{ inventory_hostname }}/keystore_{{ vitamui_struct.store_name }}.jks"
@@ -127,108 +118,43 @@
notify:
- restart service
-- name: "Copy other key stores"
- copy:
- src: "{{ inventory_dir }}/keystores/server/{{ groups[('hosts_vitamui',item)|join('_')]|first }}/keystore_{{ vitamui[item].store_name }}.jks"
- dest: "{{ vitamui_folder_conf }}/keystore_{{ vitamui[item].package_name }}.jks"
- owner: "{{ vitamui_defaults.users.vitamui }}"
- group: "{{ vitamui_defaults.users.group }}"
- mode: "{{ vitamui_defaults.folder.folder_permission }}"
- when: "( vitamui[item].secure|lower == 'true' ) and ({{ lookup('pipe', 'test -f {{ inventory_dir }}/keystores/server/{{ groups[((\"hosts_vitamui\",item)|join(\"_\"))]|first }}/keystore_{{ vitamui[item].store_name }}.jks || echo nofile') == \"\" }})"
- with_items: "{{ other_stores }}" # Exemple : ["security_internal","iam_internal"]
- tags:
- - update_vitamui_certificates
- notify:
- - restart service
-
-- name: "Copy server truststore"
- copy:
- src: "{{ inventory_dir }}/keystores/server/truststore_server.jks"
- dest: "{{ vitamui_folder_conf }}/truststore_{{ vitamui_struct.package_name }}.jks"
- owner: "{{ vitamui_defaults.users.vitamui }}"
- group: "{{ vitamui_defaults.users.group }}"
- mode: "{{ vitamui_defaults.folder.folder_permission }}"
- when: "( vitamui_struct.secure|lower == 'true' ) and ( {{ lookup('pipe', 'test -f {{ inventory_dir }}/keystores/server/truststore_server.jks || echo nofile') == \"\"}} )"
- tags:
- - update_vitamui_certificates
- notify:
- - restart service
-
-- name: "Copy {{ vitamui_certificate_client_type }} truststore"
- copy:
- src: "{{ inventory_dir }}/keystores/client-{{ vitamui_certificate_client_type }}/truststore_{{ vitamui_certificate_client_type }}.jks"
- dest: "{{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_client_type }}.jks"
- owner: "{{ vitamui_defaults.users.vitamui }}"
- group: "{{ vitamui_defaults.users.group }}"
- mode: "{{ vitamui_defaults.folder.folder_permission }}"
- when: "( vitamui_struct.secure|lower == 'true' ) and ( vitamui_certificate_client_type is defined ) and ( {{ lookup('pipe', 'test -f {{ inventory_dir }}/keystores/client-{{ vitamui_certificate_client_type }}/truststore_{{ vitamui_certificate_client_type }}.jks || echo nofile') == \"\"}} )"
- tags:
- - update_vitamui_certificates
- notify:
- - restart service
-
-# - name: "Copy server grantedstore"
-# copy:
-# src: "{{ inventory_dir }}/keystores/client-{{ vitamui_certificate_client_type }}/grantedstore_{{ vitamui_certificate_client_type }}.jks"
-# dest: "{{ vitamui_folder_conf }}/grantedstore_{{ vitamui_struct.package_name }}.jks"
-# owner: "{{ vitamui_defaults.users.vitamui }}"
-# group: "{{ vitamui_defaults.users.group }}"
-# mode: "{{ vitamui_defaults.folder.folder_permission }}"
-# when: "( vitamui_struct.secure|lower == 'true' ) and ( vitamui_certificate_client_type is defined ) and ( {{ lookup('pipe', 'test -f {{ inventory_dir }}/keystores/server/{{ inventory_hostname }}/keystore_{{ vitamui_struct.vitamui_component }}.jks || echo nofile') == \"\"}} ) and ( {{ lookup('pipe', 'test -f {{ inventory_dir }}/keystores/client-{{ vitamui_certificate_client_type }}/grantedstore_{{ vitamui_certificate_client_type }}.jks || echo nofile') == \"\"}} )"
-# tags:
-# - update_vitamui_certificates
-# notify:
-# - restart service
-
-- name: "Copy {{ vitamui_struct.package_name }} p12 keystore (clients)"
+# Copy the trustore for all vitamui components in order to communicate between them.
+- name: "Copy {{ vitamui_certificate_type }} truststore"
copy:
- src: "{{ inventory_dir }}/keystores/client-{{ vitamui_certificate_client_type }}/keystore_{{ vitamui_struct.package_name }}.p12"
- dest: "{{ vitamui_folder_conf }}/keystore_{{ vitamui_struct.package_name }}.p12"
+ src: "{{ item.src }}"
+ dest: "{{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks"
owner: "{{ vitamui_defaults.users.vitamui }}"
group: "{{ vitamui_defaults.users.group }}"
mode: "{{ vitamui_defaults.folder.folder_permission }}"
- when: "( vitamui_struct.secure|lower == 'true' ) and ( vitamui_certificate_client_type is defined ) and ( {{ lookup('pipe', 'test -f {{ inventory_dir }}/keystores/client-{{ vitamui_certificate_client_type }}/keystore_{{ vitamui_struct.package_name }}.p12 || echo nofile') == \"\" }} )"
+ when:
+ - vitamui_struct.secure|lower == 'true'
+ - vitamui_certificate_type is defined
+ - "vitamui_certificate_type|lower == '{{ item.name }}'"
+ - "{{ lookup('pipe', 'test -f {{ item.src }} || echo nofile') == \"\"}}"
+ with_items:
+ # Copy the trustore for all vitamui components in order to communicate between them.
+ - { name: server, src: "{{ inventory_dir }}/keystores/server/truststore_server.jks" }
+ # Copy the trustore for all external API in order to communicate with vitamui components (ui, external APIs, cas) and externals apps.
+ - { name: external, src: "{{ inventory_dir }}/keystores/client-{{ vitamui_certificate_type }}/truststore_{{ vitamui_certificate_type }}.jks" }
tags:
- update_vitamui_certificates
notify:
- restart service
-- name: "Copy vitam certificates when iam-internal component"
- copy:
- src: "{{ item }}"
- dest: "{{ vitamui_folder_conf }}/{{ item | basename }}"
- owner: "{{ vitamui_defaults.users.vitamui }}"
- group: "{{ vitamui_defaults.users.group }}"
- mode: "{{ vitamui_defaults.folder.folder_permission }}"
- with_fileglob:
- - "{{ inventory_dir }}/certs_vitam/*.*"
- when: vitamui_struct.vitamui_component|lower == 'iam-internal'
- tags:
- - update_vitamui_certificates
- notify:
- - restart service
+- name: "Execute sub-tasks for the component type: {{ vitamui_struct.vitamui_component_type }}"
+ include_tasks: "{{ vitamui_struct.vitamui_component_type }}.yml"
+ when: "{{ lookup('pipe', 'test -f {{ role_path }}/tasks/{{ vitamui_struct.vitamui_component_type }}.yml || echo nofile') == \"\" }}"
-- name: apply consul conf when cas-server ONLY
- template:
- src: "cas-server/vitamui-cas-server.json.j2"
- dest: "{{ vitamui_conf_consul }}/vitamui-cas-server.json"
- owner: "{{ vitamui_defaults.users.vitamui }}"
- group: "{{ vitamui_defaults.users.group }}"
- mode: "{{ vitamui_defaults.folder.folder_permission }}"
- when: vitamui_struct.service_name == 'vitamui-cas-server'
- notify:
- - restart service
+- name: "Execute sub-tasks for the component: {{ vitamui_struct.vitamui_component }}"
+ include_tasks: "{{ vitamui_struct.vitamui_component }}.yml"
+ when: "{{ lookup('pipe', 'test -f {{ role_path }}/tasks/{{ vitamui_struct.vitamui_component }}.yml || echo nofile') == \"\" }}"
- name: flush_handlers
meta: flush_handlers
+ tags:
+ - always
- name: "Ensure {{ service_name }} service is started"
service:
name: "{{ service_name }}"
- state: started
-
-# - name: "Check whether {{ vitamui_struct.package_name }} is listening on service port {{ port_test }}"
-# wait_for:
-# host: "{{ ip_service }}"
-# port: "{{ port_test }}"
-# state: started
+ state: started
\ No newline at end of file
diff --git a/deployment/roles/vitamui/templates/cas-server/application.yml.j2 b/deployment/roles/vitamui/templates/cas-server/application.yml.j2
index 8adfd0da312c1813bfd68b72a18923e92a2291c3..17af8b7d1c2e2e211ed42d6d29be896c62604ada 100644
--- a/deployment/roles/vitamui/templates/cas-server/application.yml.j2
+++ b/deployment/roles/vitamui/templates/cas-server/application.yml.j2
@@ -3,7 +3,7 @@ server:
ssl:
key-store: {{ vitamui_folder_conf }}/keystore_{{ vitamui_struct.package_name }}.jks
key-store-password: {{ password_keystore }}
- key-password: {{ password_manager_keystore }}
+ key-password: {{ password_keystore }}
{% endif %}
host: {{ ip_service }}
port: {{ vitamui_struct.port_service }}
@@ -29,8 +29,8 @@ iam-client:
key-password: {{ password_keystore }}
type: JKS
truststore:
- key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_struct.package_name }}.jks
- key-password: {{ password_truststore_server }}
+ key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks
+ key-password: {{ password_truststore }}
hostname-verification: false
{% endif %}
diff --git a/deployment/roles/vitamui/templates/iam-external/application.yml.j2 b/deployment/roles/vitamui/templates/iam-external/application.yml.j2
index 6e385eacdd63f6a604bf62aacba89a4ff58f5249..2acafe48dc0662ce4ed00db4a9e0fffefc6f1008 100644
--- a/deployment/roles/vitamui/templates/iam-external/application.yml.j2
+++ b/deployment/roles/vitamui/templates/iam-external/application.yml.j2
@@ -19,10 +19,10 @@ server:
ssl:
key-store: {{ vitamui_folder_conf }}/keystore_{{ vitamui_struct.package_name }}.jks
key-store-password: {{ password_keystore }}
- key-password: {{ password_manager_keystore }}
- trust-store: {{ vitamui_folder_conf }}/truststore_{{ vitamui_struct.package_name }}.jks
- trust-store-password: {{ password_truststore_server }}
- client-auth: need #WAZA ???
+ key-password: {{ password_keystore }}
+ trust-store: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks
+ trust-store-password: {{ password_truststore }}
+ client-auth: need
{% endif %}
tomcat:
accesslog:
@@ -52,7 +52,7 @@ iam-external:
key-password: {{ password_keystore }}
type: JKS
truststore:
- key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_client_type }}.jks
+ key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks
key-password: {{ password_truststore }}
hostname-verification: false
{% endif %}
@@ -67,7 +67,7 @@ iam-external:
key-password: {{ password_keystore }}
type: JKS
truststore:
- key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_client_type }}.jks
+ key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks
key-password: {{ password_truststore }}
hostname-verification: false
{% endif %}
diff --git a/deployment/roles/vitamui/templates/iam-internal/access-external-client.conf.j2 b/deployment/roles/vitamui/templates/iam-internal/access-external-client.conf.j2
index c9adac4e6d6ed57e8c719c750f197de6a698666d..fdc05715b7f6a99e1650b5322f38a89ecf367194 100644
--- a/deployment/roles/vitamui/templates/iam-internal/access-external-client.conf.j2
+++ b/deployment/roles/vitamui/templates/iam-internal/access-external-client.conf.j2
@@ -3,9 +3,9 @@ serverPort: {{ vitam_vars.access_external.port_service }}
secure: true
sslConfiguration :
keystore :
- - keyPath: {{ vitamui_folder_conf }}/{{ vitam_certs.access_external.filename }}
- keyPassword: {{ vitam_certs.access_external.password }}
+ - keyPath: {{ vitamui_folder_conf }}/{{ vitam_cert.filename }}
+ keyPassword: {{ vitam_cert.password }}
truststore :
- - keyPath: {{ vitamui_folder_conf }}/{{ vitam_certs.access_external.truststore_filename }}
- keyPassword: {{ vitam_certs.access_external.password_truststore }}
+ - keyPath: {{ vitamui_folder_conf }}/{{ vitam_cert.truststore_filename }}
+ keyPassword: {{ vitam_cert.password_truststore }}
hostnameVerification: true
diff --git a/deployment/roles/vitamui/templates/iam-internal/application.yml.j2 b/deployment/roles/vitamui/templates/iam-internal/application.yml.j2
index f5186644679d88926d09444a0fc94efa972ace2b..3ec4daa4b362041be57556c3e1d5b2cbe2c830fb 100644
--- a/deployment/roles/vitamui/templates/iam-internal/application.yml.j2
+++ b/deployment/roles/vitamui/templates/iam-internal/application.yml.j2
@@ -20,10 +20,10 @@ server:
{% if vitamui_struct.secure|lower == "true" %}
ssl:
key-store: {{ vitamui_folder_conf }}/keystore_{{ vitamui_struct.package_name }}.jks
- key-store-password: {{ password_keystore }} # TODO OMA : revoir
- key-password: {{ password_manager_keystore }}
- trust-store: {{ vitamui_folder_conf }}/truststore_{{ vitamui_struct.package_name }}.jks
- trust-store-password: {{ password_truststore_server }}
+ key-store-password: {{ password_keystore }}
+ key-password: {{ password_keystore }}
+ trust-store: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks
+ trust-store-password: {{ password_truststore }}
client-auth: need
{% endif %}
tomcat:
@@ -54,7 +54,7 @@ security:
key-password: {{ password_keystore }}
type: JKS
truststore:
- key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_client_type }}.jks
+ key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks
key-password: {{ password_truststore }}
hostname-verification: false
{% endif %}
@@ -74,7 +74,7 @@ cas-client:
secure: true
ssl-configuration:
truststore:
- key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_client_type }}.jks
+ key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks
key-password: {{ password_truststore }}
hostname-verification: false
{% endif %}
diff --git a/deployment/roles/vitamui/templates/iam-internal/customer-init.yml b/deployment/roles/vitamui/templates/iam-internal/customer-init.yml
new file mode 100644
index 0000000000000000000000000000000000000000..2b3f6eab923021259349430f7280b32ac8c8e544
--- /dev/null
+++ b/deployment/roles/vitamui/templates/iam-internal/customer-init.yml
@@ -0,0 +1,53 @@
+# This configuration file indicates profiles , profiles groups and users automatically create when a new customer or customer tenant is created.
+# Put as many as you want following the template given
+customer-init:
+ # Default profiles for each customer created
+ profiles:
+ #- name: profileName
+ # description: desc
+ # level: 1
+ # app-name: app
+ # roles:
+ # - role_1
+ # - role_2
+ # - role_3
+ # ...
+ # Default profiles groups for each customer created
+ profiles-groups:
+ #- name: group1
+ # description: desc
+ # level: 2
+ # profiles:
+ # - profileName
+ # ...
+ # Default users for each customer created
+ users:
+ #- last-name: lastName
+ # first-name: firstName
+ # profiles-group-name: group1
+ # level: 1
+ # email-prefix: a@mail.com
+
+ # Default profiles for each tenant created
+ tenant-profiles:
+ #- name: profileName
+ # description: desc
+ # level: 1
+ # app-name: app
+ # roles:
+ # - role_1
+ # - role_2
+ # - role_3
+ # ...
+
+ # Other Default profiles for admin group
+ admin-profiles:
+ #- name: profileName
+ # description: desc
+ # level: 1
+ # app-name: app
+ # roles:
+ # - role_1
+ # - role_2
+ # - role_3
+ # ...
diff --git a/deployment/roles/vitamui/templates/iam-internal/ingest-external-client.conf.j2 b/deployment/roles/vitamui/templates/iam-internal/ingest-external-client.conf.j2
index aa21efbb2465ac77e143f82e66e02bca8eafaf7b..bd67f47687d5961d562fb5517568ad1e32cd84b6 100644
--- a/deployment/roles/vitamui/templates/iam-internal/ingest-external-client.conf.j2
+++ b/deployment/roles/vitamui/templates/iam-internal/ingest-external-client.conf.j2
@@ -3,9 +3,9 @@ serverPort: {{ vitam_vars.ingest_external.port_service }}
secure: true
sslConfiguration :
keystore :
- - keyPath: {{ vitamui_folder_conf }}/{{ vitam_certs.ingest_external.filename }}
- keyPassword: {{ vitam_certs.ingest_external.password }}
+ - keyPath: {{ vitamui_folder_conf }}/{{ vitam_cert.filename }}
+ keyPassword: {{ vitam_cert.password }}
truststore :
- - keyPath: {{ vitamui_folder_conf }}/{{ vitam_certs.ingest_external.truststore_filename }}
- keyPassword: {{ vitam_certs.ingest_external.password_truststore }}
+ - keyPath: {{ vitamui_folder_conf }}/{{ vitam_cert.truststore_filename }}
+ keyPassword: {{ vitam_cert.password_truststore }}
hostnameVerification: true
diff --git a/deployment/roles/vitamui/templates/security-internal/application.yml.j2 b/deployment/roles/vitamui/templates/security-internal/application.yml.j2
index 2e114473e988e6371a25273532246d67462f9a70..ee5e77b8a47becc9118748183bb615b3bec2db28 100644
--- a/deployment/roles/vitamui/templates/security-internal/application.yml.j2
+++ b/deployment/roles/vitamui/templates/security-internal/application.yml.j2
@@ -26,10 +26,10 @@ server:
ssl:
key-store: {{ vitamui_folder_conf }}/keystore_{{ vitamui_struct.package_name }}.jks
key-store-password: {{ password_keystore }}
- key-password: {{ password_manager_keystore }}
- trust-store: {{ vitamui_folder_conf }}/truststore_{{ vitamui_struct.package_name }}.jks
- trust-store-password: {{ password_truststore_server }}
- client-auth: need #WAZA ???
+ key-password: {{ password_keystore }}
+ trust-store: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks
+ trust-store-password: {{ password_truststore }}
+ client-auth: need
{% endif %}
tomcat:
accesslog:
diff --git a/deployment/roles/vitamui/templates/ui-identity-admin/application.yml.j2 b/deployment/roles/vitamui/templates/ui-identity-admin/application.yml.j2
index 454c43cf1067658264795565408e5398bd086070..05670dcac11232c753592da7118a2215d7128361 100644
--- a/deployment/roles/vitamui/templates/ui-identity-admin/application.yml.j2
+++ b/deployment/roles/vitamui/templates/ui-identity-admin/application.yml.j2
@@ -23,7 +23,7 @@ server:
ssl:
key-store: {{ vitamui_folder_conf }}/keystore_{{ vitamui_struct.package_name }}.jks
key-store-password: {{ password_keystore }} # TODO OMA : revoir
- key-password: {{ password_manager_keystore }}
+ key-password: {{ password_keystore }}
{% endif %}
tomcat:
accesslog:
@@ -58,7 +58,7 @@ ui-identity:
key-password: {{ password_keystore }} # TODO OMA : revoir
type: JKS
truststore:
- key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_client_type }}.jks
+ key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks
key-password: {{ password_truststore }} # TODO OMA : revoir
hostname-verification: false
{% endif %}
@@ -98,6 +98,6 @@ cas:
callback-url: ${ui.url}/identity-api/callback
{% if vitamui.cas_server.secure|lower == "true" %}
ssl:
- trust-store: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_client_type }}.jks
+ trust-store: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks
trust-store-password: {{ password_truststore }}
{% endif %}
diff --git a/deployment/roles/vitamui/templates/ui-identity/application.yml.j2 b/deployment/roles/vitamui/templates/ui-identity/application.yml.j2
index edb5d4bb8205c3d12c9fb03eea2ed764a01a7f24..9c086100d3ccfeea098b13cfe7f703d54e9fcfe1 100644
--- a/deployment/roles/vitamui/templates/ui-identity/application.yml.j2
+++ b/deployment/roles/vitamui/templates/ui-identity/application.yml.j2
@@ -20,7 +20,7 @@ server:
ssl:
key-store: {{ vitamui_folder_conf }}/keystore_{{ vitamui_struct.package_name }}.jks
key-store-password: {{ password_keystore }}
- key-password: {{ password_manager_keystore }}
+ key-password: {{ password_keystore }}
{% endif %}
tomcat:
accesslog:
@@ -55,7 +55,7 @@ ui-identity:
key-password: {{ password_keystore }}
type: JKS
truststore:
- key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_client_type }}.jks
+ key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks
key-password: {{ password_truststore }}
hostname-verification: false
{%endif %}
@@ -95,6 +95,6 @@ cas:
callback-url: ${ui.url}/identity-api/callback
{% if vitamui.iam_external.secure|lower == "true" %}
ssl:
- trust-store: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_client_type }}.jks
+ trust-store: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks
trust-store-password: {{ password_truststore }}
{% endif %}
diff --git a/deployment/roles/vitamui/templates/ui-portal/application.yml.j2 b/deployment/roles/vitamui/templates/ui-portal/application.yml.j2
index 5ddb60e4f998f9f587960c172c63c0feb987514f..f8c3f4bd446ffb248540c342f8f9083b072b8c9d 100644
--- a/deployment/roles/vitamui/templates/ui-portal/application.yml.j2
+++ b/deployment/roles/vitamui/templates/ui-portal/application.yml.j2
@@ -15,8 +15,8 @@ server:
{% if vitamui.portal.secure|lower =='true' %}
ssl:
key-store: {{ vitamui_folder_conf }}/keystore_{{ vitamui_struct.package_name }}.jks
- key-store-password: {{ password_keystore }} # TODO OMA : revoir
- key-password: {{ password_manager_keystore }}
+ key-store-password: {{ password_keystore }}
+ key-password: {{ password_keystore }}
{% endif %}
tomcat:
accesslog:
@@ -51,7 +51,7 @@ ui-portal:
key-password: {{ password_keystore }}
type: JKS
truststore:
- key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_client_type }}.jks
+ key-path: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks
key-password: {{ password_truststore }} # TODO OMA : revoir
hostname-verification: false
{% endif %}
@@ -88,6 +88,6 @@ cas:
callback-url: ${ui.url}/portal-api/callback
{% if vitamui.cas_server.secure|lower == "true" %}
ssl:
- trust-store: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_client_type }}.jks
+ trust-store: {{ vitamui_folder_conf }}/truststore_{{ vitamui_certificate_type }}.jks
trust-store-password: {{ password_truststore }}
{% endif %}
diff --git a/deployment/vitamui_apps.yml b/deployment/vitamui_apps.yml
index b3387ebbc65b56510c91c88ec6669ea8e3ef823a..eb3cadfdd0a66ec943d6c50dddcdbc181090b026 100644
--- a/deployment/vitamui_apps.yml
+++ b/deployment/vitamui_apps.yml
@@ -1,5 +1,6 @@
---
+# Internal apps
- hosts: hosts_vitamui_iam_internal
gather_facts: no
any_errors_fatal: true
@@ -7,45 +8,36 @@
- vitamui
vars:
vitamui_struct: "{{ vitamui.iam_internal }}"
- vitamui_certificate_client_type: "iam"
- password_keystore: "{{ keystores.server.iam_internal }}"
- password_manager_keystore: "{{ keystores.server.iam_internal }}"
- password_truststore_server: "{{ truststores.server }}"
- password_truststore: "{{ truststores.client_iam }}"
- other_stores: ["security_internal"]
+ vitamui_certificate_type: "server"
+ password_keystore: "{{ keystores_server_iam_internal }}"
+ password_truststore: "{{ truststores_server }}"
+ vitam_cert: "{{ vitam_certs.vitamui }}"
consul_tags: "iam-internal, api, internal"
-
-- hosts: hosts_vitamui_iam_external
+- hosts: hosts_vitamui_security_internal
gather_facts: no
any_errors_fatal: true
roles:
- vitamui
vars:
- vitamui_struct: "{{ vitamui.iam_external }}"
- vitamui_certificate_client_type: "iam"
- password_keystore: "{{ keystores.server.iam_external }}"
- password_manager_keystore: "{{ keystores.server.iam_external }}"
- password_truststore_server: "{{ truststores.server }}"
- password_truststore: "{{ truststores.client_iam }}"
- other_stores: ["security_internal","iam_internal"]
- consul_tags: "iam-external, api, external"
+ vitamui_struct: "{{ vitamui.security_internal }}"
+ vitamui_certificate_type: "server"
+ password_keystore: "{{ keystores_server_security_internal }}"
+ password_truststore: "{{ truststores_server }}"
+ consul_tags: "security-internal, api, internal"
-- hosts: hosts_vitamui_security_internal
+# External apps
+- hosts: hosts_vitamui_iam_external
gather_facts: no
any_errors_fatal: true
roles:
- vitamui
vars:
- vitamui_struct: "{{ vitamui.security_internal }}"
- password_keystore: "{{ keystores.server.security_internal }}"
- password_manager_keystore: "{{ keystores.server.security_internal }}"
- password_truststore_server: "{{ truststores.server }}"
- vitamui_certificate_client_type: "iam"
- password_truststore: "{{ truststores.client_iam }}"
- other_stores: []
- consul_tags: "security-internal, api, internal"
-
+ vitamui_struct: "{{ vitamui.iam_external }}"
+ vitamui_certificate_type: "external"
+ password_keystore: "{{ keystores_server_iam_external }}"
+ password_truststore: "{{ truststores_client_external }}"
+ consul_tags: "iam-external, api, external"
- hosts: hosts_cas_server
gather_facts: no
@@ -54,14 +46,12 @@
- vitamui
vars:
vitamui_struct: "{{ vitamui.cas_server }}"
- password_keystore: "{{ keystores.server.cas_server }}"
- password_manager_keystore: "{{ keystores.server.cas_server }}"
- password_truststore_server: "{{ truststores.server }}"
- vitamui_certificate_client_type: "iam"
- password_truststore: "{{ truststores.client_iam }}"
- other_stores: ["iam_external"]
- consul_tags: "cas-server, cas, internal"
+ vitamui_certificate_type: "external"
+ password_keystore: "{{ keystores_server_cas_server }}"
+ password_truststore: "{{ truststores_client_external }}"
+ consul_tags: "cas-server, cas, external"
+#UI
- hosts: hosts_ui_identity
gather_facts: no
any_errors_fatal: true
@@ -69,12 +59,9 @@
- vitamui
vars:
vitamui_struct: "{{ vitamui.identity }}"
- password_keystore: "{{ keystores.server.ui_identity }}"
- password_manager_keystore: "{{ keystores.server.ui_identity }}"
- password_truststore_server: "{{ truststores.server }}"
- vitamui_certificate_client_type: "iam"
- password_truststore: "{{ truststores.client_iam }}"
- other_stores: ["iam_external"]
+ vitamui_certificate_type: "server"
+ password_keystore: "{{ keystores_server_ui_identity }}"
+ password_truststore: "{{ truststores_server }}"
consul_tags: "ui-identity, ui"
@@ -85,12 +72,9 @@
- vitamui
vars:
vitamui_struct: "{{ vitamui.portal }}"
- password_keystore: "{{ keystores.server.ui_portal }}"
- password_manager_keystore: "{{ keystores.server.ui_portal }}"
- password_truststore_server: "{{ truststores.server }}"
- vitamui_certificate_client_type: "iam"
- password_truststore: "{{ truststores.client_iam }}"
- other_stores: ["iam_external"]
+ vitamui_certificate_type: "server"
+ password_keystore: "{{ keystores_server_ui_portal }}"
+ password_truststore: "{{ truststores_server }}"
consul_tags: "ui-portal, ui"
# supposed portlets
@@ -101,10 +85,7 @@
- vitamui
vars:
vitamui_struct: "{{ vitamui.identity_admin }}"
- password_keystore: "{{ keystores.server.ui_identity_admin }}"
- password_manager_keystore: "{{ keystores.server.ui_identity_admin }}"
- password_truststore_server: "{{ truststores.server }}"
- vitamui_certificate_client_type: "iam"
- password_truststore: "{{ truststores.client_iam }}"
- other_stores: ["iam_external"]
+ vitamui_certificate_type: "server"
+ password_keystore: "{{ keystores_server_ui_identity_admin }}"
+ password_truststore: "{{ truststores_server }}"
consul_tags: "ui-identity-admin, ui"
diff --git a/dev-deployment/environments/certs/client-external/ca/ca-intermediate.crt b/dev-deployment/environments/certs/client-external/ca/ca-intermediate.crt
new file mode 100644
index 0000000000000000000000000000000000000000..2a9efe4e1f1885f2217fd0f0749f8bec9a4635d8
--- /dev/null
+++ b/dev-deployment/environments/certs/client-external/ca/ca-intermediate.crt
@@ -0,0 +1,137 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 2 (0x2)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-external
+ Validity
+ Not Before: May 5 12:15:18 2020 GMT
+ Not After : May 3 12:15:18 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_client-external
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:d1:0d:66:f4:dd:ec:a5:35:91:1b:f6:dc:b6:5b:
+ 85:fe:5b:b1:b6:80:e6:20:5b:ed:27:16:fb:25:f9:
+ 3c:83:f7:d0:30:51:50:55:3e:49:ab:81:9a:50:66:
+ 1b:53:f8:9a:e2:5d:d9:64:b1:de:4e:9d:a7:69:68:
+ d2:6f:6c:0a:09:c7:e5:ae:6f:c4:0d:73:15:00:0b:
+ c8:f3:52:04:c9:ab:5f:66:7f:d7:ad:1b:e0:ee:56:
+ ea:d3:76:fb:b7:ad:14:01:53:5c:7a:df:d5:ac:52:
+ eb:98:69:1c:a6:d6:30:a9:0c:7c:31:4e:01:19:68:
+ 20:bc:ea:70:62:63:dd:77:02:0f:6f:86:28:4e:c3:
+ b7:c2:66:2c:26:c6:fd:08:e4:94:3f:06:b0:be:c3:
+ 20:5c:0c:d9:1e:05:b7:f0:e7:c8:eb:7c:17:90:6d:
+ 25:78:44:03:14:be:91:6d:a5:f8:f6:83:3a:11:75:
+ 2b:cb:cf:31:a7:6e:50:a1:73:20:85:f5:dc:43:7c:
+ 5c:a4:5a:34:8a:13:64:ab:ec:87:34:33:07:3a:d6:
+ 65:1a:a1:c8:82:ff:30:53:f7:a5:1f:01:1f:d2:fb:
+ d4:7d:33:0e:13:47:23:05:89:a9:0a:6b:65:de:0a:
+ 9d:7d:ba:0f:1e:42:78:5a:f8:71:69:9d:c5:75:b9:
+ d0:87:74:98:69:b2:00:04:81:1a:f0:2c:8d:71:f5:
+ 53:19:51:00:1e:cb:cf:f2:7f:0f:61:47:47:6d:30:
+ 99:50:ad:eb:ec:14:4f:18:24:5d:93:80:63:b9:21:
+ e5:84:88:8d:b1:78:d2:d9:42:cb:5f:bb:76:97:cf:
+ 6f:7d:ee:a4:1b:ec:34:52:ff:ed:1e:fe:55:bf:d8:
+ e5:fb:a0:1a:2f:78:76:a4:df:db:12:bf:c7:0b:18:
+ 4f:f7:29:fe:88:34:8a:b3:6b:8f:73:0d:98:1d:01:
+ 1a:6d:84:41:c8:6c:3d:68:e6:86:82:8b:22:8d:ad:
+ 92:b6:8a:97:37:e2:08:e3:c7:49:9a:5d:72:7c:0d:
+ 66:58:6e:98:4e:69:dc:4b:e7:dd:20:c0:aa:af:51:
+ b4:b9:cd:2c:67:5c:66:27:75:30:14:82:59:0f:8c:
+ 86:c8:28:2b:43:dd:21:83:2f:22:07:5c:44:7c:88:
+ 1e:fb:d0:33:9c:35:34:a3:02:cb:b9:c0:e2:94:b2:
+ 04:e4:10:b8:c8:da:9f:b4:f7:3f:54:2c:e2:6f:89:
+ 8b:b0:49:11:d3:c9:14:17:15:e1:a7:a5:2e:42:f4:
+ 0e:c2:d7:0a:70:64:94:32:c4:27:42:e0:c0:98:41:
+ 2c:bb:02:0b:fb:a9:e4:f6:c5:13:89:59:ed:e6:d3:
+ f1:c1:35
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Intermediate
+ X509v3 Subject Key Identifier:
+ 24:0C:1B:40:0F:9A:EC:7E:53:52:6E:DD:75:D7:47:6F:B2:84:21:B4
+ X509v3 Authority Key Identifier:
+ keyid:7C:4A:2C:F1:F4:F5:16:06:22:0F:74:19:38:BB:50:05:4E:19:53:20
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-external
+ serial:01
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:0
+ X509v3 Issuer Alternative Name:
+ <EMPTY>
+
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 49:9d:33:33:72:69:2e:67:a0:37:7b:1e:9a:26:c1:b7:6c:61:
+ 4f:1a:ab:df:0a:38:28:98:59:7e:4c:e0:de:c6:26:ed:fb:b2:
+ e4:49:0f:d3:df:38:38:8e:d5:39:a4:5b:e4:cd:89:1d:7d:67:
+ 96:0e:15:2a:f7:03:b4:94:48:f3:29:ef:66:5c:be:28:47:cf:
+ 78:68:b5:6f:3a:59:83:3e:e6:48:a5:a3:17:07:92:61:8f:e1:
+ 10:d9:ec:ed:ce:d8:67:e5:54:0f:27:27:dd:41:b3:37:31:cf:
+ da:b7:c6:4b:5d:58:17:c1:6a:a0:da:c7:a8:1f:68:4f:38:c9:
+ be:be:96:13:b3:5d:e5:7d:0e:00:93:90:20:ee:d3:02:03:73:
+ 32:e0:b6:0b:6c:6e:bb:ae:2f:02:d2:a5:35:18:d6:d1:c2:c0:
+ e2:4e:fe:c1:08:f3:1e:9d:b0:79:1b:a7:07:18:36:53:8b:1e:
+ f5:a9:50:9f:5f:66:70:63:fc:d1:03:0c:c4:c1:d5:19:83:0b:
+ bd:5b:af:a1:82:8c:21:bf:f5:d0:10:4c:d0:e6:6a:0e:af:38:
+ 3e:6f:ff:66:c8:b6:29:90:f3:c8:7f:2a:6f:2a:a1:a1:b2:a3:
+ ff:ad:a3:76:ed:77:77:e2:96:26:30:75:ea:89:36:86:51:35:
+ fb:93:36:7c:4c:f0:ff:29:60:26:fb:3d:89:cd:d2:45:c7:0f:
+ be:3f:fd:c8:da:2b:67:53:35:34:d9:8f:84:cb:71:d9:9c:cd:
+ 54:f9:26:6d:55:31:5c:99:a5:5c:7a:62:d2:69:31:12:f8:14:
+ b6:53:3b:29:52:7f:b7:a7:ac:0e:cd:15:8f:53:a0:a9:5c:b1:
+ 37:72:70:6c:b4:74:34:9b:5b:f0:f0:b0:2f:a9:41:d0:29:3e:
+ 13:66:2a:65:05:2c:d3:fd:0d:49:8b:63:b4:88:d3:c6:6f:ef:
+ ba:b3:5e:d0:b1:20:dc:82:47:6a:a3:b3:f1:5c:38:16:8f:2c:
+ 9f:4c:60:ad:cb:60:72:a8:02:78:06:0b:af:05:c5:16:9b:c2:
+ b7:b6:2a:e3:f0:0e:23:e6:49:80:9a:79:14:04:7e:02:bf:76:
+ 78:6d:7d:e7:92:41:2b:b7:f2:34:fc:19:89:29:23:53:11:92:
+ ab:20:43:27:4b:2a:8a:06:16:73:54:88:e2:07:e0:47:c3:a8:
+ 3e:4e:3d:3d:b8:ad:d3:d0:0f:2a:d9:5c:04:0c:46:d1:da:e5:
+ cd:72:89:ee:0e:40:c9:6b:56:db:e4:d1:a5:a2:c6:be:3c:36:
+ da:30:ee:e3:ce:52:9b:d3:e6:1a:7d:40:f0:9b:f2:3c:26:02:
+ b4:a7:45:55:25:43:68:fc
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/client-external/ca/ca-root.crt b/dev-deployment/environments/certs/client-external/ca/ca-root.crt
new file mode 100644
index 0000000000000000000000000000000000000000..43a3e831df4e4faa3857b9faacd1017ca0894284
--- /dev/null
+++ b/dev-deployment/environments/certs/client-external/ca/ca-root.crt
@@ -0,0 +1,128 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 1 (0x1)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-external
+ Validity
+ Not Before: May 5 12:15:16 2020 GMT
+ Not After : May 3 12:15:16 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-external
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:cc:21:da:50:ef:43:e7:3f:3a:a8:f7:be:ad:ca:
+ c3:24:88:8a:38:09:3a:9e:73:8f:9a:0e:c8:e6:4d:
+ 27:50:a6:df:d1:4f:e5:cc:df:9f:f0:ef:51:45:2a:
+ e1:66:65:a1:92:49:34:69:0b:45:7f:70:82:74:1a:
+ dd:50:61:ba:6b:ff:51:d1:c3:2e:11:c7:bc:88:3e:
+ 1b:58:f0:c6:56:24:eb:93:65:8c:37:4e:b6:8f:8f:
+ 56:dd:8b:b6:23:bb:79:18:2f:8f:7d:ea:60:47:f3:
+ 35:db:a5:8b:dd:f1:e4:aa:53:61:22:53:cc:93:38:
+ 4b:ed:43:cd:fd:ac:8c:49:90:0c:f3:8e:bd:b0:6e:
+ 3b:c3:e3:f0:9d:f9:22:0c:c7:2d:4b:8f:5c:67:82:
+ db:0e:85:01:cb:19:0d:d0:62:87:66:d2:86:00:2e:
+ 56:2d:b9:88:9e:a0:61:4c:ba:3c:a5:9a:ee:f5:c7:
+ cd:fa:27:e3:44:12:4a:47:92:52:7d:46:27:f1:9c:
+ 86:49:45:58:6c:f0:12:c1:7b:61:d1:d6:c8:96:22:
+ cc:46:ff:c1:32:80:51:71:c9:8d:34:e3:ac:12:b7:
+ 40:88:4b:ba:65:3d:7a:c5:35:41:77:06:c6:05:97:
+ 92:a0:1a:da:b4:c1:78:ed:8c:25:74:14:fe:ca:72:
+ b0:a8:9b:ae:94:66:1e:a8:8d:ed:e0:38:af:05:10:
+ 7d:b2:fe:f0:bb:bd:4a:08:c2:9f:e3:58:77:d6:94:
+ a4:7c:8e:d2:32:79:50:78:d8:3e:e0:ed:38:83:a7:
+ 14:8a:4f:7a:63:46:be:3c:3a:1a:b3:5b:05:d0:8c:
+ 07:5f:5b:81:6f:96:8e:89:e6:f5:bc:6a:ff:af:fa:
+ a4:4c:d7:55:12:62:69:3f:82:6f:d9:4d:55:82:e6:
+ ae:b5:c9:3f:45:cd:7c:0f:c2:01:73:57:cb:94:b1:
+ b6:ce:46:09:b6:78:80:9b:8a:f0:1e:0e:02:bd:65:
+ 2a:f3:af:81:c1:e0:61:27:00:1c:0b:62:7f:3b:60:
+ 8f:17:d9:3c:ed:79:5c:bb:cc:e2:c3:27:95:5d:3c:
+ d2:6c:2e:c0:16:e6:6b:75:9f:e7:f8:6c:fb:58:80:
+ b9:d4:5b:28:69:e1:d0:ae:7a:0b:08:f8:ee:b5:73:
+ 22:bf:41:ed:22:45:a4:e6:fe:4a:d4:69:8e:3d:ed:
+ 39:a9:d2:08:0f:8e:13:80:1b:ef:ed:26:3d:3b:4c:
+ fa:49:74:1c:80:36:e1:9f:c7:27:e2:e5:8e:e1:ba:
+ c0:dc:17:f6:2f:ea:3e:ef:97:fd:3b:80:d8:7b:3b:
+ c4:47:d8:aa:eb:0a:f4:e4:17:78:cd:4b:60:0f:fa:
+ 76:d9:e7
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Root
+ X509v3 Subject Key Identifier:
+ 7C:4A:2C:F1:F4:F5:16:06:22:0F:74:19:38:BB:50:05:4E:19:53:20
+ X509v3 Authority Key Identifier:
+ keyid:7C:4A:2C:F1:F4:F5:16:06:22:0F:74:19:38:BB:50:05:4E:19:53:20
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:1
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ ac:66:03:4e:85:8a:d2:be:de:56:a1:51:ec:81:8e:cf:9b:5e:
+ 6f:a8:b8:05:cd:ea:dd:36:82:d1:74:f4:6a:06:73:39:1d:b6:
+ 63:13:6f:6b:43:fb:a8:04:28:65:3f:38:c2:42:75:ce:d6:54:
+ 36:93:bb:c5:c7:e4:0f:a5:5e:9d:94:19:5e:f6:0b:0c:9e:e2:
+ 0d:86:3f:ad:ac:fb:85:3b:fe:cd:23:ac:c7:06:f9:a5:bd:e3:
+ 03:e6:43:f2:5b:05:70:a9:67:e6:51:a3:9c:f2:00:b9:60:ce:
+ 8a:6a:86:b9:54:d9:af:cb:22:e2:4f:e6:ec:c0:85:a2:dc:19:
+ 32:f7:0f:5d:db:dd:79:70:dc:dd:ec:cf:bf:b4:08:71:26:84:
+ 3e:85:f4:78:bc:f4:49:a1:13:c6:e0:c3:e6:88:cc:42:62:3c:
+ 11:33:c8:c7:b0:cb:af:5e:54:c0:7e:13:a8:d2:ab:1d:4a:0e:
+ 2c:79:3d:d8:a3:f4:70:b0:f6:a3:3e:74:60:d7:3f:51:92:a6:
+ a5:75:53:d0:7a:21:11:d3:68:c4:64:3b:91:39:76:c2:01:4e:
+ 16:da:2d:0e:d3:be:c1:5e:02:75:61:79:af:9d:5b:81:22:95:
+ ff:cf:d6:73:9c:9a:80:a5:a6:13:0a:71:40:07:5e:d3:6f:08:
+ 4e:c6:21:e9:5d:9f:04:70:fa:6b:9a:07:38:82:0f:48:06:37:
+ d5:7d:2c:77:6b:c4:6c:3d:be:15:9b:df:4c:90:e4:e2:9b:e5:
+ 8a:d1:bd:7a:05:8a:db:f3:49:8c:b0:4e:15:ed:24:aa:04:52:
+ 14:c2:fb:89:fd:9d:39:ea:e5:67:ec:8d:66:40:0b:ef:b7:58:
+ bf:fd:13:1d:87:61:8d:e8:eb:e1:c0:19:65:3f:cb:49:f4:a7:
+ ae:d7:2d:81:ae:b7:ca:31:c7:cf:56:55:86:f2:f9:71:f6:a9:
+ 49:fb:4f:0d:6d:a7:81:aa:f5:7a:e6:ae:19:f8:e9:02:5b:86:
+ 63:de:4b:68:32:e4:b5:e4:81:eb:2c:86:80:6e:b8:05:49:45:
+ 90:99:cf:c7:ad:54:7f:d6:6c:d9:c6:6f:5d:11:17:67:c3:c7:
+ 3c:41:32:f2:e7:30:8d:93:74:c0:df:70:ff:48:9f:26:96:f2:
+ 1f:22:44:f2:5c:82:5d:f6:0b:be:55:95:b8:a7:0c:b3:f7:04:
+ 37:b7:75:88:71:0a:f8:5e:7a:6a:a8:a5:cf:43:1a:68:84:59:
+ b3:6b:30:3a:3b:b3:bb:66:54:2e:33:19:cf:12:d0:f0:11:b8:
+ c2:fb:ee:f0:4e:0a:2a:c2:20:bb:3c:9f:71:8c:cb:b2:3d:8c:
+ 12:43:c7:37:37:f4:0d:68
+-----BEGIN CERTIFICATE-----
+MIIF9TCCA92gAwIBAgIBATANBgkqhkiG9w0BAQsFADB1MQswCQYDVQQGEwJmcjEM
+MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEQMA4GA1UECgwHdml0YW11aTEU
+MBIGA1UECwwLYXV0aG9yaXRpZXMxIDAeBgNVBAMMF2NhX3Jvb3RfY2xpZW50LWV4
+dGVybmFsMB4XDTIwMDUwNTEyMTUxNloXDTMwMDUwMzEyMTUxNlowdTELMAkGA1UE
+BhMCZnIxDDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxEDAOBgNVBAoMB3Zp
+dGFtdWkxFDASBgNVBAsMC2F1dGhvcml0aWVzMSAwHgYDVQQDDBdjYV9yb290X2Ns
+aWVudC1leHRlcm5hbDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMwh
+2lDvQ+c/Oqj3vq3KwySIijgJOp5zj5oOyOZNJ1Cm39FP5czfn/DvUUUq4WZloZJJ
+NGkLRX9wgnQa3VBhumv/UdHDLhHHvIg+G1jwxlYk65NljDdOto+PVt2LtiO7eRgv
+j33qYEfzNduli93x5KpTYSJTzJM4S+1Dzf2sjEmQDPOOvbBuO8Pj8J35IgzHLUuP
+XGeC2w6FAcsZDdBih2bShgAuVi25iJ6gYUy6PKWa7vXHzfon40QSSkeSUn1GJ/Gc
+hklFWGzwEsF7YdHWyJYizEb/wTKAUXHJjTTjrBK3QIhLumU9esU1QXcGxgWXkqAa
+2rTBeO2MJXQU/spysKibrpRmHqiN7eA4rwUQfbL+8Lu9SgjCn+NYd9aUpHyO0jJ5
+UHjYPuDtOIOnFIpPemNGvjw6GrNbBdCMB19bgW+Wjonm9bxq/6/6pEzXVRJiaT+C
+b9lNVYLmrrXJP0XNfA/CAXNXy5Sxts5GCbZ4gJuK8B4OAr1lKvOvgcHgYScAHAti
+fztgjxfZPO15XLvM4sMnlV080mwuwBbma3Wf5/hs+1iAudRbKGnh0K56Cwj47rVz
+Ir9B7SJFpOb+StRpjj3tOanSCA+OE4Ab7+0mPTtM+kl0HIA24Z/HJ+LljuG6wNwX
+9i/qPu+X/TuA2Hs7xEfYqusK9OQXeM1LYA/6dtnnAgMBAAGjgY8wgYwwFgYJYIZI
+AYb4QgENBAkWB0NBIFJvb3QwHQYDVR0OBBYEFHxKLPH09RYGIg90GTi7UAVOGVMg
+MB8GA1UdIwQYMBaAFHxKLPH09RYGIg90GTi7UAVOGVMgMBIGA1UdEwEB/wQIMAYB
+Af8CAQEwCwYDVR0PBAQDAgEGMBEGCWCGSAGG+EIBAQQEAwICBDANBgkqhkiG9w0B
+AQsFAAOCAgEArGYDToWK0r7eVqFR7IGOz5teb6i4Bc3q3TaC0XT0agZzOR22YxNv
+a0P7qAQoZT84wkJ1ztZUNpO7xcfkD6VenZQZXvYLDJ7iDYY/raz7hTv+zSOsxwb5
+pb3jA+ZD8lsFcKln5lGjnPIAuWDOimqGuVTZr8si4k/m7MCFotwZMvcPXdvdeXDc
+3ezPv7QIcSaEPoX0eLz0SaETxuDD5ojMQmI8ETPIx7DLr15UwH4TqNKrHUoOLHk9
+2KP0cLD2oz50YNc/UZKmpXVT0HohEdNoxGQ7kTl2wgFOFtotDtO+wV4CdWF5r51b
+gSKV/8/Wc5yagKWmEwpxQAde028ITsYh6V2fBHD6a5oHOIIPSAY31X0sd2vEbD2+
+FZvfTJDk4pvlitG9egWK2/NJjLBOFe0kqgRSFML7if2dOerlZ+yNZkAL77dYv/0T
+HYdhjejr4cAZZT/LSfSnrtctga63yjHHz1ZVhvL5cfapSftPDW2ngar1euauGfjp
+AluGY95LaDLkteSB6yyGgG64BUlFkJnPx61Uf9Zs2cZvXREXZ8PHPEEy8ucwjZN0
+wN9w/0ifJpbyHyJE8lyCXfYLvlWVuKcMs/cEN7d1iHEK+F56aqilz0MaaIRZs2sw
+Ojuzu2ZULjMZzxLQ8BG4wvvu8E4KKsIguzyfcYzLsj2MEkPHNzf0DWg=
+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/client-external/clients/customer_x/customer_x.crt b/dev-deployment/environments/certs/client-external/clients/customer_x/customer_x.crt
new file mode 100644
index 0000000000000000000000000000000000000000..4fa59d08d595e9b83e67dbdf6cd7a9ab880bc2d1
--- /dev/null
+++ b/dev-deployment/environments/certs/client-external/clients/customer_x/customer_x.crt
@@ -0,0 +1,138 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 3 (0x3)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_client-external
+ Validity
+ Not Before: May 5 12:35:09 2020 GMT
+ Not After : May 5 12:35:09 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=customer_x
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:d2:7e:77:5d:71:1f:71:0e:c1:18:b6:cb:35:60:
+ 72:b9:00:91:c6:a1:71:df:06:5d:93:23:7e:f3:4d:
+ 8d:c0:1c:98:63:60:89:81:64:d1:d3:ef:06:c5:62:
+ 8a:17:66:02:eb:96:ec:7c:73:cf:40:7d:6a:f2:b7:
+ c5:ec:b6:10:32:9b:6f:6f:15:3a:51:7b:9d:c9:86:
+ 2e:d4:41:24:7e:db:d0:46:53:8f:40:27:ef:e7:a0:
+ 13:05:9b:4e:8d:a9:c1:0d:b1:3a:d2:27:6e:a4:20:
+ 1b:1f:31:fc:59:4d:f0:69:f2:f3:48:a9:60:f2:bf:
+ 09:e4:58:7b:05:8a:6b:51:98:42:20:4c:9e:e7:09:
+ c7:a1:b7:7b:c7:1f:36:87:67:f4:29:fa:59:10:7d:
+ d4:19:12:f0:96:78:fb:f5:69:af:ff:4f:28:f5:a1:
+ 40:dc:43:01:a0:ae:3f:a0:80:f4:4f:4f:8e:af:8d:
+ 49:66:c6:2e:84:61:c4:7d:61:e9:ef:a5:b7:3e:71:
+ 36:93:a2:a6:fe:1a:86:fa:28:84:1e:d3:96:e7:46:
+ b8:f1:f3:80:a0:6c:df:51:e0:5a:85:b8:e6:c1:a4:
+ 03:f4:8e:cf:c7:0e:7f:95:ef:e5:45:f0:03:43:dd:
+ 70:ce:69:d4:e0:0b:6f:ad:66:84:df:14:de:6c:2f:
+ fa:4d:9a:8b:d8:8d:8e:61:43:0c:21:cf:c2:4d:e6:
+ 95:2a:ea:bb:72:0c:46:8e:a7:8a:24:5a:9c:b4:fe:
+ 5f:be:31:5a:f4:2b:22:b8:62:4c:40:b3:fc:df:90:
+ 2f:e0:64:e9:36:a5:b8:5c:37:40:eb:c7:de:0b:9c:
+ a7:f1:4d:5c:17:c9:03:8b:91:84:49:af:de:08:17:
+ e7:41:a4:15:ba:d7:32:89:fe:7c:90:f2:11:0d:1e:
+ e9:52:55:f2:c5:88:09:03:ef:3f:59:17:ea:a3:5f:
+ 6c:4b:2f:25:b9:ee:0a:96:67:61:ba:03:14:93:de:
+ fc:80:d9:3b:ee:86:48:e9:89:a7:af:b9:e3:ac:73:
+ bb:6d:1e:dc:c2:a3:cd:89:e2:9e:9c:9f:8b:bf:83:
+ 97:c7:97:37:7b:a7:ee:e4:84:8f:7e:80:cd:59:01:
+ ed:c1:1f:ac:3f:de:3b:52:7a:90:6e:4e:40:65:74:
+ ad:17:cf:af:77:6e:9e:e7:2d:d5:69:33:4e:7c:ee:
+ 04:90:5f:56:ad:83:ed:9f:b9:ef:0e:d5:ef:fd:cd:
+ a5:9a:8d:86:c1:87:03:e6:34:ee:7c:67:47:43:82:
+ eb:06:31:a5:b1:62:fa:0d:a4:b5:5f:71:84:8f:c2:
+ 06:d4:ed:7f:ad:b4:20:9d:f3:bd:42:47:8e:45:08:
+ a5:c0:47
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ Certificat Client SSL
+ X509v3 Subject Key Identifier:
+ 65:07:42:1A:4C:22:9B:50:69:E7:84:87:26:70:E1:A4:5C:4E:F2:6D
+ X509v3 Authority Key Identifier:
+ keyid:24:0C:1B:40:0F:9A:EC:7E:53:52:6E:DD:75:D7:47:6F:B2:84:21:B4
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-external
+ serial:02
+
+ X509v3 Issuer Alternative Name:
+ <EMPTY>
+
+ X509v3 Basic Constraints: critical
+ CA:FALSE
+ X509v3 Key Usage:
+ Digital Signature
+ Netscape Cert Type:
+ SSL Client
+ X509v3 Extended Key Usage:
+ TLS Web Client Authentication
+ Signature Algorithm: sha256WithRSAEncryption
+ 93:5c:65:7d:f2:fc:7d:fb:0b:fd:cf:b3:8e:eb:15:6c:2d:5f:
+ 18:43:2d:0e:8c:a3:df:dd:27:4f:ed:5f:cb:9b:40:a9:84:70:
+ 25:66:13:ef:01:ff:08:28:09:98:7e:37:b9:9c:bd:7b:40:9f:
+ 05:da:08:e8:63:83:c7:ae:37:37:7e:50:04:9c:41:67:34:1b:
+ 95:9b:af:5a:9e:6d:5c:e9:66:00:4d:18:01:2c:92:52:9d:fa:
+ d2:a8:66:20:ad:de:f0:2e:79:71:50:4b:f9:8c:db:56:7f:23:
+ ec:ed:7b:37:41:14:18:b4:fd:25:97:e4:89:49:a9:24:6c:25:
+ ad:61:63:71:5c:6e:29:e3:e0:a1:aa:33:d0:29:3d:58:bc:7d:
+ 7d:8b:49:4f:3e:e3:a6:57:6e:68:c3:93:54:29:85:b5:89:a8:
+ 2b:1f:e1:5e:03:5f:da:83:da:ee:e4:fd:ff:64:3f:69:33:59:
+ f8:9a:51:0f:d9:90:58:ee:0b:f6:0b:1c:0d:31:a0:eb:c2:ca:
+ 9f:94:7c:20:46:72:09:1d:74:63:01:cf:25:42:48:4d:49:fd:
+ 96:ea:36:60:29:ef:62:75:c6:fe:a5:01:9a:e2:37:74:61:3c:
+ fe:9f:fc:d3:e3:09:d6:a8:79:6a:99:e1:df:59:cc:05:fb:ac:
+ d4:7f:00:40:02:29:d1:43:aa:2d:2a:96:84:a2:20:14:9e:fe:
+ 62:54:f5:5c:1d:c5:9a:9c:00:9d:c0:9d:63:18:0f:2d:ff:0f:
+ fc:86:22:4b:8d:4e:fe:ef:49:ea:27:29:19:8d:17:9e:71:fd:
+ 69:6b:eb:c3:fa:25:bf:54:28:ec:1a:dd:38:89:b6:e1:ee:b8:
+ 16:29:6b:02:4d:9c:fa:10:23:9a:d9:e2:99:5c:ff:cc:90:03:
+ a9:8e:38:e9:67:55:fd:51:7f:c5:64:62:97:59:08:51:3c:ad:
+ 12:f5:25:d6:5a:b3:e3:d6:28:34:c2:66:bd:36:72:70:ef:0d:
+ 6b:16:83:89:5d:26:68:80:8a:37:23:8e:9e:1e:4a:64:53:e4:
+ 8a:3b:62:92:30:b7:7b:be:52:c9:98:7f:d7:8f:4d:52:68:da:
+ 6e:1c:c9:d2:1e:1a:cc:8c:09:17:7c:9e:7b:a6:46:e2:12:fd:
+ 12:21:87:67:6e:1c:da:58:b0:b8:c4:75:f1:52:ec:74:dc:9d:
+ af:4a:d2:fe:d1:01:70:b6:6d:42:89:b0:83:50:9d:66:bf:a1:
+ da:76:d4:2e:d0:92:43:f1:b6:44:c5:b0:50:9c:39:a5:b7:eb:
+ 07:8d:63:1d:55:f4:2f:bd:14:2f:6f:5b:2c:5e:19:6a:b1:0d:
+ c5:00:44:79:f7:6c:2e:fb
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/client-external/clients/customer_x/customer_x.key b/dev-deployment/environments/certs/client-external/clients/customer_x/customer_x.key
new file mode 100644
index 0000000000000000000000000000000000000000..46475bc63dc2e2319907e1c2ef525008ba37f7f9
--- /dev/null
+++ b/dev-deployment/environments/certs/client-external/clients/customer_x/customer_x.key
@@ -0,0 +1,54 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----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+-----END ENCRYPTED PRIVATE KEY-----
diff --git a/dev-deployment/environments/certs/client-vitam/ca/ca-intermediate.crt b/dev-deployment/environments/certs/client-vitam/ca/ca-intermediate.crt
new file mode 100644
index 0000000000000000000000000000000000000000..b5b44854d7d2b93e2be5a679adfc4a53b0d58ea0
--- /dev/null
+++ b/dev-deployment/environments/certs/client-vitam/ca/ca-intermediate.crt
@@ -0,0 +1,136 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 2 (0x2)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-vitam
+ Validity
+ Not Before: May 5 12:15:22 2020 GMT
+ Not After : May 3 12:15:22 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_client-vitam
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:b3:ad:d4:2c:f4:26:42:fb:fa:f8:08:12:9d:34:
+ 3c:ba:54:7e:fc:0d:c1:d2:f1:50:1c:80:6d:65:81:
+ 00:fa:51:85:db:ed:43:78:7d:5d:b1:dc:66:4e:0e:
+ 9a:92:a8:c3:d4:41:81:80:e3:0d:9e:02:18:fb:d0:
+ 77:2e:5d:93:24:8c:0d:d4:eb:59:5f:71:d0:50:51:
+ e0:9d:66:e4:59:5a:b5:9f:3b:0c:49:cc:7b:a6:cf:
+ dc:b9:98:b9:8c:92:04:3b:f0:69:c0:05:a9:be:af:
+ ec:56:7d:72:88:8a:7d:70:f0:60:11:b0:f7:5d:7e:
+ a2:dc:c0:f5:13:d9:98:5a:da:d2:cb:56:4a:f0:b1:
+ 81:7b:44:cd:1e:92:66:ff:f7:70:b0:ec:00:32:30:
+ 1c:be:a2:9e:ba:8a:13:60:cd:34:0d:10:20:91:29:
+ c5:54:79:43:e3:85:66:6a:c7:dc:c5:c6:9c:07:6c:
+ 1e:85:c8:b7:e7:98:c7:e3:4d:55:d9:b6:5a:d7:9b:
+ 5c:4f:7e:fd:b2:ae:7a:53:7c:94:09:28:ee:54:25:
+ 70:72:cb:f7:fe:97:41:e0:50:27:86:ca:7d:9f:7a:
+ cd:fc:2e:5d:90:d9:df:6e:c2:09:da:0a:c5:ac:c2:
+ d3:86:84:ca:71:a5:73:e6:88:57:b8:57:24:cf:65:
+ ff:1e:ea:e5:98:19:29:ac:b5:cd:b1:ef:53:92:a2:
+ 16:e5:e7:73:f4:c4:ad:05:8b:ab:55:5a:cb:b3:de:
+ de:d5:71:d6:97:13:88:16:86:58:e8:3c:28:b5:76:
+ 03:99:26:06:5f:8a:a1:df:57:67:dd:06:49:5e:8e:
+ f1:4e:d1:f1:3a:4d:23:4b:5e:d5:03:81:dd:eb:e0:
+ 43:6d:eb:7b:ca:a4:b1:24:c6:97:85:17:e3:eb:d8:
+ a1:b0:36:d9:85:ad:e7:ce:fd:97:93:64:87:dc:69:
+ e4:5d:99:4e:ba:95:bd:cb:ae:7d:5c:2d:c2:21:84:
+ d6:aa:a5:68:3a:78:82:7e:59:5e:eb:1b:f9:92:28:
+ 53:4b:b7:06:21:bd:9a:fc:b0:40:e8:dd:97:35:4a:
+ db:ff:b3:d0:26:bc:93:e1:7c:6d:da:df:27:37:9c:
+ 2e:dd:84:8e:32:ff:1e:e3:94:7c:bd:d3:16:f4:31:
+ d3:6e:41:f7:03:70:af:a9:75:2b:1c:dd:49:75:3f:
+ cf:3a:32:e5:c7:2e:49:5c:62:ab:e3:fb:37:4a:86:
+ 4f:c2:ca:16:68:f5:11:1b:a0:1b:96:8e:56:20:6e:
+ e6:c8:55:58:e8:64:7f:4c:94:b3:43:34:a5:22:1b:
+ 36:b3:06:71:be:95:ca:c2:43:e9:78:09:63:85:61:
+ 0f:76:57
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Intermediate
+ X509v3 Subject Key Identifier:
+ 8D:24:4C:8A:40:90:31:A1:31:3A:0B:93:75:2B:F6:93:EF:AD:46:B9
+ X509v3 Authority Key Identifier:
+ keyid:6A:B6:51:B0:3C:6F:34:81:D2:BD:8A:80:96:75:D4:A2:1C:CF:C8:D9
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-vitam
+ serial:01
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:0
+ X509v3 Issuer Alternative Name:
+ <EMPTY>
+
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 6a:f2:0b:fd:cb:4a:aa:b1:03:f5:db:0f:4b:55:f8:c3:b4:7a:
+ 7c:32:9b:60:24:fe:cc:dc:cc:d1:7c:7d:60:ab:ac:55:e2:01:
+ bf:56:23:d8:7d:1a:b5:a2:35:4f:19:ad:71:2d:92:27:4d:a1:
+ 8d:dc:2f:e4:5f:5e:af:53:7e:18:3f:f0:9d:8a:0a:a3:df:4b:
+ 0e:49:70:6d:a8:72:fa:e0:79:94:37:e8:4e:f8:c2:09:79:d2:
+ 71:db:61:56:db:e9:74:78:0a:e3:0d:0a:17:74:5a:b5:3c:00:
+ d7:82:75:1c:f5:55:88:d1:5f:3b:bd:e3:2e:05:04:7b:86:a0:
+ 29:79:71:60:8c:37:b3:de:02:ad:f4:ca:cc:18:3e:b0:be:67:
+ 1c:71:d9:d1:00:dd:33:70:43:cb:7c:8b:1a:9a:09:f9:80:fb:
+ bf:95:bc:53:ad:eb:72:dd:b3:df:97:ca:6f:d9:23:6c:05:25:
+ 53:b5:8d:34:c8:36:d1:aa:00:3c:78:d4:e0:57:d6:75:d3:ac:
+ 2a:27:82:a4:74:27:f1:20:31:3c:9b:f8:5e:7e:22:04:7e:cc:
+ 6c:f4:cb:59:27:72:3a:54:02:a6:62:d1:1e:a4:07:b1:2f:26:
+ e6:c4:4c:80:ac:17:48:c5:f7:4c:a8:c5:5e:21:14:20:e3:b3:
+ c8:be:88:a2:b3:c7:2c:a0:d7:01:24:c0:86:cd:10:f7:cb:7a:
+ 58:10:8c:44:2c:ba:35:3a:07:aa:d9:93:7a:08:45:a9:76:e1:
+ 04:48:c9:d3:b9:90:b4:31:e0:6b:3b:06:a9:1d:68:69:fe:a3:
+ 0f:a8:15:2f:d7:c1:5a:9b:53:99:ef:15:23:58:33:05:d5:27:
+ 40:f4:d1:e6:59:bd:85:05:b9:68:4f:f2:2d:2c:bc:03:34:35:
+ f5:fb:48:49:1e:03:16:64:ba:ec:79:9f:7b:59:87:76:5e:39:
+ 0f:04:e4:b0:39:42:84:26:31:6e:90:cf:80:ec:f7:5c:c8:c9:
+ 04:12:1e:7c:4b:35:55:22:31:3a:16:04:b1:a8:d0:43:c1:7a:
+ 14:39:49:3b:e4:f8:fe:22:3a:72:2e:e1:33:61:4a:8a:2c:56:
+ 9a:c5:b2:0b:f8:75:1a:4b:ed:4c:f5:85:67:73:7c:38:d8:e4:
+ bb:49:02:e9:92:d2:d7:42:cf:3a:62:8f:e8:ff:6b:4a:fa:32:
+ 8c:25:51:fd:e8:4e:bd:be:c9:64:60:9c:5d:15:52:40:83:a9:
+ 3e:3c:40:31:36:f6:ee:59:bb:74:3c:01:ce:0b:c3:cf:c6:02:
+ 0f:7a:d0:b5:9f:46:39:74:c8:a3:94:5d:28:ae:aa:e8:7c:91:
+ 4e:46:6e:b5:88:82:fb:96
+-----BEGIN CERTIFICATE-----
+MIIGijCCBHKgAwIBAgIBAjANBgkqhkiG9w0BAQsFADByMQswCQYDVQQGEwJmcjEM
+MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEQMA4GA1UECgwHdml0YW11aTEU
+MBIGA1UECwwLYXV0aG9yaXRpZXMxHTAbBgNVBAMMFGNhX3Jvb3RfY2xpZW50LXZp
+dGFtMB4XDTIwMDUwNTEyMTUyMloXDTMwMDUwMzEyMTUyMlowejELMAkGA1UEBhMC
+ZnIxDDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxEDAOBgNVBAoMB3ZpdGFt
+dWkxFDASBgNVBAsMC2F1dGhvcml0aWVzMSUwIwYDVQQDDBxjYV9pbnRlcm1lZGlh
+dGVfY2xpZW50LXZpdGFtMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA
+s63ULPQmQvv6+AgSnTQ8ulR+/A3B0vFQHIBtZYEA+lGF2+1DeH1dsdxmTg6akqjD
+1EGBgOMNngIY+9B3Ll2TJIwN1OtZX3HQUFHgnWbkWVq1nzsMScx7ps/cuZi5jJIE
+O/BpwAWpvq/sVn1yiIp9cPBgEbD3XX6i3MD1E9mYWtrSy1ZK8LGBe0TNHpJm//dw
+sOwAMjAcvqKeuooTYM00DRAgkSnFVHlD44VmasfcxcacB2wehci355jH401V2bZa
+15tcT379sq56U3yUCSjuVCVwcsv3/pdB4FAnhsp9n3rN/C5dkNnfbsIJ2grFrMLT
+hoTKcaVz5ohXuFckz2X/HurlmBkprLXNse9TkqIW5edz9MStBYurVVrLs97e1XHW
+lxOIFoZY6DwotXYDmSYGX4qh31dn3QZJXo7xTtHxOk0jS17VA4Hd6+BDbet7yqSx
+JMaXhRfj69ihsDbZha3nzv2Xk2SH3GnkXZlOupW9y659XC3CIYTWqqVoOniCflle
+6xv5kihTS7cGIb2a/LBA6N2XNUrb/7PQJryT4Xxt2t8nN5wu3YSOMv8e45R8vdMW
+9DHTbkH3A3CvqXUrHN1JdT/POjLlxy5JXGKr4/s3SoZPwsoWaPURG6Ablo5WIG7m
+yFVY6GR/TJSzQzSlIhs2swZxvpXKwkPpeAljhWEPdlcCAwEAAaOCASEwggEdMB4G
+CWCGSAGG+EIBDQQRFg9DQSBJbnRlcm1lZGlhdGUwHQYDVR0OBBYEFI0kTIpAkDGh
+MToLk3Ur9pPvrUa5MIGcBgNVHSMEgZQwgZGAFGq2UbA8bzSB0r2KgJZ11KIcz8jZ
+oXakdDByMQswCQYDVQQGEwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJp
+czEQMA4GA1UECgwHdml0YW11aTEUMBIGA1UECwwLYXV0aG9yaXRpZXMxHTAbBgNV
+BAMMFGNhX3Jvb3RfY2xpZW50LXZpdGFtggEBMBIGA1UdEwEB/wQIMAYBAf8CAQAw
+CQYDVR0SBAIwADALBgNVHQ8EBAMCAQYwEQYJYIZIAYb4QgEBBAQDAgIEMA0GCSqG
+SIb3DQEBCwUAA4ICAQBq8gv9y0qqsQP12w9LVfjDtHp8MptgJP7M3MzRfH1gq6xV
+4gG/ViPYfRq1ojVPGa1xLZInTaGN3C/kX16vU34YP/Cdigqj30sOSXBtqHL64HmU
+N+hO+MIJedJx22FW2+l0eArjDQoXdFq1PADXgnUc9VWI0V87veMuBQR7hqApeXFg
+jDez3gKt9MrMGD6wvmcccdnRAN0zcEPLfIsamgn5gPu/lbxTrety3bPfl8pv2SNs
+BSVTtY00yDbRqgA8eNTgV9Z106wqJ4KkdCfxIDE8m/hefiIEfsxs9MtZJ3I6VAKm
+YtEepAexLybmxEyArBdIxfdMqMVeIRQg47PIvoiis8csoNcBJMCGzRD3y3pYEIxE
+LLo1Ogeq2ZN6CEWpduEESMnTuZC0MeBrOwapHWhp/qMPqBUv18Fam1OZ7xUjWDMF
+1SdA9NHmWb2FBbloT/ItLLwDNDX1+0hJHgMWZLrseZ97WYd2XjkPBOSwOUKEJjFu
+kM+A7PdcyMkEEh58SzVVIjE6FgSxqNBDwXoUOUk75Pj+IjpyLuEzYUqKLFaaxbIL
++HUaS+1M9YVnc3w42OS7SQLpktLXQs86Yo/o/2tK+jKMJVH96E69vslkYJxdFVJA
+g6k+PEAxNvbuWbt0PAHOC8PPxgIPetC1n0Y5dMijlF0orqrofJFORm61iIL7lg==
+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/client-vitam/ca/ca-root.crt b/dev-deployment/environments/certs/client-vitam/ca/ca-root.crt
new file mode 100644
index 0000000000000000000000000000000000000000..15e580bb8421a2089899ad08af8ac4e8186a43cb
--- /dev/null
+++ b/dev-deployment/environments/certs/client-vitam/ca/ca-root.crt
@@ -0,0 +1,128 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 1 (0x1)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-vitam
+ Validity
+ Not Before: May 5 12:15:20 2020 GMT
+ Not After : May 3 12:15:20 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-vitam
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:d7:e1:a4:d0:b4:35:c8:be:c7:9f:9d:34:c8:b3:
+ 44:51:88:94:ba:94:f9:9a:b9:5e:71:8d:7e:47:20:
+ 1c:1a:c6:27:67:29:74:5b:a1:71:34:e8:28:4c:ac:
+ 28:3c:39:19:0f:86:cf:03:42:cd:80:f4:d3:a3:ab:
+ fa:f7:f7:96:59:8f:74:1b:4f:17:c8:38:a7:71:2e:
+ 2b:39:31:78:28:aa:7c:72:61:be:c9:ed:d3:48:f2:
+ ea:cb:97:87:68:74:ed:5d:72:40:4e:41:9a:ad:87:
+ 3f:08:6f:f3:14:28:4c:b1:b7:57:0d:8f:fe:29:1a:
+ 4b:90:eb:1a:0c:e2:9a:28:23:a3:fa:fc:93:17:f0:
+ 5c:5a:bf:ef:62:5c:8d:23:5e:77:48:1c:0d:f4:7c:
+ ad:39:fa:06:54:39:e4:ed:df:8b:2e:f6:ae:d3:de:
+ 2b:f5:d6:4a:f0:45:9d:f0:b1:4d:67:a4:ba:80:fa:
+ eb:3e:01:bc:6f:ae:08:49:e4:95:b2:4c:a4:6b:93:
+ 45:4b:c7:ab:04:4e:14:63:50:3a:0b:95:e3:70:72:
+ b1:91:c4:c0:53:b1:0c:36:ed:3c:c2:1b:16:20:75:
+ 6d:0f:7f:57:76:3e:a0:d6:bb:ff:7c:05:37:8a:16:
+ 47:48:56:54:97:62:b2:47:60:15:70:aa:9a:19:48:
+ b0:19:fe:33:f6:1b:1f:a3:d0:9f:15:ee:2c:b1:71:
+ ce:78:7b:f5:b0:32:49:c9:79:02:12:5a:f5:2c:4a:
+ 28:1b:26:f7:da:59:af:98:12:5c:8e:01:7b:b4:15:
+ 0d:b9:8f:08:50:71:25:d9:b7:c2:b5:80:55:ce:c4:
+ 75:51:4f:1f:6e:db:ba:37:99:08:9f:90:b4:c6:95:
+ ce:9f:27:6a:b7:ff:b5:3e:3a:e0:2c:70:40:17:19:
+ e7:59:aa:84:d1:64:9a:74:7f:6e:f1:65:c9:af:cd:
+ ca:c6:c0:04:c7:94:86:2b:9a:4c:dd:86:6c:d8:a0:
+ be:11:f0:0a:16:34:c7:da:91:8d:01:20:05:46:c2:
+ 4b:a4:c3:05:8e:08:f3:c9:ff:7e:26:de:6c:87:8b:
+ e9:ba:c7:c4:24:62:50:0f:f4:02:43:8e:77:30:97:
+ 4a:0b:f5:1c:a5:c4:46:ce:50:28:32:77:1a:39:65:
+ 23:f0:83:b6:b6:c5:74:46:00:36:2f:f1:2f:7d:bb:
+ a7:97:80:76:a6:24:94:da:9f:d6:99:10:18:e0:3a:
+ b5:40:a2:19:b2:c7:71:b8:0e:de:fb:a5:05:a8:48:
+ ab:63:53:2c:15:7f:b8:a6:1f:1b:41:4a:e4:72:66:
+ ae:dd:e5:15:1e:2f:4a:ab:c9:3a:5a:08:68:2d:a6:
+ dd:af:3d
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Root
+ X509v3 Subject Key Identifier:
+ 6A:B6:51:B0:3C:6F:34:81:D2:BD:8A:80:96:75:D4:A2:1C:CF:C8:D9
+ X509v3 Authority Key Identifier:
+ keyid:6A:B6:51:B0:3C:6F:34:81:D2:BD:8A:80:96:75:D4:A2:1C:CF:C8:D9
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:1
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 29:e1:0f:44:f2:6e:75:70:88:3e:6b:95:da:9f:0f:2a:fb:5c:
+ ae:0b:e7:f0:c8:7b:9d:c4:2e:02:4f:66:d2:2d:01:5c:42:e2:
+ 81:e6:69:e3:18:aa:c9:69:9e:0b:e9:1a:55:ec:0e:fa:c9:d5:
+ 97:6c:5f:5a:16:f3:8e:eb:7e:83:8c:3f:f8:ec:75:6f:f1:90:
+ a9:b3:29:d9:31:b4:17:98:7e:28:58:ef:dd:c6:f5:73:e4:bf:
+ 12:c0:1f:52:03:d2:6a:4f:c4:83:6b:7d:f7:b1:90:a6:5a:0c:
+ 81:96:67:e1:3d:d9:7a:fd:9d:e0:23:96:31:18:1f:35:b3:ed:
+ 6f:e5:71:4d:c1:37:17:18:ea:a6:5c:c9:4d:65:cd:b3:97:a2:
+ f6:9b:24:c8:7a:d2:95:94:fd:38:bf:42:74:5e:ce:04:de:b7:
+ 99:6e:e4:35:28:7f:37:1f:b5:e2:19:ac:4e:b6:06:c3:d7:f2:
+ d3:71:f3:38:96:55:ed:ef:55:42:29:a7:cf:a6:63:c1:fb:cf:
+ 6e:ed:03:6e:cb:0f:7d:b0:42:87:c5:85:e7:e1:8a:11:fe:55:
+ 95:00:dd:99:35:a5:c1:d0:8a:8a:a9:59:0a:4c:e6:1c:63:1f:
+ 27:08:bf:37:c2:00:2b:44:cf:49:fb:7c:77:4f:88:39:21:12:
+ 69:42:6b:95:15:0d:da:95:24:72:44:79:88:00:e6:7d:7b:a5:
+ aa:a5:ea:40:6e:ca:59:7e:91:d7:1e:11:23:13:67:fc:47:ef:
+ 5c:ee:db:63:f5:73:e3:5f:66:50:a5:8f:60:e1:bd:5d:3b:11:
+ f3:aa:20:67:77:79:8c:95:84:18:b8:cd:c6:42:60:8c:2b:1a:
+ c3:4a:70:ca:73:00:c8:2c:2c:82:2d:c9:11:c4:30:4a:1b:96:
+ 1b:22:d1:f2:12:7a:e1:ef:fb:15:d8:45:ea:67:5b:46:af:14:
+ 66:46:23:31:ce:63:7c:b2:32:b4:90:0d:cb:7f:2e:9a:4c:a6:
+ 2b:c6:5e:8a:fe:f5:76:55:64:6e:3d:8c:ab:39:8f:20:8d:ed:
+ d0:a4:fd:ee:7f:d3:02:05:69:72:e4:f8:84:3c:fb:6c:47:3a:
+ 0a:86:a0:f4:39:ae:31:4f:a0:d3:b4:6b:b5:33:d0:36:8a:c3:
+ 81:79:80:3d:ee:5f:84:b2:0c:73:30:a1:72:95:6c:05:07:35:
+ 95:82:c9:e3:45:9e:77:78:40:4a:14:6f:d5:56:23:30:63:43:
+ 1d:8e:9d:ab:0f:81:f5:0d:dc:57:48:6b:da:5b:f4:ee:4c:a4:
+ 80:f5:24:9e:5c:aa:42:db:3e:f0:48:7a:ce:d2:72:9a:e2:2d:
+ 2f:e7:b1:a8:20:7c:f4:32
+-----BEGIN CERTIFICATE-----
+MIIF7zCCA9egAwIBAgIBATANBgkqhkiG9w0BAQsFADByMQswCQYDVQQGEwJmcjEM
+MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEQMA4GA1UECgwHdml0YW11aTEU
+MBIGA1UECwwLYXV0aG9yaXRpZXMxHTAbBgNVBAMMFGNhX3Jvb3RfY2xpZW50LXZp
+dGFtMB4XDTIwMDUwNTEyMTUyMFoXDTMwMDUwMzEyMTUyMFowcjELMAkGA1UEBhMC
+ZnIxDDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxEDAOBgNVBAoMB3ZpdGFt
+dWkxFDASBgNVBAsMC2F1dGhvcml0aWVzMR0wGwYDVQQDDBRjYV9yb290X2NsaWVu
+dC12aXRhbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBANfhpNC0Nci+
+x5+dNMizRFGIlLqU+Zq5XnGNfkcgHBrGJ2cpdFuhcTToKEysKDw5GQ+GzwNCzYD0
+06Or+vf3llmPdBtPF8g4p3EuKzkxeCiqfHJhvsnt00jy6suXh2h07V1yQE5Bmq2H
+Pwhv8xQoTLG3Vw2P/ikaS5DrGgzimigjo/r8kxfwXFq/72JcjSNed0gcDfR8rTn6
+BlQ55O3fiy72rtPeK/XWSvBFnfCxTWekuoD66z4BvG+uCEnklbJMpGuTRUvHqwRO
+FGNQOguV43BysZHEwFOxDDbtPMIbFiB1bQ9/V3Y+oNa7/3wFN4oWR0hWVJdiskdg
+FXCqmhlIsBn+M/YbH6PQnxXuLLFxznh79bAyScl5AhJa9SxKKBsm99pZr5gSXI4B
+e7QVDbmPCFBxJdm3wrWAVc7EdVFPH27bujeZCJ+QtMaVzp8narf/tT464CxwQBcZ
+51mqhNFkmnR/bvFlya/NysbABMeUhiuaTN2GbNigvhHwChY0x9qRjQEgBUbCS6TD
+BY4I88n/fibebIeL6brHxCRiUA/0AkOOdzCXSgv1HKXERs5QKDJ3GjllI/CDtrbF
+dEYANi/xL327p5eAdqYklNqf1pkQGOA6tUCiGbLHcbgO3vulBahIq2NTLBV/uKYf
+G0FK5HJmrt3lFR4vSqvJOloIaC2m3a89AgMBAAGjgY8wgYwwFgYJYIZIAYb4QgEN
+BAkWB0NBIFJvb3QwHQYDVR0OBBYEFGq2UbA8bzSB0r2KgJZ11KIcz8jZMB8GA1Ud
+IwQYMBaAFGq2UbA8bzSB0r2KgJZ11KIcz8jZMBIGA1UdEwEB/wQIMAYBAf8CAQEw
+CwYDVR0PBAQDAgEGMBEGCWCGSAGG+EIBAQQEAwICBDANBgkqhkiG9w0BAQsFAAOC
+AgEAKeEPRPJudXCIPmuV2p8PKvtcrgvn8Mh7ncQuAk9m0i0BXELigeZp4xiqyWme
+C+kaVewO+snVl2xfWhbzjut+g4w/+Ox1b/GQqbMp2TG0F5h+KFjv3cb1c+S/EsAf
+UgPSak/Eg2t997GQploMgZZn4T3Zev2d4COWMRgfNbPtb+VxTcE3FxjqplzJTWXN
+s5ei9pskyHrSlZT9OL9CdF7OBN63mW7kNSh/Nx+14hmsTrYGw9fy03HzOJZV7e9V
+Qimnz6ZjwfvPbu0DbssPfbBCh8WF5+GKEf5VlQDdmTWlwdCKiqlZCkzmHGMfJwi/
+N8IAK0TPSft8d0+IOSESaUJrlRUN2pUkckR5iADmfXulqqXqQG7KWX6R1x4RIxNn
+/EfvXO7bY/Vz419mUKWPYOG9XTsR86ogZ3d5jJWEGLjNxkJgjCsaw0pwynMAyCws
+gi3JEcQwShuWGyLR8hJ64e/7FdhF6mdbRq8UZkYjMc5jfLIytJANy38umkymK8Ze
+iv71dlVkbj2MqzmPII3t0KT97n/TAgVpcuT4hDz7bEc6Coag9DmuMU+g07RrtTPQ
+NorDgXmAPe5fhLIMczChcpVsBQc1lYLJ40Wed3hAShRv1VYjMGNDHY6dqw+B9Q3c
+V0hr2lv07kykgPUknlyqQts+8Eh6ztJymuItL+exqCB89DI=
+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/client-vitam/clients/vitamui/vitamui.crt b/dev-deployment/environments/certs/client-vitam/clients/vitamui/vitamui.crt
new file mode 100644
index 0000000000000000000000000000000000000000..0cf8f8b5bb4e37157e7583fd1bb534adf34c8c52
--- /dev/null
+++ b/dev-deployment/environments/certs/client-vitam/clients/vitamui/vitamui.crt
@@ -0,0 +1,138 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 3 (0x3)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_client-vitam
+ Validity
+ Not Before: May 5 12:35:12 2020 GMT
+ Not After : May 5 12:35:12 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=vitamui
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:9f:c1:11:ec:22:41:dc:5d:b7:fc:a9:ac:73:c9:
+ 8f:2d:c9:e7:e6:c1:e5:7b:df:eb:52:c8:95:0f:3a:
+ 4c:09:7d:8d:39:4d:eb:a6:a1:b4:16:28:b7:37:a1:
+ 86:fb:73:af:b7:d6:cd:4d:ae:7a:9e:e9:94:50:e8:
+ 48:83:d1:a5:5f:d1:05:ba:ce:4b:e2:d7:92:9a:f5:
+ 84:50:71:d8:cf:5e:df:3f:1b:14:b8:ad:40:b0:3e:
+ 65:71:57:7f:b7:91:f8:bb:16:aa:44:d1:dd:7b:ff:
+ 29:f2:d5:b3:6f:d8:e9:8d:f6:41:81:d5:83:47:89:
+ 30:f4:07:cf:6a:ad:8a:6b:95:ac:c6:23:cd:dc:f7:
+ e9:38:91:c9:5f:d1:68:1b:d9:20:cb:38:53:1e:9d:
+ 2c:58:9a:3d:5b:a0:08:c9:e4:8d:4d:ac:f8:d4:94:
+ 12:a8:29:9f:4e:9d:73:25:80:8d:c9:23:e6:78:97:
+ 43:79:ba:f9:d2:03:3f:2f:c7:47:98:f1:e4:eb:d9:
+ 30:30:9b:b4:c1:45:61:f2:a6:90:1f:3a:51:bc:6b:
+ a8:83:5f:49:15:a8:1d:67:9d:77:32:4f:98:b6:1a:
+ 12:a3:63:f3:b2:21:ee:09:5c:16:6d:eb:56:ee:4c:
+ b1:e5:60:2d:7c:49:d3:e4:1c:a8:65:1d:f9:58:d4:
+ 75:21:03:50:cd:27:43:2f:18:70:f4:e5:2a:90:42:
+ 4c:8f:0c:48:d0:5f:5f:9b:0f:38:99:6d:07:29:2b:
+ 20:52:98:fb:fb:fb:1a:4c:9f:85:aa:6d:7b:6c:3c:
+ 11:59:48:33:bf:6b:eb:69:9e:9a:9a:28:ef:22:3a:
+ f6:43:6c:e3:bf:f8:20:c9:09:09:5a:1e:70:7c:fe:
+ a4:ee:41:4c:38:0e:70:30:27:e8:89:7f:e3:44:b9:
+ b4:9e:d1:aa:f0:41:12:1e:83:5b:6e:93:ec:2c:88:
+ b7:88:70:ad:1b:8c:80:89:9f:b6:bc:e6:a7:31:5f:
+ 26:3f:9a:84:b6:63:55:dd:0a:5f:ae:ed:82:94:54:
+ 5e:a7:db:f6:06:09:7c:b5:dd:90:2e:96:c7:9b:2d:
+ 40:3d:1f:93:0f:e9:52:6a:b4:0a:45:c3:be:1d:5f:
+ 04:e2:af:15:be:ee:9d:80:fa:13:7d:94:92:5f:c9:
+ 02:07:20:22:3c:02:9a:da:76:57:1f:23:b2:e9:49:
+ a3:65:49:84:d1:42:18:2c:8b:ab:80:7a:91:91:96:
+ db:04:d9:14:53:d2:8a:d1:fc:45:00:45:10:64:03:
+ 69:e9:42:08:08:55:bc:27:68:ab:1e:cb:df:df:85:
+ ec:9a:6c:34:ac:e1:af:3e:5e:60:dc:56:f0:73:ff:
+ 12:42:39
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ Certificat Client SSL
+ X509v3 Subject Key Identifier:
+ C7:6A:49:28:67:98:AE:85:6D:13:D3:9A:E0:72:34:86:F1:B3:36:C1
+ X509v3 Authority Key Identifier:
+ keyid:8D:24:4C:8A:40:90:31:A1:31:3A:0B:93:75:2B:F6:93:EF:AD:46:B9
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-vitam
+ serial:02
+
+ X509v3 Issuer Alternative Name:
+ <EMPTY>
+
+ X509v3 Basic Constraints: critical
+ CA:FALSE
+ X509v3 Key Usage:
+ Digital Signature
+ Netscape Cert Type:
+ SSL Client
+ X509v3 Extended Key Usage:
+ TLS Web Client Authentication
+ Signature Algorithm: sha256WithRSAEncryption
+ 0e:ff:93:76:c2:a0:3e:0b:a1:f0:36:1b:50:80:4e:9a:1d:1b:
+ dd:05:13:82:44:a4:b8:7f:7c:4c:0f:2e:1b:69:6d:71:86:c0:
+ a8:ed:84:7f:a3:c4:be:33:c2:b4:63:da:b0:80:7f:5b:2e:c9:
+ 57:03:97:04:ec:d8:9c:1a:5a:07:04:6e:f1:7d:bc:75:30:6e:
+ 96:34:b8:ab:e6:92:25:cb:f0:38:d6:dd:e8:1b:70:37:63:3c:
+ 84:18:61:fb:ed:c1:0e:d0:32:c6:01:02:2b:95:99:f2:d5:da:
+ ff:7c:70:9d:74:eb:6f:1c:f2:a6:6f:b1:ca:1c:c5:85:f4:10:
+ 41:0c:b1:f3:f0:b9:b3:bd:a9:34:5f:0d:ea:a5:6a:e2:58:37:
+ 18:12:45:87:9b:67:0b:a0:df:80:73:fd:d9:29:13:63:54:50:
+ 85:af:61:b0:b7:25:4f:d4:99:e3:b4:15:46:89:fc:a3:d7:bf:
+ 1e:e8:93:27:3e:9b:60:c0:30:b5:43:c3:68:46:2c:a6:86:fc:
+ 09:b3:fe:54:20:f8:a5:7e:6e:ff:a3:24:ff:9d:a2:04:91:e5:
+ 04:12:d9:89:04:aa:85:22:ca:38:33:0b:95:8a:bf:ba:b7:f8:
+ 97:fc:bc:62:9d:df:4b:5a:69:f5:7c:88:b4:ce:d3:4a:d2:f0:
+ 00:9b:df:b2:0a:65:48:db:b1:c6:55:ea:38:32:8b:6a:62:f6:
+ 1e:8d:1b:69:89:62:61:07:bd:7c:f3:21:1b:93:25:11:2e:68:
+ 90:69:27:fd:a1:9b:1f:9c:4f:f3:86:ad:c3:13:9e:55:d4:81:
+ 79:e8:a2:11:8e:94:10:16:33:8b:06:ba:9f:61:78:72:7f:0b:
+ eb:9a:7e:d9:ae:8d:78:82:a6:0f:00:f3:b4:df:85:36:33:b5:
+ 34:70:bf:64:1f:96:46:96:ad:66:dd:3b:ff:c7:d0:6f:c4:d2:
+ e3:a6:21:79:44:76:de:24:c1:15:1e:54:df:0d:28:49:b4:59:
+ 90:52:8c:a3:e8:3f:99:03:c4:8d:29:17:75:03:2b:07:ac:06:
+ 5e:26:ae:4f:63:38:5e:21:3e:cf:30:dd:d1:38:a0:a7:e9:8f:
+ b1:ec:a7:cb:9a:57:bd:6f:35:2b:b3:73:28:99:ca:38:08:fe:
+ 29:63:78:93:2f:07:2e:0a:20:dc:db:b1:f5:bf:f7:1f:4d:bb:
+ 36:55:76:8c:58:9b:9f:ca:93:06:90:4f:57:40:52:3d:00:29:
+ 54:c3:a0:f4:ae:26:0f:fc:92:2d:e3:4a:18:dd:22:8b:61:82:
+ 96:79:ad:fc:41:3f:4e:e9:16:fb:f7:ad:d9:9e:ae:ee:17:c8:
+ a3:57:65:fa:e2:9b:98:0e
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/client-vitam/clients/vitamui/vitamui.key b/dev-deployment/environments/certs/client-vitam/clients/vitamui/vitamui.key
new file mode 100644
index 0000000000000000000000000000000000000000..958d0d159922f7fc5e981fb5f43b9bc642a5dc94
--- /dev/null
+++ b/dev-deployment/environments/certs/client-vitam/clients/vitamui/vitamui.key
@@ -0,0 +1,54 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----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+-----END ENCRYPTED PRIVATE KEY-----
diff --git a/dev-deployment/environments/certs/server/ca/ca-intermediate.crt b/dev-deployment/environments/certs/server/ca/ca-intermediate.crt
new file mode 100644
index 0000000000000000000000000000000000000000..f48c0bf563aed3cb8e36582abb4435f4be61c464
--- /dev/null
+++ b/dev-deployment/environments/certs/server/ca/ca-intermediate.crt
@@ -0,0 +1,136 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 2 (0x2)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_server
+ Validity
+ Not Before: May 5 12:15:14 2020 GMT
+ Not After : May 3 12:15:14 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:9b:fe:7a:8f:5b:46:ed:9c:02:30:9c:cd:c2:cb:
+ 6c:54:be:c2:03:5f:2d:da:f1:e1:cc:de:6c:44:e5:
+ bc:95:2f:a1:cb:d2:90:46:2d:2b:12:84:2b:92:20:
+ 0b:26:6d:fe:be:a3:92:30:e9:56:87:b0:25:78:a4:
+ f4:12:01:72:d6:09:d9:09:75:2f:0d:9a:cb:29:8a:
+ eb:95:0a:d1:7e:f1:5a:93:fc:ce:66:6d:8c:79:75:
+ f8:2f:84:4d:cd:91:07:03:45:74:d8:cd:4f:8f:af:
+ df:3a:bd:60:6c:c5:20:67:fe:73:b7:c8:52:8b:10:
+ 9f:ae:a0:f2:42:4f:09:fe:f3:dc:3f:8d:05:a2:26:
+ ca:2b:7d:44:6f:e4:ba:b1:c6:51:cf:1c:4a:d6:5a:
+ c0:30:96:9a:da:64:34:07:7e:1f:d0:f2:58:0b:53:
+ 4c:f3:7f:bf:82:01:9b:65:10:13:19:f0:8b:ae:69:
+ 7a:8e:97:2b:b6:2c:27:2d:55:dd:c5:1b:04:62:51:
+ df:90:cc:d4:6e:25:af:da:8b:fc:07:64:59:cd:1f:
+ 22:6b:48:96:de:95:89:33:b2:74:89:87:23:92:6d:
+ 2c:63:17:ad:6a:88:ff:eb:1e:c8:34:dd:c8:1c:cb:
+ 00:9c:0e:1b:12:66:29:97:cf:1f:d3:d3:b1:7a:40:
+ f2:b0:f9:33:c3:2a:34:42:3b:49:7a:1b:7c:a2:68:
+ c3:fc:fd:46:02:fc:86:a6:53:23:6c:6b:5f:74:82:
+ c9:72:0e:79:30:9b:9a:7a:41:6e:f0:2a:ae:a2:3f:
+ 3d:58:df:57:09:ca:b6:9e:66:eb:c6:79:aa:d3:e6:
+ 4e:59:98:f4:cc:fc:64:43:7e:4a:a4:16:a9:91:fa:
+ 21:ce:ea:14:8d:2e:01:a1:6e:95:54:a6:45:07:1e:
+ 42:37:89:65:f6:0f:2a:20:73:9e:a7:a7:95:09:5f:
+ ce:29:6d:3d:9f:f8:3c:14:c5:3f:bd:58:05:21:e6:
+ e6:b3:6d:fd:b1:e0:48:79:1c:85:e5:ab:56:2e:68:
+ 74:76:a8:fd:a2:e7:f3:9e:f7:9a:d8:31:c6:c4:f2:
+ 60:da:c2:2d:fb:26:bd:0d:05:de:9f:86:6e:ba:ca:
+ d9:1a:97:68:49:12:fd:ab:5c:af:1a:55:bf:05:83:
+ 07:b2:6e:67:4f:e5:e5:a4:3e:33:8c:95:5c:4a:76:
+ 62:b2:3d:5e:69:f5:12:02:27:6c:e6:5c:60:94:3f:
+ dd:69:db:54:86:d7:81:6d:e7:a7:3c:f8:12:17:14:
+ 5f:5b:c5:09:f5:8b:37:13:3c:57:c7:c2:df:14:a8:
+ af:81:06:da:30:66:11:ac:c4:a7:82:08:eb:69:5d:
+ fa:c7:97
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Intermediate
+ X509v3 Subject Key Identifier:
+ A7:75:58:7C:4C:0E:3A:13:58:BE:6C:0E:F1:23:49:5C:67:21:1F:02
+ X509v3 Authority Key Identifier:
+ keyid:62:6C:E9:38:13:97:E8:FC:72:44:77:E6:0F:C7:84:11:D9:9C:EC:6E
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_server
+ serial:01
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:0
+ X509v3 Issuer Alternative Name:
+ <EMPTY>
+
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 29:3f:1a:f6:dd:3e:c4:67:e4:b2:bb:7a:78:14:45:62:57:9b:
+ af:5b:73:36:3c:07:e1:11:68:99:50:ac:7f:1c:58:3a:84:1c:
+ 80:a8:fe:de:84:02:d3:43:e0:8d:aa:4b:0e:9d:66:6e:b7:c4:
+ e3:84:47:89:5a:b4:95:d5:68:aa:68:61:36:21:d9:25:9a:10:
+ 5c:8b:4c:0a:ab:91:12:42:4c:52:a1:63:fc:21:a7:05:30:ef:
+ 79:12:1c:19:2c:fc:ef:77:38:3b:3f:81:ad:92:72:83:5b:07:
+ dc:4a:0a:66:3a:0c:5f:43:a2:38:e0:4c:ea:8c:f1:96:70:c5:
+ b0:8a:fe:90:7a:0f:b6:8a:47:80:58:ba:e8:a2:6b:a5:8d:7d:
+ e5:49:d8:1a:bd:8f:08:8e:6f:a3:fa:e0:f3:ca:45:f8:82:19:
+ 62:86:e5:20:2d:ab:f6:ea:29:bc:b8:d6:99:70:c2:ac:2c:49:
+ 5e:19:4f:99:b2:7f:7e:10:a6:ab:5c:56:f3:50:5b:b4:a1:6a:
+ 74:77:78:86:d1:e5:27:48:18:68:dd:24:b7:64:3b:34:bc:93:
+ db:6c:56:8f:fd:51:6d:70:81:ff:87:30:d7:71:d0:28:6d:a1:
+ 3b:ca:62:a5:13:f9:3d:59:5e:20:4e:cc:9d:0b:1a:3b:77:2f:
+ 8e:f6:c1:d6:05:58:71:b1:ed:22:c4:72:5e:39:07:38:7e:b4:
+ 01:80:ff:c5:d0:8d:62:61:c2:86:ce:27:d5:dc:e8:f9:52:e8:
+ 14:e7:8d:ba:e7:45:29:c6:83:93:7c:19:42:e4:7f:11:4d:ce:
+ 66:55:39:2f:0f:18:74:e2:6e:50:de:3c:19:bc:c6:f2:9a:fb:
+ d0:a9:f6:d5:f2:7b:42:0c:b7:cb:a8:5c:2a:d3:77:45:6f:e6:
+ 5f:6b:ba:e1:96:9b:4e:97:88:b7:e9:6e:0b:6d:c4:df:82:8c:
+ ec:49:96:d4:c7:f6:d6:eb:c2:93:ec:8a:89:1d:df:9f:11:72:
+ 73:df:fa:06:42:37:a3:94:93:54:94:40:ee:0a:83:c4:3a:9a:
+ 8d:bc:9f:b9:69:d0:2a:5a:ec:2a:33:40:26:bf:d1:6b:a4:9b:
+ 9a:7a:48:07:74:47:c1:21:6d:71:25:26:3d:d8:c4:51:22:dd:
+ 96:88:c3:07:b0:85:a2:d7:5d:ad:3e:08:c9:bc:31:34:77:0b:
+ 3b:30:51:d7:f9:df:a9:e3:58:51:28:ba:b8:17:85:a2:3c:c2:
+ 41:2b:a8:47:be:58:bb:82:7f:c1:b1:90:4d:dc:4e:d3:7d:cb:
+ 27:4c:ea:b4:18:6c:a7:4b:f4:5e:ea:ec:30:c0:08:34:d9:0f:
+ f5:31:0a:9f:e1:23:ab:62
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/server/ca/ca-root.crt b/dev-deployment/environments/certs/server/ca/ca-root.crt
new file mode 100644
index 0000000000000000000000000000000000000000..698eceb70b454151c11c5821be11cd7abd094f8d
--- /dev/null
+++ b/dev-deployment/environments/certs/server/ca/ca-root.crt
@@ -0,0 +1,128 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 1 (0x1)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_server
+ Validity
+ Not Before: May 5 12:15:12 2020 GMT
+ Not After : May 3 12:15:12 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_server
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:a8:77:6c:76:96:08:23:97:9a:19:55:77:e1:9b:
+ 9f:a2:23:ca:fc:1c:74:74:23:38:24:15:04:64:e7:
+ 56:f6:e5:92:14:83:14:ee:78:d9:56:c9:0e:2a:c2:
+ 67:71:4a:4f:8f:2f:e5:a9:1a:6c:de:e6:3b:da:15:
+ 93:a2:4a:97:5a:0b:45:4a:4a:9e:94:9f:3a:b4:9a:
+ 99:3b:08:de:07:13:0b:bb:c4:4d:1b:0b:32:3c:74:
+ 03:12:bf:54:3b:63:ab:2c:de:af:e5:c7:14:cd:1c:
+ 91:60:2b:7a:cd:eb:05:50:dc:f6:06:ae:91:f5:1b:
+ 33:12:04:cb:55:45:ee:51:54:99:ce:e9:c1:00:58:
+ 92:df:8a:44:30:89:8b:cc:9d:55:31:5e:72:56:22:
+ d6:d0:11:16:a8:06:c4:e7:3f:c2:4b:74:23:89:6d:
+ 6e:04:7f:1e:26:59:73:74:86:29:2c:7a:50:9b:b8:
+ c6:13:43:12:91:53:cf:fb:5f:3d:22:2b:73:4e:7d:
+ c4:48:46:db:3d:4b:e1:69:bd:17:0c:3d:46:a3:8b:
+ 52:f8:15:40:d1:9e:0b:7c:d9:82:ff:0e:eb:ca:58:
+ 4c:11:16:cf:37:56:46:e8:a5:46:3b:7c:2b:50:23:
+ be:a2:d1:f2:87:e5:a7:3d:0a:e9:30:fa:ce:2e:a5:
+ 29:84:fa:9c:67:45:fd:3c:fc:67:80:7d:da:5a:c9:
+ 32:46:0c:b0:0b:42:ed:95:86:bc:a3:1f:b3:d1:93:
+ b2:a1:e7:13:ad:f4:f2:0b:88:9b:6d:8f:f6:65:0e:
+ d6:46:1d:6e:bd:ff:41:0c:10:01:99:02:5c:4b:ce:
+ 58:e2:db:5f:8a:6a:fe:d4:f6:72:cf:f7:ac:8e:2a:
+ 53:96:1a:3a:ab:17:44:d4:79:70:dd:fd:91:1d:48:
+ 26:7c:04:12:63:e8:34:8f:77:04:1e:be:8e:45:42:
+ 58:fe:dd:05:9c:1a:ad:ec:7e:ef:8d:42:72:aa:99:
+ a2:19:60:7a:7e:ed:97:89:4e:12:a4:ca:fe:e5:c5:
+ 09:3e:f9:14:0a:1a:38:46:83:38:7f:1c:b6:01:93:
+ aa:ac:44:b5:11:53:a5:72:d5:34:c3:a9:53:29:39:
+ 40:32:83:03:92:a9:a6:f6:c7:b3:4c:25:5e:fa:ae:
+ 5b:99:13:20:bd:86:72:3d:6f:e5:a1:56:b2:9c:08:
+ 91:9d:50:ef:33:94:cb:ef:c3:e1:11:52:57:c3:c9:
+ 0d:b6:72:f1:06:38:13:37:75:b6:18:21:c1:78:bc:
+ 8b:b8:82:69:23:0d:76:51:cb:cd:45:71:a0:86:d4:
+ 09:03:2a:fc:19:22:4d:6d:62:60:3f:2a:14:f1:ab:
+ f5:59:87
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Root
+ X509v3 Subject Key Identifier:
+ 62:6C:E9:38:13:97:E8:FC:72:44:77:E6:0F:C7:84:11:D9:9C:EC:6E
+ X509v3 Authority Key Identifier:
+ keyid:62:6C:E9:38:13:97:E8:FC:72:44:77:E6:0F:C7:84:11:D9:9C:EC:6E
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:1
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 56:83:ea:61:df:f5:ac:65:93:06:e1:bf:88:3f:bf:47:ae:be:
+ 57:a0:5d:39:1d:b8:03:88:ee:90:42:11:ff:fa:16:b1:78:62:
+ 34:c7:91:02:94:57:96:3d:84:99:79:d6:4e:69:64:93:96:87:
+ 65:57:14:ca:4b:96:9a:a7:d3:1e:f3:e9:d3:8c:8a:2d:23:0f:
+ 20:4d:1f:ff:98:f2:fb:d2:37:0e:99:9b:e6:df:b3:65:14:89:
+ e7:cd:3f:83:69:cd:37:b1:a1:83:5e:03:d9:61:d4:99:76:bc:
+ 4f:bf:0f:b0:cf:d4:c1:b9:bc:d2:a5:b5:a0:a7:75:ef:5f:77:
+ 8f:d3:00:33:ee:4d:fe:47:07:5f:b8:01:35:40:1b:d4:2a:04:
+ 77:6c:96:71:95:f3:1a:f4:55:a8:ae:3d:76:2c:03:af:6d:7c:
+ 02:8f:03:65:10:38:57:3d:a0:b0:c4:ca:36:e9:eb:fc:0d:8b:
+ 0d:ae:ad:58:56:03:0f:d1:3d:cf:e1:77:c6:e8:8f:0f:c4:44:
+ 53:a2:ac:06:6d:6f:72:46:f8:d8:7b:18:d4:bd:09:e3:8d:9f:
+ da:9a:64:b3:72:4b:42:f8:a0:74:e0:e1:06:e8:56:02:ce:ce:
+ ec:ec:79:06:6e:f7:a8:a8:f7:24:4e:de:4d:72:68:3b:92:98:
+ 2d:84:9a:a4:51:5f:b7:90:3d:76:45:de:ca:5e:c1:ea:0c:87:
+ 33:0b:ff:34:45:2d:36:7b:04:bc:c0:21:37:54:ae:a2:b2:c7:
+ a3:74:a3:3f:f1:b5:38:98:3d:10:f3:e2:4c:03:58:57:f0:b7:
+ 87:02:40:5d:c5:75:e4:59:77:74:9e:22:91:d4:9e:82:87:ea:
+ 77:dc:29:71:1f:97:29:54:ee:ae:2d:10:d8:b8:5f:08:41:98:
+ 80:f2:dd:2d:e2:56:76:17:c7:3f:b3:a7:f1:c2:36:a9:4a:42:
+ e1:7d:bb:49:fa:9b:34:67:e2:5a:60:65:a5:4b:96:49:08:ce:
+ ae:54:5c:9c:fe:a9:60:85:ef:86:10:03:fc:0a:b6:14:a6:3c:
+ a3:17:86:b7:07:5e:9e:fc:c0:bc:4f:65:52:99:21:9d:f5:dd:
+ f2:29:5f:29:b4:2c:68:44:bd:26:ed:f3:dc:40:43:97:37:39:
+ e8:20:6b:c8:f7:46:e6:fa:db:4d:c3:69:eb:02:1e:18:a0:70:
+ 38:39:47:6a:cc:b1:48:3c:a8:15:99:b8:c8:5e:de:36:27:36:
+ 11:38:4e:2f:10:fc:07:9a:f7:75:f3:69:c0:c0:30:ae:7b:d4:
+ 3e:a9:12:1c:ce:6c:05:82:7f:8d:cb:17:08:7d:23:23:2b:64:
+ 71:fb:4d:f8:9f:bb:28:d0
+-----BEGIN CERTIFICATE-----
+MIIF4zCCA8ugAwIBAgIBATANBgkqhkiG9w0BAQsFADBsMQswCQYDVQQGEwJmcjEM
+MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEQMA4GA1UECgwHdml0YW11aTEU
+MBIGA1UECwwLYXV0aG9yaXRpZXMxFzAVBgNVBAMMDmNhX3Jvb3Rfc2VydmVyMB4X
+DTIwMDUwNTEyMTUxMloXDTMwMDUwMzEyMTUxMlowbDELMAkGA1UEBhMCZnIxDDAK
+BgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxEDAOBgNVBAoMB3ZpdGFtdWkxFDAS
+BgNVBAsMC2F1dGhvcml0aWVzMRcwFQYDVQQDDA5jYV9yb290X3NlcnZlcjCCAiIw
+DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKh3bHaWCCOXmhlVd+Gbn6Ijyvwc
+dHQjOCQVBGTnVvblkhSDFO542VbJDirCZ3FKT48v5akabN7mO9oVk6JKl1oLRUpK
+npSfOrSamTsI3gcTC7vETRsLMjx0AxK/VDtjqyzer+XHFM0ckWAres3rBVDc9gau
+kfUbMxIEy1VF7lFUmc7pwQBYkt+KRDCJi8ydVTFeclYi1tARFqgGxOc/wkt0I4lt
+bgR/HiZZc3SGKSx6UJu4xhNDEpFTz/tfPSIrc059xEhG2z1L4Wm9Fww9RqOLUvgV
+QNGeC3zZgv8O68pYTBEWzzdWRuilRjt8K1AjvqLR8oflpz0K6TD6zi6lKYT6nGdF
+/Tz8Z4B92lrJMkYMsAtC7ZWGvKMfs9GTsqHnE6308guIm22P9mUO1kYdbr3/QQwQ
+AZkCXEvOWOLbX4pq/tT2cs/3rI4qU5YaOqsXRNR5cN39kR1IJnwEEmPoNI93BB6+
+jkVCWP7dBZwarex+741CcqqZohlgen7tl4lOEqTK/uXFCT75FAoaOEaDOH8ctgGT
+qqxEtRFTpXLVNMOpUyk5QDKDA5KppvbHs0wlXvquW5kTIL2Gcj1v5aFWspwIkZ1Q
+7zOUy+/D4RFSV8PJDbZy8QY4Ezd1thghwXi8i7iCaSMNdlHLzUVxoIbUCQMq/Bki
+TW1iYD8qFPGr9VmHAgMBAAGjgY8wgYwwFgYJYIZIAYb4QgENBAkWB0NBIFJvb3Qw
+HQYDVR0OBBYEFGJs6TgTl+j8ckR35g/HhBHZnOxuMB8GA1UdIwQYMBaAFGJs6TgT
+l+j8ckR35g/HhBHZnOxuMBIGA1UdEwEB/wQIMAYBAf8CAQEwCwYDVR0PBAQDAgEG
+MBEGCWCGSAGG+EIBAQQEAwICBDANBgkqhkiG9w0BAQsFAAOCAgEAVoPqYd/1rGWT
+BuG/iD+/R66+V6BdOR24A4jukEIR//oWsXhiNMeRApRXlj2EmXnWTmlkk5aHZVcU
+ykuWmqfTHvPp04yKLSMPIE0f/5jy+9I3Dpmb5t+zZRSJ580/g2nNN7Ghg14D2WHU
+mXa8T78PsM/Uwbm80qW1oKd17193j9MAM+5N/kcHX7gBNUAb1CoEd2yWcZXzGvRV
+qK49diwDr218Ao8DZRA4Vz2gsMTKNunr/A2LDa6tWFYDD9E9z+F3xuiPD8REU6Ks
+Bm1vckb42HsY1L0J442f2ppks3JLQvigdODhBuhWAs7O7Ox5Bm73qKj3JE7eTXJo
+O5KYLYSapFFft5A9dkXeyl7B6gyHMwv/NEUtNnsEvMAhN1SuorLHo3SjP/G1OJg9
+EPPiTANYV/C3hwJAXcV15Fl3dJ4ikdSegofqd9wpcR+XKVTuri0Q2LhfCEGYgPLd
+LeJWdhfHP7On8cI2qUpC4X27SfqbNGfiWmBlpUuWSQjOrlRcnP6pYIXvhhAD/Aq2
+FKY8oxeGtwdenvzAvE9lUpkhnfXd8ilfKbQsaES9Ju3z3EBDlzc56CBryPdG5vrb
+TcNp6wIeGKBwODlHasyxSDyoFZm4yF7eNic2EThOLxD8B5r3dfNpwMAwrnvUPqkS
+HM5sBYJ/jcsXCH0jIytkcftN+J+7KNA=
+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/cas-server.crt b/dev-deployment/environments/certs/server/hosts/localhost/cas-server.crt
new file mode 100644
index 0000000000000000000000000000000000000000..18305bc2eb14b2e36558871bba4435ec56589d2e
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/cas-server.crt
@@ -0,0 +1,111 @@
+Certificate:
+ Data:
+ Version: 1 (0x0)
+ Serial Number: 6 (0x6)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Validity
+ Not Before: May 5 12:34:55 2020 GMT
+ Not After : May 5 12:34:55 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=dev.vitamui.com
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:c9:df:af:71:28:12:27:c0:09:96:c3:5e:50:96:
+ a6:f0:50:0b:df:5c:11:14:d8:f9:07:4f:5a:75:81:
+ b2:af:03:f4:58:e5:fc:2d:70:c5:b8:c9:a1:11:01:
+ b6:ae:b9:51:14:b8:1a:1f:17:11:eb:71:d8:b8:ad:
+ 59:d6:c6:22:8c:f4:35:7e:1a:ab:d8:54:45:a2:c0:
+ 40:93:4b:f2:f9:c8:b7:fb:ed:78:d1:c0:66:12:32:
+ 13:4d:ad:ea:5b:32:69:cc:e3:a6:72:45:34:05:4b:
+ c8:a2:b1:15:64:22:a4:87:91:71:55:09:c7:e3:20:
+ 6e:66:c1:3c:91:6e:2f:d0:31:87:42:68:fd:eb:49:
+ 28:5f:dc:89:4e:65:79:0b:76:82:8d:35:49:46:a1:
+ 69:38:e5:5f:bf:2c:40:ec:06:48:94:81:f8:e5:6c:
+ 37:f1:35:37:37:b6:5a:e1:8a:31:11:23:c6:e0:3c:
+ 85:47:86:91:80:24:84:2b:7c:b9:57:7d:ed:b9:c1:
+ b8:9c:82:3d:65:b2:5c:6f:3d:a4:75:47:51:cf:24:
+ c4:53:d7:68:f0:07:c6:b7:09:5b:69:5e:e3:c6:49:
+ 9d:d8:0a:9b:8b:f5:91:aa:82:bb:cf:0f:8b:77:20:
+ c3:b0:10:20:39:b0:d8:64:28:54:e6:68:57:b1:32:
+ 75:49:94:90:91:75:7a:4b:90:19:4a:3d:fc:fb:19:
+ c1:9c:c6:87:9f:53:95:8b:0b:5a:95:6e:fa:03:f8:
+ a3:92:0d:d7:a1:39:fa:6f:92:91:f6:58:98:32:d7:
+ 6c:26:5d:4f:da:67:1b:36:5c:7a:0a:4e:64:dc:d5:
+ 7b:99:d7:87:24:cd:f0:f2:06:14:1f:1d:f0:ea:aa:
+ 18:86:4a:e9:d4:67:2e:59:d0:e4:93:f0:b3:ec:90:
+ a7:94:78:79:ae:00:e2:7c:7e:af:53:7b:50:2e:94:
+ 3a:29:5d:4d:81:9d:69:0c:91:34:17:49:92:a7:03:
+ 69:e1:88:25:c0:28:43:01:56:a9:b0:d8:c7:d0:32:
+ 52:d4:f1:78:a7:5c:f4:57:f5:ad:e6:0e:72:e9:79:
+ ff:5a:25:0a:eb:e4:0f:ea:ac:84:7f:fa:78:f6:00:
+ 31:39:74:4c:31:98:e1:56:29:30:ff:bc:83:24:90:
+ e9:a9:7f:0a:f2:f5:48:26:50:27:26:68:87:08:00:
+ 7b:49:bf:7b:e4:cc:a8:e7:4d:72:ea:87:e8:47:3d:
+ 3c:45:9e:0d:01:e6:61:77:c9:83:ce:08:03:51:c8:
+ a6:d5:88:2b:c5:30:56:5b:8a:9e:5f:4c:b1:2a:6d:
+ 19:aa:ca:56:f9:f1:c4:c5:ca:df:3b:db:1d:1f:d4:
+ d8:b3:7f
+ Exponent: 65537 (0x10001)
+ Signature Algorithm: sha256WithRSAEncryption
+ 6c:68:21:7d:a4:28:a8:1e:1a:ed:d9:e3:76:82:e6:cb:5c:5a:
+ 9f:b3:19:35:12:1e:03:24:c7:9d:5b:83:05:fd:ba:74:98:28:
+ 77:ba:3a:bb:d4:94:59:32:39:aa:fd:c5:53:c2:2c:f2:c5:57:
+ 9a:8f:42:96:d3:3f:ad:b9:a3:ea:fe:21:cd:b1:8e:22:a2:d8:
+ 34:68:49:c3:7b:4a:57:4f:cc:be:56:a1:a8:26:02:1d:de:1d:
+ c7:d3:d0:ae:3b:c8:d2:e1:08:3a:43:cb:36:30:44:14:a4:08:
+ d1:5e:92:c6:b9:ee:e7:cd:95:0b:55:40:f9:58:4b:f0:8c:1c:
+ 45:29:2b:83:2b:7e:50:fa:5f:19:6b:87:20:b4:e7:c1:ec:7e:
+ 35:d2:b6:2c:9f:ec:da:cd:fc:32:f2:30:97:63:f4:63:60:d6:
+ a9:6b:e8:bd:fd:b8:7e:b6:4f:db:08:19:e8:51:3d:1e:5b:64:
+ c7:87:db:d5:78:ad:f7:9a:7f:1f:92:d8:5e:1d:97:cf:03:07:
+ 99:3a:da:c2:4e:b6:45:06:eb:d7:b6:89:bb:24:94:30:dd:53:
+ 9c:f5:d0:1f:04:85:55:f5:38:78:6a:36:76:f8:3e:d1:90:ce:
+ 7c:d7:72:79:c5:42:e6:59:dd:6d:92:50:59:52:04:d4:db:29:
+ af:74:b3:79:4c:ac:1b:35:08:7f:d0:b9:db:3b:08:e0:68:d5:
+ 6d:6e:a1:5a:7d:94:3b:6f:19:70:2b:6c:3c:14:07:a0:05:6b:
+ 2e:1e:3a:ea:05:88:5d:d0:8d:58:58:ff:f9:b0:b8:78:74:63:
+ 91:52:5c:ce:35:fa:29:73:88:0f:2b:3c:64:78:30:8c:9d:22:
+ 50:06:67:8e:40:c4:c6:84:98:01:30:65:bd:32:57:5a:d2:a5:
+ ec:83:f6:ef:c8:29:46:0e:43:f0:5f:02:6f:9c:c1:4d:b5:b3:
+ 59:bf:c4:99:cf:8d:d5:6a:e5:79:cc:5e:28:ab:90:e3:7d:2b:
+ ee:1b:0c:62:88:ee:e9:c4:3c:88:92:9e:cb:c3:48:0d:d1:bf:
+ 46:7f:42:46:9d:da:7a:d8:59:7e:88:86:06:30:85:50:0a:cb:
+ 66:69:be:1d:c2:51:6e:57:92:f5:a0:83:08:1c:ae:ea:af:e4:
+ ad:8d:e5:00:13:28:fe:04:5a:09:e9:53:4a:1a:45:2f:43:9d:
+ d7:96:f5:14:6e:65:fc:7c:63:6c:7d:49:90:94:08:b4:b2:46:
+ 0a:9a:7f:2e:90:55:01:41:e3:ca:fd:79:ba:57:4c:9e:41:f7:
+ d1:23:f4:3c:19:a8:75:52:59:a7:1a:43:77:c5:46:cb:63:37:
+ 54:47:26:c2:03:4a:84:4f
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/cas-server.key b/dev-deployment/environments/certs/server/hosts/localhost/cas-server.key
new file mode 100644
index 0000000000000000000000000000000000000000..47c4e9c1596b6f9a6cecb0b1be6f064818d85ad7
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/cas-server.key
@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/cas-server.pem b/dev-deployment/environments/certs/server/hosts/localhost/cas-server.pem
new file mode 100644
index 0000000000000000000000000000000000000000..265625d800b3194e6a0844b14ab30444d8b82f0b
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/cas-server.pem
@@ -0,0 +1,31 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/iam-external.crt b/dev-deployment/environments/certs/server/hosts/localhost/iam-external.crt
new file mode 100644
index 0000000000000000000000000000000000000000..16b79c87338fdad667248a7e36c3c00fb1a88f4a
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/iam-external.crt
@@ -0,0 +1,111 @@
+Certificate:
+ Data:
+ Version: 1 (0x0)
+ Serial Number: 5 (0x5)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Validity
+ Not Before: May 5 12:34:52 2020 GMT
+ Not After : May 5 12:34:52 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=dev.vitamui.com
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:a8:c4:32:db:d9:cf:cf:3e:23:61:0f:36:9b:ab:
+ 2c:4e:40:b0:36:9d:af:9c:94:6b:b4:56:f6:c0:26:
+ 9a:cd:53:82:6b:61:39:5a:69:02:5d:32:4b:b1:0f:
+ ba:7a:b5:43:6b:88:90:8a:c7:13:c1:9c:35:8e:30:
+ b9:7d:5a:04:80:87:6c:2b:8f:f1:4e:6d:9e:46:4a:
+ 94:cc:04:2e:3b:3f:f0:f0:6a:06:f7:83:2d:4f:72:
+ e6:38:f1:5f:3a:bc:ab:26:0b:04:34:6f:11:b3:cb:
+ e9:72:0e:8b:6e:e5:0f:29:1a:3d:08:57:71:b4:b9:
+ 8b:79:84:20:82:c5:4e:77:b8:ba:0d:8d:0d:89:75:
+ 28:23:d9:83:c8:79:85:fb:3e:b8:bf:c8:6f:12:2a:
+ 1e:3d:48:b7:f2:cd:0a:04:f5:23:b2:ff:95:20:55:
+ cf:cb:bb:fd:81:fa:e4:57:5a:38:ef:a3:c3:b0:97:
+ ae:17:e0:c9:28:31:4a:72:3c:9c:95:a0:5f:58:14:
+ a0:95:fd:06:3d:6c:b9:f4:b8:70:9e:2e:53:a3:10:
+ 23:6d:fa:12:3b:30:ca:5b:91:72:13:84:ee:98:24:
+ eb:4e:ea:2d:93:f9:d5:8f:6c:96:00:f5:ae:11:2d:
+ 33:48:64:42:73:fd:9a:09:21:f1:60:48:fa:fe:74:
+ 0a:d6:d7:46:12:cb:1d:83:49:df:17:c3:80:cf:8f:
+ 2f:9e:43:b3:d2:e7:03:24:e6:05:a6:c0:a8:7d:ff:
+ d8:ab:27:9d:ca:0f:cd:88:75:3d:4a:77:24:5c:d4:
+ 2a:11:f6:bf:24:d2:6a:77:05:51:0f:56:0c:39:af:
+ 3a:fc:80:57:b6:65:d7:8a:d7:a8:96:af:78:46:20:
+ 87:70:a5:23:2f:8a:9f:1c:3a:de:b8:63:b5:e9:c4:
+ 77:4d:a8:12:14:85:e1:26:94:0c:73:b4:e5:c0:70:
+ 33:56:fd:21:c2:3e:5c:ec:af:39:9d:e3:8c:e7:67:
+ 84:d5:03:f9:bc:0f:7d:c6:de:5a:54:2d:3e:96:d3:
+ 43:20:ed:7b:51:b8:95:8f:b3:5e:ed:1b:f8:fb:2a:
+ a1:09:33:bb:06:e9:a0:96:47:78:eb:aa:f1:56:82:
+ 09:60:40:5f:cd:04:58:c3:a4:ec:b7:21:d6:b1:b9:
+ e5:18:f3:9f:1a:9b:6c:25:25:33:1b:35:f5:42:c8:
+ 42:84:67:68:ca:3f:63:22:55:4a:fd:1f:e4:f0:c2:
+ 24:e4:56:43:29:c3:8b:43:ff:4d:e2:84:76:dc:63:
+ 2f:e2:6d:0b:d8:ae:ca:e0:bc:65:59:f3:dd:79:8d:
+ 13:26:55:14:b9:9d:f6:57:04:2d:77:db:92:17:f5:
+ 8c:46:b3
+ Exponent: 65537 (0x10001)
+ Signature Algorithm: sha256WithRSAEncryption
+ 27:2c:78:98:8a:fa:0d:d8:11:90:75:5e:9f:c4:38:c7:e9:90:
+ 4d:32:14:e5:96:b1:f9:df:b0:fb:d2:9b:ed:13:d2:50:de:53:
+ 09:ae:a9:47:d9:1b:6c:1d:05:ca:8a:c6:fc:4c:9a:b2:fe:13:
+ 75:d7:19:0b:3a:e9:a3:bc:a7:05:79:67:8d:42:18:76:9b:89:
+ 40:20:0c:7f:57:92:cf:c4:2f:5e:46:a9:d6:36:ba:81:2e:5e:
+ 12:74:12:c9:f3:3c:bc:34:28:90:34:36:c6:8e:33:04:de:45:
+ 29:f2:21:a0:15:58:12:fb:7e:c8:1e:be:6c:b4:ba:e2:29:d6:
+ 03:34:6a:01:da:68:88:4a:7b:da:d9:a8:be:4d:5c:d8:53:d6:
+ 5f:8a:80:fe:78:d5:71:41:e9:5e:77:87:e5:f7:af:7c:06:85:
+ ae:0d:85:d3:40:13:3e:01:e3:6a:ea:aa:39:63:03:4f:80:39:
+ 29:39:9c:e6:a4:bb:7c:c7:df:30:e7:22:bd:c2:cc:7d:e2:22:
+ d7:e5:61:24:4a:8f:df:72:c9:15:8f:3d:28:61:0d:ba:b4:26:
+ 84:20:89:c3:12:a6:88:52:26:c9:ec:f9:4b:61:7d:ab:81:c0:
+ 41:1a:da:c0:5f:95:de:82:64:44:7f:6f:5f:33:0f:6c:45:ea:
+ 18:f7:2f:ef:a9:30:cb:7c:7b:74:c7:35:b9:45:b6:ee:3e:8b:
+ e6:83:3b:00:22:15:02:f1:0e:40:ea:b3:ac:a4:f0:96:01:01:
+ 01:29:ab:83:9f:23:0a:3b:df:fb:1a:33:8b:54:d1:c3:2c:93:
+ e0:a1:79:1d:38:62:2c:41:10:db:2b:d3:28:23:29:36:00:62:
+ 82:6c:8a:39:e9:d2:86:27:b8:9c:f5:67:14:b4:aa:81:f9:8f:
+ 1f:3a:6b:c4:c2:a9:a3:1a:66:04:36:6f:e7:9d:06:e0:0c:47:
+ f6:10:44:43:f3:94:ae:96:f2:cd:a1:b6:5f:a2:7a:f4:11:47:
+ 15:63:eb:a2:e2:8c:6d:25:0e:f8:ee:b0:16:09:3e:fc:64:6d:
+ 79:35:d9:a9:4f:9b:46:e0:cd:31:bd:51:5f:55:25:5f:4f:18:
+ 60:0e:20:c1:78:ec:c3:a8:f1:40:84:06:49:11:20:73:b6:c6:
+ cc:02:dd:bd:ee:e6:4f:d4:ff:5f:20:e9:40:eb:1d:ec:94:69:
+ 30:10:76:f7:a3:80:7f:1c:4e:f1:46:e8:d4:f9:98:80:ed:be:
+ 43:31:11:f9:b7:b5:15:ba:9e:3a:a4:4b:f9:c3:45:c3:f5:1f:
+ 49:48:3f:31:b5:5d:db:02:a9:4a:ec:83:00:c2:29:37:14:d1:
+ ce:8e:ce:f7:ac:c3:59:d5
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/iam-external.key b/dev-deployment/environments/certs/server/hosts/localhost/iam-external.key
new file mode 100644
index 0000000000000000000000000000000000000000..fc047a954433206a2694e205e7f062cc8e805b12
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/iam-external.key
@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/iam-external.pem b/dev-deployment/environments/certs/server/hosts/localhost/iam-external.pem
new file mode 100644
index 0000000000000000000000000000000000000000..d8d604af859bb35a4b9147b01069759e09d49c0e
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/iam-external.pem
@@ -0,0 +1,31 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/iam-internal.crt b/dev-deployment/environments/certs/server/hosts/localhost/iam-internal.crt
new file mode 100644
index 0000000000000000000000000000000000000000..7e58e514225617153e3e7180633b4ec987260978
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/iam-internal.crt
@@ -0,0 +1,111 @@
+Certificate:
+ Data:
+ Version: 1 (0x0)
+ Serial Number: 4 (0x4)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Validity
+ Not Before: May 5 12:34:48 2020 GMT
+ Not After : May 5 12:34:48 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=dev.vitamui.com
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:cc:f8:ed:6e:49:8e:4d:cb:19:b4:cb:8c:9a:38:
+ 2a:b2:d3:55:fc:6c:5e:bd:3c:02:ca:37:18:60:d3:
+ 00:0f:a9:71:7c:62:a7:a7:b5:05:a6:99:de:d6:60:
+ 8f:56:f7:0e:6f:fa:ed:22:13:aa:31:c1:c8:da:bb:
+ 38:b2:f4:ad:8a:02:6f:ac:c6:a2:89:b6:2b:14:cc:
+ d9:2e:54:bb:4b:83:ef:f5:39:ea:87:33:6c:55:e5:
+ ed:15:62:fb:0a:9b:00:c9:c0:99:d4:5e:c6:b4:62:
+ 78:77:34:bd:a8:cf:57:2b:1b:53:b7:01:48:95:ea:
+ 04:51:47:ad:8b:d9:0f:bc:93:2f:ab:d1:8d:96:92:
+ 1b:c5:04:8c:55:22:03:e4:2d:f6:31:0a:93:fb:ec:
+ 0a:12:a9:31:e5:8a:73:a4:07:80:10:07:88:88:21:
+ 9f:97:b0:73:b1:13:5a:4e:b7:19:f8:9f:84:0e:43:
+ 1c:a1:ad:17:7a:a3:bb:a3:4d:ec:dd:2c:45:26:44:
+ 08:ed:b7:68:6a:8b:b0:48:a5:19:bf:76:90:0b:a8:
+ ed:3b:57:38:e1:28:74:7a:56:22:65:d8:15:4c:90:
+ 39:de:7a:87:30:6f:27:70:8c:7b:3c:72:87:95:d4:
+ 44:7a:26:ef:e2:d1:56:c7:e8:aa:4b:e0:fe:a7:ac:
+ 41:df:0d:05:72:05:57:49:20:08:b0:be:79:7f:d3:
+ cf:0d:99:a3:75:ac:ad:9c:e4:45:90:29:e6:46:13:
+ d7:a8:83:8d:87:ee:0c:f8:cf:b9:3f:21:c5:3a:26:
+ 32:e3:bd:12:8f:9b:98:61:84:a2:a1:e2:5a:a3:0d:
+ 78:d3:cc:06:9f:a1:3a:77:fc:de:39:44:30:eb:45:
+ 8d:ef:a5:4e:41:27:98:5c:e2:b4:e8:a4:9b:be:40:
+ 69:31:ed:03:d0:cb:db:5c:2f:45:7f:64:df:f9:7a:
+ c0:66:81:88:c8:51:aa:d0:5c:9c:12:41:10:f7:cd:
+ 04:cb:91:59:23:4e:66:34:f6:2d:18:ee:b9:3c:d6:
+ 5d:44:8c:c3:a0:c4:22:0e:22:6b:f7:84:3a:65:c8:
+ 7d:22:dc:cf:42:46:a7:f8:08:9d:ce:75:86:77:56:
+ 14:1d:e6:03:dd:ab:91:b2:54:b4:4f:8e:63:a4:18:
+ 35:b4:ee:2c:b7:b0:24:3f:5d:f7:9b:ec:24:9a:29:
+ 45:2a:48:96:72:40:9c:2f:16:5e:c2:45:a0:4c:e2:
+ d6:ee:e6:53:de:80:f2:17:47:0b:1a:be:bc:9d:d6:
+ cc:96:87:54:91:6f:26:fa:f0:51:01:46:55:ba:f0:
+ 82:6d:38:a7:87:a2:84:33:4c:81:62:4a:a0:ae:2e:
+ c4:46:89
+ Exponent: 65537 (0x10001)
+ Signature Algorithm: sha256WithRSAEncryption
+ 56:86:a8:ad:38:0c:fa:6d:6c:b2:21:69:0e:55:f0:8f:65:b0:
+ 17:5f:cf:19:b4:0b:91:bf:6d:9b:79:da:23:44:4d:cd:2c:6b:
+ f5:a4:77:cd:11:99:db:6e:5a:08:71:c8:05:38:95:a4:ae:53:
+ 32:43:5a:53:3c:75:9c:da:0b:a4:72:72:a9:4b:c4:c5:8a:b7:
+ 04:5c:ea:f5:4e:99:7f:f4:5a:0c:21:f0:70:f3:48:b1:ec:32:
+ f1:47:fe:ae:42:36:17:7b:73:56:8e:d7:27:98:b5:2d:a0:9b:
+ 54:21:73:d4:32:0d:cb:68:bd:92:b7:3a:61:91:7e:5d:8d:57:
+ c0:6b:77:66:fb:8b:38:3d:a9:af:02:3f:4f:2c:e3:29:a4:a6:
+ 6b:eb:f1:8e:d1:d2:2c:c6:9e:79:1a:65:6f:38:cf:82:b3:ca:
+ 21:c7:1e:84:dd:a4:a1:a9:71:10:4b:a3:e9:82:28:4a:66:19:
+ d8:00:ec:4f:0d:9b:f2:0c:ac:7c:ef:28:2e:3d:37:be:ff:b5:
+ 1d:0f:96:c4:d9:a1:6d:9d:ba:8a:4e:0c:6e:83:96:c9:97:ed:
+ 94:42:4c:52:c5:39:81:fa:62:19:a3:c8:5a:d9:80:1e:2f:ef:
+ 76:22:94:5e:d1:4c:fb:70:b4:4e:31:e5:d3:d9:b2:2f:12:9e:
+ 67:8a:e6:27:2f:dd:d0:50:b1:c7:2e:c5:c3:42:2c:70:99:2d:
+ 6c:76:be:07:ef:c0:05:e0:43:ae:dc:b9:48:49:0c:36:a9:83:
+ 94:b2:11:96:6f:dc:15:f7:70:4a:05:1e:84:d7:60:d5:04:14:
+ 0b:10:72:d5:b6:c9:ed:54:77:e3:9d:2b:80:41:a9:7a:a3:42:
+ ef:e9:84:8b:32:9d:4f:56:00:e3:b3:5c:ac:dd:bd:29:9e:fa:
+ fd:67:0b:ce:8b:d0:e1:7a:e2:d8:3a:1f:65:a3:7d:dc:33:f9:
+ 81:f1:c0:7b:8d:13:17:37:ed:3f:fd:fc:f3:d3:bc:9a:70:7c:
+ 83:ad:4a:19:85:49:7b:87:d6:7b:3b:6d:03:7b:e1:9c:95:d6:
+ 80:e9:14:76:d4:23:46:6d:e6:b8:98:7f:3c:f8:c3:f8:1c:cf:
+ 08:ee:c4:f6:17:a5:b8:82:32:69:18:e6:7b:71:d2:f0:a7:25:
+ 92:84:1c:66:7c:67:b7:23:6e:ba:9a:11:f5:42:51:53:4d:2f:
+ c3:70:91:5e:4b:fd:c0:a7:3d:d3:df:0d:d8:3c:79:f7:c9:2d:
+ 68:52:be:59:d5:55:1e:fc:f7:9c:10:7d:7d:36:27:aa:93:6c:
+ d0:4e:1f:7d:a1:65:8a:bf:9d:01:d5:bf:b0:9c:cb:32:f3:a1:
+ c9:37:ef:34:b8:29:f4:33
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/iam-internal.key b/dev-deployment/environments/certs/server/hosts/localhost/iam-internal.key
new file mode 100644
index 0000000000000000000000000000000000000000..fb6f20c64aee77a5390d97e91ea352e452ed96ce
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/iam-internal.key
@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/iam-internal.pem b/dev-deployment/environments/certs/server/hosts/localhost/iam-internal.pem
new file mode 100644
index 0000000000000000000000000000000000000000..9ff0bb830c6d747d0e1d417b6a7d3a52cd85c582
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/iam-internal.pem
@@ -0,0 +1,31 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/security-internal.crt b/dev-deployment/environments/certs/server/hosts/localhost/security-internal.crt
new file mode 100644
index 0000000000000000000000000000000000000000..9fcfc02c84b2249347a21d42542bfaefdb815eba
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/security-internal.crt
@@ -0,0 +1,111 @@
+Certificate:
+ Data:
+ Version: 1 (0x0)
+ Serial Number: 3 (0x3)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Validity
+ Not Before: May 5 12:34:44 2020 GMT
+ Not After : May 5 12:34:44 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=dev.vitamui.com
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:cd:27:29:78:29:a0:91:d5:7f:a8:e2:16:cc:96:
+ 86:0a:90:6a:12:50:5f:fd:79:ae:59:71:3b:95:68:
+ 87:34:1f:e9:7e:3c:4b:07:a2:9b:4e:eb:12:41:cd:
+ ef:00:0a:50:ee:11:92:be:2a:78:88:70:12:00:de:
+ 0f:b3:79:55:83:53:53:c2:d3:a6:ab:52:99:da:79:
+ 70:c6:f5:2a:5d:9f:64:22:17:cd:31:23:6e:36:10:
+ eb:94:2f:f6:e5:ec:0a:39:6a:2c:69:c4:4c:bb:cb:
+ d0:4a:88:6b:5b:ff:d9:55:1c:9b:e9:a1:22:e5:72:
+ 13:7c:c9:ce:13:d5:95:b1:6b:46:87:c5:e9:be:b4:
+ 62:c1:9c:bc:1e:b2:e6:6f:6c:7a:29:b9:51:81:75:
+ b2:50:fb:f7:5d:b5:a7:41:ec:f7:3d:8a:a6:d5:a3:
+ 2f:a3:c7:ce:b8:63:c1:0f:80:73:51:e6:d5:04:86:
+ 73:d1:8f:2a:a8:d7:f3:95:8e:e2:94:a0:52:d6:29:
+ f7:d4:55:7f:6f:19:66:5a:d7:12:36:a2:83:ed:88:
+ 01:56:b6:c1:dd:e3:e1:3e:75:79:c0:14:36:27:5e:
+ aa:ae:d0:33:7a:62:0a:16:93:36:4c:bd:3a:b9:96:
+ c5:61:1f:99:54:6c:45:1b:0b:de:92:e0:34:2f:47:
+ 83:9a:99:ea:13:4e:af:e9:66:d8:2f:8b:67:0f:fe:
+ b3:fb:9e:6c:e0:59:d8:ac:8c:1f:7a:e4:dd:c8:bd:
+ 68:b3:c4:1e:20:fe:14:84:f3:8e:28:a0:00:89:41:
+ 61:fe:dd:f1:7d:eb:20:2d:27:52:f8:ff:ca:24:14:
+ ac:1a:3b:21:f0:dc:0d:0d:7f:19:72:74:79:58:2a:
+ 80:20:eb:af:28:86:2a:95:16:e2:a4:c2:92:11:0d:
+ da:42:ed:14:db:95:52:9f:e2:aa:85:0a:5f:99:10:
+ 31:b2:cc:f2:8d:99:de:76:20:1d:fb:0d:bb:7f:92:
+ cc:93:f7:d8:ac:b7:bd:43:3c:2c:87:29:f8:54:fc:
+ c2:58:68:4c:01:57:66:4b:4e:f8:ba:7b:85:1d:af:
+ 22:9b:34:5a:23:a9:29:f2:5d:ec:3c:16:d2:67:4f:
+ be:22:72:15:24:e3:97:99:05:37:4c:e4:e2:42:b8:
+ 62:f1:b5:f7:77:39:21:ad:0a:3c:d0:30:d8:63:ff:
+ e0:8a:49:ea:05:96:0a:c7:cc:a7:2c:83:d6:1d:d0:
+ 62:ae:b2:c2:be:12:39:ec:84:a8:8f:8e:a6:90:e5:
+ 02:09:a2:67:87:20:92:4e:46:64:d5:9a:22:bf:fd:
+ 6f:6e:b1:f0:76:04:2d:a3:e0:e3:dd:68:b6:8b:cd:
+ b4:8d:55
+ Exponent: 65537 (0x10001)
+ Signature Algorithm: sha256WithRSAEncryption
+ 99:ec:b9:c9:d8:42:e1:4e:de:62:9a:28:84:9d:2c:c4:35:c2:
+ 1d:b4:08:25:50:84:b8:c1:1d:2b:2f:fd:f5:29:d0:9a:bb:73:
+ 7f:ea:2c:d3:87:f2:8f:b5:05:33:b5:ed:e4:78:fd:50:f7:8a:
+ c9:89:f9:c9:41:cf:45:40:34:6e:79:60:90:7c:6f:8c:f0:59:
+ 38:d2:a6:84:3c:f6:9a:68:e3:c9:c4:fb:c8:09:36:5e:e4:f9:
+ cd:85:cb:2e:d4:f1:70:9c:70:5c:e8:71:00:7c:b1:4d:8f:67:
+ 09:d1:e9:4b:bf:06:5a:a7:81:80:60:96:93:c6:ef:be:a4:33:
+ 1f:65:2a:2c:43:6a:dc:d0:a1:ff:19:e2:c4:7d:be:46:46:95:
+ 2f:bb:58:a3:aa:99:83:e8:98:79:9e:7e:24:ef:ba:6c:db:75:
+ 47:c6:13:f4:32:c0:c5:91:9c:80:28:da:ed:fb:6c:e2:e8:7b:
+ a2:ea:16:16:79:f3:6c:58:3a:09:fa:51:45:bc:72:25:aa:a6:
+ 3b:ca:23:5e:5c:7d:0c:c2:35:38:58:4f:2d:fb:c1:64:01:6a:
+ 68:b0:91:9b:e7:79:7e:ae:e4:b9:3e:f3:47:8c:fd:de:4c:d3:
+ be:d2:e8:74:3f:94:ce:5f:4e:63:8e:ff:33:85:a2:bf:0a:e7:
+ 52:ef:7e:ed:72:4a:66:51:20:18:a3:41:1d:a6:d6:af:47:fd:
+ e3:0c:f4:03:fd:c4:a0:7d:e1:15:a5:ae:7c:85:66:ee:a3:13:
+ 19:8d:c9:5a:75:77:6c:4f:2b:90:4a:b0:ef:3d:ee:58:b7:c1:
+ 5d:31:8f:27:02:05:fb:5f:f5:16:c5:14:40:e0:aa:55:81:08:
+ ab:bb:6b:5b:37:1f:f2:8c:15:39:7c:ac:1c:78:73:bc:ee:21:
+ 10:8d:ae:f6:0d:9c:6d:32:7d:39:d4:19:43:e3:cc:b0:bf:08:
+ 67:0d:29:0b:6d:96:17:42:56:ed:7e:d5:cd:a5:8f:55:12:cb:
+ 29:80:02:9c:00:25:b5:a8:49:c2:48:4d:d9:68:6e:ec:60:76:
+ 81:a0:6b:72:ff:26:97:7c:5b:f4:bc:af:1e:07:f2:92:d6:dd:
+ 34:a5:02:65:28:fa:7d:6e:63:60:dd:f5:b8:c3:1b:2a:29:d0:
+ 98:bf:3f:89:3c:7e:14:94:bf:c9:e7:06:a2:b0:db:1e:c7:4c:
+ f2:2a:84:04:8d:54:29:c3:fd:bd:82:d4:08:0d:66:c8:f4:27:
+ e8:b2:e6:a2:cf:69:80:28:d1:36:86:14:39:41:95:45:6c:cd:
+ 8e:72:e2:ac:a9:1a:cb:c8:79:b3:23:b7:1b:54:a4:72:fb:cd:
+ 9c:8e:bf:3d:a2:66:b5:c3
+-----BEGIN CERTIFICATE-----
+MIIFPzCCAycCAQMwDQYJKoZIhvcNAQELBQAwdDELMAkGA1UEBhMCZnIxDDAKBgNV
+BAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxEDAOBgNVBAoMB3ZpdGFtdWkxFDASBgNV
+BAsMC2F1dGhvcml0aWVzMR8wHQYDVQQDDBZjYV9pbnRlcm1lZGlhdGVfc2VydmVy
+MB4XDTIwMDUwNTEyMzQ0NFoXDTIzMDUwNTEyMzQ0NFowVzELMAkGA1UEBhMCZnIx
+DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxEDAOBgNVBAoMB3ZpdGFtdWkx
+GDAWBgNVBAMMD2Rldi52aXRhbXVpLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIP
+ADCCAgoCggIBAM0nKXgpoJHVf6jiFsyWhgqQahJQX/15rllxO5VohzQf6X48Swei
+m07rEkHN7wAKUO4Rkr4qeIhwEgDeD7N5VYNTU8LTpqtSmdp5cMb1Kl2fZCIXzTEj
+bjYQ65Qv9uXsCjlqLGnETLvL0EqIa1v/2VUcm+mhIuVyE3zJzhPVlbFrRofF6b60
+YsGcvB6y5m9seim5UYF1slD79121p0Hs9z2KptWjL6PHzrhjwQ+Ac1Hm1QSGc9GP
+KqjX85WO4pSgUtYp99RVf28ZZlrXEjaig+2IAVa2wd3j4T51ecAUNideqq7QM3pi
+ChaTNky9OrmWxWEfmVRsRRsL3pLgNC9Hg5qZ6hNOr+lm2C+LZw/+s/uebOBZ2KyM
+H3rk3ci9aLPEHiD+FITzjiigAIlBYf7d8X3rIC0nUvj/yiQUrBo7IfDcDQ1/GXJ0
+eVgqgCDrryiGKpUW4qTCkhEN2kLtFNuVUp/iqoUKX5kQMbLM8o2Z3nYgHfsNu3+S
+zJP32Ky3vUM8LIcp+FT8wlhoTAFXZktO+Lp7hR2vIps0WiOpKfJd7DwW0mdPviJy
+FSTjl5kFN0zk4kK4YvG193c5Ia0KPNAw2GP/4IpJ6gWWCsfMpyyD1h3QYq6ywr4S
+OeyEqI+OppDlAgmiZ4cgkk5GZNWaIr/9b26x8HYELaPg491otovNtI1VAgMBAAEw
+DQYJKoZIhvcNAQELBQADggIBAJnsucnYQuFO3mKaKISdLMQ1wh20CCVQhLjBHSsv
+/fUp0Jq7c3/qLNOH8o+1BTO17eR4/VD3ismJ+clBz0VANG55YJB8b4zwWTjSpoQ8
+9ppo48nE+8gJNl7k+c2Fyy7U8XCccFzocQB8sU2PZwnR6Uu/BlqngYBglpPG776k
+Mx9lKixDatzQof8Z4sR9vkZGlS+7WKOqmYPomHmefiTvumzbdUfGE/QywMWRnIAo
+2u37bOLoe6LqFhZ582xYOgn6UUW8ciWqpjvKI15cfQzCNThYTy37wWQBamiwkZvn
+eX6u5Lk+80eM/d5M077S6HQ/lM5fTmOO/zOFor8K51Lvfu1ySmZRIBijQR2m1q9H
+/eMM9AP9xKB94RWlrnyFZu6jExmNyVp1d2xPK5BKsO897li3wV0xjycCBftf9RbF
+FEDgqlWBCKu7a1s3H/KMFTl8rBx4c7zuIRCNrvYNnG0yfTnUGUPjzLC/CGcNKQtt
+lhdCVu1+1c2lj1USyymAApwAJbWoScJITdlobuxgdoGga3L/Jpd8W/S8rx4H8pLW
+3TSlAmUo+n1uY2Dd9bjDGyop0Ji/P4k8fhSUv8nnBqKw2x7HTPIqhASNVCnD/b2C
+1AgNZsj0J+iy5qLPaYAo0TaGFDlBlUVszY5y4qypGsvIebMjtxtUpHL7zZyOvz2i
+ZrXD
+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/security-internal.key b/dev-deployment/environments/certs/server/hosts/localhost/security-internal.key
new file mode 100644
index 0000000000000000000000000000000000000000..e2b9d118dd839f92f6af2d6f4c1aa510ddcd0d5e
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/security-internal.key
@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/security-internal.pem b/dev-deployment/environments/certs/server/hosts/localhost/security-internal.pem
new file mode 100644
index 0000000000000000000000000000000000000000..51c3038eb05d1b0c6ccf0f89e2bbe9cc40683543
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/security-internal.pem
@@ -0,0 +1,31 @@
+-----BEGIN CERTIFICATE-----
+MIIFPzCCAycCAQMwDQYJKoZIhvcNAQELBQAwdDELMAkGA1UEBhMCZnIxDDAKBgNV
+BAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxEDAOBgNVBAoMB3ZpdGFtdWkxFDASBgNV
+BAsMC2F1dGhvcml0aWVzMR8wHQYDVQQDDBZjYV9pbnRlcm1lZGlhdGVfc2VydmVy
+MB4XDTIwMDUwNTEyMzQ0NFoXDTIzMDUwNTEyMzQ0NFowVzELMAkGA1UEBhMCZnIx
+DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxEDAOBgNVBAoMB3ZpdGFtdWkx
+GDAWBgNVBAMMD2Rldi52aXRhbXVpLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIP
+ADCCAgoCggIBAM0nKXgpoJHVf6jiFsyWhgqQahJQX/15rllxO5VohzQf6X48Swei
+m07rEkHN7wAKUO4Rkr4qeIhwEgDeD7N5VYNTU8LTpqtSmdp5cMb1Kl2fZCIXzTEj
+bjYQ65Qv9uXsCjlqLGnETLvL0EqIa1v/2VUcm+mhIuVyE3zJzhPVlbFrRofF6b60
+YsGcvB6y5m9seim5UYF1slD79121p0Hs9z2KptWjL6PHzrhjwQ+Ac1Hm1QSGc9GP
+KqjX85WO4pSgUtYp99RVf28ZZlrXEjaig+2IAVa2wd3j4T51ecAUNideqq7QM3pi
+ChaTNky9OrmWxWEfmVRsRRsL3pLgNC9Hg5qZ6hNOr+lm2C+LZw/+s/uebOBZ2KyM
+H3rk3ci9aLPEHiD+FITzjiigAIlBYf7d8X3rIC0nUvj/yiQUrBo7IfDcDQ1/GXJ0
+eVgqgCDrryiGKpUW4qTCkhEN2kLtFNuVUp/iqoUKX5kQMbLM8o2Z3nYgHfsNu3+S
+zJP32Ky3vUM8LIcp+FT8wlhoTAFXZktO+Lp7hR2vIps0WiOpKfJd7DwW0mdPviJy
+FSTjl5kFN0zk4kK4YvG193c5Ia0KPNAw2GP/4IpJ6gWWCsfMpyyD1h3QYq6ywr4S
+OeyEqI+OppDlAgmiZ4cgkk5GZNWaIr/9b26x8HYELaPg491otovNtI1VAgMBAAEw
+DQYJKoZIhvcNAQELBQADggIBAJnsucnYQuFO3mKaKISdLMQ1wh20CCVQhLjBHSsv
+/fUp0Jq7c3/qLNOH8o+1BTO17eR4/VD3ismJ+clBz0VANG55YJB8b4zwWTjSpoQ8
+9ppo48nE+8gJNl7k+c2Fyy7U8XCccFzocQB8sU2PZwnR6Uu/BlqngYBglpPG776k
+Mx9lKixDatzQof8Z4sR9vkZGlS+7WKOqmYPomHmefiTvumzbdUfGE/QywMWRnIAo
+2u37bOLoe6LqFhZ582xYOgn6UUW8ciWqpjvKI15cfQzCNThYTy37wWQBamiwkZvn
+eX6u5Lk+80eM/d5M077S6HQ/lM5fTmOO/zOFor8K51Lvfu1ySmZRIBijQR2m1q9H
+/eMM9AP9xKB94RWlrnyFZu6jExmNyVp1d2xPK5BKsO897li3wV0xjycCBftf9RbF
+FEDgqlWBCKu7a1s3H/KMFTl8rBx4c7zuIRCNrvYNnG0yfTnUGUPjzLC/CGcNKQtt
+lhdCVu1+1c2lj1USyymAApwAJbWoScJITdlobuxgdoGga3L/Jpd8W/S8rx4H8pLW
+3TSlAmUo+n1uY2Dd9bjDGyop0Ji/P4k8fhSUv8nnBqKw2x7HTPIqhASNVCnD/b2C
+1AgNZsj0J+iy5qLPaYAo0TaGFDlBlUVszY5y4qypGsvIebMjtxtUpHL7zZyOvz2i
+ZrXD
+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/ui-identity-admin.crt b/dev-deployment/environments/certs/server/hosts/localhost/ui-identity-admin.crt
new file mode 100644
index 0000000000000000000000000000000000000000..48b6842597257528c8ce746b3397276a27d39554
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/ui-identity-admin.crt
@@ -0,0 +1,111 @@
+Certificate:
+ Data:
+ Version: 1 (0x0)
+ Serial Number: 8 (0x8)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Validity
+ Not Before: May 5 12:35:04 2020 GMT
+ Not After : May 5 12:35:04 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=dev.vitamui.com
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:bf:68:69:8b:ad:9f:6b:15:44:55:8a:22:6c:bc:
+ 20:e1:8f:b8:41:6f:a6:97:6d:3a:ed:52:5b:6a:0b:
+ 7a:82:6c:78:bc:7d:2b:85:a3:18:2d:38:c1:ea:cf:
+ 3f:6b:7a:25:d4:d0:b5:ed:67:78:06:6f:b6:35:8f:
+ dc:18:c3:23:cb:54:ab:2c:41:f7:f5:98:b3:74:55:
+ 51:21:6a:45:71:70:1e:60:6f:87:a6:59:ee:ca:4c:
+ 9c:19:fc:ff:32:c1:ce:63:de:fa:f7:f5:fe:10:bd:
+ 59:08:87:d1:62:f8:b9:c8:58:fb:3a:f7:78:0a:07:
+ e4:4a:85:df:c2:88:13:74:91:f2:66:56:8d:ec:c7:
+ f2:5f:22:3d:16:da:22:64:f5:ab:39:a7:0d:13:44:
+ 38:63:eb:21:00:5f:c6:c0:ff:96:f7:41:29:e8:40:
+ 9c:14:69:d0:b6:d8:78:fc:b6:21:a3:70:74:47:19:
+ ac:18:b9:46:77:d5:d2:47:64:d8:8c:4e:7c:01:5d:
+ 2b:55:ad:b6:25:dc:2b:9c:b5:bf:14:92:d5:bf:07:
+ 51:d9:45:61:f6:5c:30:19:f8:70:f4:dd:a4:b3:10:
+ 4d:f4:91:30:2c:cd:d2:84:d7:4c:79:88:d3:40:25:
+ 9c:3b:d8:a9:66:12:0e:e4:7e:63:54:ff:12:91:4e:
+ ba:9c:4c:09:99:57:23:cf:fb:22:08:b0:2c:10:fc:
+ 64:8f:fb:95:c3:6a:c2:8b:8a:c7:48:83:c7:7a:bd:
+ f2:ee:cf:34:80:2c:64:ca:23:fd:00:20:20:2d:8f:
+ df:f6:d3:94:62:bf:6a:b1:cd:a4:7f:89:97:3b:75:
+ af:b9:88:31:52:20:f3:38:8a:93:b1:67:09:72:09:
+ 60:73:b7:2a:3b:cc:81:af:2d:92:68:48:d4:1d:79:
+ 48:c8:99:41:c0:c0:5b:09:e3:26:93:a2:63:49:db:
+ 92:82:6a:e3:66:95:13:98:e2:1e:1d:f5:85:a0:ce:
+ 5b:9d:39:de:8f:c2:8e:da:98:2b:71:60:af:c7:f9:
+ e5:a7:a1:00:a4:50:f9:ed:34:02:f5:84:0f:2b:d0:
+ 0c:fa:b1:65:56:b2:31:e9:04:f0:ba:0d:3e:0b:c6:
+ 17:12:2f:cd:7b:df:e0:50:f1:34:d3:9c:df:9f:9c:
+ f3:30:d3:60:3f:f9:7e:b0:7b:cd:9e:a7:a8:86:65:
+ 5d:5e:3e:28:40:bb:ea:ec:2c:4b:fa:eb:cc:80:5c:
+ 8e:0d:e2:fe:de:84:20:8e:d8:37:0c:12:8e:f2:b4:
+ e5:0d:5f:78:fd:d8:d4:c8:7d:80:d6:8a:be:2e:84:
+ 2d:c0:89:2d:c3:d0:fd:05:9e:b2:ad:f9:37:ca:6d:
+ 9e:80:43
+ Exponent: 65537 (0x10001)
+ Signature Algorithm: sha256WithRSAEncryption
+ 45:91:9a:b2:7d:49:90:77:6f:33:5f:68:f6:ce:8a:d8:01:2c:
+ fc:a6:94:a5:fe:f1:73:51:38:13:0c:80:d8:19:9b:7c:15:f4:
+ 9a:0e:5e:a3:5d:a6:c5:ba:7c:18:bd:7b:dc:8b:fc:52:96:03:
+ 8c:a5:6f:27:5a:11:3b:00:58:32:7f:d2:99:a7:04:af:62:c2:
+ 4d:6f:9f:64:aa:9e:dc:9b:bc:76:c4:90:72:5b:0b:8a:7d:74:
+ b8:c1:eb:83:87:54:60:70:e6:4e:14:f3:97:f0:54:17:9a:e8:
+ 20:0a:d9:2f:29:e7:3d:26:5b:51:e9:2c:fa:e6:8e:e9:23:79:
+ 78:b0:20:30:22:ee:11:65:b7:40:dc:bf:09:e9:d5:71:cb:b9:
+ 87:46:fc:ff:56:f1:55:22:e6:06:05:93:5c:b4:f9:f2:d1:1b:
+ ac:d5:60:b2:72:dd:4d:c6:16:e0:f9:94:79:d3:1c:04:46:34:
+ c9:a2:0c:56:96:73:5d:37:71:5e:59:9d:2e:a0:7d:f5:ff:c5:
+ 38:8f:fb:36:4a:de:9f:68:94:76:e0:7b:5c:0b:96:4a:8a:ef:
+ 08:32:e1:65:0a:28:47:20:f4:81:4c:5b:b1:ea:9c:81:1c:a9:
+ 86:db:e2:d1:d5:dd:81:e0:45:02:fe:f1:60:ef:5e:25:15:b6:
+ a0:8c:51:20:b3:ae:8b:29:25:ce:08:f6:e6:1a:d8:1c:d4:29:
+ 50:c9:44:43:6b:7f:e2:8d:a4:61:8f:d2:7e:c2:ed:ce:51:cd:
+ 15:9f:f4:99:89:43:14:86:70:c0:e6:b6:b5:50:5d:d8:26:8f:
+ 38:ae:75:18:1b:24:7d:dd:88:cd:65:0e:8e:11:b3:60:3f:2d:
+ 57:ac:1b:87:c5:6b:91:4c:9c:cf:84:cc:69:a9:a8:23:c7:12:
+ 6a:f2:a9:a9:55:9c:51:a0:1d:70:2d:c8:1e:13:2b:fc:31:72:
+ 80:7d:64:5a:b5:10:14:82:af:80:83:bf:9a:c8:4f:64:10:76:
+ 25:55:3c:91:1d:36:86:dd:ac:bb:f1:86:89:e0:7f:0e:e9:bd:
+ 44:56:f2:b5:ad:ef:77:a6:c9:3a:a7:35:4c:d0:61:43:83:5a:
+ 32:39:7d:61:32:f9:64:a6:db:ac:89:28:47:a0:9c:d0:e8:11:
+ fa:80:ec:c2:05:db:00:ff:65:54:a8:f0:5f:60:83:45:12:43:
+ d1:d1:5f:93:c9:7a:72:63:c4:ec:1a:0c:68:8a:aa:f5:5b:1e:
+ 5b:8c:81:f5:33:1a:8f:7b:66:26:5f:cc:d4:bb:f0:9d:83:9d:
+ 3e:d1:04:1a:97:ce:03:f8:2d:eb:f5:9a:c3:1e:5a:3c:46:0c:
+ 46:c4:f7:e3:fe:d8:89:21
+-----BEGIN CERTIFICATE-----
+MIIFPzCCAycCAQgwDQYJKoZIhvcNAQELBQAwdDELMAkGA1UEBhMCZnIxDDAKBgNV
+BAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxEDAOBgNVBAoMB3ZpdGFtdWkxFDASBgNV
+BAsMC2F1dGhvcml0aWVzMR8wHQYDVQQDDBZjYV9pbnRlcm1lZGlhdGVfc2VydmVy
+MB4XDTIwMDUwNTEyMzUwNFoXDTIzMDUwNTEyMzUwNFowVzELMAkGA1UEBhMCZnIx
+DDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxEDAOBgNVBAoMB3ZpdGFtdWkx
+GDAWBgNVBAMMD2Rldi52aXRhbXVpLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIP
+ADCCAgoCggIBAL9oaYutn2sVRFWKImy8IOGPuEFvppdtOu1SW2oLeoJseLx9K4Wj
+GC04werPP2t6JdTQte1neAZvtjWP3BjDI8tUqyxB9/WYs3RVUSFqRXFwHmBvh6ZZ
+7spMnBn8/zLBzmPe+vf1/hC9WQiH0WL4uchY+zr3eAoH5EqF38KIE3SR8mZWjezH
+8l8iPRbaImT1qzmnDRNEOGPrIQBfxsD/lvdBKehAnBRp0LbYePy2IaNwdEcZrBi5
+RnfV0kdk2IxOfAFdK1WttiXcK5y1vxSS1b8HUdlFYfZcMBn4cPTdpLMQTfSRMCzN
+0oTXTHmI00AlnDvYqWYSDuR+Y1T/EpFOupxMCZlXI8/7IgiwLBD8ZI/7lcNqwouK
+x0iDx3q98u7PNIAsZMoj/QAgIC2P3/bTlGK/arHNpH+Jlzt1r7mIMVIg8ziKk7Fn
+CXIJYHO3KjvMga8tkmhI1B15SMiZQcDAWwnjJpOiY0nbkoJq42aVE5jiHh31haDO
+W5053o/CjtqYK3Fgr8f55aehAKRQ+e00AvWEDyvQDPqxZVayMekE8LoNPgvGFxIv
+zXvf4FDxNNOc35+c8zDTYD/5frB7zZ6nqIZlXV4+KEC76uwsS/rrzIBcjg3i/t6E
+II7YNwwSjvK05Q1feP3Y1Mh9gNaKvi6ELcCJLcPQ/QWesq35N8ptnoBDAgMBAAEw
+DQYJKoZIhvcNAQELBQADggIBAEWRmrJ9SZB3bzNfaPbOitgBLPymlKX+8XNROBMM
+gNgZm3wV9JoOXqNdpsW6fBi9e9yL/FKWA4ylbydaETsAWDJ/0pmnBK9iwk1vn2Sq
+ntybvHbEkHJbC4p9dLjB64OHVGBw5k4U85fwVBea6CAK2S8p5z0mW1HpLPrmjukj
+eXiwIDAi7hFlt0Dcvwnp1XHLuYdG/P9W8VUi5gYFk1y0+fLRG6zVYLJy3U3GFuD5
+lHnTHARGNMmiDFaWc103cV5ZnS6gffX/xTiP+zZK3p9olHbge1wLlkqK7wgy4WUK
+KEcg9IFMW7HqnIEcqYbb4tHV3YHgRQL+8WDvXiUVtqCMUSCzrospJc4I9uYa2BzU
+KVDJRENrf+KNpGGP0n7C7c5RzRWf9JmJQxSGcMDmtrVQXdgmjziudRgbJH3diM1l
+Do4Rs2A/LVesG4fFa5FMnM+EzGmpqCPHEmryqalVnFGgHXAtyB4TK/wxcoB9ZFq1
+EBSCr4CDv5rIT2QQdiVVPJEdNobdrLvxhongfw7pvURW8rWt73emyTqnNUzQYUOD
+WjI5fWEy+WSm26yJKEegnNDoEfqA7MIF2wD/ZVSo8F9gg0USQ9HRX5PJenJjxOwa
+DGiKqvVbHluMgfUzGo97ZiZfzNS78J2DnT7RBBqXzgP4Lev1msMeWjxGDEbE9+P+
+2Ikh
+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/ui-identity-admin.key b/dev-deployment/environments/certs/server/hosts/localhost/ui-identity-admin.key
new file mode 100644
index 0000000000000000000000000000000000000000..8ad3bc8f2650002b341ce48b3f02acde5a7b37be
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/ui-identity-admin.key
@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/ui-identity-admin.pem b/dev-deployment/environments/certs/server/hosts/localhost/ui-identity-admin.pem
new file mode 100644
index 0000000000000000000000000000000000000000..3e14f1195a950ec3485eeaae09684405b1c2172b
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/ui-identity-admin.pem
@@ -0,0 +1,31 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/ui-portal.crt b/dev-deployment/environments/certs/server/hosts/localhost/ui-portal.crt
new file mode 100644
index 0000000000000000000000000000000000000000..f493852f749073174cce928615b1e0116d37a475
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/ui-portal.crt
@@ -0,0 +1,111 @@
+Certificate:
+ Data:
+ Version: 1 (0x0)
+ Serial Number: 7 (0x7)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Validity
+ Not Before: May 5 12:34:59 2020 GMT
+ Not After : May 5 12:34:59 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=dev.vitamui.com
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:e4:b2:cf:9c:d8:7b:17:03:fc:b6:7a:84:47:65:
+ 7b:2b:0c:15:97:45:4b:ca:ca:44:3e:0d:dd:8e:b5:
+ e0:90:46:33:0a:65:19:e0:f2:60:31:78:2b:ba:43:
+ 4a:00:a3:d5:24:86:32:2a:31:40:12:04:33:22:ab:
+ 95:82:28:af:d8:a7:13:f6:75:d4:fb:9c:92:56:e5:
+ 75:ba:a5:17:dd:3e:99:fb:56:5d:7c:12:3e:48:89:
+ 35:27:fb:ed:0d:13:0b:ee:85:28:9e:43:96:e7:48:
+ 18:07:49:34:0b:38:fc:33:3e:c9:a5:bf:4d:6c:90:
+ 91:ea:f7:3d:0d:51:e0:66:86:7d:b6:d6:69:e6:86:
+ 7a:71:33:4b:01:88:90:de:c0:d6:4a:3b:eb:76:c9:
+ 40:91:9c:b1:1d:ed:04:1d:9e:32:00:f0:c7:e4:17:
+ 73:22:e1:97:ee:03:63:b3:9c:09:26:d8:46:e6:ba:
+ 99:95:43:c8:63:c9:95:de:65:ff:25:c1:c4:e1:9f:
+ 45:46:38:28:ec:dd:b5:0f:c2:82:1b:4c:a8:92:02:
+ bf:92:2f:9e:da:65:9f:ad:9f:6c:92:44:d7:16:03:
+ 4d:29:7e:45:c6:0e:18:2d:92:df:6c:f8:60:45:cc:
+ 19:cc:88:ab:d6:b3:94:89:54:a6:65:1b:da:a5:23:
+ e0:e7:76:8e:cf:20:7e:52:c0:e3:ca:20:81:4a:d2:
+ a4:f1:6f:bc:a7:99:28:1a:c4:07:1c:09:70:69:14:
+ d9:3b:9d:d3:7f:92:37:22:4d:db:60:c5:86:c3:d5:
+ 11:a7:9a:b1:4d:c4:d8:b3:0f:7e:6a:d9:58:88:97:
+ 12:ab:3a:df:fd:5d:37:f1:56:08:72:31:ce:b6:71:
+ 5b:27:f8:b0:d1:a6:3f:2c:26:ce:95:7c:76:93:c3:
+ 73:32:ad:39:40:74:f3:80:9a:35:0a:c9:d8:3d:a0:
+ 71:64:95:23:33:eb:56:ba:68:3c:17:17:b5:91:18:
+ 5c:e5:02:d7:a5:fa:2e:c9:a0:e4:97:c8:71:f9:e0:
+ 4e:d8:2b:a4:fa:73:cb:a4:f7:04:f6:f6:88:d2:aa:
+ fc:dc:81:bf:89:27:90:36:17:5e:ab:f1:0f:de:db:
+ 14:14:6c:4d:4f:3a:5f:12:a0:31:e4:a3:e4:57:03:
+ d2:ec:3e:28:c2:0b:a8:73:a4:02:51:c6:b5:56:e2:
+ 73:c6:89:1c:60:09:a9:bd:71:6a:0d:0c:b2:57:08:
+ e2:f3:e7:22:c8:a3:0b:4e:99:68:e7:69:72:58:8a:
+ ae:be:95:17:d7:62:44:ee:b3:12:6f:76:db:f9:81:
+ 44:75:2a:6b:71:03:3d:47:fc:b3:bc:50:48:69:7b:
+ 22:e8:0f
+ Exponent: 65537 (0x10001)
+ Signature Algorithm: sha256WithRSAEncryption
+ 62:1b:6a:34:e2:00:a9:fa:ad:6c:0b:88:a2:b6:db:9e:f8:e8:
+ f1:0e:d9:52:0f:ba:69:5d:66:3d:a5:f6:00:db:0b:6f:62:f4:
+ 5b:1a:19:aa:98:2e:73:e5:15:8a:b9:ca:57:fb:6a:41:70:71:
+ e6:e9:3d:8d:e9:91:f7:37:78:02:04:a2:51:56:ad:f4:48:80:
+ 1f:70:a8:fc:65:f4:4b:b4:70:55:9a:70:eb:27:5a:0f:0e:28:
+ 56:86:eb:ae:fd:a5:a4:52:43:05:11:81:5d:41:00:90:77:e2:
+ c4:38:da:0d:8a:f9:37:b3:fe:df:47:37:3e:ae:f9:12:2a:1e:
+ fa:ca:73:8e:2d:e6:f6:30:56:c7:b1:13:6d:8e:26:bf:2d:2f:
+ 5b:60:f6:8b:30:32:73:c1:d1:af:a0:46:bc:c8:20:ca:73:6a:
+ 4c:47:55:ee:fb:64:34:20:c3:9d:d7:7c:8d:42:1f:d9:f2:68:
+ cf:be:0b:ea:4c:e6:9f:2e:e7:d1:60:4c:58:cb:f4:04:bb:66:
+ 79:63:c7:4b:03:fb:12:29:88:17:0c:a3:39:9f:e8:b1:19:ee:
+ 3b:bf:77:3e:f4:e1:73:3c:e4:18:5a:f5:b1:7e:39:f1:88:a5:
+ 02:09:8c:8a:f4:53:bd:9e:f1:90:03:c1:fc:aa:21:be:1a:fa:
+ 07:12:ec:a5:45:2f:45:e7:73:c6:9f:ee:cd:8d:1f:ad:24:0d:
+ fc:50:d4:14:60:41:24:53:41:9e:43:11:a1:92:ce:43:db:d0:
+ b1:a7:fa:8a:85:a1:45:af:00:6c:14:38:30:32:86:31:ce:67:
+ 52:45:58:bc:71:5d:89:ef:ee:f9:6b:64:a9:68:ff:5b:8a:ce:
+ ac:cf:e8:95:bd:95:1e:a5:0e:58:64:14:57:17:54:06:13:19:
+ 7d:e8:30:2c:17:91:9c:e3:90:70:03:e6:fc:5d:df:93:a5:97:
+ 76:b8:eb:5f:26:70:a9:ff:81:55:39:63:ee:11:91:2e:24:18:
+ fb:cb:03:05:e6:bd:c9:2c:9d:f4:85:69:af:0c:29:98:8e:00:
+ 5a:45:41:69:35:87:5d:3e:89:80:8e:6d:87:6b:0e:3c:03:8f:
+ 8c:83:31:2e:8f:ae:18:98:9d:24:57:fc:e7:7b:d3:83:a7:13:
+ e6:8b:8c:66:41:eb:2e:a8:18:ec:ce:cd:14:9d:bb:fd:c5:86:
+ 46:12:fb:9f:a9:8f:6d:5a:57:a3:70:5e:63:24:2f:99:36:33:
+ 8d:a7:be:2b:0c:a9:c1:24:e2:29:6b:24:c2:51:1a:f3:7f:30:
+ 95:b1:89:1e:de:cd:50:12:4a:4c:fb:ed:88:8e:0a:45:37:18:
+ 49:a3:49:77:b1:37:eb:94
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/ui-portal.key b/dev-deployment/environments/certs/server/hosts/localhost/ui-portal.key
new file mode 100644
index 0000000000000000000000000000000000000000..18bedafd01e969194e51dff5f6c88ccc824bf338
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/ui-portal.key
@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----
+MIIJRAIBADANBgkqhkiG9w0BAQEFAASCCS4wggkqAgEAAoICAQDkss+c2HsXA/y2
+eoRHZXsrDBWXRUvKykQ+Dd2OteCQRjMKZRng8mAxeCu6Q0oAo9UkhjIqMUASBDMi
+q5WCKK/YpxP2ddT7nJJW5XW6pRfdPpn7Vl18Ej5IiTUn++0NEwvuhSieQ5bnSBgH
+STQLOPwzPsmlv01skJHq9z0NUeBmhn221mnmhnpxM0sBiJDewNZKO+t2yUCRnLEd
+7QQdnjIA8MfkF3Mi4ZfuA2OznAkm2EbmupmVQ8hjyZXeZf8lwcThn0VGOCjs3bUP
+woIbTKiSAr+SL57aZZ+tn2ySRNcWA00pfkXGDhgtkt9s+GBFzBnMiKvWs5SJVKZl
+G9qlI+Dndo7PIH5SwOPKIIFK0qTxb7ynmSgaxAccCXBpFNk7ndN/kjciTdtgxYbD
+1RGnmrFNxNizD35q2ViIlxKrOt/9XTfxVghyMc62cVsn+LDRpj8sJs6VfHaTw3My
+rTlAdPOAmjUKydg9oHFklSMz61a6aDwXF7WRGFzlAtel+i7JoOSXyHH54E7YK6T6
+c8uk9wT29ojSqvzcgb+JJ5A2F16r8Q/e2xQUbE1POl8SoDHko+RXA9LsPijCC6hz
+pAJRxrVW4nPGiRxgCam9cWoNDLJXCOLz5yLIowtOmWjnaXJYiq6+lRfXYkTusxJv
+dtv5gUR1KmtxAz1H/LO8UEhpeyLoDwIDAQABAoICAQCzdOSY7P5ZpxVMk4LtC2LE
++qyOkR/SNzmpf/PVIj7et1ch1wehjk+RQfz+IgMV0XlVOcBvf0oJWSZPFFkzU335
+AdIWWYwRDGGAsnnZReceAxuNL84Xp7Eb9h6yC2uOEN4SAodG+T6WqenA/d5K2CJ+
+i8xrtVupzx/RQsSziQYPLYXETSe4btnxrhAzWdhkEumUQsSX54A1QsFw/CV4oEQY
+nNgd0ZDVVDSF3j8EF3LO+nNYZiBSEmhSdUKWy26VUCGP8gzH9xWWGLsVbMnvZg34
+1RNCQP/j3E6aTTlC5aXpbhnEb4OM0E6EpHWR6qyQ2IF+D9jXlv79bGFNgbfmUesN
++h8OJqEB4dtKU7NSt8ucrscfICTKIZNOV1G6UBjI/eu4h0PrIGZjB7Sr96kfTSoj
+TDhxRyc31DsFGTRevlaWNwTlDyvsq7TB1DaU4J9AR/ugcCmm4ZDrrTJBChbspsGr
+OfrYnry7l7Qy89j3jiaD4Q1GMmeaMwE43rEpmGc6y0JaLAyZp8pC5lj1AuxVnc3y
+RE9N0IFKoQ/Mtrs6+0rb0A5r2+94stkPCy5qlXGYrNeETDNL8tHC9436Tnum05rs
+q8QNn5PccBe0tgAmu4vAHNUfSKJIyls/GolyxSw/k+2MBrmJl2SmcCTGpil9pZH4
+ezlt7nQu3NfH0BhOWT9m0QKCAQEA9dOm0yd0R7ZwU2Cn6F+ntFijD4p10nZzV5yb
+EcCI7E9a1igoQlOhUuJsGMm4uKWLOy2dnDJT69eelAXYLveSqDYZDe8T5Ojpzouu
+1w+FSkm8wtPkNu2+FLSdLpvA0/rMaMficTzggh7NddH4ifSOm4D9+CZOcNdhXkzm
+O2bk4t3RIHj4WGMeKIeYKIkuMQJlkREamuv+bRXETLkcXzT3ZpzLSre9ybHsJQg/
++ucIkfQfovLF2nd38VFtXN0AeR6WHdhWq93FetIrsTn1lXTNPi3uk+uEKcl7VAZL
+DCFQvmC0pyk3KS9CbUXG5tIckLlIAUgnBHrx3+D9n7EFyM9MUwKCAQEA7imyuQIe
+3WOSDtlg+wZpxMUwdRY7DJk7RkWTCxNlXwbYJdHGYamZ7ElYlIBKIPiSggsSlcXH
+Cwn49G/v6mEU2Rel8YlI/wtOXlSmXZ1Z5zwC8Lez9CUPFCMjkNXBqzwOgZUMa+Ud
+1enMshR0BlhQf/lRN5/YGgdr41Wr/p1szJ3IRFvIDX3brjXUSpiIBtDvydY2FmHq
+AZ124ueop+VAeoI63l6lIxdPgjD9skOmn7ERwYLUxOUaEX6H5Lr6/OBbUoRkSYTp
+zvLJAh9cocpHWihhigvIRMneEw36U5/MjHiSPxDxXDVam/FxLrKPMo3fzmEAOKxE
+Z9bBAA9bkJEd1QKCAQAdl2HAj0JHE6YH013C8ijM49KVH1S5hfqydC6Sf3u7/n1v
+xBu8iDamNI1Qmo+64mqVMBOF5uUFQcpcBSwV00V7LC/t5nadmo/yhgwA5WRlIeUw
+CrOxDQNRmMBHCQa4Pbt3bYBLo0lfQHf5E9J4QNEd1PQ9d9b/bF3TLSyVv/gTeyIe
+Z5F1ilDqDhB56LF/wssZIFb0iS3yUal0lt/cchLJ7lvmXaHh8qH7fze8ay0z7JAW
+XGUGvFTa3rNsd0oESnNFmnIsdCC+fSg3SEPQvuOp9Xt/oN0i7pcC8VL9XdFLaXa1
+nJeARKkZYEnmJSq9HSCWzumrd2VATuQY4gVRO+rzAoIBAQC6VZ+CRll1pzCgM40/
++U2JaSo3gXQjsEODAG5CTSOTzJwSQuUuhe5qwxvt282jrDecTSN2UO4hAeVpAac4
+vkn8bBcmOd4FxYfEIACl37V2SCqYwXGnA9OfUrrB16wV2AAVfFLim7jTI4BGl+AL
+Es+wwJS9q279Nm8/x0ixBeQY1x3X9eM4Qw88Zts4ncxXYOMrDFD3BBZ8uwFIGC2J
+ZsEi2H9MecpEATnwx3nGHk3gRT56I21qu0DBDTkvSOeUL8jjb7ezGa2Af82qvnTQ
+FJ3suQlPY1aGE1aPm/ENuknkYXUyqIPeO9QvjCCcg5Gr4PqI0rXEoWtHvurzrBBc
+tF0dAoIBAQCragrbQlvhHf5YIr/KbU0f1mibcprklhqR6qZ7jcxDWsSSj5afmf/J
+tzpgbwD5jFS2Pyok/+VSsIWkFTXBrsFIMYfn1hXbOnWcl0wW12BzPZuSV259saJd
+bxOvUScI+hXwylISsRzsvE8Xf6lOdIWomTKEnH65cJaFs4NqcUel/+LRCnec3Eq/
+4oNYidv2PRtjmisfJFo41AqQ4syPwQ51CX+O7hV5ACw9mvhfZZZ96WmK0/MNlRTJ
+LRK3ATm5n4b1duE2BOepGaJC8dcQA8KU9tClIu/+gU62JK+MkYoNoZU2vd76DZBy
+JAyGN1o8DsszMsG9AS9V5kTWop88zdFO
+-----END PRIVATE KEY-----
diff --git a/dev-deployment/environments/certs/server/hosts/localhost/ui-portal.pem b/dev-deployment/environments/certs/server/hosts/localhost/ui-portal.pem
new file mode 100644
index 0000000000000000000000000000000000000000..1f5642d0d0a2eb61221ac4aad7bba8f3d1cbc719
--- /dev/null
+++ b/dev-deployment/environments/certs/server/hosts/localhost/ui-portal.pem
@@ -0,0 +1,31 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/environments/certs/vault-ca.yml b/dev-deployment/environments/certs/vault-ca.yml
new file mode 100644
index 0000000000000000000000000000000000000000..83fe510260941524dca2b84f91b7c03f54b1fa16
--- /dev/null
+++ b/dev-deployment/environments/certs/vault-ca.yml
@@ -0,0 +1,28 @@
+$ANSIBLE_VAULT;1.1;AES256
+34363639376439383664343461303833396164303962393265623330373163656635363733393664
+6564663564643536326665636162666536646235356336360a353032623331323837363864633132
+35376362633865656537313563666262616562336230353861303863623134356130353462356334
+6231366363356637390a646366353539613263373166626336386131336236373632616439323035
+33623166666365396539356665356165363732323162626533356463623436613331646631356462
+61373033356430383263333862346135393636353237353366353938663430343463623039316430
+35343166386463346462396165333166656134306536626130353133383966323033623831363931
+37363134373464353365343137623563396637643466666363323265616238636634306235383565
+35383036633563623766383338623061323632373863343163396263643631383631633837643034
+38306237346366626565366532386561313032626436653535303234613061383264313933643631
+32306638323631313136336630373735613962356663363765366634363265666534323733323530
+32306334666462633838313361363131353831343531623866386263356432663332656136396132
+31393933383961383461363466633634303331643633626637353261346239386662316566623161
+64653836336465346538393030666466303364353163313862663663636437353835333531323336
+35623735346364383038306131623839323962303664336131313635653036353537646263613864
+30393930633233373264306562386434613066636634633966333563653138323933373739646638
+61626364356135323364303761323664313936303566356336363931373964373935633361646332
+61623131633339363764643638353733363064323364666661613965313062653539613238643732
+65333139633464376364353836656461383333343530386666313332623933653162653338366337
+61313565303764316530396232323930346633623864643230363163326433646533373462613536
+37623265616530656638386333643564323532626362623062306438656332333763633665303564
+61343636343833303265303236316631363464353532623131663261636130306234623436316238
+63643239353063636464656631663932653264343135346566626637366139363939616239613239
+62653839646332356365643436313031386339383865626631306334383139333834646365653064
+64303561366336373132613365613730383863313939656332333637383230396536353134613939
+34363932333430306134383063623038346466343936376564656238363062316238653663396132
+663865643434376366646536366634643066
diff --git a/dev-deployment/environments/certs/vault-ca.yml.example b/dev-deployment/environments/certs/vault-ca.yml.example
new file mode 100644
index 0000000000000000000000000000000000000000..edb6bdefd67aeaf3ad56f2ee64a9e735fa6f4abd
--- /dev/null
+++ b/dev-deployment/environments/certs/vault-ca.yml.example
@@ -0,0 +1,7 @@
+---
+ca_root_server: changeme
+ca_intermediate_server: changeme
+ca_root_client_external: changeme
+ca_intermediate_client_external: changeme
+ca_root_client_vitam: changeme
+ca_intermediate_client_vitam: changeme
diff --git a/dev-deployment/environments/certs/vault-certs.yml b/dev-deployment/environments/certs/vault-certs.yml
new file mode 100644
index 0000000000000000000000000000000000000000..942472c502f9c5eb6e7766f525e21109b68cecd6
--- /dev/null
+++ b/dev-deployment/environments/certs/vault-certs.yml
@@ -0,0 +1,36 @@
+$ANSIBLE_VAULT;1.1;AES256
+31633862666439373532366433383663396439303036633930613961313463633030396362393631
+3137346632346166663166353735623138356161663336340a613730666430313338623532353262
+37373761633639623664366539626563323731366238396631303034633732653165323636373935
+3966343538663431360a633937393237613966633037346135373337313238343833343736383239
+32626637366231623433363230623034343264356538373832323866623730633439663333333065
+32633138383661393764373430636330386634633539333932333736616639323864306539663563
+37623833623934663036303739623033333331336639326136343235306564643236343462383333
+31643431363964346537306535383962303166353836663532366163323435303165336132306364
+33653066653065633231386438326639363034383261313833393062333835633564303932633134
+64636632666333616335636361366266633964353365623230383763613431303039653965313633
+65636133663230633936613637393539386334313633346164633662373439363631373637663562
+65666535346366613639373366623332373233393936643534356636333537316163336661343164
+31623031633665313630353564346262373838306264383531326530386235643265376138613232
+61376130663631373335633163306134316263313735313461616566633363613766353937613163
+31643337383932356561656532383162636361643764333634633131353732663532663532346365
+35393235303037353865366633633436653038303034333039626663323439343736333936343837
+37303766393933623266323463356661333264353033356535636531363239623533383365396334
+38303066666433313135383934376265613834663465383431333137333761656236326666643338
+36623563393439386464356430396332323836633630353939626166383239633832303666323330
+30313261336133396438666534363664373163383363623435373062666436383164323939326234
+65373737643632306135666466613564366463366230356562666134633066653631303434666333
+37383931366363643939343336663466316265613762343739356637383237303262353462396438
+31663435326561363761323965393434643965316137623965613532303131356430363031313364
+62366438363935383434333563393134366534306363633238383536306662333263636164363238
+39363963336631656338376462663430346263623363633732663263666230633230333166383631
+66336234393461336565373732616138616535653432393434396161333731306434363263643830
+39663761353134383434333232363137663964306234356561613630303939306361343565303132
+63666564393037636666666564613662313363373037336432643833306161653261663730636131
+35323839313165663032393562353230313234316663626464656162373734316561633031313037
+34663464613335623930353264626164633438373232653639643632636665306633353837383639
+66633034333061366462303530633037306637626130383166663332306237333234613663663066
+37363431616630626333643134366430303665666362306366303064633464393566383836396566
+38353932626637376637633164616135393535313764363738326662393961666463376365386136
+39343732343630653430343663373537373365363433613365316363323533643139326334653961
+643739623835646135366337383431373332
diff --git a/dev-deployment/environments/certs/vault-certs.yml.example b/dev-deployment/environments/certs/vault-certs.yml.example
new file mode 100644
index 0000000000000000000000000000000000000000..81cf5a6b57063062384a98c028658392457f50bf
--- /dev/null
+++ b/dev-deployment/environments/certs/vault-certs.yml.example
@@ -0,0 +1,9 @@
+---
+server_security_internal_key: changeme
+server_iam_internal_key: changeme
+server_iam_external_key: changeme
+server_cas_server_key: changeme
+server_ui_portal_key: changeme
+server_ui_identity_admin_key: changeme
+client_client_external_customer_x_key: changeme
+client_client_vitam_vitamui_key: changeme
diff --git a/dev-deployment/environments/group_vars/all/vault-keystores.yml b/dev-deployment/environments/group_vars/all/vault-keystores.yml
new file mode 100644
index 0000000000000000000000000000000000000000..3708461e8f651fe5532c7963b1611e4464fa2bb6
--- /dev/null
+++ b/dev-deployment/environments/group_vars/all/vault-keystores.yml
@@ -0,0 +1,31 @@
+$ANSIBLE_VAULT;1.1;AES256
+34393063393535383432663363656466386233356432316430636336333834653139616230386135
+3962316136613561363631333964383231663836313564300a336337333335666365343531303231
+66313362666634326330313832326534333539636535373762386562396561333531326439353935
+3734316561663537660a386637393331653037366565326665376566356137623866316363386561
+31333835396339373161633137353262633931323335313538633338653638323862666331343934
+32353238613031306637323661396638653664353433333832393533666330313231616434366665
+34663166353963323136356461363836396637653663323464306465616538633365353763386262
+39313666343530336165303533653531386236656666333566373434336262323730383232323763
+35346434373563666435643462613865303035336236366135373639333339373738626230326462
+64343165343432343666626434626366373238333235613461353936663763636539353030663661
+65336537633962376339366163613161303866646331623462346465306263616663616264313430
+33366665653430623162343230626163613761303939303966663865393433353662366232656537
+36636636666436326331313163376532653834343463306634353532333135393432656530303432
+66386566633032326239306633636635396632383066326362303463653835313536356364353665
+61336534383566643233333738386330376565343766366637383931393035313431343438363237
+35616264373635306333633862613166636137336535623132326138353939656166303437626132
+33396563373635623531353165383330346162363139353039396237366135383131653666613537
+63373034366330383533333263306465363263626238316364333839633635343037613438393466
+61323238643563316265613366613336613664333763666135393830353631623132333265316465
+31346236616332613663353732663164663663303739653532333130666631626563393737613661
+63653731333935653039333763656230356236353965303134366532633034343864366436343462
+37306438386665623131316530626634353434316138373666356366316161303464326430626337
+38336139343066656262353337313765636333613336646563326262623832623137343866626638
+37303262633233363239386534346562386632333834346364643864393462343138626631633531
+66353034333866613764333863353931353434396365313037666134363564333634613331313965
+30376138336539666565393334396531376363333261613839333033363934616261613933303133
+30636664363033356465613964363131396131633036633038663435633362333462396563313562
+35396335646339613132363864666634393864656138616333396536663333623561313762393930
+36313734383031383334653231336439333937373132396138373237333234613333626561373834
+3535323264626365653531633832653663323637333434626532
diff --git a/dev-deployment/environments/group_vars/all/vault-keystores.yml.example b/dev-deployment/environments/group_vars/all/vault-keystores.yml.example
new file mode 100644
index 0000000000000000000000000000000000000000..47311cf889563ac1ceda1c31d11db6fcbeac84d6
--- /dev/null
+++ b/dev-deployment/environments/group_vars/all/vault-keystores.yml.example
@@ -0,0 +1,14 @@
+---
+keystores_server_cas_server: changeme
+keystores_server_iam_external: changeme
+keystores_server_iam_internal: changeme
+keystores_server_reverse: changeme
+keystores_server_security_internal: changeme
+keystores_server_ui_identity: changeme
+keystores_server_ui_identity_admin: changeme
+keystores_server_ui_portal: changeme
+keystores_client_external_customer_x: changeme
+truststores_client_external: changeme
+keystores_client_vitam_vitamui: changeme
+truststores_client_vitam: changeme
+truststores_server: changeme
diff --git a/dev-deployment/environments/hosts b/dev-deployment/environments/hosts
new file mode 100644
index 0000000000000000000000000000000000000000..0a82a3b934446a8a191760142b06d512e6363570
--- /dev/null
+++ b/dev-deployment/environments/hosts
@@ -0,0 +1,57 @@
+#
+# Host file for vitamui deployement
+#
+
+# VITAMUI Hosts
+localhost ansible_host=127.0.0.1 ip_service=127.0.0.1 ip_admin=127.0.0.1 ansible_connection=local ansible_become=false
+
+########################################################
+# ZONE APP
+
+[zone_vitamui_app:children]
+hosts_vitamui_iam_internal
+hosts_vitamui_iam_external
+hosts_vitamui_security_internal
+
+[hosts_vitamui_iam_internal]
+localhost
+
+[hosts_vitamui_iam_external]
+localhost
+
+[hosts_vitamui_security_internal]
+localhost
+
+########################################################
+# ZONE UI
+########################################################
+
+[zone_vitamui_ui:children]
+hosts_ui_identity
+hosts_ui_portal
+
+[hosts_ui_identity]
+# We deploy only ui_identity_admin on dev - same certificat is used for these apps.
+
+[hosts_ui_portal]
+localhost
+
+########################################################
+# ZONE ADMIN
+########################################################
+
+[zone_vitamui_admin:children]
+hosts_ui_identity_admin
+
+[hosts_ui_identity_admin]
+localhost
+
+########################################################
+# ZONE CAS
+########################################################
+
+[zone_vitamui_cas:children]
+hosts_cas_server
+
+[hosts_cas_server]
+localhost
\ No newline at end of file
diff --git a/dev-deployment/environments/keystores/client-external/keystore_customer_x.p12 b/dev-deployment/environments/keystores/client-external/keystore_customer_x.p12
new file mode 100644
index 0000000000000000000000000000000000000000..9adce73a1e2fa1063bbeee2d61d0e4c7794874e2
Binary files /dev/null and b/dev-deployment/environments/keystores/client-external/keystore_customer_x.p12 differ
diff --git a/dev-deployment/environments/keystores/client-external/truststore_external.jks b/dev-deployment/environments/keystores/client-external/truststore_external.jks
new file mode 100644
index 0000000000000000000000000000000000000000..c9d8e1d0fb1c51ee48ab6b544083b68147d33564
Binary files /dev/null and b/dev-deployment/environments/keystores/client-external/truststore_external.jks differ
diff --git a/dev-deployment/environments/keystores/client-vitam/keystore_vitamui.p12 b/dev-deployment/environments/keystores/client-vitam/keystore_vitamui.p12
new file mode 100644
index 0000000000000000000000000000000000000000..5b43c802fe73b400ae68aa00a1c03bfe9f839887
Binary files /dev/null and b/dev-deployment/environments/keystores/client-vitam/keystore_vitamui.p12 differ
diff --git a/dev-deployment/environments/keystores/client-vitam/truststore_vitam.jks b/dev-deployment/environments/keystores/client-vitam/truststore_vitam.jks
new file mode 100644
index 0000000000000000000000000000000000000000..03b4c6f5a591d9055a903addd06c9d36f251564d
Binary files /dev/null and b/dev-deployment/environments/keystores/client-vitam/truststore_vitam.jks differ
diff --git a/dev-deployment/environments/keystores/server/localhost/keystore_cas-server.jks b/dev-deployment/environments/keystores/server/localhost/keystore_cas-server.jks
new file mode 100644
index 0000000000000000000000000000000000000000..556663f10346811223f119acbbe56d49ec2f9e57
Binary files /dev/null and b/dev-deployment/environments/keystores/server/localhost/keystore_cas-server.jks differ
diff --git a/dev-deployment/environments/keystores/server/localhost/keystore_iam-external.jks b/dev-deployment/environments/keystores/server/localhost/keystore_iam-external.jks
new file mode 100644
index 0000000000000000000000000000000000000000..42e7140afeb89e3aebce728d6c5a6247adb4317e
Binary files /dev/null and b/dev-deployment/environments/keystores/server/localhost/keystore_iam-external.jks differ
diff --git a/dev-deployment/environments/keystores/server/localhost/keystore_iam-internal.jks b/dev-deployment/environments/keystores/server/localhost/keystore_iam-internal.jks
new file mode 100644
index 0000000000000000000000000000000000000000..a69c6518beffb7c89aef80a6f29e5bd2f4a5e1e4
Binary files /dev/null and b/dev-deployment/environments/keystores/server/localhost/keystore_iam-internal.jks differ
diff --git a/dev-deployment/environments/keystores/server/localhost/keystore_security-internal.jks b/dev-deployment/environments/keystores/server/localhost/keystore_security-internal.jks
new file mode 100644
index 0000000000000000000000000000000000000000..63d49769361b66d1f6dd1e9f892505d30a886b01
Binary files /dev/null and b/dev-deployment/environments/keystores/server/localhost/keystore_security-internal.jks differ
diff --git a/dev-deployment/environments/keystores/server/localhost/keystore_ui-identity-admin.jks b/dev-deployment/environments/keystores/server/localhost/keystore_ui-identity-admin.jks
new file mode 100644
index 0000000000000000000000000000000000000000..e5c9e841f135a8890a4e57245003b2d5772a400a
Binary files /dev/null and b/dev-deployment/environments/keystores/server/localhost/keystore_ui-identity-admin.jks differ
diff --git a/dev-deployment/environments/keystores/server/localhost/keystore_ui-portal.jks b/dev-deployment/environments/keystores/server/localhost/keystore_ui-portal.jks
new file mode 100644
index 0000000000000000000000000000000000000000..07f63162f4b4065aa83e3aa50caf5027a4a6e8bf
Binary files /dev/null and b/dev-deployment/environments/keystores/server/localhost/keystore_ui-portal.jks differ
diff --git a/dev-deployment/environments/keystores/server/truststore_server.jks b/dev-deployment/environments/keystores/server/truststore_server.jks
new file mode 100644
index 0000000000000000000000000000000000000000..c25bb727ec4db42c6b9582f530209b6fc160ffff
Binary files /dev/null and b/dev-deployment/environments/keystores/server/truststore_server.jks differ
diff --git a/dev-deployment/pki/ca/client-external/ca-intermediate.crt b/dev-deployment/pki/ca/client-external/ca-intermediate.crt
new file mode 100644
index 0000000000000000000000000000000000000000..2a9efe4e1f1885f2217fd0f0749f8bec9a4635d8
--- /dev/null
+++ b/dev-deployment/pki/ca/client-external/ca-intermediate.crt
@@ -0,0 +1,137 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 2 (0x2)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-external
+ Validity
+ Not Before: May 5 12:15:18 2020 GMT
+ Not After : May 3 12:15:18 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_client-external
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:d1:0d:66:f4:dd:ec:a5:35:91:1b:f6:dc:b6:5b:
+ 85:fe:5b:b1:b6:80:e6:20:5b:ed:27:16:fb:25:f9:
+ 3c:83:f7:d0:30:51:50:55:3e:49:ab:81:9a:50:66:
+ 1b:53:f8:9a:e2:5d:d9:64:b1:de:4e:9d:a7:69:68:
+ d2:6f:6c:0a:09:c7:e5:ae:6f:c4:0d:73:15:00:0b:
+ c8:f3:52:04:c9:ab:5f:66:7f:d7:ad:1b:e0:ee:56:
+ ea:d3:76:fb:b7:ad:14:01:53:5c:7a:df:d5:ac:52:
+ eb:98:69:1c:a6:d6:30:a9:0c:7c:31:4e:01:19:68:
+ 20:bc:ea:70:62:63:dd:77:02:0f:6f:86:28:4e:c3:
+ b7:c2:66:2c:26:c6:fd:08:e4:94:3f:06:b0:be:c3:
+ 20:5c:0c:d9:1e:05:b7:f0:e7:c8:eb:7c:17:90:6d:
+ 25:78:44:03:14:be:91:6d:a5:f8:f6:83:3a:11:75:
+ 2b:cb:cf:31:a7:6e:50:a1:73:20:85:f5:dc:43:7c:
+ 5c:a4:5a:34:8a:13:64:ab:ec:87:34:33:07:3a:d6:
+ 65:1a:a1:c8:82:ff:30:53:f7:a5:1f:01:1f:d2:fb:
+ d4:7d:33:0e:13:47:23:05:89:a9:0a:6b:65:de:0a:
+ 9d:7d:ba:0f:1e:42:78:5a:f8:71:69:9d:c5:75:b9:
+ d0:87:74:98:69:b2:00:04:81:1a:f0:2c:8d:71:f5:
+ 53:19:51:00:1e:cb:cf:f2:7f:0f:61:47:47:6d:30:
+ 99:50:ad:eb:ec:14:4f:18:24:5d:93:80:63:b9:21:
+ e5:84:88:8d:b1:78:d2:d9:42:cb:5f:bb:76:97:cf:
+ 6f:7d:ee:a4:1b:ec:34:52:ff:ed:1e:fe:55:bf:d8:
+ e5:fb:a0:1a:2f:78:76:a4:df:db:12:bf:c7:0b:18:
+ 4f:f7:29:fe:88:34:8a:b3:6b:8f:73:0d:98:1d:01:
+ 1a:6d:84:41:c8:6c:3d:68:e6:86:82:8b:22:8d:ad:
+ 92:b6:8a:97:37:e2:08:e3:c7:49:9a:5d:72:7c:0d:
+ 66:58:6e:98:4e:69:dc:4b:e7:dd:20:c0:aa:af:51:
+ b4:b9:cd:2c:67:5c:66:27:75:30:14:82:59:0f:8c:
+ 86:c8:28:2b:43:dd:21:83:2f:22:07:5c:44:7c:88:
+ 1e:fb:d0:33:9c:35:34:a3:02:cb:b9:c0:e2:94:b2:
+ 04:e4:10:b8:c8:da:9f:b4:f7:3f:54:2c:e2:6f:89:
+ 8b:b0:49:11:d3:c9:14:17:15:e1:a7:a5:2e:42:f4:
+ 0e:c2:d7:0a:70:64:94:32:c4:27:42:e0:c0:98:41:
+ 2c:bb:02:0b:fb:a9:e4:f6:c5:13:89:59:ed:e6:d3:
+ f1:c1:35
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Intermediate
+ X509v3 Subject Key Identifier:
+ 24:0C:1B:40:0F:9A:EC:7E:53:52:6E:DD:75:D7:47:6F:B2:84:21:B4
+ X509v3 Authority Key Identifier:
+ keyid:7C:4A:2C:F1:F4:F5:16:06:22:0F:74:19:38:BB:50:05:4E:19:53:20
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-external
+ serial:01
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:0
+ X509v3 Issuer Alternative Name:
+ <EMPTY>
+
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 49:9d:33:33:72:69:2e:67:a0:37:7b:1e:9a:26:c1:b7:6c:61:
+ 4f:1a:ab:df:0a:38:28:98:59:7e:4c:e0:de:c6:26:ed:fb:b2:
+ e4:49:0f:d3:df:38:38:8e:d5:39:a4:5b:e4:cd:89:1d:7d:67:
+ 96:0e:15:2a:f7:03:b4:94:48:f3:29:ef:66:5c:be:28:47:cf:
+ 78:68:b5:6f:3a:59:83:3e:e6:48:a5:a3:17:07:92:61:8f:e1:
+ 10:d9:ec:ed:ce:d8:67:e5:54:0f:27:27:dd:41:b3:37:31:cf:
+ da:b7:c6:4b:5d:58:17:c1:6a:a0:da:c7:a8:1f:68:4f:38:c9:
+ be:be:96:13:b3:5d:e5:7d:0e:00:93:90:20:ee:d3:02:03:73:
+ 32:e0:b6:0b:6c:6e:bb:ae:2f:02:d2:a5:35:18:d6:d1:c2:c0:
+ e2:4e:fe:c1:08:f3:1e:9d:b0:79:1b:a7:07:18:36:53:8b:1e:
+ f5:a9:50:9f:5f:66:70:63:fc:d1:03:0c:c4:c1:d5:19:83:0b:
+ bd:5b:af:a1:82:8c:21:bf:f5:d0:10:4c:d0:e6:6a:0e:af:38:
+ 3e:6f:ff:66:c8:b6:29:90:f3:c8:7f:2a:6f:2a:a1:a1:b2:a3:
+ ff:ad:a3:76:ed:77:77:e2:96:26:30:75:ea:89:36:86:51:35:
+ fb:93:36:7c:4c:f0:ff:29:60:26:fb:3d:89:cd:d2:45:c7:0f:
+ be:3f:fd:c8:da:2b:67:53:35:34:d9:8f:84:cb:71:d9:9c:cd:
+ 54:f9:26:6d:55:31:5c:99:a5:5c:7a:62:d2:69:31:12:f8:14:
+ b6:53:3b:29:52:7f:b7:a7:ac:0e:cd:15:8f:53:a0:a9:5c:b1:
+ 37:72:70:6c:b4:74:34:9b:5b:f0:f0:b0:2f:a9:41:d0:29:3e:
+ 13:66:2a:65:05:2c:d3:fd:0d:49:8b:63:b4:88:d3:c6:6f:ef:
+ ba:b3:5e:d0:b1:20:dc:82:47:6a:a3:b3:f1:5c:38:16:8f:2c:
+ 9f:4c:60:ad:cb:60:72:a8:02:78:06:0b:af:05:c5:16:9b:c2:
+ b7:b6:2a:e3:f0:0e:23:e6:49:80:9a:79:14:04:7e:02:bf:76:
+ 78:6d:7d:e7:92:41:2b:b7:f2:34:fc:19:89:29:23:53:11:92:
+ ab:20:43:27:4b:2a:8a:06:16:73:54:88:e2:07:e0:47:c3:a8:
+ 3e:4e:3d:3d:b8:ad:d3:d0:0f:2a:d9:5c:04:0c:46:d1:da:e5:
+ cd:72:89:ee:0e:40:c9:6b:56:db:e4:d1:a5:a2:c6:be:3c:36:
+ da:30:ee:e3:ce:52:9b:d3:e6:1a:7d:40:f0:9b:f2:3c:26:02:
+ b4:a7:45:55:25:43:68:fc
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/pki/ca/client-external/ca-intermediate.key b/dev-deployment/pki/ca/client-external/ca-intermediate.key
new file mode 100644
index 0000000000000000000000000000000000000000..81a3fcce090434260c5af25781bef09cb723e076
--- /dev/null
+++ b/dev-deployment/pki/ca/client-external/ca-intermediate.key
@@ -0,0 +1,54 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----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+-----END ENCRYPTED PRIVATE KEY-----
diff --git a/dev-deployment/pki/ca/client-external/ca-root.crt b/dev-deployment/pki/ca/client-external/ca-root.crt
new file mode 100644
index 0000000000000000000000000000000000000000..43a3e831df4e4faa3857b9faacd1017ca0894284
--- /dev/null
+++ b/dev-deployment/pki/ca/client-external/ca-root.crt
@@ -0,0 +1,128 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 1 (0x1)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-external
+ Validity
+ Not Before: May 5 12:15:16 2020 GMT
+ Not After : May 3 12:15:16 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-external
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:cc:21:da:50:ef:43:e7:3f:3a:a8:f7:be:ad:ca:
+ c3:24:88:8a:38:09:3a:9e:73:8f:9a:0e:c8:e6:4d:
+ 27:50:a6:df:d1:4f:e5:cc:df:9f:f0:ef:51:45:2a:
+ e1:66:65:a1:92:49:34:69:0b:45:7f:70:82:74:1a:
+ dd:50:61:ba:6b:ff:51:d1:c3:2e:11:c7:bc:88:3e:
+ 1b:58:f0:c6:56:24:eb:93:65:8c:37:4e:b6:8f:8f:
+ 56:dd:8b:b6:23:bb:79:18:2f:8f:7d:ea:60:47:f3:
+ 35:db:a5:8b:dd:f1:e4:aa:53:61:22:53:cc:93:38:
+ 4b:ed:43:cd:fd:ac:8c:49:90:0c:f3:8e:bd:b0:6e:
+ 3b:c3:e3:f0:9d:f9:22:0c:c7:2d:4b:8f:5c:67:82:
+ db:0e:85:01:cb:19:0d:d0:62:87:66:d2:86:00:2e:
+ 56:2d:b9:88:9e:a0:61:4c:ba:3c:a5:9a:ee:f5:c7:
+ cd:fa:27:e3:44:12:4a:47:92:52:7d:46:27:f1:9c:
+ 86:49:45:58:6c:f0:12:c1:7b:61:d1:d6:c8:96:22:
+ cc:46:ff:c1:32:80:51:71:c9:8d:34:e3:ac:12:b7:
+ 40:88:4b:ba:65:3d:7a:c5:35:41:77:06:c6:05:97:
+ 92:a0:1a:da:b4:c1:78:ed:8c:25:74:14:fe:ca:72:
+ b0:a8:9b:ae:94:66:1e:a8:8d:ed:e0:38:af:05:10:
+ 7d:b2:fe:f0:bb:bd:4a:08:c2:9f:e3:58:77:d6:94:
+ a4:7c:8e:d2:32:79:50:78:d8:3e:e0:ed:38:83:a7:
+ 14:8a:4f:7a:63:46:be:3c:3a:1a:b3:5b:05:d0:8c:
+ 07:5f:5b:81:6f:96:8e:89:e6:f5:bc:6a:ff:af:fa:
+ a4:4c:d7:55:12:62:69:3f:82:6f:d9:4d:55:82:e6:
+ ae:b5:c9:3f:45:cd:7c:0f:c2:01:73:57:cb:94:b1:
+ b6:ce:46:09:b6:78:80:9b:8a:f0:1e:0e:02:bd:65:
+ 2a:f3:af:81:c1:e0:61:27:00:1c:0b:62:7f:3b:60:
+ 8f:17:d9:3c:ed:79:5c:bb:cc:e2:c3:27:95:5d:3c:
+ d2:6c:2e:c0:16:e6:6b:75:9f:e7:f8:6c:fb:58:80:
+ b9:d4:5b:28:69:e1:d0:ae:7a:0b:08:f8:ee:b5:73:
+ 22:bf:41:ed:22:45:a4:e6:fe:4a:d4:69:8e:3d:ed:
+ 39:a9:d2:08:0f:8e:13:80:1b:ef:ed:26:3d:3b:4c:
+ fa:49:74:1c:80:36:e1:9f:c7:27:e2:e5:8e:e1:ba:
+ c0:dc:17:f6:2f:ea:3e:ef:97:fd:3b:80:d8:7b:3b:
+ c4:47:d8:aa:eb:0a:f4:e4:17:78:cd:4b:60:0f:fa:
+ 76:d9:e7
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Root
+ X509v3 Subject Key Identifier:
+ 7C:4A:2C:F1:F4:F5:16:06:22:0F:74:19:38:BB:50:05:4E:19:53:20
+ X509v3 Authority Key Identifier:
+ keyid:7C:4A:2C:F1:F4:F5:16:06:22:0F:74:19:38:BB:50:05:4E:19:53:20
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:1
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ ac:66:03:4e:85:8a:d2:be:de:56:a1:51:ec:81:8e:cf:9b:5e:
+ 6f:a8:b8:05:cd:ea:dd:36:82:d1:74:f4:6a:06:73:39:1d:b6:
+ 63:13:6f:6b:43:fb:a8:04:28:65:3f:38:c2:42:75:ce:d6:54:
+ 36:93:bb:c5:c7:e4:0f:a5:5e:9d:94:19:5e:f6:0b:0c:9e:e2:
+ 0d:86:3f:ad:ac:fb:85:3b:fe:cd:23:ac:c7:06:f9:a5:bd:e3:
+ 03:e6:43:f2:5b:05:70:a9:67:e6:51:a3:9c:f2:00:b9:60:ce:
+ 8a:6a:86:b9:54:d9:af:cb:22:e2:4f:e6:ec:c0:85:a2:dc:19:
+ 32:f7:0f:5d:db:dd:79:70:dc:dd:ec:cf:bf:b4:08:71:26:84:
+ 3e:85:f4:78:bc:f4:49:a1:13:c6:e0:c3:e6:88:cc:42:62:3c:
+ 11:33:c8:c7:b0:cb:af:5e:54:c0:7e:13:a8:d2:ab:1d:4a:0e:
+ 2c:79:3d:d8:a3:f4:70:b0:f6:a3:3e:74:60:d7:3f:51:92:a6:
+ a5:75:53:d0:7a:21:11:d3:68:c4:64:3b:91:39:76:c2:01:4e:
+ 16:da:2d:0e:d3:be:c1:5e:02:75:61:79:af:9d:5b:81:22:95:
+ ff:cf:d6:73:9c:9a:80:a5:a6:13:0a:71:40:07:5e:d3:6f:08:
+ 4e:c6:21:e9:5d:9f:04:70:fa:6b:9a:07:38:82:0f:48:06:37:
+ d5:7d:2c:77:6b:c4:6c:3d:be:15:9b:df:4c:90:e4:e2:9b:e5:
+ 8a:d1:bd:7a:05:8a:db:f3:49:8c:b0:4e:15:ed:24:aa:04:52:
+ 14:c2:fb:89:fd:9d:39:ea:e5:67:ec:8d:66:40:0b:ef:b7:58:
+ bf:fd:13:1d:87:61:8d:e8:eb:e1:c0:19:65:3f:cb:49:f4:a7:
+ ae:d7:2d:81:ae:b7:ca:31:c7:cf:56:55:86:f2:f9:71:f6:a9:
+ 49:fb:4f:0d:6d:a7:81:aa:f5:7a:e6:ae:19:f8:e9:02:5b:86:
+ 63:de:4b:68:32:e4:b5:e4:81:eb:2c:86:80:6e:b8:05:49:45:
+ 90:99:cf:c7:ad:54:7f:d6:6c:d9:c6:6f:5d:11:17:67:c3:c7:
+ 3c:41:32:f2:e7:30:8d:93:74:c0:df:70:ff:48:9f:26:96:f2:
+ 1f:22:44:f2:5c:82:5d:f6:0b:be:55:95:b8:a7:0c:b3:f7:04:
+ 37:b7:75:88:71:0a:f8:5e:7a:6a:a8:a5:cf:43:1a:68:84:59:
+ b3:6b:30:3a:3b:b3:bb:66:54:2e:33:19:cf:12:d0:f0:11:b8:
+ c2:fb:ee:f0:4e:0a:2a:c2:20:bb:3c:9f:71:8c:cb:b2:3d:8c:
+ 12:43:c7:37:37:f4:0d:68
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/pki/ca/client-external/ca-root.key b/dev-deployment/pki/ca/client-external/ca-root.key
new file mode 100644
index 0000000000000000000000000000000000000000..7f45333873c5b9e133c05e072d756ae0eef034be
--- /dev/null
+++ b/dev-deployment/pki/ca/client-external/ca-root.key
@@ -0,0 +1,54 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----
+MIIJnDBOBgkqhkiG9w0BBQ0wQTApBgkqhkiG9w0BBQwwHAQI5Q5L6RSWM9gCAggA
+MAwGCCqGSIb3DQIJBQAwFAYIKoZIhvcNAwcECKf9gPsUOtZJBIIJSHupoUSbRGLt
+W0fuGIooEKwsDRSLXZnoA1pa1AK3liBNTwIvBY5hKSCUyDu5H6hVZDX+asfpjM4s
+ms/YzBDkBazwPdpnxOnQKhNP0YgChj3nSwPW/cwuHcxR2KkSOa0VwKZZ6QgJkATK
+a4b4qsYXrRzE2iHj7HKYSrccwKtjjgpDOhIC0slDF9ZMuJKVwPcFVg+E1tMdZqhm
+M5I6UpJ9pGlzfrL+qAFy2zJFjQCqB8R3OfAQ2mmZP6kgf2sZS/Lz3uqAKRJ6sgH/
+gKNd1eX1ybswKzX57HnVzOhjcUUslE5Dj8DkBhKpEdrBdVdq93blbsH264fSCoxr
+RQUwOzVxu7CltFVz3cQgfKJlN/LMq0HVC66EGnU7qYRBaXtGL/I+IduaVu7CrhfV
+hBT9Azff7vDMU1CFEQBZOvxhbuddokqB0lvtOr3GtopKgRy4bqB8uLt6t4IbR8Ic
+0E8uECfoXw3PAmd5T81qeXxIMeEnU7Qg1FkHkyuUgE6Jo2z19DBm8VBYv56EUcko
+/bQqhrVn3Im6CK/MtVkKpd0nPKfkS3C4lb8GjykedjfBJ8T8RfoH7jM9Qe4Hj7bm
+CUlkCfepQAPgDobgZ3SKHZrxWcTSJkOttBVLF0vIXb/ktucVnXT65B4cYa5muq6G
+/Djx8Ly0O6F6u3cEsEp/6YJ7zIWhSMf4DZMI7ptLChtnLlAQaVNseg5k/4ozWTEt
+pbJ6+1d09c/+1psfSa8ZNnR/PED1PcYOjMiQBAZG8H/McS1UpVFVj8C6k3A2E/2f
+P1lX3cb4Rzopd7R0ycVNkP+igMBvHZifR1HMi0Yph397cJaN4HNU3Ui0s9Ei3WRS
+9l3/RiAqAU18DvjQ1zDQIcRU0x0c3DLoojPvGhtpKNo4GUDxTpchIRnSanEoiwQW
+DP0esjaFAf0hs9DkbgRLNWb7Gd3i2s2yfZwas8JWxDCjwhmBFVMnStXpi7d3nbJD
+NaR1u7kZT733vYgdNqDqD+EqZtfiLBgSBJTglkxz0eZDh4HW6RucgLoZdCvli1O6
+T8bBBaBuIL54L0DgW6R6w9oN+Ol4Xxm687jMld+RCHq0EDBaF/Mz8Y/BlaI5PgM/
+zM1ev0+iENXVut/CiS8FRHAZRC8twcjNwSyf69X+2Ep/5ZfAApZmGwKLabSS2j55
+GynzweTLu+PjFBjlbpu93zA/L4Y5Gd26Qq/Mlfm5We6hGIGL4VAsz6yXS2Zv9CDh
+ch3glSsnXznbv9YZrjJB05Eneiq3RH86a1cPwqDhQ4SKeAuko4u4GijR80bQnZZK
+su/yrsTOB/lhLqwh/02wA+UjkNwa5Ub26lKl8BfQgdi2ojEhiL6v0szLcNXrILI2
+fNTpzBl1mVpAi0snDcy8ePOKijUvRerJ3tVvVmpMfV/9/LvHsvSnNW6XFctJHemT
+BLf3Pyq2AqwXeDrypOghLOPXtsmkzJxfHLstqRLh546ASie4Z0m0Br0eUP2zGiMD
+TukLuagJdJyQdxHz6JwWO4Xwx6uyjdFZEKD7P6O1VKAVuJ5B3EiI2FJgUinXDxjm
+PQnZIw6u/fY1FwVGsE+h1Sap/OYq9vf9RUgacaKZ5gNQS24jXKVGQNP36TxdF8d6
+Pw16i7XuhWqRHCjAujXN6WEaPSmvaM2qUtYIjBp+2qr/xL1o1Prq2IkP4Kh9vRgK
+Eekl4bkiFSb5SQstuhmN/Rs6igD4wvycyy8Pv5Hz70Rjbar6px+IIabkfVKdP2b9
+hNc5cfqExFamMI/uA3O+deTZ9xz9n1pszsHuAYd9DVNNrZ1ZftaU0fHy/yVHeGbI
+QsHgVqKMC4jYGX3hJ3+EEA8015QSzVB21vvPIw1KO5seFh6vDmnC3B4UdT+5AGE9
+Cn91PNxwYyjGTPqRadqYOwiosp6PLdBqoxT6dVGWx0O9FaLWAjIrPJdmNesib6ze
+paatpJQNFqPT0NydX5D5X0qv7FTOAp5jC+WC+TvnCtefZhY3LWdS5gMz1RjTrUAJ
+fG6GuLMkdQDiHmuR7oAr3FZ6tnqAdvzZaOuzYp7EIZMHiRVJZX7Nzo2BUtFIPjeh
+S/P+1oML+xjhhntLcMfC2qFZAt0l5sImgKxhCfDiU2Qm5dfB1R+4LCrUej5tR7+n
+SrJLzlPoEIP91gb3eaPDZoygsKu77pWMak7jGpmD6Z6iNJI9O6uGRDI2eG3gZeca
+3nm8jgN3LXWw2jSCAY9iztaW/kdNIfVYpzgnl5xeHp7t/33syz9J9rxuNBlPt/GV
+lgE32oDcGJn3ciReS9sSybk2OWoxp9JuuuOuInLtCxCiLaZKcvfRzRjDdFeHzWjJ
+Z7UC52k2yqnK4exkjEVgGtxPVv7ArWqgganHX571Ck9oXRKmE0KqqXtd+V/yqfmL
+EjF1ptUn9O9sdk1/km4W81umnqDwD9BiXCrvlwBF5UD6MxKyXCRsd5CsUEUexHba
+B0Yqi3qfZ0QK1XRR6mzsHqLuXJbmk3+V3A9xUOh1SDqylrbmPdnmzv21hYUIKTG/
+M0A+JJXOPUYZ/DNlD7r3jJ2zMKWooMTEBhVCARvF0zRJs0Qy18Y18Q7qYPQqCRgV
+DQamTw3qYi8AdHJAYEqM4xof46jdO+7qC+CEcwjElY5mUd3jGhn1VzPCbZE5L4mC
+CRVe4q5fZ57t+Y5QS/R4ZgVD9/2kzeMxpyGvwktG4d71NC7cXOqOBKzKYcjtZNYf
+LyZnsIoveLLkVG2VTJsG7uwQy75jXh9fZVXZU0RnBlEFrm4gXfJF1LckSKtw8rfs
+e8DjO6WwhWxBTpkgLIYdV9NXPjmLhbwW8yuAHVL50goDaQY2cUtVMDmuxHz75ZfT
+eAJW6pd709LXjpKogOc5L7bZzeYf1EuIKUqCg1mI+MFwRUrftvqStoaebQ+9EH3+
+9kc3gj8wDat9N6zNf/8yghq01W48DfGIf+kVG8CwZ4b7XQotZhKOFUXadPmw38VC
+vSyCr0viN3K7xIVNvOFrxQUxIioT0VtCi5aWqZWdbP5WWoP8X421gl6BrhUdcRFj
+LeTkAsfkT+1L2c6dzCy72ahrGEynYVDw03dxrG7eMzAvPEoEKkovNnpACDGsmqdF
+a4lJsMAfOqf0htRJPblNDkcwXL5SV93zpBC4XuaNkP7ShaFVzpyUCFx3uRMQdaqn
+ukBaelqaobK/Q1S43vsnLg==
+-----END ENCRYPTED PRIVATE KEY-----
diff --git a/dev-deployment/pki/ca/client-vitam/ca-intermediate.crt b/dev-deployment/pki/ca/client-vitam/ca-intermediate.crt
new file mode 100644
index 0000000000000000000000000000000000000000..b5b44854d7d2b93e2be5a679adfc4a53b0d58ea0
--- /dev/null
+++ b/dev-deployment/pki/ca/client-vitam/ca-intermediate.crt
@@ -0,0 +1,136 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 2 (0x2)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-vitam
+ Validity
+ Not Before: May 5 12:15:22 2020 GMT
+ Not After : May 3 12:15:22 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_client-vitam
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:b3:ad:d4:2c:f4:26:42:fb:fa:f8:08:12:9d:34:
+ 3c:ba:54:7e:fc:0d:c1:d2:f1:50:1c:80:6d:65:81:
+ 00:fa:51:85:db:ed:43:78:7d:5d:b1:dc:66:4e:0e:
+ 9a:92:a8:c3:d4:41:81:80:e3:0d:9e:02:18:fb:d0:
+ 77:2e:5d:93:24:8c:0d:d4:eb:59:5f:71:d0:50:51:
+ e0:9d:66:e4:59:5a:b5:9f:3b:0c:49:cc:7b:a6:cf:
+ dc:b9:98:b9:8c:92:04:3b:f0:69:c0:05:a9:be:af:
+ ec:56:7d:72:88:8a:7d:70:f0:60:11:b0:f7:5d:7e:
+ a2:dc:c0:f5:13:d9:98:5a:da:d2:cb:56:4a:f0:b1:
+ 81:7b:44:cd:1e:92:66:ff:f7:70:b0:ec:00:32:30:
+ 1c:be:a2:9e:ba:8a:13:60:cd:34:0d:10:20:91:29:
+ c5:54:79:43:e3:85:66:6a:c7:dc:c5:c6:9c:07:6c:
+ 1e:85:c8:b7:e7:98:c7:e3:4d:55:d9:b6:5a:d7:9b:
+ 5c:4f:7e:fd:b2:ae:7a:53:7c:94:09:28:ee:54:25:
+ 70:72:cb:f7:fe:97:41:e0:50:27:86:ca:7d:9f:7a:
+ cd:fc:2e:5d:90:d9:df:6e:c2:09:da:0a:c5:ac:c2:
+ d3:86:84:ca:71:a5:73:e6:88:57:b8:57:24:cf:65:
+ ff:1e:ea:e5:98:19:29:ac:b5:cd:b1:ef:53:92:a2:
+ 16:e5:e7:73:f4:c4:ad:05:8b:ab:55:5a:cb:b3:de:
+ de:d5:71:d6:97:13:88:16:86:58:e8:3c:28:b5:76:
+ 03:99:26:06:5f:8a:a1:df:57:67:dd:06:49:5e:8e:
+ f1:4e:d1:f1:3a:4d:23:4b:5e:d5:03:81:dd:eb:e0:
+ 43:6d:eb:7b:ca:a4:b1:24:c6:97:85:17:e3:eb:d8:
+ a1:b0:36:d9:85:ad:e7:ce:fd:97:93:64:87:dc:69:
+ e4:5d:99:4e:ba:95:bd:cb:ae:7d:5c:2d:c2:21:84:
+ d6:aa:a5:68:3a:78:82:7e:59:5e:eb:1b:f9:92:28:
+ 53:4b:b7:06:21:bd:9a:fc:b0:40:e8:dd:97:35:4a:
+ db:ff:b3:d0:26:bc:93:e1:7c:6d:da:df:27:37:9c:
+ 2e:dd:84:8e:32:ff:1e:e3:94:7c:bd:d3:16:f4:31:
+ d3:6e:41:f7:03:70:af:a9:75:2b:1c:dd:49:75:3f:
+ cf:3a:32:e5:c7:2e:49:5c:62:ab:e3:fb:37:4a:86:
+ 4f:c2:ca:16:68:f5:11:1b:a0:1b:96:8e:56:20:6e:
+ e6:c8:55:58:e8:64:7f:4c:94:b3:43:34:a5:22:1b:
+ 36:b3:06:71:be:95:ca:c2:43:e9:78:09:63:85:61:
+ 0f:76:57
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Intermediate
+ X509v3 Subject Key Identifier:
+ 8D:24:4C:8A:40:90:31:A1:31:3A:0B:93:75:2B:F6:93:EF:AD:46:B9
+ X509v3 Authority Key Identifier:
+ keyid:6A:B6:51:B0:3C:6F:34:81:D2:BD:8A:80:96:75:D4:A2:1C:CF:C8:D9
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-vitam
+ serial:01
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:0
+ X509v3 Issuer Alternative Name:
+ <EMPTY>
+
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 6a:f2:0b:fd:cb:4a:aa:b1:03:f5:db:0f:4b:55:f8:c3:b4:7a:
+ 7c:32:9b:60:24:fe:cc:dc:cc:d1:7c:7d:60:ab:ac:55:e2:01:
+ bf:56:23:d8:7d:1a:b5:a2:35:4f:19:ad:71:2d:92:27:4d:a1:
+ 8d:dc:2f:e4:5f:5e:af:53:7e:18:3f:f0:9d:8a:0a:a3:df:4b:
+ 0e:49:70:6d:a8:72:fa:e0:79:94:37:e8:4e:f8:c2:09:79:d2:
+ 71:db:61:56:db:e9:74:78:0a:e3:0d:0a:17:74:5a:b5:3c:00:
+ d7:82:75:1c:f5:55:88:d1:5f:3b:bd:e3:2e:05:04:7b:86:a0:
+ 29:79:71:60:8c:37:b3:de:02:ad:f4:ca:cc:18:3e:b0:be:67:
+ 1c:71:d9:d1:00:dd:33:70:43:cb:7c:8b:1a:9a:09:f9:80:fb:
+ bf:95:bc:53:ad:eb:72:dd:b3:df:97:ca:6f:d9:23:6c:05:25:
+ 53:b5:8d:34:c8:36:d1:aa:00:3c:78:d4:e0:57:d6:75:d3:ac:
+ 2a:27:82:a4:74:27:f1:20:31:3c:9b:f8:5e:7e:22:04:7e:cc:
+ 6c:f4:cb:59:27:72:3a:54:02:a6:62:d1:1e:a4:07:b1:2f:26:
+ e6:c4:4c:80:ac:17:48:c5:f7:4c:a8:c5:5e:21:14:20:e3:b3:
+ c8:be:88:a2:b3:c7:2c:a0:d7:01:24:c0:86:cd:10:f7:cb:7a:
+ 58:10:8c:44:2c:ba:35:3a:07:aa:d9:93:7a:08:45:a9:76:e1:
+ 04:48:c9:d3:b9:90:b4:31:e0:6b:3b:06:a9:1d:68:69:fe:a3:
+ 0f:a8:15:2f:d7:c1:5a:9b:53:99:ef:15:23:58:33:05:d5:27:
+ 40:f4:d1:e6:59:bd:85:05:b9:68:4f:f2:2d:2c:bc:03:34:35:
+ f5:fb:48:49:1e:03:16:64:ba:ec:79:9f:7b:59:87:76:5e:39:
+ 0f:04:e4:b0:39:42:84:26:31:6e:90:cf:80:ec:f7:5c:c8:c9:
+ 04:12:1e:7c:4b:35:55:22:31:3a:16:04:b1:a8:d0:43:c1:7a:
+ 14:39:49:3b:e4:f8:fe:22:3a:72:2e:e1:33:61:4a:8a:2c:56:
+ 9a:c5:b2:0b:f8:75:1a:4b:ed:4c:f5:85:67:73:7c:38:d8:e4:
+ bb:49:02:e9:92:d2:d7:42:cf:3a:62:8f:e8:ff:6b:4a:fa:32:
+ 8c:25:51:fd:e8:4e:bd:be:c9:64:60:9c:5d:15:52:40:83:a9:
+ 3e:3c:40:31:36:f6:ee:59:bb:74:3c:01:ce:0b:c3:cf:c6:02:
+ 0f:7a:d0:b5:9f:46:39:74:c8:a3:94:5d:28:ae:aa:e8:7c:91:
+ 4e:46:6e:b5:88:82:fb:96
+-----BEGIN CERTIFICATE-----
+MIIGijCCBHKgAwIBAgIBAjANBgkqhkiG9w0BAQsFADByMQswCQYDVQQGEwJmcjEM
+MAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEQMA4GA1UECgwHdml0YW11aTEU
+MBIGA1UECwwLYXV0aG9yaXRpZXMxHTAbBgNVBAMMFGNhX3Jvb3RfY2xpZW50LXZp
+dGFtMB4XDTIwMDUwNTEyMTUyMloXDTMwMDUwMzEyMTUyMlowejELMAkGA1UEBhMC
+ZnIxDDAKBgNVBAgMA2lkZjEOMAwGA1UEBwwFcGFyaXMxEDAOBgNVBAoMB3ZpdGFt
+dWkxFDASBgNVBAsMC2F1dGhvcml0aWVzMSUwIwYDVQQDDBxjYV9pbnRlcm1lZGlh
+dGVfY2xpZW50LXZpdGFtMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA
+s63ULPQmQvv6+AgSnTQ8ulR+/A3B0vFQHIBtZYEA+lGF2+1DeH1dsdxmTg6akqjD
+1EGBgOMNngIY+9B3Ll2TJIwN1OtZX3HQUFHgnWbkWVq1nzsMScx7ps/cuZi5jJIE
+O/BpwAWpvq/sVn1yiIp9cPBgEbD3XX6i3MD1E9mYWtrSy1ZK8LGBe0TNHpJm//dw
+sOwAMjAcvqKeuooTYM00DRAgkSnFVHlD44VmasfcxcacB2wehci355jH401V2bZa
+15tcT379sq56U3yUCSjuVCVwcsv3/pdB4FAnhsp9n3rN/C5dkNnfbsIJ2grFrMLT
+hoTKcaVz5ohXuFckz2X/HurlmBkprLXNse9TkqIW5edz9MStBYurVVrLs97e1XHW
+lxOIFoZY6DwotXYDmSYGX4qh31dn3QZJXo7xTtHxOk0jS17VA4Hd6+BDbet7yqSx
+JMaXhRfj69ihsDbZha3nzv2Xk2SH3GnkXZlOupW9y659XC3CIYTWqqVoOniCflle
+6xv5kihTS7cGIb2a/LBA6N2XNUrb/7PQJryT4Xxt2t8nN5wu3YSOMv8e45R8vdMW
+9DHTbkH3A3CvqXUrHN1JdT/POjLlxy5JXGKr4/s3SoZPwsoWaPURG6Ablo5WIG7m
+yFVY6GR/TJSzQzSlIhs2swZxvpXKwkPpeAljhWEPdlcCAwEAAaOCASEwggEdMB4G
+CWCGSAGG+EIBDQQRFg9DQSBJbnRlcm1lZGlhdGUwHQYDVR0OBBYEFI0kTIpAkDGh
+MToLk3Ur9pPvrUa5MIGcBgNVHSMEgZQwgZGAFGq2UbA8bzSB0r2KgJZ11KIcz8jZ
+oXakdDByMQswCQYDVQQGEwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJp
+czEQMA4GA1UECgwHdml0YW11aTEUMBIGA1UECwwLYXV0aG9yaXRpZXMxHTAbBgNV
+BAMMFGNhX3Jvb3RfY2xpZW50LXZpdGFtggEBMBIGA1UdEwEB/wQIMAYBAf8CAQAw
+CQYDVR0SBAIwADALBgNVHQ8EBAMCAQYwEQYJYIZIAYb4QgEBBAQDAgIEMA0GCSqG
+SIb3DQEBCwUAA4ICAQBq8gv9y0qqsQP12w9LVfjDtHp8MptgJP7M3MzRfH1gq6xV
+4gG/ViPYfRq1ojVPGa1xLZInTaGN3C/kX16vU34YP/Cdigqj30sOSXBtqHL64HmU
+N+hO+MIJedJx22FW2+l0eArjDQoXdFq1PADXgnUc9VWI0V87veMuBQR7hqApeXFg
+jDez3gKt9MrMGD6wvmcccdnRAN0zcEPLfIsamgn5gPu/lbxTrety3bPfl8pv2SNs
+BSVTtY00yDbRqgA8eNTgV9Z106wqJ4KkdCfxIDE8m/hefiIEfsxs9MtZJ3I6VAKm
+YtEepAexLybmxEyArBdIxfdMqMVeIRQg47PIvoiis8csoNcBJMCGzRD3y3pYEIxE
+LLo1Ogeq2ZN6CEWpduEESMnTuZC0MeBrOwapHWhp/qMPqBUv18Fam1OZ7xUjWDMF
+1SdA9NHmWb2FBbloT/ItLLwDNDX1+0hJHgMWZLrseZ97WYd2XjkPBOSwOUKEJjFu
+kM+A7PdcyMkEEh58SzVVIjE6FgSxqNBDwXoUOUk75Pj+IjpyLuEzYUqKLFaaxbIL
++HUaS+1M9YVnc3w42OS7SQLpktLXQs86Yo/o/2tK+jKMJVH96E69vslkYJxdFVJA
+g6k+PEAxNvbuWbt0PAHOC8PPxgIPetC1n0Y5dMijlF0orqrofJFORm61iIL7lg==
+-----END CERTIFICATE-----
diff --git a/dev-deployment/pki/ca/client-vitam/ca-intermediate.key b/dev-deployment/pki/ca/client-vitam/ca-intermediate.key
new file mode 100644
index 0000000000000000000000000000000000000000..27752754dd5dcdf748791d696166a808593eed6b
--- /dev/null
+++ b/dev-deployment/pki/ca/client-vitam/ca-intermediate.key
@@ -0,0 +1,54 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----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+-----END ENCRYPTED PRIVATE KEY-----
diff --git a/dev-deployment/pki/ca/client-vitam/ca-root.crt b/dev-deployment/pki/ca/client-vitam/ca-root.crt
new file mode 100644
index 0000000000000000000000000000000000000000..15e580bb8421a2089899ad08af8ac4e8186a43cb
--- /dev/null
+++ b/dev-deployment/pki/ca/client-vitam/ca-root.crt
@@ -0,0 +1,128 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 1 (0x1)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-vitam
+ Validity
+ Not Before: May 5 12:15:20 2020 GMT
+ Not After : May 3 12:15:20 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_client-vitam
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:d7:e1:a4:d0:b4:35:c8:be:c7:9f:9d:34:c8:b3:
+ 44:51:88:94:ba:94:f9:9a:b9:5e:71:8d:7e:47:20:
+ 1c:1a:c6:27:67:29:74:5b:a1:71:34:e8:28:4c:ac:
+ 28:3c:39:19:0f:86:cf:03:42:cd:80:f4:d3:a3:ab:
+ fa:f7:f7:96:59:8f:74:1b:4f:17:c8:38:a7:71:2e:
+ 2b:39:31:78:28:aa:7c:72:61:be:c9:ed:d3:48:f2:
+ ea:cb:97:87:68:74:ed:5d:72:40:4e:41:9a:ad:87:
+ 3f:08:6f:f3:14:28:4c:b1:b7:57:0d:8f:fe:29:1a:
+ 4b:90:eb:1a:0c:e2:9a:28:23:a3:fa:fc:93:17:f0:
+ 5c:5a:bf:ef:62:5c:8d:23:5e:77:48:1c:0d:f4:7c:
+ ad:39:fa:06:54:39:e4:ed:df:8b:2e:f6:ae:d3:de:
+ 2b:f5:d6:4a:f0:45:9d:f0:b1:4d:67:a4:ba:80:fa:
+ eb:3e:01:bc:6f:ae:08:49:e4:95:b2:4c:a4:6b:93:
+ 45:4b:c7:ab:04:4e:14:63:50:3a:0b:95:e3:70:72:
+ b1:91:c4:c0:53:b1:0c:36:ed:3c:c2:1b:16:20:75:
+ 6d:0f:7f:57:76:3e:a0:d6:bb:ff:7c:05:37:8a:16:
+ 47:48:56:54:97:62:b2:47:60:15:70:aa:9a:19:48:
+ b0:19:fe:33:f6:1b:1f:a3:d0:9f:15:ee:2c:b1:71:
+ ce:78:7b:f5:b0:32:49:c9:79:02:12:5a:f5:2c:4a:
+ 28:1b:26:f7:da:59:af:98:12:5c:8e:01:7b:b4:15:
+ 0d:b9:8f:08:50:71:25:d9:b7:c2:b5:80:55:ce:c4:
+ 75:51:4f:1f:6e:db:ba:37:99:08:9f:90:b4:c6:95:
+ ce:9f:27:6a:b7:ff:b5:3e:3a:e0:2c:70:40:17:19:
+ e7:59:aa:84:d1:64:9a:74:7f:6e:f1:65:c9:af:cd:
+ ca:c6:c0:04:c7:94:86:2b:9a:4c:dd:86:6c:d8:a0:
+ be:11:f0:0a:16:34:c7:da:91:8d:01:20:05:46:c2:
+ 4b:a4:c3:05:8e:08:f3:c9:ff:7e:26:de:6c:87:8b:
+ e9:ba:c7:c4:24:62:50:0f:f4:02:43:8e:77:30:97:
+ 4a:0b:f5:1c:a5:c4:46:ce:50:28:32:77:1a:39:65:
+ 23:f0:83:b6:b6:c5:74:46:00:36:2f:f1:2f:7d:bb:
+ a7:97:80:76:a6:24:94:da:9f:d6:99:10:18:e0:3a:
+ b5:40:a2:19:b2:c7:71:b8:0e:de:fb:a5:05:a8:48:
+ ab:63:53:2c:15:7f:b8:a6:1f:1b:41:4a:e4:72:66:
+ ae:dd:e5:15:1e:2f:4a:ab:c9:3a:5a:08:68:2d:a6:
+ dd:af:3d
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Root
+ X509v3 Subject Key Identifier:
+ 6A:B6:51:B0:3C:6F:34:81:D2:BD:8A:80:96:75:D4:A2:1C:CF:C8:D9
+ X509v3 Authority Key Identifier:
+ keyid:6A:B6:51:B0:3C:6F:34:81:D2:BD:8A:80:96:75:D4:A2:1C:CF:C8:D9
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:1
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 29:e1:0f:44:f2:6e:75:70:88:3e:6b:95:da:9f:0f:2a:fb:5c:
+ ae:0b:e7:f0:c8:7b:9d:c4:2e:02:4f:66:d2:2d:01:5c:42:e2:
+ 81:e6:69:e3:18:aa:c9:69:9e:0b:e9:1a:55:ec:0e:fa:c9:d5:
+ 97:6c:5f:5a:16:f3:8e:eb:7e:83:8c:3f:f8:ec:75:6f:f1:90:
+ a9:b3:29:d9:31:b4:17:98:7e:28:58:ef:dd:c6:f5:73:e4:bf:
+ 12:c0:1f:52:03:d2:6a:4f:c4:83:6b:7d:f7:b1:90:a6:5a:0c:
+ 81:96:67:e1:3d:d9:7a:fd:9d:e0:23:96:31:18:1f:35:b3:ed:
+ 6f:e5:71:4d:c1:37:17:18:ea:a6:5c:c9:4d:65:cd:b3:97:a2:
+ f6:9b:24:c8:7a:d2:95:94:fd:38:bf:42:74:5e:ce:04:de:b7:
+ 99:6e:e4:35:28:7f:37:1f:b5:e2:19:ac:4e:b6:06:c3:d7:f2:
+ d3:71:f3:38:96:55:ed:ef:55:42:29:a7:cf:a6:63:c1:fb:cf:
+ 6e:ed:03:6e:cb:0f:7d:b0:42:87:c5:85:e7:e1:8a:11:fe:55:
+ 95:00:dd:99:35:a5:c1:d0:8a:8a:a9:59:0a:4c:e6:1c:63:1f:
+ 27:08:bf:37:c2:00:2b:44:cf:49:fb:7c:77:4f:88:39:21:12:
+ 69:42:6b:95:15:0d:da:95:24:72:44:79:88:00:e6:7d:7b:a5:
+ aa:a5:ea:40:6e:ca:59:7e:91:d7:1e:11:23:13:67:fc:47:ef:
+ 5c:ee:db:63:f5:73:e3:5f:66:50:a5:8f:60:e1:bd:5d:3b:11:
+ f3:aa:20:67:77:79:8c:95:84:18:b8:cd:c6:42:60:8c:2b:1a:
+ c3:4a:70:ca:73:00:c8:2c:2c:82:2d:c9:11:c4:30:4a:1b:96:
+ 1b:22:d1:f2:12:7a:e1:ef:fb:15:d8:45:ea:67:5b:46:af:14:
+ 66:46:23:31:ce:63:7c:b2:32:b4:90:0d:cb:7f:2e:9a:4c:a6:
+ 2b:c6:5e:8a:fe:f5:76:55:64:6e:3d:8c:ab:39:8f:20:8d:ed:
+ d0:a4:fd:ee:7f:d3:02:05:69:72:e4:f8:84:3c:fb:6c:47:3a:
+ 0a:86:a0:f4:39:ae:31:4f:a0:d3:b4:6b:b5:33:d0:36:8a:c3:
+ 81:79:80:3d:ee:5f:84:b2:0c:73:30:a1:72:95:6c:05:07:35:
+ 95:82:c9:e3:45:9e:77:78:40:4a:14:6f:d5:56:23:30:63:43:
+ 1d:8e:9d:ab:0f:81:f5:0d:dc:57:48:6b:da:5b:f4:ee:4c:a4:
+ 80:f5:24:9e:5c:aa:42:db:3e:f0:48:7a:ce:d2:72:9a:e2:2d:
+ 2f:e7:b1:a8:20:7c:f4:32
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/pki/ca/client-vitam/ca-root.key b/dev-deployment/pki/ca/client-vitam/ca-root.key
new file mode 100644
index 0000000000000000000000000000000000000000..830f36139c6b49a7f5850a5fd57714316b26f387
--- /dev/null
+++ b/dev-deployment/pki/ca/client-vitam/ca-root.key
@@ -0,0 +1,54 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----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+-----END ENCRYPTED PRIVATE KEY-----
diff --git a/dev-deployment/pki/ca/server/ca-intermediate.crt b/dev-deployment/pki/ca/server/ca-intermediate.crt
new file mode 100644
index 0000000000000000000000000000000000000000..f48c0bf563aed3cb8e36582abb4435f4be61c464
--- /dev/null
+++ b/dev-deployment/pki/ca/server/ca-intermediate.crt
@@ -0,0 +1,136 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 2 (0x2)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_server
+ Validity
+ Not Before: May 5 12:15:14 2020 GMT
+ Not After : May 3 12:15:14 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_intermediate_server
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:9b:fe:7a:8f:5b:46:ed:9c:02:30:9c:cd:c2:cb:
+ 6c:54:be:c2:03:5f:2d:da:f1:e1:cc:de:6c:44:e5:
+ bc:95:2f:a1:cb:d2:90:46:2d:2b:12:84:2b:92:20:
+ 0b:26:6d:fe:be:a3:92:30:e9:56:87:b0:25:78:a4:
+ f4:12:01:72:d6:09:d9:09:75:2f:0d:9a:cb:29:8a:
+ eb:95:0a:d1:7e:f1:5a:93:fc:ce:66:6d:8c:79:75:
+ f8:2f:84:4d:cd:91:07:03:45:74:d8:cd:4f:8f:af:
+ df:3a:bd:60:6c:c5:20:67:fe:73:b7:c8:52:8b:10:
+ 9f:ae:a0:f2:42:4f:09:fe:f3:dc:3f:8d:05:a2:26:
+ ca:2b:7d:44:6f:e4:ba:b1:c6:51:cf:1c:4a:d6:5a:
+ c0:30:96:9a:da:64:34:07:7e:1f:d0:f2:58:0b:53:
+ 4c:f3:7f:bf:82:01:9b:65:10:13:19:f0:8b:ae:69:
+ 7a:8e:97:2b:b6:2c:27:2d:55:dd:c5:1b:04:62:51:
+ df:90:cc:d4:6e:25:af:da:8b:fc:07:64:59:cd:1f:
+ 22:6b:48:96:de:95:89:33:b2:74:89:87:23:92:6d:
+ 2c:63:17:ad:6a:88:ff:eb:1e:c8:34:dd:c8:1c:cb:
+ 00:9c:0e:1b:12:66:29:97:cf:1f:d3:d3:b1:7a:40:
+ f2:b0:f9:33:c3:2a:34:42:3b:49:7a:1b:7c:a2:68:
+ c3:fc:fd:46:02:fc:86:a6:53:23:6c:6b:5f:74:82:
+ c9:72:0e:79:30:9b:9a:7a:41:6e:f0:2a:ae:a2:3f:
+ 3d:58:df:57:09:ca:b6:9e:66:eb:c6:79:aa:d3:e6:
+ 4e:59:98:f4:cc:fc:64:43:7e:4a:a4:16:a9:91:fa:
+ 21:ce:ea:14:8d:2e:01:a1:6e:95:54:a6:45:07:1e:
+ 42:37:89:65:f6:0f:2a:20:73:9e:a7:a7:95:09:5f:
+ ce:29:6d:3d:9f:f8:3c:14:c5:3f:bd:58:05:21:e6:
+ e6:b3:6d:fd:b1:e0:48:79:1c:85:e5:ab:56:2e:68:
+ 74:76:a8:fd:a2:e7:f3:9e:f7:9a:d8:31:c6:c4:f2:
+ 60:da:c2:2d:fb:26:bd:0d:05:de:9f:86:6e:ba:ca:
+ d9:1a:97:68:49:12:fd:ab:5c:af:1a:55:bf:05:83:
+ 07:b2:6e:67:4f:e5:e5:a4:3e:33:8c:95:5c:4a:76:
+ 62:b2:3d:5e:69:f5:12:02:27:6c:e6:5c:60:94:3f:
+ dd:69:db:54:86:d7:81:6d:e7:a7:3c:f8:12:17:14:
+ 5f:5b:c5:09:f5:8b:37:13:3c:57:c7:c2:df:14:a8:
+ af:81:06:da:30:66:11:ac:c4:a7:82:08:eb:69:5d:
+ fa:c7:97
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Intermediate
+ X509v3 Subject Key Identifier:
+ A7:75:58:7C:4C:0E:3A:13:58:BE:6C:0E:F1:23:49:5C:67:21:1F:02
+ X509v3 Authority Key Identifier:
+ keyid:62:6C:E9:38:13:97:E8:FC:72:44:77:E6:0F:C7:84:11:D9:9C:EC:6E
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_server
+ serial:01
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:0
+ X509v3 Issuer Alternative Name:
+ <EMPTY>
+
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 29:3f:1a:f6:dd:3e:c4:67:e4:b2:bb:7a:78:14:45:62:57:9b:
+ af:5b:73:36:3c:07:e1:11:68:99:50:ac:7f:1c:58:3a:84:1c:
+ 80:a8:fe:de:84:02:d3:43:e0:8d:aa:4b:0e:9d:66:6e:b7:c4:
+ e3:84:47:89:5a:b4:95:d5:68:aa:68:61:36:21:d9:25:9a:10:
+ 5c:8b:4c:0a:ab:91:12:42:4c:52:a1:63:fc:21:a7:05:30:ef:
+ 79:12:1c:19:2c:fc:ef:77:38:3b:3f:81:ad:92:72:83:5b:07:
+ dc:4a:0a:66:3a:0c:5f:43:a2:38:e0:4c:ea:8c:f1:96:70:c5:
+ b0:8a:fe:90:7a:0f:b6:8a:47:80:58:ba:e8:a2:6b:a5:8d:7d:
+ e5:49:d8:1a:bd:8f:08:8e:6f:a3:fa:e0:f3:ca:45:f8:82:19:
+ 62:86:e5:20:2d:ab:f6:ea:29:bc:b8:d6:99:70:c2:ac:2c:49:
+ 5e:19:4f:99:b2:7f:7e:10:a6:ab:5c:56:f3:50:5b:b4:a1:6a:
+ 74:77:78:86:d1:e5:27:48:18:68:dd:24:b7:64:3b:34:bc:93:
+ db:6c:56:8f:fd:51:6d:70:81:ff:87:30:d7:71:d0:28:6d:a1:
+ 3b:ca:62:a5:13:f9:3d:59:5e:20:4e:cc:9d:0b:1a:3b:77:2f:
+ 8e:f6:c1:d6:05:58:71:b1:ed:22:c4:72:5e:39:07:38:7e:b4:
+ 01:80:ff:c5:d0:8d:62:61:c2:86:ce:27:d5:dc:e8:f9:52:e8:
+ 14:e7:8d:ba:e7:45:29:c6:83:93:7c:19:42:e4:7f:11:4d:ce:
+ 66:55:39:2f:0f:18:74:e2:6e:50:de:3c:19:bc:c6:f2:9a:fb:
+ d0:a9:f6:d5:f2:7b:42:0c:b7:cb:a8:5c:2a:d3:77:45:6f:e6:
+ 5f:6b:ba:e1:96:9b:4e:97:88:b7:e9:6e:0b:6d:c4:df:82:8c:
+ ec:49:96:d4:c7:f6:d6:eb:c2:93:ec:8a:89:1d:df:9f:11:72:
+ 73:df:fa:06:42:37:a3:94:93:54:94:40:ee:0a:83:c4:3a:9a:
+ 8d:bc:9f:b9:69:d0:2a:5a:ec:2a:33:40:26:bf:d1:6b:a4:9b:
+ 9a:7a:48:07:74:47:c1:21:6d:71:25:26:3d:d8:c4:51:22:dd:
+ 96:88:c3:07:b0:85:a2:d7:5d:ad:3e:08:c9:bc:31:34:77:0b:
+ 3b:30:51:d7:f9:df:a9:e3:58:51:28:ba:b8:17:85:a2:3c:c2:
+ 41:2b:a8:47:be:58:bb:82:7f:c1:b1:90:4d:dc:4e:d3:7d:cb:
+ 27:4c:ea:b4:18:6c:a7:4b:f4:5e:ea:ec:30:c0:08:34:d9:0f:
+ f5:31:0a:9f:e1:23:ab:62
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/pki/ca/server/ca-intermediate.key b/dev-deployment/pki/ca/server/ca-intermediate.key
new file mode 100644
index 0000000000000000000000000000000000000000..e2b8f5bf5f7bfabd1c7c6fa619bbeda0b6ba9b06
--- /dev/null
+++ b/dev-deployment/pki/ca/server/ca-intermediate.key
@@ -0,0 +1,54 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----
+MIIJnDBOBgkqhkiG9w0BBQ0wQTApBgkqhkiG9w0BBQwwHAQIKtmTsKMqdZYCAggA
+MAwGCCqGSIb3DQIJBQAwFAYIKoZIhvcNAwcECA+orcZXsXULBIIJSFY2U+gnXhtf
+u2t8Frj4CIAzWC9k/0dn2MSDBUfgmycL5+7W00rWVxm6D8Q8s9447iur6Sw1zpnv
+Ax7/f66p0b0hwZuTyuE/0EA2aNsy9xNH8n1p/FXc7RX/8HT+TZ1lolkM5EwOgIMz
+ke/2JlFWbnuUk8fctjqKR8qxgrMPS9+jxoITfTbjoxAN2MgWo2+KNU2WaNDjJl71
+gv+aHYVoR/9nkCjvTS24t+lztgCUQv2VJya4pyNKkA0NMJE1xVr+D7gKyeYkCVPG
+4aVEGHJlBYy3MIOeKYG2/V0up0dcmxd+aHF4xrgPH2xIcSZuqyjHac7VBQIwFKTa
+gzCVhSNfjohzQU2I3FTgDe5Um3IpvagAEQ3WwyLqf7JeIoGpgW0X2tWrOoRdhXt/
+TJSvCM7LjWwfqO+hwkczXZsdcBkuQwllEwqtPk20pVIWzq54x4uHJ9ArPD1H7NhV
+cN4TcxofAKgbt22knppHTgxbBjbB2BVGdOLmFFhjbQ8FCu5cnueAlTI6oUh3n3W6
+xo1O6dWEhJJ0QbydZa7nRIKTaUPXHJt+Vw3lT7YVyl3NsqbpH4+VelB4iVIM9zoT
+dbL7G1CncMHpaCjvTvqbBhmfZTpdYCGxP/Oe+6Iy+zltTASJac3iJ/2JZJK0LaG0
+fU4SCH6B9u5BSzsBFEeeQXPCpsyAuGguoA1c6CGvyJ6NCBSUt2gNMM7k+BV/Y4ej
+0MWZzktN564MTcqq7xt0tyJVOJyGuJ9xNk51MY5d129zU9r0ciwY2J09DENWbY+u
+9O7mAygiNrwMm3+T1OsU4DQeuCqs83iVk8Sg5+m+jpatXSmBPn/ZxLwNuQzY7otm
+Nz+3EPMBP8tPhihW1PFWkK+HLceEC1NpSwmje3y4PRR6vk8cILeVaMS4+D5/o/zC
+aYkU8vS5r0PpF63eFuqh00/MWlwHC5sx3MJscTTkvftAR3rccbSgrEImu9QAxWmj
+d/BSY2jJ0bdqiTQXS+UtzSCtNIMpmvQC6mE6o4gAoOha0SGi1s13hX8MG2KwnWLf
+s4zFQ+1iJS4NEKtTN6asTufYhv86BmhO4A0kLI9C0hUJsVLch85pk1BlIIYV/rU2
+/bHCdOO6LlcG+ndV7w07P7uEzwGI8+GYt0GMWVIx9FxiF7d1gVSg4vtNup/R+92i
+VkmgTROWS1sDEfvZR9+xHkXm3jmyrG6EcRy+hIMbQgGR61plyvC1RcOKKCeMY234
+Vmt2E5jBDz2WtmbBqot77eXpkozMIp8Rts9ZRWE6HwBb//pxcyz9UkI/ACyjqwun
+TpCk65qTa0+ZzBBZ5HI0cN6KJglhTEk8vOCk02VvGUzmtYfXRuMlofGbiqsUitkE
+e0DQ7+FHmW78d864SAVILVcP8dI/9aUaONBdVoYKrqj0sSBZNNH23qVTocLxl05G
+GtZ174ugG6gah/5VydxZV8JQIarNZfLk15jQfviciTF6qvJhi4GzaCntDo9pMj27
+XomhZAcG3iJ50VTXtFrcQtQ3NvXMF865v9u3S4bDYiQurz54SbrnMgNbkMl/DCtd
+VutkROeK4iSc2dl/AFMYSPPeAyEnTKZ1ZJOUke2LLoteXMDFYAu4BGEMWlYfJ+Ts
+uBXp5X7I1x5Tmq5vSoWfSFYarZhWpPua/UGj2FcI61Gb/p0vUW0JKFMlE7+3MzRH
+x7PdKU/OQgg9DtDWc+WSUzhRFmfG/CZasUqlgZTKJ9AGthtImFJb/PdV+67021rn
+Sk/E9CWQrwhrq5uuAN6SOgVfndwYt7aQMvPzWjyEStnNI2CM6wGQEAAN9bxV+mJv
+D3Vf3NNeFaI/OmbijHY4/0jSNWmx24xmMLBcVpbd3mVeEuUfgFfqLA9iRfdkmd/7
+vFD2EUK6Y0xXFV0Q7dqhim9WdDnq6G63aQPmZKYylYZoGoHruZXMuknItDqLphKM
+FzkRPv7htOxvus0TarsgpoHaExPxhkgy/6wxu3/0sfoz/0/BacJW1Kv1VcdXBvnL
+EjHsGrxsWjoKtkDeakFcRqEJRoYlWkyr7Sg6+vERBFtRzJlb6G+rPgVbWbwglIlm
+d897HGwsic1kcbLV2EfVyTI47dv4rGprApxunJW2Mr/lFCWH3X2eCll4MDlR4uJR
+XvNQeDQTWnIJamEfJa32kZ4XzXD3Nc05QW611druvINSFtAxbWdxR4cFumY6lo7d
+07AhsiO78Dje3MWntqY2omaZH2bk1BCa1IAJrqxSTk7KdeYGc78+b5008ZYjwdCr
+MoghS7OLh7/odFh9OKec5DY0e2XTrjxDFEX0HVDaIIJYCZWtWpBhw1OzSVfE/fho
+00d9UwbotmwyxgxMXjrGHQ4ZURSr4EHJwysNnWDU90mvqLHhPIpjpHcSTyOVD143
+zfMsnjC+rzfWCToEylInB0aAh9NPSJ79syvfavy+gHne9KNrCG6vDmu27uXBpRDB
+3sYSG8rb51r8pYFGf7RYv5qbl8fLMEk6+jmjawqRhufJCQ9CySkFznXeeQESuCgR
+FmJWiRkpI2zHa2AnyD5zX5fCPGrCNoQ4YEBvT61MqlTQ/31kvK6SeGuDPKut92MK
+kldEbtHYtv1jmZyZPhfj8HX7kPSe+su0Q6Qp0heKHLbVlVsNS8bqsAJ1CKrHygSA
+//cc4ZqUTQvVajRMaC0SjP/8svf8cXfzNy6o+jbwJ547+SXDDqKaSt/ysds4VhOj
+mgAuTXFy0t7KAW5bzUJs6dqGNc3KkKsgFnb25keR+F20Hla3sC53ZoKaowFxWurC
++EFPERGHLaJ1D6AaDGt1g3J0VsTFtTD7HLWVNVlxDY0cbs40uWxDKZ74M8rKeCA7
+JOmSUV9RzgAzYqYEkOW43oUbvM4oeqYLOPDByonqBJLVOMr0eDSLp46Qjr0ic0ez
+hrO46T6ba6/zA0Vgyyy3Fn5QaImrv8ZLY3dvd7i5YZ44xGYlwvxJQ9Mu4apZ8kxL
+0GEPHk5WZN2j5n/i1jmKiXBTAekgK7ixIaRKpn2Q7PQgrwhVopW5vS8BPEQ17anU
+V89mgO4SIL91JyJyVTG9i5oLKY4j6nyLJRYrduvisqQcLFyuepUpN01KetIyPbAD
+VlnxpotB+zteViCJXiR2NbmNNXPCX5/iuJyVNr/EOOZK0WYnSoeafRl2iSVAzosc
+zHBY6u06ggGAxmE6H7GEMg==
+-----END ENCRYPTED PRIVATE KEY-----
diff --git a/dev-deployment/pki/ca/server/ca-root.crt b/dev-deployment/pki/ca/server/ca-root.crt
new file mode 100644
index 0000000000000000000000000000000000000000..698eceb70b454151c11c5821be11cd7abd094f8d
--- /dev/null
+++ b/dev-deployment/pki/ca/server/ca-root.crt
@@ -0,0 +1,128 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number: 1 (0x1)
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_server
+ Validity
+ Not Before: May 5 12:15:12 2020 GMT
+ Not After : May 3 12:15:12 2030 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_server
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:a8:77:6c:76:96:08:23:97:9a:19:55:77:e1:9b:
+ 9f:a2:23:ca:fc:1c:74:74:23:38:24:15:04:64:e7:
+ 56:f6:e5:92:14:83:14:ee:78:d9:56:c9:0e:2a:c2:
+ 67:71:4a:4f:8f:2f:e5:a9:1a:6c:de:e6:3b:da:15:
+ 93:a2:4a:97:5a:0b:45:4a:4a:9e:94:9f:3a:b4:9a:
+ 99:3b:08:de:07:13:0b:bb:c4:4d:1b:0b:32:3c:74:
+ 03:12:bf:54:3b:63:ab:2c:de:af:e5:c7:14:cd:1c:
+ 91:60:2b:7a:cd:eb:05:50:dc:f6:06:ae:91:f5:1b:
+ 33:12:04:cb:55:45:ee:51:54:99:ce:e9:c1:00:58:
+ 92:df:8a:44:30:89:8b:cc:9d:55:31:5e:72:56:22:
+ d6:d0:11:16:a8:06:c4:e7:3f:c2:4b:74:23:89:6d:
+ 6e:04:7f:1e:26:59:73:74:86:29:2c:7a:50:9b:b8:
+ c6:13:43:12:91:53:cf:fb:5f:3d:22:2b:73:4e:7d:
+ c4:48:46:db:3d:4b:e1:69:bd:17:0c:3d:46:a3:8b:
+ 52:f8:15:40:d1:9e:0b:7c:d9:82:ff:0e:eb:ca:58:
+ 4c:11:16:cf:37:56:46:e8:a5:46:3b:7c:2b:50:23:
+ be:a2:d1:f2:87:e5:a7:3d:0a:e9:30:fa:ce:2e:a5:
+ 29:84:fa:9c:67:45:fd:3c:fc:67:80:7d:da:5a:c9:
+ 32:46:0c:b0:0b:42:ed:95:86:bc:a3:1f:b3:d1:93:
+ b2:a1:e7:13:ad:f4:f2:0b:88:9b:6d:8f:f6:65:0e:
+ d6:46:1d:6e:bd:ff:41:0c:10:01:99:02:5c:4b:ce:
+ 58:e2:db:5f:8a:6a:fe:d4:f6:72:cf:f7:ac:8e:2a:
+ 53:96:1a:3a:ab:17:44:d4:79:70:dd:fd:91:1d:48:
+ 26:7c:04:12:63:e8:34:8f:77:04:1e:be:8e:45:42:
+ 58:fe:dd:05:9c:1a:ad:ec:7e:ef:8d:42:72:aa:99:
+ a2:19:60:7a:7e:ed:97:89:4e:12:a4:ca:fe:e5:c5:
+ 09:3e:f9:14:0a:1a:38:46:83:38:7f:1c:b6:01:93:
+ aa:ac:44:b5:11:53:a5:72:d5:34:c3:a9:53:29:39:
+ 40:32:83:03:92:a9:a6:f6:c7:b3:4c:25:5e:fa:ae:
+ 5b:99:13:20:bd:86:72:3d:6f:e5:a1:56:b2:9c:08:
+ 91:9d:50:ef:33:94:cb:ef:c3:e1:11:52:57:c3:c9:
+ 0d:b6:72:f1:06:38:13:37:75:b6:18:21:c1:78:bc:
+ 8b:b8:82:69:23:0d:76:51:cb:cd:45:71:a0:86:d4:
+ 09:03:2a:fc:19:22:4d:6d:62:60:3f:2a:14:f1:ab:
+ f5:59:87
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ CA Root
+ X509v3 Subject Key Identifier:
+ 62:6C:E9:38:13:97:E8:FC:72:44:77:E6:0F:C7:84:11:D9:9C:EC:6E
+ X509v3 Authority Key Identifier:
+ keyid:62:6C:E9:38:13:97:E8:FC:72:44:77:E6:0F:C7:84:11:D9:9C:EC:6E
+
+ X509v3 Basic Constraints: critical
+ CA:TRUE, pathlen:1
+ X509v3 Key Usage:
+ Certificate Sign, CRL Sign
+ Netscape Cert Type:
+ SSL CA
+ Signature Algorithm: sha256WithRSAEncryption
+ 56:83:ea:61:df:f5:ac:65:93:06:e1:bf:88:3f:bf:47:ae:be:
+ 57:a0:5d:39:1d:b8:03:88:ee:90:42:11:ff:fa:16:b1:78:62:
+ 34:c7:91:02:94:57:96:3d:84:99:79:d6:4e:69:64:93:96:87:
+ 65:57:14:ca:4b:96:9a:a7:d3:1e:f3:e9:d3:8c:8a:2d:23:0f:
+ 20:4d:1f:ff:98:f2:fb:d2:37:0e:99:9b:e6:df:b3:65:14:89:
+ e7:cd:3f:83:69:cd:37:b1:a1:83:5e:03:d9:61:d4:99:76:bc:
+ 4f:bf:0f:b0:cf:d4:c1:b9:bc:d2:a5:b5:a0:a7:75:ef:5f:77:
+ 8f:d3:00:33:ee:4d:fe:47:07:5f:b8:01:35:40:1b:d4:2a:04:
+ 77:6c:96:71:95:f3:1a:f4:55:a8:ae:3d:76:2c:03:af:6d:7c:
+ 02:8f:03:65:10:38:57:3d:a0:b0:c4:ca:36:e9:eb:fc:0d:8b:
+ 0d:ae:ad:58:56:03:0f:d1:3d:cf:e1:77:c6:e8:8f:0f:c4:44:
+ 53:a2:ac:06:6d:6f:72:46:f8:d8:7b:18:d4:bd:09:e3:8d:9f:
+ da:9a:64:b3:72:4b:42:f8:a0:74:e0:e1:06:e8:56:02:ce:ce:
+ ec:ec:79:06:6e:f7:a8:a8:f7:24:4e:de:4d:72:68:3b:92:98:
+ 2d:84:9a:a4:51:5f:b7:90:3d:76:45:de:ca:5e:c1:ea:0c:87:
+ 33:0b:ff:34:45:2d:36:7b:04:bc:c0:21:37:54:ae:a2:b2:c7:
+ a3:74:a3:3f:f1:b5:38:98:3d:10:f3:e2:4c:03:58:57:f0:b7:
+ 87:02:40:5d:c5:75:e4:59:77:74:9e:22:91:d4:9e:82:87:ea:
+ 77:dc:29:71:1f:97:29:54:ee:ae:2d:10:d8:b8:5f:08:41:98:
+ 80:f2:dd:2d:e2:56:76:17:c7:3f:b3:a7:f1:c2:36:a9:4a:42:
+ e1:7d:bb:49:fa:9b:34:67:e2:5a:60:65:a5:4b:96:49:08:ce:
+ ae:54:5c:9c:fe:a9:60:85:ef:86:10:03:fc:0a:b6:14:a6:3c:
+ a3:17:86:b7:07:5e:9e:fc:c0:bc:4f:65:52:99:21:9d:f5:dd:
+ f2:29:5f:29:b4:2c:68:44:bd:26:ed:f3:dc:40:43:97:37:39:
+ e8:20:6b:c8:f7:46:e6:fa:db:4d:c3:69:eb:02:1e:18:a0:70:
+ 38:39:47:6a:cc:b1:48:3c:a8:15:99:b8:c8:5e:de:36:27:36:
+ 11:38:4e:2f:10:fc:07:9a:f7:75:f3:69:c0:c0:30:ae:7b:d4:
+ 3e:a9:12:1c:ce:6c:05:82:7f:8d:cb:17:08:7d:23:23:2b:64:
+ 71:fb:4d:f8:9f:bb:28:d0
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/dev-deployment/pki/ca/server/ca-root.key b/dev-deployment/pki/ca/server/ca-root.key
new file mode 100644
index 0000000000000000000000000000000000000000..7a3fae9e43f0b70266ebc009d9e5ab84ad5b1983
--- /dev/null
+++ b/dev-deployment/pki/ca/server/ca-root.key
@@ -0,0 +1,54 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----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+-----END ENCRYPTED PRIVATE KEY-----
diff --git a/dev-deployment/pki/config/ca-config b/dev-deployment/pki/config/ca-config
new file mode 100644
index 0000000000000000000000000000000000000000..0d9bdc628caa8588a210a5e39f64abcaec7a1345
--- /dev/null
+++ b/dev-deployment/pki/config/ca-config
@@ -0,0 +1,65 @@
+# Configuration used to create CA certificates (root & intermediate)
+
+# Signing CA parameters
+
+[ ca ]
+default_ca = ca_root
+
+[ ca_root ]
+dir = ../dev-deployment/pki
+certs = $dir/ca/client-external
+new_certs_dir = $dir/tempcerts
+database = $dir/config/${ENV::OPENSSL_CA_DIR}/index.txt
+certificate = $dir/ca/${ENV::OPENSSL_CA_DIR}/ca-root.crt
+serial = $dir/config/${ENV::OPENSSL_CA_DIR}/serial
+private_key = $dir/ca/${ENV::OPENSSL_CA_DIR}/ca-root.key
+default_days = 3650
+default_md = sha256
+preserve = no
+policy = policy_match
+unique_subject = no
+
+[ policy_match ]
+countryName = match
+stateOrProvinceName = match
+localityName = match
+organizationName = match
+organizationalUnitName = optional
+commonName = supplied
+emailAddress = optional
+
+[ req ]
+# Options for the `req` tool (`man req`).
+prompt = no
+default_bits = 4096
+string_mask = utf8only
+distinguished_name = req_distinguished_name
+
+[ req_distinguished_name ]
+# prompt = no in req options above ; so following are real values, not prompts
+C = fr
+ST = idf
+L = paris
+O = vitamui
+OU = authorities
+CN = ${ENV::OPENSSL_CN}
+
+
+# Certificates creation parameters : extensions
+
+[ extension_ca_root ]
+nsComment = "CA Root"
+subjectKeyIdentifier = hash
+authorityKeyIdentifier = keyid:always,issuer
+basicConstraints = critical,CA:true,pathlen:1
+keyUsage = keyCertSign, cRLSign
+nsCertType = sslCA
+
+[ extension_ca_intermediate ]
+nsComment = "CA Intermediate"
+subjectKeyIdentifier = hash
+authorityKeyIdentifier = keyid,issuer:always
+basicConstraints = critical,CA:true,pathlen:0
+issuerAltName = issuer:copy
+keyUsage = keyCertSign, cRLSign
+nsCertType = sslCA
diff --git a/deployment/pki/config/client-iam/crlnumber b/dev-deployment/pki/config/client-external/crlnumber
similarity index 100%
rename from deployment/pki/config/client-iam/crlnumber
rename to dev-deployment/pki/config/client-external/crlnumber
diff --git a/dev-deployment/pki/config/client-external/index.txt b/dev-deployment/pki/config/client-external/index.txt
new file mode 100644
index 0000000000000000000000000000000000000000..de319a3ed1e73607f79adc81419e13321bdf68ee
--- /dev/null
+++ b/dev-deployment/pki/config/client-external/index.txt
@@ -0,0 +1,3 @@
+V 300503121516Z 01 unknown /C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-external
+V 300503121518Z 02 unknown /C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_intermediate_client-external
+V 230505123509Z 03 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=customer_x
diff --git a/dev-deployment/pki/config/client-external/serial b/dev-deployment/pki/config/client-external/serial
new file mode 100644
index 0000000000000000000000000000000000000000..64969239d5f72d674bbedc24eb0a155a59d0e607
--- /dev/null
+++ b/dev-deployment/pki/config/client-external/serial
@@ -0,0 +1 @@
+04
diff --git a/deployment/pki/config/client-storage/crlnumber b/dev-deployment/pki/config/client-vitam/crlnumber
similarity index 100%
rename from deployment/pki/config/client-storage/crlnumber
rename to dev-deployment/pki/config/client-vitam/crlnumber
diff --git a/dev-deployment/pki/config/client-vitam/index.txt b/dev-deployment/pki/config/client-vitam/index.txt
new file mode 100644
index 0000000000000000000000000000000000000000..d46e16c66b47b8dc209609c4c6d8a1659c221379
--- /dev/null
+++ b/dev-deployment/pki/config/client-vitam/index.txt
@@ -0,0 +1,3 @@
+V 300503121520Z 01 unknown /C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_client-vitam
+V 300503121522Z 02 unknown /C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_intermediate_client-vitam
+V 230505123512Z 03 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=vitamui
diff --git a/dev-deployment/pki/config/client-vitam/serial b/dev-deployment/pki/config/client-vitam/serial
new file mode 100644
index 0000000000000000000000000000000000000000..64969239d5f72d674bbedc24eb0a155a59d0e607
--- /dev/null
+++ b/dev-deployment/pki/config/client-vitam/serial
@@ -0,0 +1 @@
+04
diff --git a/dev-deployment/pki/config/crt-config b/dev-deployment/pki/config/crt-config
new file mode 100644
index 0000000000000000000000000000000000000000..919853421824881a8afeb1b6ca2f726465e2b4eb
--- /dev/null
+++ b/dev-deployment/pki/config/crt-config
@@ -0,0 +1,78 @@
+# Configuration used to create non-CA certificates
+
+# Signing CA parameters
+
+[ ca ]
+default_ca = ca_intermediate
+
+[ ca_intermediate ]
+dir = ../dev-deployment/pki
+certs = $dir/ca/${ENV::OPENSSL_CRT_DIR}
+new_certs_dir = $dir/tempcerts
+database = $dir/config/${ENV::OPENSSL_CRT_DIR}/index.txt
+certificate = $dir/ca/${ENV::OPENSSL_CRT_DIR}/ca-intermediate.crt
+serial = $dir/config/${ENV::OPENSSL_CRT_DIR}/serial
+private_key = $dir/ca/${ENV::OPENSSL_CRT_DIR}/ca-intermediate.key
+default_days = 1095
+default_md = sha256
+preserve = no
+policy = policy_match
+unique_subject = no
+
+[ policy_match ]
+countryName = match
+stateOrProvinceName = match
+localityName = match
+organizationName = match
+organizationalUnitName = optional
+commonName = supplied
+emailAddress = optional
+
+[ req ]
+# Options for the `req` tool (`man req`).
+prompt = no
+default_bits = 4096
+string_mask = utf8only
+distinguished_name = req_distinguished_name
+
+[ req_distinguished_name ]
+# prompt = no in req options above ; so following are real values, not prompts
+C = fr
+ST = idf
+L = paris
+O = vitamui
+CN = ${ENV::OPENSSL_CN}
+
+
+# Certificates creation parameters : extensions
+
+#[ extension_server ]
+#nsComment = "Certificat Serveur SSL"
+#subjectKeyIdentifier = hash
+#authorityKeyIdentifier = keyid,issuer:always
+#issuerAltName = issuer:copy
+#subjectAltName = ${ENV::OPENSSL_SAN}
+#basicConstraints = critical,CA:FALSE
+#keyUsage = digitalSignature, keyEncipherment
+#nsCertType = server
+#extendedKeyUsage = serverAuth
+
+[ extension_client ]
+nsComment = "Certificat Client SSL"
+subjectKeyIdentifier = hash
+authorityKeyIdentifier = keyid,issuer:always
+issuerAltName = issuer:copy
+basicConstraints = critical,CA:FALSE
+keyUsage = digitalSignature
+nsCertType = client
+extendedKeyUsage = clientAuth
+
+[ extension_timestamping ]
+nsComment = "Certificat Serveur SSL"
+subjectKeyIdentifier = hash
+authorityKeyIdentifier = keyid,issuer:always
+issuerAltName = issuer:copy
+basicConstraints = critical,CA:FALSE
+keyUsage = digitalSignature, nonRepudiation
+nsCertType = server
+extendedKeyUsage = critical,timeStamping
diff --git a/deployment/pki/config/iam-external/crlnumber b/dev-deployment/pki/config/server/crlnumber
similarity index 100%
rename from deployment/pki/config/iam-external/crlnumber
rename to dev-deployment/pki/config/server/crlnumber
diff --git a/dev-deployment/pki/config/server/index.txt b/dev-deployment/pki/config/server/index.txt
new file mode 100644
index 0000000000000000000000000000000000000000..e31d7d55cff3e7c5fccfbbb0d64081afdf7e894d
--- /dev/null
+++ b/dev-deployment/pki/config/server/index.txt
@@ -0,0 +1,8 @@
+V 300503121512Z 01 unknown /C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_server
+V 300503121514Z 02 unknown /C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_intermediate_server
+V 230505123444Z 03 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=dev.vitamui.com
+V 230505123448Z 04 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=dev.vitamui.com
+V 230505123452Z 05 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=dev.vitamui.com
+V 230505123455Z 06 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=dev.vitamui.com
+V 230505123459Z 07 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=dev.vitamui.com
+V 230505123504Z 08 unknown /C=fr/ST=idf/L=paris/O=vitamui/CN=dev.vitamui.com
diff --git a/dev-deployment/pki/config/server/serial b/dev-deployment/pki/config/server/serial
new file mode 100644
index 0000000000000000000000000000000000000000..86397e5c10b56e2bda47fd5609ba514cd97a0dad
--- /dev/null
+++ b/dev-deployment/pki/config/server/serial
@@ -0,0 +1 @@
+09
diff --git a/dev-deployment/vault_pass.txt b/dev-deployment/vault_pass.txt
new file mode 100644
index 0000000000000000000000000000000000000000..a2d2d8700d3a21ac149831b414db01ee9e6e530b
--- /dev/null
+++ b/dev-deployment/vault_pass.txt
@@ -0,0 +1 @@
+change_it
diff --git a/dev-deployment/vault_pki.pass b/dev-deployment/vault_pki.pass
new file mode 100644
index 0000000000000000000000000000000000000000..890613d115ea5c694520a85857b7d85e9db11bdb
--- /dev/null
+++ b/dev-deployment/vault_pki.pass
@@ -0,0 +1 @@
+change_me
diff --git a/integration-tests/src/test/resources/application-dev.yml b/integration-tests/src/test/resources/application-dev.yml
index ba8ec202c648bc56917cb4870ae0d9c8cecf5541..eb9ad9de9d4d6e0d4d36222d5d42328dcd2201ea 100644
--- a/integration-tests/src/test/resources/application-dev.yml
+++ b/integration-tests/src/test/resources/application-dev.yml
@@ -9,7 +9,7 @@ server-identity:
certs-folder: certs/local/
generic-cert: ${certs-folder}/generic-it.jks
-jks-password: jkspasswd
+jks-password: changeme
# Iam client configuration
iam-client:
@@ -17,10 +17,10 @@ iam-client:
port: 8083
ssl:
keystore:
- path: ${certs-folder}/ui-identity.jks
+ path: ${certs-folder}/keystore_ui-identity.jks
password: ${jks-password}
truststore:
- path: ${certs-folder}/truststore.jks
+ path: ${certs-folder}/truststore_server.jks
password: ${jks-password}
# Mongo
diff --git a/integration-tests/src/test/resources/application-integration.yml b/integration-tests/src/test/resources/application-integration.yml
index 8817bb6059d40607da166327f49983a43652ca11..7f21e0b869ee6e7a44523d7956e11c5ff2257246 100644
--- a/integration-tests/src/test/resources/application-integration.yml
+++ b/integration-tests/src/test/resources/application-integration.yml
@@ -9,7 +9,7 @@ server-identity:
certs-folder: certs/integration/
generic-cert: ${certs-folder}/generic-it.jks
-jks-password: jkspasswd
+jks-password: changeme
# Iam client configuration
iam-client:
diff --git a/integration-tests/src/test/resources/certs/local/cas-server.jks b/integration-tests/src/test/resources/certs/local/cas-server.jks
deleted file mode 100644
index 2722c426e9f37b0f30deb3a86d7eb6961cdcf38d..0000000000000000000000000000000000000000
Binary files a/integration-tests/src/test/resources/certs/local/cas-server.jks and /dev/null differ
diff --git a/integration-tests/src/test/resources/certs/local/keystore_cas-server.jks b/integration-tests/src/test/resources/certs/local/keystore_cas-server.jks
new file mode 100644
index 0000000000000000000000000000000000000000..556663f10346811223f119acbbe56d49ec2f9e57
Binary files /dev/null and b/integration-tests/src/test/resources/certs/local/keystore_cas-server.jks differ
diff --git a/integration-tests/src/test/resources/certs/local/keystore_ui-identity.jks b/integration-tests/src/test/resources/certs/local/keystore_ui-identity.jks
new file mode 100644
index 0000000000000000000000000000000000000000..e5c9e841f135a8890a4e57245003b2d5772a400a
Binary files /dev/null and b/integration-tests/src/test/resources/certs/local/keystore_ui-identity.jks differ
diff --git a/integration-tests/src/test/resources/certs/local/keystore_ui-portal.jks b/integration-tests/src/test/resources/certs/local/keystore_ui-portal.jks
new file mode 100644
index 0000000000000000000000000000000000000000..07f63162f4b4065aa83e3aa50caf5027a4a6e8bf
Binary files /dev/null and b/integration-tests/src/test/resources/certs/local/keystore_ui-portal.jks differ
diff --git a/integration-tests/src/test/resources/certs/local/truststore.jks b/integration-tests/src/test/resources/certs/local/truststore.jks
deleted file mode 100644
index 33058df7190e4c48f79813ce75b4e4da97b77b3c..0000000000000000000000000000000000000000
Binary files a/integration-tests/src/test/resources/certs/local/truststore.jks and /dev/null differ
diff --git a/integration-tests/src/test/resources/certs/local/truststore_server.jks b/integration-tests/src/test/resources/certs/local/truststore_server.jks
new file mode 100644
index 0000000000000000000000000000000000000000..c25bb727ec4db42c6b9582f530209b6fc160ffff
Binary files /dev/null and b/integration-tests/src/test/resources/certs/local/truststore_server.jks differ
diff --git a/packaging/assembly-deployment.xml b/packaging/assembly-deployment.xml
new file mode 100644
index 0000000000000000000000000000000000000000..f510b090e3c7da2800a4117088f218b56dc3aa76
--- /dev/null
+++ b/packaging/assembly-deployment.xml
@@ -0,0 +1,50 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<assembly xmlns="http://maven.apache.org/plugins/maven-assembly-plugin/assembly/1.1.2" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/plugins/maven-assembly-plugin/assembly/1.1.2 http://maven.apache.org/xsd/assembly-1.1.2.xsd">
+ <id>deployment</id>
+ <formats>
+ <format>tar.gz</format>
+ </formats>
+ <includeBaseDirectory>false</includeBaseDirectory>
+ <fileSets>
+ <!-- Add ansible deployment files -->
+ <fileSet>
+ <directory>../deployment</directory>
+ <outputDirectory>deployment</outputDirectory>
+ <excludes>
+ <exclude>**/*.retry</exclude>
+ <exclude>**/*.settings/**</exclude>
+ <exclude>**/*.project</exclude>
+ <exclude>**/*.gitignore</exclude>
+ <exclude>vault_pass.txt</exclude>
+ <exclude>vault_pki.pass</exclude>
+ <exclude>environments/hosts.local</exclude>
+ <exclude>environments/hosts.vitam</exclude>
+ <exclude>environments/hosts.vitamui</exclude>
+ <exclude>environments/hosts.example</exclude>
+ <!-- We exclude information about CA/certs/keystores and vault linked to them.
+ They must be generated during a deployment or loaded - and stored oustide sources. -->
+ <exclude>environments/group_vars/all/vault-keystores.yml.example</exclude>
+ <exclude>environments/group_vars/all/vault-keystores.yml</exclude>
+ <exclude>environments/certs/vault-certs.yml.example</exclude>
+ <exclude>environments/certs/vault-certs.yml</exclude>
+ <exclude>environments/certs/vault-ca.yml.example</exclude>
+ <exclude>environments/certs/vault-ca.yml</exclude>
+ <exclude>pki/ca/**</exclude>
+ <exclude>pki/config/*/*</exclude>
+ <exclude>pki/tempcerts/**</exclude>
+ <exclude>environments/certs/**</exclude>
+ <exclude>environments/certs_vitam/**</exclude>
+ <exclude>environments/keystores/**</exclude>
+ </excludes>
+ </fileSet>
+
+ <fileSet>
+ <directory>../tools/docker/mongo/database_scripts/</directory>
+ <useDefaultExcludes>true</useDefaultExcludes>
+ <includes>
+ <include>**/*</include>
+ </includes>
+ <outputDirectory>deployment/scripts/mongod/</outputDirectory>
+ </fileSet>
+ </fileSets>
+</assembly>
diff --git a/packaging/assembly.xml b/packaging/assembly.xml
index b9f74464026f0243a46529458fc42939dcfe5137..efa0130aacdc2b56250ccc6c92f831e2b8998896 100644
--- a/packaging/assembly.xml
+++ b/packaging/assembly.xml
@@ -41,20 +41,6 @@
<exclude>**/rpm_signed/**</exclude>
</excludes>
</fileSet>
- <!-- Add ansible deployment files -->
- <fileSet>
- <directory>../deploymentByVitam</directory>
- <outputDirectory>deployment</outputDirectory>
- <excludes>
- <exclude>**/*.retry</exclude>
- <exclude>deployment/pki/ca/*</exclude>
- <exclude>deployment/pki/config/*</exclude>
- <exclude>**/*.crt</exclude>
- <exclude>**/*.key</exclude>
- <exclude>**/*.p12</exclude>
- <exclude>**/*.jks</exclude>
- </excludes>
- </fileSet>
</fileSets>
</assembly>
diff --git a/packaging/pom.xml b/packaging/pom.xml
index da5c71416102d9c1ffc95edb8e530f3432bf7b6d..570033b57aa0459c05847666027e8a960217d95e 100644
--- a/packaging/pom.xml
+++ b/packaging/pom.xml
@@ -9,127 +9,128 @@
<version>1.0.0-SNAPSHOT</version>
<relativePath>../pom.xml</relativePath>
</parent>
- <artifactId>vitam-ui-package</artifactId>
+ <artifactId>package</artifactId>
<packaging>pom</packaging>
<name>VITAM-UI Package</name>
<description>Packaging VITAM-UI</description>
- <build>
- <plugins>
- <!-- download dependencies for signing rpms -->
- <plugin>
- <groupId>org.apache.maven.plugins</groupId>
- <artifactId>maven-dependency-plugin</artifactId>
- <executions>
- <execution>
- <id>copy-dependencies-rpm-signed</id>
- <phase>process-resources</phase>
- <goals>
- <goal>copy-dependencies</goal>
- </goals>
- <configuration>
- <includeGroupIds>fr.gouv.vitam</includeGroupIds>
- <includeTypes>rpm</includeTypes>
- <outputDirectory>${basedir}/rpm_signed/vitam-product/</outputDirectory>
- <overWriteReleases>false</overWriteReleases>
- <overWriteSnapshots>false</overWriteSnapshots>
- <overWriteIfNewer>true</overWriteIfNewer>
- </configuration>
- </execution>
- </executions>
- </plugin>
- <plugin>
- <groupId>org.codehaus.mojo</groupId>
- <artifactId>exec-maven-plugin</artifactId>
- <version>${maven.exec.plugin.version}</version>
- <executions>
- <!-- <execution>
- <id>create yum repodata for vitam-external</id>
- <phase>test</phase>
- <goals>
- <goal>exec</goal>
- </goals>
- <configuration>
- <executable>/usr/bin/createrepo</executable>
- <arguments>
- <argument>.</argument>
- </arguments>
- <workingDirectory>../rpm/vitam-external/target/</workingDirectory>
- </configuration>
- </execution> -->
- <!-- remove useless & dangerous configuration -->
- <execution>
- <id>Remove vitam certificates</id>
- <phase>compile</phase>
- <goals>
- <goal>exec</goal>
- </goals>
- <configuration>
- <executable>./remove_user_certificates.sh</executable>
- </configuration>
- </execution>
-
- <!-- sign rpm -->
- <execution>
- <id>Create signed rpm</id>
- <phase>prepare-package</phase>
- <goals>
- <goal>exec</goal>
- </goals>
- <configuration>
- <executable>./create_rpm_signed.sh</executable>
- </configuration>
- </execution>
- </executions>
- </plugin>
+ <profiles>
+ <profile>
+ <id>package-all</id>
+ <dependencies>
+ <!-- VITAM-UI dependencies -->
+ <dependency>
+ <groupId>fr.gouv.vitamui</groupId>
+ <artifactId>cas-server</artifactId>
+ <version>${project.version}</version>
+ <type>rpm</type>
+ </dependency>
+ <dependency>
+ <groupId>fr.gouv.vitamui</groupId>
+ <artifactId>iam-external</artifactId>
+ <version>${project.version}</version>
+ <type>rpm</type>
+ </dependency>
- <!-- generate assemblies -->
- <plugin>
- <artifactId>maven-assembly-plugin</artifactId>
- <executions>
- <execution>
- <id>assembly</id>
- <phase>package</phase>
- <configuration>
- <appendAssemblyId>true</appendAssemblyId>
- <descriptors>
- <descriptor>${basedir}/assembly.xml</descriptor>
- </descriptors>
- </configuration>
- <goals>
- <goal>single</goal>
- </goals>
- </execution>
- </executions>
- </plugin>
- </plugins>
- </build>
+ <dependency>
+ <groupId>fr.gouv.vitamui</groupId>
+ <artifactId>iam-internal</artifactId>
+ <version>${project.version}</version>
+ <type>rpm</type>
+ </dependency>
+ </dependencies>
+ <build>
+ <plugins>
+ <!-- download dependencies for signing rpms -->
+ <plugin>
+ <groupId>org.apache.maven.plugins</groupId>
+ <artifactId>maven-dependency-plugin</artifactId>
+ <executions>
+ <execution>
+ <id>copy-dependencies-rpm-signed</id>
+ <phase>process-resources</phase>
+ <goals>
+ <goal>copy-dependencies</goal>
+ </goals>
+ <configuration>
+ <includeGroupIds>fr.gouv.vitam</includeGroupIds>
+ <includeTypes>rpm</includeTypes>
+ <outputDirectory>${basedir}/rpm_signed/vitam-product/</outputDirectory>
+ <overWriteReleases>false</overWriteReleases>
+ <overWriteSnapshots>false</overWriteSnapshots>
+ <overWriteIfNewer>true</overWriteIfNewer>
+ </configuration>
+ </execution>
+ </executions>
+ </plugin>
+ <plugin>
+ <groupId>org.codehaus.mojo</groupId>
+ <artifactId>exec-maven-plugin</artifactId>
+ <version>${maven.exec.plugin.version}</version>
+ <executions>
+ <!-- sign rpm -->
+ <execution>
+ <id>Create signed rpm</id>
+ <phase>prepare-package</phase>
+ <goals>
+ <goal>exec</goal>
+ </goals>
+ <configuration>
+ <executable>./create_rpm_signed.sh</executable>
+ </configuration>
+ </execution>
+ </executions>
+ </plugin>
- <dependencies>
-
- <!-- VITAM dependencies -->
-
- <dependency>
- <groupId>fr.gouv.vitamui</groupId>
- <artifactId>cas-server</artifactId>
- <version>${project.version}</version>
- <type>rpm</type>
- </dependency>
- <dependency>
- <groupId>fr.gouv.vitamui</groupId>
- <artifactId>iam-external</artifactId>
- <version>${project.version}</version>
- <type>rpm</type>
- </dependency>
-
- <dependency>
- <groupId>fr.gouv.vitamui</groupId>
- <artifactId>iam-internal</artifactId>
- <version>${project.version}</version>
- <type>rpm</type>
- </dependency>
-
-
-
- </dependencies>
+ <!-- generate assemblies -->
+ <plugin>
+ <artifactId>maven-assembly-plugin</artifactId>
+ <executions>
+ <execution>
+ <id>assembly</id>
+ <phase>package</phase>
+ <configuration>
+ <appendAssemblyId>true</appendAssemblyId>
+ <descriptors>
+ <descriptor>${basedir}/assembly.xml</descriptor>
+ <descriptor>${basedir}/assembly-deployment.xml</descriptor>
+ </descriptors>
+ </configuration>
+ <goals>
+ <goal>single</goal>
+ </goals>
+ </execution>
+ </executions>
+ </plugin>
+ </plugins>
+ </build>
+ </profile>
+ <profile>
+ <id>package-deployment</id>
+ <build>
+ <plugins>
+ <!-- generate assemblies -->
+ <plugin>
+ <artifactId>maven-assembly-plugin</artifactId>
+ <executions>
+ <execution>
+ <id>assembly</id>
+ <phase>package</phase>
+ <configuration>
+ <appendAssemblyId>true</appendAssemblyId>
+ <descriptors>
+ <descriptor>${basedir}/assembly-deployment.xml</descriptor>
+ </descriptors>
+ </configuration>
+ <goals>
+ <goal>single</goal>
+ </goals>
+ </execution>
+ </executions>
+ </plugin>
+ </plugins>
+ </build>
+ </profile>
+ </profiles>
+
</project>
diff --git a/packaging/remove_user_certificates.sh b/packaging/remove_user_certificates.sh
deleted file mode 100755
index 6bddad1e7a5e7c4cd96b41bf9bead5aa8611436d..0000000000000000000000000000000000000000
--- a/packaging/remove_user_certificates.sh
+++ /dev/null
@@ -1,6 +0,0 @@
-#!/usr/bin/env bash
-
-echo "remove_user_certificates.sh"
-pwd
-ls -l ../deployment/environments/group_vars/all/vitam_security.yml
-sed -i 's/admin_personal_certs\s*:\s*\[[^]]*\]/admin_personal_certs: \[\]/' ../deployment/environments/group_vars/all/vitam_security.yml
diff --git a/tools/docker/mongo/README.md b/tools/docker/mongo/README.md
index 5266083fa3d3d15e3942db0706aecdb6b0457389..eac4b8ed8016e55144c0e5ead75a622b9fda4300 100644
--- a/tools/docker/mongo/README.md
+++ b/tools/docker/mongo/README.md
@@ -51,13 +51,78 @@ connecting to: admin
-# Templatage des scripts de DB
+# Initialisation de la base Mongo
+Afin de mutualiser le code et les scripts Mongo exploités en developpement ou lors du déploiement sur un environnement, l'intelligence a été répartie de la manière suivante:
+
+- Les scripts Mongo figurent à l'emplacement suivant: **~/tools/docker/mongo/database_scripts**
+- Le role Ansible d'initialisation figure à l'emplacement suivant: **~/deployment/roles/mongo_init**
+
+Le role d'initialisation de la base de données a plusieurs fonctionnalités: ordonnancement des scripts, templatage et versioning.
+
+## Templatage des scripts de DB
+
+La structure du dossier **database_scripts** est simple:
+```txt
+> database_scripts
+ > 0.0.0
+ > 01_script.js
+ > 02_script.js
+ > 0.1
+ > 1.0
+ > 1.0.5
+ > 1.0.10
+```
+
+Deux niveaux de répertoires sont pris en compte:
+
+- 1er niveau: la version de l'application
+
+ Lors du templatage, un premier tri par version est exécutée afin de trier ces dernières par ordre croissante.
+
+- 2ème niveau: les scripts à exécuter par version
+
+ Lors du templatage, les scripts sont triés par ordre d'index (X_nomDuScript) afin d'assurer l'ordonnacement de l'exécution des scripts. Si aucun index n'est renseigné, l'ordre alphabétique s'applique.
+
+ Par convention, les catégories d'indexes sont:
+ - 0-99: scripts de référence à passer quelque soit les environnements
+ - 100-199: scripts de démo
+ - 200-299: Scripts de developpement.
+
+Les scripts de templatage utilisés sont ceux du déploiement. Lors du packaging du projet, l'ensemble des scripts est copié et intégré à l'archive de déploiement.
+
+Afin d'injecter les bonnes valeurs aux variables des templates, le fichier **mongo_vars_dev.yml** est présent.
+
+Afin d'intégrer une surcharge extérieure des variables par défaut, il est possible de renseigner le chemin d'un autre fichier de variable à travers la variable d'environnements **ADDITIONNAL_VITAMUI_CONFIG_FILE**.
+Attention, toute variable définie dans ce fichier additionnel écrasera la valeur existante.
+
+## Versionning des scripts Mongo
+
+Avant l'exécution d'un script, on vérifie que ce dernier a été exécuté. Pour ce faire, nous nous basons sur deux éléments:
+- le nom du fichier
+- le checkum du fichier
+
+Lors de l'initialisation de la base de données, la base de données **versioning** est créée et la collection suivante est initialisée:
+```
+Changelog {
+ id: Identifiant interne mongo
+ filename: nom du fichier
+ date: date d'éxécution du script
+ version: version de l'application associée au script
+ checksum: hash du fichier
+}
+```
+
+Avant l'exécution de chaque script, on effectue une recherche d'exécution (sur les champs filename et checksum):
+- si le script a déjà été exécutée, aucun action n'est effectuée
+- si le script n'a pas été exécuté, ce dernier est exécuté et une entrée est rajoutée dans la collection *changelog*
+
+Toute erreur lors du processus entraine l'arrêt de l'initialisation de la base Mongo
+
+Dans le cas d'une migration d'une version de VitamUI précédent le versioning, il suffit de définir la variable Ansible **mock_insert_data**. Dans le cas présent, l'ensemble des scripts seront joués mais non exécutées, seules les entrées dans la collection **changelog** seront ajoutées.
## Coloration syntaxique intellij
Si vous utilisez un IDE intellij, le plugin suivant vous offrera la coloration syntaxique adequate ainsi que quelques
fonctionnalité de
https://plugins.jetbrains.com/plugin/7792-yaml-ansible-support
-
-##
diff --git a/deployment/roles/mongo_configure/templates/mongo-vitamui/init-admin-database.js.j2 b/tools/docker/mongo/database_scripts/0.0.0/01_init-admin-database.js.j2
similarity index 100%
rename from deployment/roles/mongo_configure/templates/mongo-vitamui/init-admin-database.js.j2
rename to tools/docker/mongo/database_scripts/0.0.0/01_init-admin-database.js.j2
diff --git a/deployment/roles/mongo_configure/templates/mongo-vitamui/init-cas-database.js.j2 b/tools/docker/mongo/database_scripts/0.0.0/02_init-cas-database.js.j2
similarity index 100%
rename from deployment/roles/mongo_configure/templates/mongo-vitamui/init-cas-database.js.j2
rename to tools/docker/mongo/database_scripts/0.0.0/02_init-cas-database.js.j2
diff --git a/deployment/roles/mongo_configure/templates/mongo-vitamui/init-iam-database.js.j2 b/tools/docker/mongo/database_scripts/0.0.0/03_init-iam-database.js.j2
similarity index 100%
rename from deployment/roles/mongo_configure/templates/mongo-vitamui/init-iam-database.js.j2
rename to tools/docker/mongo/database_scripts/0.0.0/03_init-iam-database.js.j2
diff --git a/deployment/roles/mongo_configure/templates/mongo-vitamui/init-security-database.js.j2 b/tools/docker/mongo/database_scripts/0.0.0/04_init-security-database.js.j2
similarity index 100%
rename from deployment/roles/mongo_configure/templates/mongo-vitamui/init-security-database.js.j2
rename to tools/docker/mongo/database_scripts/0.0.0/04_init-security-database.js.j2
diff --git a/tools/docker/mongo/database_scripts/0.0.0/05_init-versioning.js.j2 b/tools/docker/mongo/database_scripts/0.0.0/05_init-versioning.js.j2
new file mode 100644
index 0000000000000000000000000000000000000000..4580efcb78ed37bcbdf2d652cf1cbe8fe21e90ae
--- /dev/null
+++ b/tools/docker/mongo/database_scripts/0.0.0/05_init-versioning.js.j2
@@ -0,0 +1,2 @@
+
+db = db.getSiblingDB('{{ mongodb.versioning.db }}')
diff --git a/deployment/roles/mongo_configure/templates/mongo-vitamui/users-admin.js.j2 b/tools/docker/mongo/database_scripts/0.0.0/06_users-admin.js.j2
similarity index 100%
rename from deployment/roles/mongo_configure/templates/mongo-vitamui/users-admin.js.j2
rename to tools/docker/mongo/database_scripts/0.0.0/06_users-admin.js.j2
diff --git a/deployment/roles/mongo_configure/templates/mongo-vitamui/users-cas.js.j2 b/tools/docker/mongo/database_scripts/0.0.0/07_users-cas.js.j2
similarity index 100%
rename from deployment/roles/mongo_configure/templates/mongo-vitamui/users-cas.js.j2
rename to tools/docker/mongo/database_scripts/0.0.0/07_users-cas.js.j2
diff --git a/deployment/roles/mongo_configure/templates/mongo-vitamui/users-iam.js.j2 b/tools/docker/mongo/database_scripts/0.0.0/08_users-iam.js.j2
similarity index 100%
rename from deployment/roles/mongo_configure/templates/mongo-vitamui/users-iam.js.j2
rename to tools/docker/mongo/database_scripts/0.0.0/08_users-iam.js.j2
diff --git a/tools/docker/mongo/database_scripts/0.0.0/09_users-localadmin.js.j2 b/tools/docker/mongo/database_scripts/0.0.0/09_users-localadmin.js.j2
new file mode 100644
index 0000000000000000000000000000000000000000..17a9dcfb2a9b9535d4393a32351a20ed4b5b79e7
--- /dev/null
+++ b/tools/docker/mongo/database_scripts/0.0.0/09_users-localadmin.js.j2
@@ -0,0 +1,23 @@
+// Switch to admin database
+db = db.getSiblingDB('{{ mongodb.localadmin.db }}')
+
+// Create localadmin user
+
+if (! db.getUser("{{ mongodb.localadmin.user }}")) {
+ db.createUser(
+ {
+ user: "{{ mongodb.localadmin.user }}",
+ pwd: "{{ mongodb.localadmin.password }}",
+ roles: {{ mongodb.localadmin.roles }}
+ }
+ )
+}
+else {
+ db.updateUser(
+ "{{ mongodb.localadmin.user }}",
+ {
+ pwd: "{{ mongodb.localadmin.password }}",
+ roles: {{ mongodb.localadmin.roles }}
+ }
+ )
+}
diff --git a/deployment/roles/mongo_configure/templates/mongo-vitamui/set_feature_compatibility.js.j2 b/tools/docker/mongo/database_scripts/0.0.0/0_set_feature_compatibility.js.j2
similarity index 100%
rename from deployment/roles/mongo_configure/templates/mongo-vitamui/set_feature_compatibility.js.j2
rename to tools/docker/mongo/database_scripts/0.0.0/0_set_feature_compatibility.js.j2
diff --git a/deployment/roles/mongo_configure/templates/mongo-vitamui/users-security.js.j2 b/tools/docker/mongo/database_scripts/0.0.0/10_users-security.js.j2
similarity index 100%
rename from deployment/roles/mongo_configure/templates/mongo-vitamui/users-security.js.j2
rename to tools/docker/mongo/database_scripts/0.0.0/10_users-security.js.j2
diff --git a/tools/docker/mongo/database_scripts/0.0.0/11_users-versioning.js.j2 b/tools/docker/mongo/database_scripts/0.0.0/11_users-versioning.js.j2
new file mode 100644
index 0000000000000000000000000000000000000000..4ecc76d84e883b8d3e212f35f7b8c4bb0f0e553e
--- /dev/null
+++ b/tools/docker/mongo/database_scripts/0.0.0/11_users-versioning.js.j2
@@ -0,0 +1,23 @@
+// Switch to versioning database
+db = db.getSiblingDB('{{ mongodb.versioning.db }}')
+
+// Create versioning user
+
+if (! db.getUser("{{ mongodb.versioning.user }}")) {
+ db.createUser(
+ {
+ user: "{{ mongodb.versioning.user }}",
+ pwd: "{{ mongodb.versioning.password }}",
+ roles: {{ mongodb.versioning.roles }}
+ }
+ )
+}
+else {
+ db.updateUser(
+ "{{ mongodb.versioning.user }}",
+ {
+ pwd: "{{ mongodb.versioning.password }}",
+ roles: {{ mongodb.versioning.roles }}
+ }
+ )
+}
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/01_iam_ref.js.j2 b/tools/docker/mongo/database_scripts/1.0.0/01_iam_ref.js.j2
similarity index 99%
rename from tools/docker/mongo/database_scripts/iam/1.0.0/01_iam_ref.js.j2
rename to tools/docker/mongo/database_scripts/1.0.0/01_iam_ref.js.j2
index 7ba0f64dbbeb2aebe3d7f7cf25187b940a2b455a..6732c58a2e8513a1d7c4ec200a992893cafd5532 100644
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/01_iam_ref.js.j2
+++ b/tools/docker/mongo/database_scripts/1.0.0/01_iam_ref.js.j2
@@ -1,4 +1,4 @@
-use iam;
+db = db.getSiblingDB('iam')
print("START 01_iam_ref.js");
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/02_security_ref.js.j2 b/tools/docker/mongo/database_scripts/1.0.0/02_security_ref.js.j2
similarity index 98%
rename from tools/docker/mongo/database_scripts/iam/1.0.0/02_security_ref.js.j2
rename to tools/docker/mongo/database_scripts/1.0.0/02_security_ref.js.j2
index 2367c43d1ed48aeecd51f74cedf0eb2835fae63f..0207ba5e456acf6ca17a34accd85cbeadc7b8e27 100644
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/02_security_ref.js.j2
+++ b/tools/docker/mongo/database_scripts/1.0.0/02_security_ref.js.j2
@@ -1,4 +1,4 @@
-use security;
+db = db.getSiblingDB('security')
print("START 02_security_ref.js");
diff --git a/deployment/roles/init_bdd/templates/iam/03_application_ref.js.j2 b/tools/docker/mongo/database_scripts/1.0.0/03_application_ref.js.j2
similarity index 100%
rename from deployment/roles/init_bdd/templates/iam/03_application_ref.js.j2
rename to tools/docker/mongo/database_scripts/1.0.0/03_application_ref.js.j2
diff --git a/deployment/roles/init_bdd/templates/cas/cas_services_ref.js.j2 b/tools/docker/mongo/database_scripts/1.0.0/04_cas_services_ref.js.j2
similarity index 100%
rename from deployment/roles/init_bdd/templates/cas/cas_services_ref.js.j2
rename to tools/docker/mongo/database_scripts/1.0.0/04_cas_services_ref.js.j2
diff --git a/tools/docker/mongo/database_scripts/1.0.0/05_security.populate_certificates_ref.js.j2 b/tools/docker/mongo/database_scripts/1.0.0/05_security.populate_certificates_ref.js.j2
new file mode 100644
index 0000000000000000000000000000000000000000..71579162eb59eab10f85bc22f680f3748a3cacf2
--- /dev/null
+++ b/tools/docker/mongo/database_scripts/1.0.0/05_security.populate_certificates_ref.js.j2
@@ -0,0 +1,32 @@
+db = db.getSiblingDB('{{ mongodb.security.db }}')
+
+print("START security.populate_certificates_ref.js");
+
+{% macro insertCertificate(pemFile, contextId) -%}
+db.certificates.remove(
+ {"_id" : "{{ pemFile | basename | replace('.pem','_cert')}}"},
+ { justOne: true }
+)
+db.certificates.insert({
+ "_id": "{{ pemFile | basename | replace('.pem','_cert')}}",
+ "contextId": "{{ contextId }}",
+ "subjectDN": "subjectDN",
+ "issuerDN": "issuerDN",
+ "serialNumber": "serialNumberAdmin",
+ "data": "{{ lookup('file', pemFile) | cert_to_str() }}"
+})
+
+{%- endmacro %}
+
+{% macro process(keyPath, contextId, groupName) -%}
+ {% for host in groups[groupName] %}
+ {{ insertCertificate(keyPath | replace('%host%', host), contextId) }}
+ {% endfor %}
+{%- endmacro %}
+
+{{ process('{{ pki_dir }}/server/hosts/%host%/ui-portal.pem', 'ui_portal_context', 'hosts_ui_portal') }}
+{{ process('{{ pki_dir }}/server/hosts/%host%/cas-server.pem', 'cas_context', 'hosts_cas_server') }}
+{{ process('{{ pki_dir }}/server/hosts/%host%/ui-identity-admin.pem', 'ui_admin_identity_context', 'hosts_ui_identity_admin') }}
+{{ process('{{ pki_dir }}/server/hosts/%host%/ui-identity.pem', 'ui_identity_context', 'hosts_ui_identity') }}
+
+print("END security.populate_certificates_ref.js");
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/add_graphic_identity_all_customers_ref.js b/tools/docker/mongo/database_scripts/1.0.0/06_add_graphic_identity_all_customers_ref.js
similarity index 88%
rename from tools/docker/mongo/database_scripts/iam/1.0.0/add_graphic_identity_all_customers_ref.js
rename to tools/docker/mongo/database_scripts/1.0.0/06_add_graphic_identity_all_customers_ref.js
index 7a4c8e98ee90f35e0fdbd93ca456e62ad8b8f1a2..a584aec981d52ec2006d15f6a9be6a234e35d597 100644
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/add_graphic_identity_all_customers_ref.js
+++ b/tools/docker/mongo/database_scripts/1.0.0/06_add_graphic_identity_all_customers_ref.js
@@ -1,4 +1,4 @@
-use iam;
+db = db.getSiblingDB('iam')
print("START add_graphic_identity_all_customers_ref.js");
@@ -10,8 +10,9 @@ db.customers.updateMany(
$set: {
"graphicIdentity": {
"hasCustomGraphicIdentity": false
- }
- }
- });
+ }
+ }
+ }
+);
print("END add_graphic_identity_all_customers_ref.js");
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/101_iam_client1_demo.js b/tools/docker/mongo/database_scripts/1.0.0/101_iam_client1_demo.js
similarity index 99%
rename from tools/docker/mongo/database_scripts/iam/1.0.0/101_iam_client1_demo.js
rename to tools/docker/mongo/database_scripts/1.0.0/101_iam_client1_demo.js
index a921a2e725d8a8f21258fc70e74e389a72ff53cd..e5ce81ac91e5c53c1ddea59f9011c81a5396f362 100644
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/101_iam_client1_demo.js
+++ b/tools/docker/mongo/database_scripts/1.0.0/101_iam_client1_demo.js
@@ -1,4 +1,4 @@
-use iam;
+db = db.getSiblingDB('iam')
print("START 101_iam_client1_demo.js");
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/101_iam_client2_demo.js b/tools/docker/mongo/database_scripts/1.0.0/101_iam_client2_demo.js
similarity index 99%
rename from tools/docker/mongo/database_scripts/iam/1.0.0/101_iam_client2_demo.js
rename to tools/docker/mongo/database_scripts/1.0.0/101_iam_client2_demo.js
index 8d45bb7d08cc95481da1393b3354f49386cf4315..143d6871e355b96c44e1a88d652936457e2719b1 100644
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/101_iam_client2_demo.js
+++ b/tools/docker/mongo/database_scripts/1.0.0/101_iam_client2_demo.js
@@ -1,4 +1,4 @@
-use iam;
+db = db.getSiblingDB('iam')
print("START 101_iam_client2_demo.js");
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/101_iam_system_demo.js b/tools/docker/mongo/database_scripts/1.0.0/101_iam_system_demo.js
similarity index 89%
rename from tools/docker/mongo/database_scripts/iam/1.0.0/101_iam_system_demo.js
rename to tools/docker/mongo/database_scripts/1.0.0/101_iam_system_demo.js
index 2b8384ab21d45215eeed0085f9c78f0882c2cfec..632b25c32e292ffe7968264307996a21162ea640 100644
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/101_iam_system_demo.js
+++ b/tools/docker/mongo/database_scripts/1.0.0/101_iam_system_demo.js
@@ -1,4 +1,4 @@
-use iam;
+db = db.getSiblingDB('iam')
print("START 101_iam_system_demo.js");
@@ -259,31 +259,6 @@ db.users.insert(
"_class": "users"
});
-db.users.insert({
- "_id" : "vitamuijulien",
- "level": "",
- "enabled" : true,
- "readonly": false,
- "password" : "$2a$10$KT.o/93/ebg4FQS.QdcjguDugU.rbm5oeqFjDSuyLXToYGYblYU6W",
- "email" : "julien@{{ vitamui_platform_informations.default_email_domain }}",
- "firstname" : "Julien",
- "identifier" : "16",
- "otp" : false,
- "generic" : false,
- "subrogeable" : false,
- "lastname" : "Test",
- "language" : "FRENCH",
- "mobile" : "+33608056040",
- "surrogates" : [ ],
- "groupId" : "5c79022e7884583d1ebb6e5d0bc0121822684250a3fd2996fd93c04634363363",
- "nbFailedAttempts" : NumberInt(0),
- "canLogin" : true,
- "status" : "ENABLED",
- "type" : "NOMINATIVE",
- "customerId" : "system_customer",
- "passwordExpirationDate": "2050-01-09T00:00:00.000+01:00"
-});
-
db.providers.updateOne( {
"_id": "system_idp"
}, {
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/101_iam_system_plus_demo.js b/tools/docker/mongo/database_scripts/1.0.0/101_iam_system_plus_demo.js
similarity index 99%
rename from tools/docker/mongo/database_scripts/iam/1.0.0/101_iam_system_plus_demo.js
rename to tools/docker/mongo/database_scripts/1.0.0/101_iam_system_plus_demo.js
index 5e9925f6e6246eb1bf89523d10ba8d0cd17dfa52..1a59a4be59f19e6a001d61c636f2bb3b5c5cd8a2 100644
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/101_iam_system_plus_demo.js
+++ b/tools/docker/mongo/database_scripts/1.0.0/101_iam_system_plus_demo.js
@@ -1,4 +1,4 @@
-use iam;
+db = db.getSiblingDB('iam')
print("START 101_iam_system_plus_demo.js");
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/102_security_demo.js b/tools/docker/mongo/database_scripts/1.0.0/102_security_demo.js
similarity index 69%
rename from tools/docker/mongo/database_scripts/iam/1.0.0/102_security_demo.js
rename to tools/docker/mongo/database_scripts/1.0.0/102_security_demo.js
index 177c002f0195c579f850b93f6e26d747baf67060..c03e119391b3b818a9f5da51c127c945aeb1d90b 100644
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/102_security_demo.js
+++ b/tools/docker/mongo/database_scripts/1.0.0/102_security_demo.js
@@ -1,4 +1,4 @@
-use security;
+db = db.getSiblingDB('security')
print("START 102_security_demo.js");
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/105_cas_demo.js b/tools/docker/mongo/database_scripts/1.0.0/105_cas_demo.js
similarity index 69%
rename from tools/docker/mongo/database_scripts/iam/1.0.0/105_cas_demo.js
rename to tools/docker/mongo/database_scripts/1.0.0/105_cas_demo.js
index c18ff49a8f646b4e77bda3e8d9236da2b099384d..a2f2ecb70d5558964002243f48a033c49c9d48f7 100644
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/105_cas_demo.js
+++ b/tools/docker/mongo/database_scripts/1.0.0/105_cas_demo.js
@@ -1,4 +1,4 @@
-use cas;
+db = db.getSiblingDB('cas')
print("START 105_cas_demo.js");
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/VITAMUI-2800_init_user_address_ref.js b/tools/docker/mongo/database_scripts/1.0.0/17_VITAMUI-2800_init_user_address_ref.js
similarity index 92%
rename from tools/docker/mongo/database_scripts/iam/1.0.0/VITAMUI-2800_init_user_address_ref.js
rename to tools/docker/mongo/database_scripts/1.0.0/17_VITAMUI-2800_init_user_address_ref.js
index 0e6064db9ef70f929ef46c17c580fb85b50b4000..711a48d0fd496d0a085d72b811ab7f89c1256b00 100644
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/VITAMUI-2800_init_user_address_ref.js
+++ b/tools/docker/mongo/database_scripts/1.0.0/17_VITAMUI-2800_init_user_address_ref.js
@@ -1,4 +1,4 @@
-use iam;
+db = db.getSiblingDB('iam')
print("START VITAMUI-2800_init_user_address_ref.js");
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/201_iam_dev.js b/tools/docker/mongo/database_scripts/1.0.0/201_iam_dev.js
similarity index 95%
rename from tools/docker/mongo/database_scripts/iam/1.0.0/201_iam_dev.js
rename to tools/docker/mongo/database_scripts/1.0.0/201_iam_dev.js
index 520beeec15782ef4ca043111529b309d1455406d..74feb6010d162bad71d28db6aa1fe5763c643c00 100644
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/201_iam_dev.js
+++ b/tools/docker/mongo/database_scripts/1.0.0/201_iam_dev.js
@@ -1,4 +1,4 @@
-use iam;
+db = db.getSiblingDB('iam')
print("START 201_iam_dev.js");
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/206_test_data_dev.js b/tools/docker/mongo/database_scripts/1.0.0/206_test_data_dev.js
similarity index 91%
rename from tools/docker/mongo/database_scripts/iam/1.0.0/206_test_data_dev.js
rename to tools/docker/mongo/database_scripts/1.0.0/206_test_data_dev.js
index f22e3c3238f2e25356e672968ee347227283e5d9..39c41dbbe4d9ca4f3f76e35d69c4ffc5fc587a08 100644
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/206_test_data_dev.js
+++ b/tools/docker/mongo/database_scripts/1.0.0/206_test_data_dev.js
@@ -1,4 +1,4 @@
-use iam;
+db = db.getSiblingDB('iam')
print("START 206_test_data_dev.js");
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/03_application_ref.js.j2 b/tools/docker/mongo/database_scripts/iam/1.0.0/03_application_ref.js.j2
deleted file mode 100644
index 8476b3929225601738ab8f06bd59c4dadaa8585f..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/03_application_ref.js.j2
+++ /dev/null
@@ -1,101 +0,0 @@
-use iam;
-
-db.applications.remove({});
-
-db.applications.insert({
- "identifier" : "CUSTOMERS_APP",
- "url": "https://{{ vitamui_services.ui_identity_admin.server_name }}/customer",
- "icon": "vitamui-icon vitamui-icon-bank",
- "name": "Organisations",
- "category": "settings",
- "position": NumberInt(7),
- "hasCustomerList": false,
- "hasTenantList": false,
- "hasHighlight": true,
- "tooltip": "Paramétrer les organisations (clients, ...) et les coffres des organisations",
- "target": "_self"
-});
-
-db.applications.insert({
- "identifier" : "USERS_APP",
- "url": "https://{{ vitamui_services.ui_identity.server_name }}/user",
- "icon": "vitamui-icon vitamui-icon-user-keys",
- "name": "Utilisateurs",
- "category": "administrators",
- "position": NumberInt(2),
- "hasCustomerList": false,
- "hasTenantList": false,
- "hasHighlight": false,
- "tooltip": "Créer, Modifier et Gérer les utilisateurs...",
- "target": "_self"
-});
-
-db.applications.insert({
- "identifier" : "GROUPS_APP",
- "url": "https://{{ vitamui_services.ui_identity.server_name }}/group",
- "icon": "vitamui-icon vitamui-icon-keys",
- "name": "Groupes de profils",
- "category": "settings",
- "position": NumberInt(4),
- "hasCustomerList": false,
- "hasTenantList": false,
- "hasHighlight": false,
- "tooltip": "Paramétrer les groupes de profil de droits qui seront affectés aux utilisateurs",
- "target": "_self"
-});
-
-db.applications.insert({
- "identifier" : "PROFILES_APP",
- "url": "https://{{ vitamui_services.ui_identity.server_name }}/profile",
- "icon": "vitamui-icon vitamui-icon-admin-key",
- "name": "Profils APP Utilisateurs",
- "category": "settings",
- "position": NumberInt(5),
- "hasCustomerList": false,
- "hasTenantList": false,
- "hasHighlight": false,
- "tooltip": "Paramétrer les profils de droits des administrateurs qui utilisent l'APP Utilisateurs",
- "target": "_self"
-});
-
-db.applications.insert({
- "identifier" : "SUBROGATIONS_APP",
- "url": "https://{{ vitamui_services.ui_identity_admin.server_name }}/subrogation",
- "icon": "vitamui-icon vitamui-icon-link",
- "name": "Subrogation",
- "category": "administrators",
- "position": NumberInt(3),
- "hasCustomerList": true,
- "hasTenantList": false,
- "hasHighlight": true,
- "tooltip": "Subroger les droits d'un utilisateur par le support pour assistance ou pour assurer les prestations de paramètrage/administration pour un client",
- "target": "_self"
-});
-
-db.applications.insert({
- "identifier" : "HIERARCHY_PROFILE_APP",
- "url": "https://{{ vitamui_services.ui_identity.server_name }}/profile-hierarchy",
- "icon": "vitamui-icon vitamui-icon-user-key",
- "name": "Hiérarchisation des Profils",
- "category": "settings",
- "position": NumberInt(6),
- "hasCustomerList": false,
- "hasTenantList": true,
- "hasHighlight": false,
- "tooltip": "Paramétrer les niveaux de privilèges des profils de droits pour une organisation. Organisation de la séparation des rôles selon la PSSI de l'organisation",
- "target": "_self"
-});
-
-db.applications.insert({
- "identifier" : "ACCOUNTS_APP",
- "url": "/account",
- "icon": "vitamui-icon vitamui-icon-user",
- "name": "Mon compte",
- "category": "users",
- "position": NumberInt(1),
- "hasCustomerList": false,
- "hasTenantList": false,
- "hasHighlight": false,
- "tooltip": "Consulter mes informations, Choisir la langue de l'interface",
- "target": "_self"
-});
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/202_cas_dev.js b/tools/docker/mongo/database_scripts/iam/1.0.0/202_cas_dev.js
deleted file mode 100644
index 816cdb058225df1934d7287b45299bc2c9f17e63..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/202_cas_dev.js
+++ /dev/null
@@ -1,42 +0,0 @@
-use cas;
-
-print("START 105_cas_dev.js");
-
-db.services.insert({
- "_id" : NumberInt(300),
- "_class": "org.apereo.cas.services.RegexRegisteredService",
- "serviceId": "^https://.*.vitamui.com:4200.*",
- "name": "Angular Portal Application",
- "logoutType" : "FRONT_CHANNEL",
- "logoutUrl": "https://dev.vitamui.com:9000/logout",
- "attributeReleasePolicy": {
- "_class": "org.apereo.cas.services.ReturnAllAttributeReleasePolicy"
- }
-});
-
-db.services.insert({
- "_id" : NumberInt(301),
- "_class": "org.apereo.cas.services.RegexRegisteredService",
- "serviceId": "^https://.*.vitamui.com:4201.*",
- "name": "Angular Identity Application",
- "logoutType" : "FRONT_CHANNEL",
- "logoutUrl": "https://dev.vitamui.com:9001/logout",
- "attributeReleasePolicy": {
- "_class": "org.apereo.cas.services.ReturnAllAttributeReleasePolicy"
- }
-});
-
-db.services.insert({
- "_id" : NumberInt(302),
- "_class": "org.apereo.cas.services.RegexRegisteredService",
- "serviceId": "^https://.*.vitamui.com.*",
- "name": "Apache Domain",
- "logoutType" : "FRONT_CHANNEL",
- "logoutUrl": "https://dev.vitamui.com/logout",
- "attributeReleasePolicy": {
- "_class": "org.apereo.cas.services.ReturnAllAttributeReleasePolicy"
- }
-});
-
-print("END 105_cas_dev.js");
-
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/cas_services_ref.js.j2 b/tools/docker/mongo/database_scripts/iam/1.0.0/cas_services_ref.js.j2
deleted file mode 100644
index 1d41d50d672cd4df58f3e4bb57140482da2e96b8..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/cas_services_ref.js.j2
+++ /dev/null
@@ -1,41 +0,0 @@
-use cas;
-
-print("START cas_services_ref.js");
-
-db.services.insert({
- "_id": NumberInt(1),
- "_class": "org.apereo.cas.services.RegexRegisteredService",
- "serviceId": "{{ cas_services_configs.ui_portal.serviceId }}",
- "name": "{{ cas_services_configs.ui_portal.name }}",
- "logoutType" : "{{ cas_services_configs.ui_portal.logoutType }}",
- "logoutUrl": "{{ cas_services_configs.ui_portal.logoutUrl }}",
- "attributeReleasePolicy": {
- "_class": "org.apereo.cas.services.ReturnAllAttributeReleasePolicy"
- }
-});
-
-db.services.insert({
- "_id" : NumberInt(2),
- "_class": "org.apereo.cas.services.RegexRegisteredService",
- "serviceId": "{{ cas_services_configs.ui_identity.serviceId }}",
- "name": "{{ cas_services_configs.ui_identity.name }}",
- "logoutType" : "{{ cas_services_configs.ui_identity.logoutType }}",
- "logoutUrl": "{{ cas_services_configs.ui_identity.logoutUrl }}",
- "attributeReleasePolicy": {
- "_class": "org.apereo.cas.services.ReturnAllAttributeReleasePolicy"
- }
-});
-
-db.services.insert({
- "_id" : NumberInt(3),
- "_class": "org.apereo.cas.services.RegexRegisteredService",
- "serviceId": "{{ cas_services_configs.ui_identity_admin.serviceId }}",
- "name": "{{ cas_services_configs.ui_identity_admin.name }}",
- "logoutType" : "{{ cas_services_configs.ui_identity_admin.logoutType }}",
- "logoutUrl": "{{ cas_services_configs.ui_identity_admin.logoutUrl }}",
- "attributeReleasePolicy": {
- "_class": "org.apereo.cas.services.ReturnAllAttributeReleasePolicy"
- }
-});
-
-print("END cas_services_ref.js");
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/create_users_ref.js.j2 b/tools/docker/mongo/database_scripts/iam/1.0.0/create_users_ref.js.j2
deleted file mode 100644
index aba9ced55af24553694a7fe928af36caf1c13ab8..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/create_users_ref.js.j2
+++ /dev/null
@@ -1,13 +0,0 @@
-{% for db_config in mongod_databases.values() %}
-use {{ db_config.db }};
-
-if (! db.getUser("{{ db_config.user }}")) {
- db.createUser(
- {
- user: "{{ db_config.user }}",
- pwd: "{{ db_config.pwd }}",
- roles: {{ db_config.roles | to_json | replace ("u'","'")}}
- }
- );
-}
-{% endfor %}
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/security.populate_certificates_dev.js.j2 b/tools/docker/mongo/database_scripts/iam/1.0.0/security.populate_certificates_dev.js.j2
deleted file mode 100644
index e852764ff2c0f9c73968c5829411abe718e991bd..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/security.populate_certificates_dev.js.j2
+++ /dev/null
@@ -1,25 +0,0 @@
-use security;
-
-print("START security.populate_certificates_ref.js");
-
-{% macro insertCertififcate(pemFile, contextId) -%}
-db.certificates.remove(
- {"_id" : "{{ pemFile | basename | replace('.pem','_cert')}}"},
- { justOne: true }
-)
-db.certificates.insert({
- "_id": "{{ pemFile | basename | replace('.pem','_cert')}}",
- "contextId": "{{ contextId }}",
- "subjectDN": "subjectDN",
- "issuerDN": "issuerDN",
- "serialNumber": "serialNumberAdmin",
- "data": "{{ lookup('file', pemFile) | cert_to_str() }}"
-})
-
-{%- endmacro %}
-
-{{ insertCertififcate('{{playbook_dir}}/pki/dev/certs/ui-identity/ui-identity.pem', 'ui_admin_identity_context') }}
-{{ insertCertififcate('{{playbook_dir}}/pki/dev/certs/ui-portal/ui-portal.pem', 'ui_portal_context') }}
-{{ insertCertififcate('{{playbook_dir}}/pki/dev/certs/cas-server/cas-server.pem', 'cas_context') }}
-
-print("END security.populate_certificates_ref.js");
diff --git a/tools/docker/mongo/database_scripts/iam/1.0.0/security.populate_certificates_ref.js.j2 b/tools/docker/mongo/database_scripts/iam/1.0.0/security.populate_certificates_ref.js.j2
deleted file mode 100644
index 7714f24b9e4336e17be46aeac01da1e0fa4c53b9..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/database_scripts/iam/1.0.0/security.populate_certificates_ref.js.j2
+++ /dev/null
@@ -1,26 +0,0 @@
-use security;
-
-print("START security.populate_certificates_ref.js");
-
-{% macro insertCertififcate(pemFile, contextId) -%}
-db.certificates.remove(
- {"_id" : "{{ pemFile | basename | replace('.pem','_cert')}}"},
- { justOne: true }
-)
-db.certificates.insert({
- "_id": "{{ pemFile | basename | replace('.pem','_cert')}}",
- "contextId": "{{ contextId }}",
- "subjectDN": "subjectDN",
- "issuerDN": "issuerDN",
- "serialNumber": "serialNumberAdmin",
- "data": "{{ lookup('file', pemFile) | cert_to_str() }}"
-})
-
-{%- endmacro %}
-
-{{ insertCertififcate('{{playbook_dir}}/certs/ui-identity/ui-identity.pem', 'ui_identity_context') }}
-{{ insertCertififcate('{{playbook_dir}}/certs/ui-portal/ui-portal.pem', 'ui_portal_context') }}
-{{ insertCertififcate('{{playbook_dir}}/certs/cas-server/cas-server.pem', 'cas_context') }}
-{{ insertCertififcate('{{playbook_dir}}/certs/ui-identity-admin/ui-identity-admin.pem', 'ui_admin_identity_context') }}
-
-print("END security.populate_certificates_ref.js");
diff --git a/tools/docker/mongo/database_scripts/init_replicaset_ref.js.j2 b/tools/docker/mongo/database_scripts/init_replicaset_ref.js.j2
deleted file mode 100644
index 9645c1029f0d7d81e764152e91413d62e295bdc5..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/database_scripts/init_replicaset_ref.js.j2
+++ /dev/null
@@ -1,12 +0,0 @@
-rs.initiate({
- _id: '{{ mongod_replicaset_name }}',
- members: [
-{% for host in groups['hosts-vitamui-mongod'] %}
- { _id: {{ loop.index - 1 }}, host: '{{ hostvars[host].ip_service }}:{{ mongod_listen_port }}'},
-{% endfor %}
- ]
-});
-
-
-/* wait rs status to be ok */
-sleep(15000)
diff --git a/tools/docker/mongo/database_scripts/versioning.js.j2 b/tools/docker/mongo/database_scripts/versioning.js.j2
deleted file mode 100644
index a6028cac24672ad36f325c8434b2767f3920f750..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/database_scripts/versioning.js.j2
+++ /dev/null
@@ -1,26 +0,0 @@
-use admin;
-
-print("START versioning.js");
-
-db.getCollection("versioning").find({})
-var now = new Date();
-
-{% for version in mongodb_vitamuiScripts_version %}
-
-db.versioning.insert({
- "_id": ObjectId(),
- "version": "{{ version }}",
- "date": now,
- "changelog": [
- {% for filename in mongod_addedScripts if version in filename %}
- {
- "script": "{{ filename }}",
- "content": md5sumFile("{{ filename }}")
- },
- {% endfor %}
- ]
-});
-
-{% endfor %}
-
-print("END versioning.js");
diff --git a/tools/docker/mongo/database_scripts_templater.yml b/tools/docker/mongo/database_scripts_templater.yml
index 705db7004fd98609f60f37d171ce700b9a55f869..490e374095f6d15c2e7103a1c7558b9ed53558b3 100644
--- a/tools/docker/mongo/database_scripts_templater.yml
+++ b/tools/docker/mongo/database_scripts_templater.yml
@@ -3,14 +3,11 @@
#
- hosts: localhost
- gather_facts: false
- vars:
- deployLocalhost: true
- compute_templates: true
- mongod_source_template_dir_current: "{{ mongod_source_template_dir }}"
- mongod_output_dir_entry_point_current: "{{ mongod_output_dir_entry_point }}"
- docker_data_path: "/vitamui/scripts/mongo/data/last/" # script path inside Docker image (special usecase)
+ gather_facts: true
roles:
- - vitamui-database-scripts-templater
+ - {
+ role: mongo_init,
+ mongod_source_template_dir: "{{playbook_dir}}/database_scripts/"
+ }
diff --git a/tools/docker/mongo/hosts b/tools/docker/mongo/hosts
index 36493beaf153dd0fb4bea382dcee08acb24c9b57..0a82a3b934446a8a191760142b06d512e6363570 100644
--- a/tools/docker/mongo/hosts
+++ b/tools/docker/mongo/hosts
@@ -3,4 +3,55 @@
#
# VITAMUI Hosts
-localhost ansible_host=127.0.0.1 ip_admin=127.0.0.1 ip_service=127.0.0.1 ansible_connection=local ansible_become=false
\ No newline at end of file
+localhost ansible_host=127.0.0.1 ip_service=127.0.0.1 ip_admin=127.0.0.1 ansible_connection=local ansible_become=false
+
+########################################################
+# ZONE APP
+
+[zone_vitamui_app:children]
+hosts_vitamui_iam_internal
+hosts_vitamui_iam_external
+hosts_vitamui_security_internal
+
+[hosts_vitamui_iam_internal]
+localhost
+
+[hosts_vitamui_iam_external]
+localhost
+
+[hosts_vitamui_security_internal]
+localhost
+
+########################################################
+# ZONE UI
+########################################################
+
+[zone_vitamui_ui:children]
+hosts_ui_identity
+hosts_ui_portal
+
+[hosts_ui_identity]
+# We deploy only ui_identity_admin on dev - same certificat is used for these apps.
+
+[hosts_ui_portal]
+localhost
+
+########################################################
+# ZONE ADMIN
+########################################################
+
+[zone_vitamui_admin:children]
+hosts_ui_identity_admin
+
+[hosts_ui_identity_admin]
+localhost
+
+########################################################
+# ZONE CAS
+########################################################
+
+[zone_vitamui_cas:children]
+hosts_cas_server
+
+[hosts_cas_server]
+localhost
\ No newline at end of file
diff --git a/tools/docker/mongo/mongo_cluster.yml b/tools/docker/mongo/mongo_cluster.yml
index 3d81b872ae614d4c2fd8b26ce7d0167b7229bf4e..a7963350286ab315e986cb1694c2a12888c27113 100644
--- a/tools/docker/mongo/mongo_cluster.yml
+++ b/tools/docker/mongo/mongo_cluster.yml
@@ -17,8 +17,8 @@ services:
- "27018:27018"
volumes:
# if you wish to setup additional user accounts specific per DB or with different roles you can use following entry point
- - "$PWD/mongo-entrypoint/:/vitamui/scripts/mongo/data"
- - "$PWD/replica-set/:/vitamui/scripts/mongo/replica-set"
+ - "$PWD/mongo-entrypoint/:/scripts/mongo/data"
+ - "$PWD/replica-set/:/scripts/mongo/replica-set"
# no --auth is needed here as presence of username and password add this option automatically
command: mongod --replSet "rs0" --port=27018
@@ -38,8 +38,8 @@ services:
- "27019:27019"
volumes:
# if you wish to setup additional user accounts specific per DB or with different roles you can use following entry point
- - "$PWD/mongo-entrypoint/:/vitamui/scripts/mongo/data"
- - "$PWD/replica-set/:/vitamui/scripts/mongo/replica-set"
+ - "$PWD/mongo-entrypoint/:/scripts/mongo/data"
+ - "$PWD/replica-set/:/scripts/mongo/replica-set"
# no --auth is needed here as presence of username and password add this option automatically
command: mongod --replSet "rs0" --port=27019
@@ -59,8 +59,8 @@ services:
- "27020:27020"
volumes:
# if you wish to setup additional user accounts specific per DB or with different roles you can use following entry point
- - "$PWD/mongo-entrypoint/:/vitamui/scripts/mongo/data"
- - "$PWD/replica-set/:/vitamui/scripts/mongo/replica-set"
+ - "$PWD/mongo-entrypoint/:/scripts/mongo/data"
+ - "$PWD/replica-set/:/scripts/mongo/replica-set"
# no --auth is needed here as presence of username and password add this option automatically
command: mongod --replSet "rs0" --port=27020
diff --git a/tools/docker/mongo/mongo_dev.yml b/tools/docker/mongo/mongo_dev.yml
index 5de2736066bc1b6f27b2adefc35b2917c2310faa..64f4c83c6c5921da9f0b4ac66bda2459e7fbcb2e 100644
--- a/tools/docker/mongo/mongo_dev.yml
+++ b/tools/docker/mongo/mongo_dev.yml
@@ -14,8 +14,8 @@ services:
- "27018:27018"
volumes:
# if you wish to setup additional user accounts specific per DB or with different roles you can use following entry point
- - "$PWD/mongo-entrypoint/:/vitamui/scripts/mongo/data"
- - "$PWD/replica-set/:/vitamui/scripts/mongo/replica-set"
+ - "$PWD/mongo-entrypoint:/scripts/mongo/data"
+ - "$PWD/replica-set/:/scripts/mongo/replica-set"
# no --auth is needed here as presence of username and password add this option automatically
command: mongod --replSet "rs0" --port=27018
diff --git a/tools/docker/mongo/mongo_vars_dev.yml b/tools/docker/mongo/mongo_vars_dev.yml
index b8bd85c7b2399654c7a3be0394db56137101e5c6..2cdd2d967c416b04c18d7b7704bd7224939ed6c8 100644
--- a/tools/docker/mongo/mongo_vars_dev.yml
+++ b/tools/docker/mongo/mongo_vars_dev.yml
@@ -1,33 +1,59 @@
+hide_passwords_during_deploy: false
-# Variables used for development purposes (templating...)
-mongodb_vitamuiScripts_version:
- - "1.0.0"
- - "1.0.1"
-
+pki_dir: "{{lookup('env','PWD')}}/../../../dev-deployment/environments/certs"
mongod_source_template_dir: "{{lookup('env','PWD')}}/database_scripts/"
-mongod_output_dir_entry_point: "{{lookup('env','PWD')}}/mongo-entrypoint"
-
-# New way with templating
-# Scripts load order. Mandatory for templating. Any files that don't match the pattern won't
-# be executed in mongo provisonning
-# REGEX APPLIES ON RELATIVE SCRIPT PATH
-# Notes: entries are not duplicated, first regex match rule applies
-mongod_scripts_load_order:
- - "iam/1.0.0/create_users_ref.js.j2" # first script mandatory
- - "iam/1.0.0/.*_ref.js"
- - "iam/1.0.0/.*_demo.js"
- - "iam/1.0.0/security.populate_certificates_dev.js.j2"
- - "iam/1.0.0/.*_dev.js"
- - "1.0.0/.*_ref.js"
- - "1.0.0/.*_demo.js"
- - "1.0.0/.*_dev.js"
- - "1.0.1/.*ref.js"
-
-mongo_files_excluded:
- - "iam/1.0.0/security.populate_certificates_ref.js.j2" # problem with templating on this one
- - "1.0.0/security.populate_certificates_ref.js.j2" # problem with templating on this one
- - "init_replicaset_ref.js.j2" # mandatory in first, "manually" added
+# Overwrite vitamui defaults in order to perform transparent execution of deployment scripts.
+
+vitamui_defaults:
+ folder:
+ root_path: "{{lookup('env','PWD')}}/mongo-entrypoint"
+ users:
+ vitamuidb: "{{ ansible_user_id }}"
+ group: "{{ ansible_user_id }}"
+
+mongodb:
+ included_scripts:
+ - ".*"
+ excluded_scripts:
+ - "nothing"
+ docker:
+ enable: true
+ internal_dir: /scripts/mongo/data
+ mongod_port: 27018
+ passphrase: mongogo
+ admin:
+ db: admin
+ user: "mongod_dbuser_admin"
+ password: "mongod_dbpwd_admin"
+ roles: '[{ role: "userAdminAnyDatabase", db: "admin" }, { role: "backup", db: "admin" }, { role: "restore", db: "admin" }, { role: "dbAdminAnyDatabase", db: "admin" }, { role: "readWriteAnyDatabase", db: "admin" }, { role: "clusterMonitor", db:"admin"}, { role: "root", db:"admin"}]'
+ localadmin:
+ db: admin
+ user: "mongod_dbuser_localadmin"
+ password: "mongod_dbpwd_localadmin"
+ roles: '[{ role: "clusterAdmin", db: "admin" },{ role: "dbAdminAnyDatabase", db: "admin" },{ role: "readWriteAnyDatabase", db: "admin" }]'
+ security:
+ db: security
+ user: "mongod_dbuser_security"
+ password: "mongod_dbpwd_security"
+ roles: '[{ role: "readWrite", db: "security" }]'
+ iam:
+ db: iam
+ user: "mongod_dbuser_iam"
+ password: "mongod_dbpwd_iam"
+ roles: '[{ role: "readWrite", db: "iam" }]'
+ cas:
+ db: cas
+ user: "mongod_dbuser_cas"
+ password: "mongod_dbpwd_cas"
+ roles: '[{ role: "readWrite", db: "cas" }]'
+ versioning:
+ db: versioning
+ user: "mongod_dbuser_versioning"
+ password: "mongod_dbpwd_versioning"
+ roles: '[{ role: "readWrite", db: "versioning" }]'
+
+url_prefix: ""
# Variables for users
@@ -37,7 +63,7 @@ vitamui_platform_informations:
company_name: "system company"
default_email_domain: "change-it.fr"
email_domains: "change-it.fr"
- default_password: '$2a$10$5X2kf8hP52sA6HKe2t2vm.ulwx9bs3HI/QT/tg1k5/fQu0WFtSoUW' # Change-it0!
+ default_password: '$2a$10$5X2kf8hP52sA6HKe2t2vm.ulwx9bs3HI/QT/tg1k5/fQu0WFtSoUW' # password
address:
street: change-it
zip_code: change-it
@@ -47,100 +73,14 @@ vitamui_platform_informations:
cas_tenant: -1
first_customer_tenant: 9
-
-# Mongo database creation:
-mongod_databases:
- mongo_db_admin:
- db: admin
- user: "{{ mongod_dbuser_admin }}"
- pwd: "{{ mongod_dbpwd_admin }}"
- roles: [{ role: "userAdminAnyDatabase", db: "admin" }, { role: "backup", db: "admin" }, { role: "restore", db: "admin" }, { role: "dbAdminAnyDatabase", db: "admin" }, { role: "readWriteAnyDatabase", db: "admin" }]
-
- mongo_db_security:
- db: security
- user: "{{ mongod_dbuser_security }}"
- # defined in vault
- pwd: "{{ mongod_dbpwd_security }}"
- roles: [{ role: "readWrite", db: "security" }]
-
- mongo_db_iam:
- db: iam
- # defined in vault
- user: "{{ mongod_dbuser_iam }}"
- # defined in vault
- pwd: "{{ mongod_dbpwd_iam }}"
- roles: [{ role: "readWrite", db: "iam" }]
-
- mongo_db_cas:
- db: cas
- user: "{{ mongod_dbuser_cas }}"
- # defined in vault
- pwd: "{{ mongod_dbpwd_cas }}"
- roles: [{ role: "readWrite", db: "cas" }]
-
-# DATABASES USERS
-mongod_dbuser_admin: mongod_dbuser_admin
-mongod_dbpwd_admin: mongod_dbpwd_admin
-
-mongod_dbuser_security: mongod_dbuser_security
-mongod_dbpwd_security: mongod_dbpwd_security
-
-mongod_dbuser_iam: mongod_dbuser_iam
-mongod_dbpwd_iam: mongod_dbpwd_iam
-
-mongod_dbuser_cas: mongod_dbuser_cas
-mongod_dbpwd_cas: mongod_dbpwd_cas
-
-
-
-
-# ----------------------------------------------------------------------------------------------------------------------
-# Security context cert value override
-vitamui_security_contexts:
-
- ui_identity:
- cert_data: "{{ lookup('file', pki_dir + '/dev/certs/ui-identity/ui-identity.pem') | cert_to_str() }}"
-
- ui_portal:
- cert_data: "{{ lookup('file', pki_dir + '/dev/certs/ui-portal/ui-portal.pem') | cert_to_str() }}"
-
- cas:
- cert_data: "{{ lookup('file', pki_dir +'/dev/certs/cas-server/cas-server.pem') | cert_to_str() }}"
-
# ----------------------------------------------------------------------------------------------------------------------
# cas services cert value override
-cas_services_configs:
-
- ui_portal:
- name: "Portal Application"
- serviceId: "^https://.*.vitamui.com:9000.*"
- logoutType : "FRONT_CHANNEL"
- logoutUrl: "https://dev.vitamui.com:9000/logout"
-
- ui_identity:
- name: "Identity Access Management Application"
- serviceId: "^https://.*.vitamui.com:9001.*"
- logoutType : "FRONT_CHANNEL"
- logoutUrl: "https://dev.vitamui.com:9001/logout"
-
- ui_identity_admin:
- name: "Identity Admin Access Management Application"
- serviceId: "^https://.*.vitamui.com:9001.*"
- logoutType : "FRONT_CHANNEL"
- logoutUrl: "https://dev.vitamui.com:9001/logout"
-
- mobile:
- serviceId: "vitamuimobile"
- name: "VITAMUI Mobile OAuth"
- clientId : "vitamuimobile"
- clientSecret: "vitamuimobilesecret"
-
-vitamui_services:
- ui_identity:
- server_name: dev.vitamui.com:4201
-
- ui_identity_admin:
- server_name: dev.vitamui.com:4201
-
-
+vitam_site_name: "dev"
+vitamui:
+ identity:
+ base_url: "https://dev.vitamui.com:4201"
+ identity_admin:
+ base_url: "https://dev.vitamui.com:4201"
+ portal:
+ base_url: "https://dev.vitamui.com:4200"
diff --git a/tools/docker/mongo/pki/dev/certs/cas-server/cas-server.jks b/tools/docker/mongo/pki/dev/certs/cas-server/cas-server.jks
deleted file mode 100644
index 2722c426e9f37b0f30deb3a86d7eb6961cdcf38d..0000000000000000000000000000000000000000
Binary files a/tools/docker/mongo/pki/dev/certs/cas-server/cas-server.jks and /dev/null differ
diff --git a/tools/docker/mongo/pki/dev/certs/cas-server/truststore.jks b/tools/docker/mongo/pki/dev/certs/cas-server/truststore.jks
deleted file mode 100644
index b24ac096b55d91652dee74922a12db1794e5261a..0000000000000000000000000000000000000000
Binary files a/tools/docker/mongo/pki/dev/certs/cas-server/truststore.jks and /dev/null differ
diff --git a/tools/docker/mongo/pki/dev/certs/iam-external/iam-external.jks b/tools/docker/mongo/pki/dev/certs/iam-external/iam-external.jks
deleted file mode 100644
index 7d84c18a4fe0cde6bedb3120250c86cb6f84c804..0000000000000000000000000000000000000000
Binary files a/tools/docker/mongo/pki/dev/certs/iam-external/iam-external.jks and /dev/null differ
diff --git a/tools/docker/mongo/pki/dev/certs/iam-external/truststore.jks b/tools/docker/mongo/pki/dev/certs/iam-external/truststore.jks
deleted file mode 100644
index d2cdfd318a79ddc55c537ce5a6fb2eda9c4d1bbd..0000000000000000000000000000000000000000
Binary files a/tools/docker/mongo/pki/dev/certs/iam-external/truststore.jks and /dev/null differ
diff --git a/tools/docker/mongo/pki/dev/certs/iam-internal/iam-internal.jks b/tools/docker/mongo/pki/dev/certs/iam-internal/iam-internal.jks
deleted file mode 100644
index 2275adc2691d801c0aad64617ef2a4a56c9a37b6..0000000000000000000000000000000000000000
Binary files a/tools/docker/mongo/pki/dev/certs/iam-internal/iam-internal.jks and /dev/null differ
diff --git a/tools/docker/mongo/pki/dev/certs/iam-internal/truststore.jks b/tools/docker/mongo/pki/dev/certs/iam-internal/truststore.jks
deleted file mode 100644
index 35f5ec5188054e6bfc5ed88899e60fb1ffa94798..0000000000000000000000000000000000000000
Binary files a/tools/docker/mongo/pki/dev/certs/iam-internal/truststore.jks and /dev/null differ
diff --git a/tools/docker/mongo/pki/dev/certs/nginx/truststore.jks b/tools/docker/mongo/pki/dev/certs/nginx/truststore.jks
deleted file mode 100644
index db1ba5b51142529a4061b4e642b1bc78d782e8f9..0000000000000000000000000000000000000000
Binary files a/tools/docker/mongo/pki/dev/certs/nginx/truststore.jks and /dev/null differ
diff --git a/tools/docker/mongo/pki/dev/certs/security-internal/security-internal.jks b/tools/docker/mongo/pki/dev/certs/security-internal/security-internal.jks
deleted file mode 100644
index 97436d6748dd61ef6747714902d91c0802b19b00..0000000000000000000000000000000000000000
Binary files a/tools/docker/mongo/pki/dev/certs/security-internal/security-internal.jks and /dev/null differ
diff --git a/tools/docker/mongo/pki/dev/certs/security-internal/truststore.jks b/tools/docker/mongo/pki/dev/certs/security-internal/truststore.jks
deleted file mode 100644
index db3f539413799a1b2bde16b2f43ab3e7c1d3a773..0000000000000000000000000000000000000000
Binary files a/tools/docker/mongo/pki/dev/certs/security-internal/truststore.jks and /dev/null differ
diff --git a/tools/docker/mongo/pki/dev/certs/cas-server/cas-server.crt b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/cas-server.crt
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/cas-server/cas-server.crt
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/cas-server.crt
diff --git a/tools/docker/mongo/pki/dev/certs/cas-server/cas-server.key b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/cas-server.key
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/cas-server/cas-server.key
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/cas-server.key
diff --git a/tools/docker/mongo/pki/dev/certs/cas-server/cas-server.pem b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/cas-server.pem
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/cas-server/cas-server.pem
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/cas-server.pem
diff --git a/tools/docker/mongo/pki/dev/certs/iam-external/iam-external.crt b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/iam-external.crt
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/iam-external/iam-external.crt
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/iam-external.crt
diff --git a/tools/docker/mongo/pki/dev/certs/iam-external/iam-external.key b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/iam-external.key
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/iam-external/iam-external.key
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/iam-external.key
diff --git a/tools/docker/mongo/pki/dev/certs/iam-external/iam-external.pem b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/iam-external.pem
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/iam-external/iam-external.pem
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/iam-external.pem
diff --git a/tools/docker/mongo/pki/dev/certs/iam-internal/iam-internal.crt b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/iam-internal.crt
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/iam-internal/iam-internal.crt
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/iam-internal.crt
diff --git a/tools/docker/mongo/pki/dev/certs/iam-internal/iam-internal.key b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/iam-internal.key
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/iam-internal/iam-internal.key
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/iam-internal.key
diff --git a/tools/docker/mongo/pki/dev/certs/iam-internal/iam-internal.pem b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/iam-internal.pem
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/iam-internal/iam-internal.pem
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/iam-internal.pem
diff --git a/tools/docker/mongo/pki/dev/certs/nginx/nginx.crt b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/nginx.crt
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/nginx/nginx.crt
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/nginx.crt
diff --git a/tools/docker/mongo/pki/dev/certs/nginx/nginx.key b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/nginx.key
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/nginx/nginx.key
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/nginx.key
diff --git a/tools/docker/mongo/pki/dev/certs/nginx/nginx.pem b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/nginx.pem
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/nginx/nginx.pem
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/nginx.pem
diff --git a/tools/docker/mongo/pki/dev/certs/security-internal/security-internal.crt b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/security-internal.crt
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/security-internal/security-internal.crt
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/security-internal.crt
diff --git a/tools/docker/mongo/pki/dev/certs/security-internal/security-internal.key b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/security-internal.key
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/security-internal/security-internal.key
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/security-internal.key
diff --git a/tools/docker/mongo/pki/dev/certs/security-internal/security-internal.pem b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/security-internal.pem
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/security-internal/security-internal.pem
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/security-internal.pem
diff --git a/tools/docker/mongo/pki/dev/certs/ui-identity/ui-identity.crt b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity-admin.crt
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/ui-identity/ui-identity.crt
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity-admin.crt
diff --git a/tools/docker/mongo/pki/dev/certs/ui-identity/ui-identity.key b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity-admin.key
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/ui-identity/ui-identity.key
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity-admin.key
diff --git a/tools/docker/mongo/pki/dev/certs/ui-identity/ui-identity.pem b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity-admin.pem
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/ui-identity/ui-identity.pem
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity-admin.pem
diff --git a/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity.crt b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity.crt
new file mode 100644
index 0000000000000000000000000000000000000000..1242a13916f56f90bc967d4b3e967efddfa014d6
--- /dev/null
+++ b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity.crt
@@ -0,0 +1,132 @@
+Certificate:
+ Data:
+ Version: 3 (0x2)
+ Serial Number:
+ 0c:cb:fc:c3:a6:3f:21:c5:68:83:e3:fd:5d:2a:ab:19
+ Signature Algorithm: sha256WithRSAEncryption
+ Issuer: C=fr, ST=idf, L=paris, O=vitamui, OU=authorities, CN=ca_root_vitamui
+ Validity
+ Not Before: Jan 14 14:01:50 2020 GMT
+ Not After : Jan 13 14:01:50 2023 GMT
+ Subject: C=fr, ST=idf, L=paris, O=vitamui, CN=dev.vitamui.com
+ Subject Public Key Info:
+ Public Key Algorithm: rsaEncryption
+ RSA Public-Key: (4096 bit)
+ Modulus:
+ 00:a7:58:a0:fc:43:37:f3:0a:76:65:5e:54:43:7a:
+ 4f:e7:da:1d:77:09:fb:7a:dd:9e:ef:ff:37:fb:93:
+ 71:e3:a2:8b:6d:98:bc:4b:aa:eb:30:50:ca:86:b3:
+ ef:ff:e7:65:5b:2d:89:52:fc:5c:53:31:43:d4:4d:
+ 5e:d6:2c:04:bb:f1:15:db:d5:9b:45:8e:fe:a2:ca:
+ 1e:0d:52:d1:7c:37:15:75:3e:59:c2:0b:c6:be:8f:
+ e1:32:19:9f:65:b7:b6:f7:d8:c0:3c:f2:c3:6a:a9:
+ 30:24:3a:f4:02:b6:1a:66:1c:8e:48:90:09:7b:8d:
+ 85:be:b7:22:8c:43:c9:0b:6d:2b:46:7a:e6:f1:3c:
+ 6e:44:6c:f8:a2:36:da:f1:3e:7a:73:a3:f4:6e:58:
+ 90:cc:ad:db:ef:cf:2f:3a:51:92:77:05:05:51:a1:
+ 1e:eb:82:6e:54:0d:f8:83:c5:c5:05:be:e5:3c:7f:
+ ec:68:6c:0c:8f:9a:70:d4:79:41:8e:42:a1:1c:ae:
+ d6:24:ac:e0:4c:4e:44:37:8b:73:0b:ce:38:34:5c:
+ dc:66:e0:82:2b:89:84:e0:91:e9:19:ca:1b:a4:30:
+ 94:e1:17:cb:4b:5f:5e:1d:8c:67:53:52:5d:5f:b1:
+ 4e:67:95:b6:b2:29:f0:93:be:2a:cb:94:43:9e:88:
+ d9:26:a5:7b:2b:13:59:c3:85:cd:1a:75:ae:bb:29:
+ 54:cb:74:a3:96:d3:e3:51:6e:48:ff:8a:7b:cf:9d:
+ 29:a9:0d:07:8e:b0:df:66:8f:42:51:aa:19:7c:d8:
+ e6:22:c3:72:92:c0:cc:61:bf:21:32:5f:ed:a5:cb:
+ 32:ca:51:4a:c9:a8:d4:a8:69:24:10:bd:8c:ac:9d:
+ f0:db:ca:85:a5:c5:31:eb:b1:ee:ff:43:ea:6a:a9:
+ 21:89:5b:f1:89:e5:7f:01:8f:77:e0:51:a3:3d:20:
+ 49:e1:f1:8b:2a:9e:b0:ca:5a:2e:fb:f4:31:c4:27:
+ ce:27:ff:e5:df:35:20:80:df:05:e8:d7:d1:14:a0:
+ 30:f8:ef:b6:91:80:32:62:3d:a4:8e:9f:47:cc:b1:
+ c4:9a:30:26:68:ff:80:b8:ee:20:04:03:45:85:18:
+ 74:a9:f3:8c:6f:a0:cd:ec:ed:e2:0c:d5:d7:10:ec:
+ 9d:99:e4:bd:54:eb:58:77:d9:ac:59:be:11:44:95:
+ 0f:18:b0:88:13:81:d5:fb:b5:43:32:3b:3b:45:14:
+ c1:2f:04:30:fc:ee:d4:dd:73:2f:02:82:af:75:54:
+ 9f:2f:e6:bd:2f:90:12:9d:63:7c:88:5e:b1:b3:44:
+ fb:ed:23:8c:f1:a8:02:1c:5f:84:59:f9:a5:e1:eb:
+ b5:0a:07
+ Exponent: 65537 (0x10001)
+ X509v3 extensions:
+ Netscape Comment:
+ Certificat SSL VITAMUI
+ X509v3 Subject Key Identifier:
+ 15:FD:BF:F2:48:51:99:32:97:EA:52:E6:76:2C:7D:57:02:5A:4A:24
+ X509v3 Authority Key Identifier:
+ keyid:0D:42:D1:01:69:B1:6B:65:E1:AF:B4:00:37:89:2E:62:1C:5D:C3:FC
+ DirName:/C=fr/ST=idf/L=paris/O=vitamui/OU=authorities/CN=ca_root_vitamui
+ serial:0C:CB:FC:C3:A6:3F:21:C5:68:83:E3:FD:5D:2A:AB:16
+
+ X509v3 Issuer Alternative Name:
+ <EMPTY>
+
+ X509v3 Basic Constraints: critical
+ CA:FALSE
+ Signature Algorithm: sha256WithRSAEncryption
+ 5e:86:80:17:65:37:e5:63:ba:ae:1d:93:1b:0b:d2:5f:d1:48:
+ ca:a6:a1:44:93:06:aa:6b:ed:77:52:2e:d2:38:ec:c2:dd:59:
+ fc:ff:68:2f:13:a8:ee:ba:83:d7:6a:81:f8:ee:e5:ad:2f:3c:
+ af:ac:52:28:bf:5d:fc:ae:94:44:33:a3:f9:0b:87:e8:44:39:
+ db:cf:d8:9a:d7:54:4f:ad:38:84:f9:1d:02:6e:68:9c:98:dd:
+ 10:5c:2f:aa:f6:8d:22:90:93:c2:3e:d4:3f:8e:69:f1:a0:5b:
+ 45:83:18:cf:65:e6:06:cd:d3:15:65:91:11:fc:6f:72:69:3a:
+ b0:d7:6b:f5:b3:5b:35:14:b2:c9:fa:57:2f:f7:71:3e:ab:21:
+ 88:92:da:2d:4d:9c:e7:3f:f2:2f:b4:7b:a9:0f:46:7d:75:dd:
+ c7:0a:c7:50:f6:fc:53:8a:3c:69:aa:33:b8:e5:b6:f7:7b:aa:
+ 7d:52:7c:b3:e9:42:4f:86:0c:24:0a:a0:ca:cc:8b:84:c7:de:
+ 62:0d:91:19:67:54:b3:e7:e9:cb:9e:9f:27:50:f0:a8:46:50:
+ 68:7f:4a:12:a8:e4:dd:fc:c3:07:bc:ab:58:b9:a5:fb:28:92:
+ 5e:81:aa:63:88:4a:95:bc:29:01:cb:ea:a0:80:7b:3c:a3:6c:
+ 57:57:9e:58:30:fd:05:af:43:af:4f:d1:da:7f:b0:95:87:32:
+ 5d:99:a6:78:5e:64:bd:29:0f:19:01:59:36:3f:8f:bc:d0:12:
+ 65:28:1b:89:0e:4e:f5:9d:7f:9e:0a:1e:16:3d:54:c9:ae:66:
+ 89:01:5e:4b:10:b3:37:4e:70:fd:4a:7d:3f:12:91:9e:1b:f7:
+ 27:c9:fe:44:b7:73:73:40:91:50:ce:af:74:eb:ba:b5:a6:0b:
+ de:5b:05:e2:1e:80:32:f6:46:b3:a2:cf:88:39:25:eb:f1:a0:
+ 81:4e:72:54:6b:79:a0:92:25:9b:9b:60:b9:63:29:41:e4:1e:
+ cb:52:4e:8a:e3:d1:a6:55:b2:3c:be:5d:f3:fb:83:12:fa:60:
+ 41:de:10:a1:83:0a:51:de:c5:8f:46:60:60:15:29:2d:30:1d:
+ fc:ab:35:ce:a1:9c:a8:93:fd:22:47:11:c2:97:7a:01:41:9b:
+ fa:11:d4:53:9e:d5:0a:64:9c:c3:70:d8:f8:18:f9:c9:8d:ee:
+ 48:18:cf:29:3f:6f:45:ed:86:4d:5b:2a:c3:11:df:47:ae:36:
+ 56:88:74:49:50:98:a9:3b:1b:44:4a:0b:89:43:38:63:09:8c:
+ 89:98:b4:f4:52:bc:e8:6c:c2:ab:3f:ec:f8:04:fc:91:7f:79:
+ 96:cf:54:63:8d:bc:9e:9c
+-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
diff --git a/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity.key b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity.key
new file mode 100644
index 0000000000000000000000000000000000000000..76ca6ca7b4ecd44c2ddf9d3a4653129fc1eff5cb
--- /dev/null
+++ b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity.key
@@ -0,0 +1,54 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----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+-----END ENCRYPTED PRIVATE KEY-----
diff --git a/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity.pem b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity.pem
new file mode 100644
index 0000000000000000000000000000000000000000..115ebb58897a772a6e5e54091ba41f8f2c0603de
--- /dev/null
+++ b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-identity.pem
@@ -0,0 +1,36 @@
+-----BEGIN CERTIFICATE-----
+MIIGXDCCBESgAwIBAgIQDMv8w6Y/IcVog+P9XSqrGTANBgkqhkiG9w0BAQsFADBt
+MQswCQYDVQQGEwJmcjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEQMA4G
+A1UECgwHdml0YW11aTEUMBIGA1UECwwLYXV0aG9yaXRpZXMxGDAWBgNVBAMMD2Nh
+X3Jvb3Rfdml0YW11aTAeFw0yMDAxMTQxNDAxNTBaFw0yMzAxMTMxNDAxNTBaMFcx
+CzAJBgNVBAYTAmZyMQwwCgYDVQQIDANpZGYxDjAMBgNVBAcMBXBhcmlzMRAwDgYD
+VQQKDAd2aXRhbXVpMRgwFgYDVQQDDA9kZXYudml0YW11aS5jb20wggIiMA0GCSqG
+SIb3DQEBAQUAA4ICDwAwggIKAoICAQCnWKD8QzfzCnZlXlRDek/n2h13Cft63Z7v
+/zf7k3HjoottmLxLquswUMqGs+//52VbLYlS/FxTMUPUTV7WLAS78RXb1ZtFjv6i
+yh4NUtF8NxV1PlnCC8a+j+EyGZ9lt7b32MA88sNqqTAkOvQCthpmHI5IkAl7jYW+
+tyKMQ8kLbStGeubxPG5EbPiiNtrxPnpzo/RuWJDMrdvvzy86UZJ3BQVRoR7rgm5U
+DfiDxcUFvuU8f+xobAyPmnDUeUGOQqEcrtYkrOBMTkQ3i3MLzjg0XNxm4IIriYTg
+kekZyhukMJThF8tLX14djGdTUl1fsU5nlbayKfCTvirLlEOeiNkmpXsrE1nDhc0a
+da67KVTLdKOW0+NRbkj/invPnSmpDQeOsN9mj0JRqhl82OYiw3KSwMxhvyEyX+2l
+yzLKUUrJqNSoaSQQvYysnfDbyoWlxTHrse7/Q+pqqSGJW/GJ5X8Bj3fgUaM9IEnh
+8YsqnrDKWi779DHEJ84n/+XfNSCA3wXo19EUoDD477aRgDJiPaSOn0fMscSaMCZo
+/4C47iAEA0WFGHSp84xvoM3s7eIM1dcQ7J2Z5L1U61h32axZvhFElQ8YsIgTgdX7
+tUMyOztFFMEvBDD87tTdcy8Cgq91VJ8v5r0vkBKdY3yIXrGzRPvtI4zxqAIcX4RZ
++aXh67UKBwIDAQABo4IBDDCCAQgwJQYJYIZIAYb4QgENBBgWFkNlcnRpZmljYXQg
+U1NMIFZJVEFNVUkwHQYDVR0OBBYEFBX9v/JIUZkyl+pS5nYsfVcCWkokMIGmBgNV
+HSMEgZ4wgZuAFA1C0QFpsWtl4a+0ADeJLmIcXcP8oXGkbzBtMQswCQYDVQQGEwJm
+cjEMMAoGA1UECAwDaWRmMQ4wDAYDVQQHDAVwYXJpczEQMA4GA1UECgwHdml0YW11
+aTEUMBIGA1UECwwLYXV0aG9yaXRpZXMxGDAWBgNVBAMMD2NhX3Jvb3Rfdml0YW11
+aYIQDMv8w6Y/IcVog+P9XSqrFjAJBgNVHRIEAjAAMAwGA1UdEwEB/wQCMAAwDQYJ
+KoZIhvcNAQELBQADggIBAF6GgBdlN+Vjuq4dkxsL0l/RSMqmoUSTBqpr7XdSLtI4
+7MLdWfz/aC8TqO66g9dqgfju5a0vPK+sUii/XfyulEQzo/kLh+hEOdvP2JrXVE+t
+OIT5HQJuaJyY3RBcL6r2jSKQk8I+1D+OafGgW0WDGM9l5gbN0xVlkRH8b3JpOrDX
+a/WzWzUUssn6Vy/3cT6rIYiS2i1NnOc/8i+0e6kPRn113ccKx1D2/FOKPGmqM7jl
+tvd7qn1SfLPpQk+GDCQKoMrMi4TH3mINkRlnVLPn6cuenydQ8KhGUGh/ShKo5N38
+wwe8q1i5pfsokl6BqmOISpW8KQHL6qCAezyjbFdXnlgw/QWvQ69P0dp/sJWHMl2Z
+pnheZL0pDxkBWTY/j7zQEmUoG4kOTvWdf54KHhY9VMmuZokBXksQszdOcP1KfT8S
+kZ4b9yfJ/kS3c3NAkVDOr3TrurWmC95bBeIegDL2RrOiz4g5JevxoIFOclRreaCS
+JZubYLljKUHkHstSTorj0aZVsjy+XfP7gxL6YEHeEKGDClHexY9GYGAVKS0wHfyr
+Nc6hnKiT/SJHEcKXegFBm/oR1FOe1QpknMNw2PgY+cmN7kgYzyk/b0Xthk1bKsMR
+30euNlaIdElQmKk7G0RKC4lDOGMJjImYtPRSvOhswqs/7PgE/JF/eZbPVGONvJ6c
+-----END CERTIFICATE-----
diff --git a/tools/docker/mongo/pki/dev/certs/ui-portal/ui-portal.crt b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-portal.crt
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/ui-portal/ui-portal.crt
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-portal.crt
diff --git a/tools/docker/mongo/pki/dev/certs/ui-portal/ui-portal.key b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-portal.key
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/ui-portal/ui-portal.key
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-portal.key
diff --git a/tools/docker/mongo/pki/dev/certs/ui-portal/ui-portal.pem b/tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-portal.pem
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/ui-portal/ui-portal.pem
rename to tools/docker/mongo/pki/dev/certs/server/hosts/localhost/ui-portal.pem
diff --git a/tools/docker/mongo/pki/dev/certs/ui-identity/truststore.jks b/tools/docker/mongo/pki/dev/certs/ui-identity/truststore.jks
deleted file mode 100644
index 33058df7190e4c48f79813ce75b4e4da97b77b3c..0000000000000000000000000000000000000000
Binary files a/tools/docker/mongo/pki/dev/certs/ui-identity/truststore.jks and /dev/null differ
diff --git a/tools/docker/mongo/pki/dev/certs/ui-portal/truststore.jks b/tools/docker/mongo/pki/dev/certs/ui-portal/truststore.jks
deleted file mode 100644
index 39e3ec129059907d201ef83e1353b92b625db87f..0000000000000000000000000000000000000000
Binary files a/tools/docker/mongo/pki/dev/certs/ui-portal/truststore.jks and /dev/null differ
diff --git a/tools/docker/mongo/pki/dev/certs/ui-portal/ui-portal.jks b/tools/docker/mongo/pki/dev/certs/ui-portal/ui-portal.jks
deleted file mode 100644
index cb7803ab0ff9af33706a7a94dfbf5fa71b92461f..0000000000000000000000000000000000000000
Binary files a/tools/docker/mongo/pki/dev/certs/ui-portal/ui-portal.jks and /dev/null differ
diff --git a/cas/cas-server/src/main/config/cas-server.jks b/tools/docker/mongo/pki/dev/keystores/server/localhost/cas-server.jks
similarity index 100%
rename from cas/cas-server/src/main/config/cas-server.jks
rename to tools/docker/mongo/pki/dev/keystores/server/localhost/cas-server.jks
diff --git a/api/api-iam/iam-external/src/main/config/iam-external.jks b/tools/docker/mongo/pki/dev/keystores/server/localhost/iam-external.jks
similarity index 100%
rename from api/api-iam/iam-external/src/main/config/iam-external.jks
rename to tools/docker/mongo/pki/dev/keystores/server/localhost/iam-external.jks
diff --git a/api/api-iam/iam-internal/src/main/config/iam-internal.jks b/tools/docker/mongo/pki/dev/keystores/server/localhost/iam-internal.jks
similarity index 100%
rename from api/api-iam/iam-internal/src/main/config/iam-internal.jks
rename to tools/docker/mongo/pki/dev/keystores/server/localhost/iam-internal.jks
diff --git a/tools/docker/mongo/pki/dev/certs/nginx/nginx.jks b/tools/docker/mongo/pki/dev/keystores/server/localhost/nginx.jks
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/nginx/nginx.jks
rename to tools/docker/mongo/pki/dev/keystores/server/localhost/nginx.jks
diff --git a/api/api-security/security-internal/src/main/config/security-internal.jks b/tools/docker/mongo/pki/dev/keystores/server/localhost/security-internal.jks
similarity index 100%
rename from api/api-security/security-internal/src/main/config/security-internal.jks
rename to tools/docker/mongo/pki/dev/keystores/server/localhost/security-internal.jks
diff --git a/integration-tests/src/test/resources/certs/local/ui-identity.jks b/tools/docker/mongo/pki/dev/keystores/server/localhost/ui-identity-admin.jks
similarity index 100%
rename from integration-tests/src/test/resources/certs/local/ui-identity.jks
rename to tools/docker/mongo/pki/dev/keystores/server/localhost/ui-identity-admin.jks
diff --git a/tools/docker/mongo/pki/dev/certs/ui-identity/ui-identity.jks b/tools/docker/mongo/pki/dev/keystores/server/localhost/ui-identity.jks
similarity index 100%
rename from tools/docker/mongo/pki/dev/certs/ui-identity/ui-identity.jks
rename to tools/docker/mongo/pki/dev/keystores/server/localhost/ui-identity.jks
diff --git a/integration-tests/src/test/resources/certs/local/ui-portal.jks b/tools/docker/mongo/pki/dev/keystores/server/localhost/ui-portal.jks
similarity index 100%
rename from integration-tests/src/test/resources/certs/local/ui-portal.jks
rename to tools/docker/mongo/pki/dev/keystores/server/localhost/ui-portal.jks
diff --git a/cas/cas-server/src/main/config/truststore.jks b/tools/docker/mongo/pki/dev/keystores/server/truststore.jks
similarity index 100%
rename from cas/cas-server/src/main/config/truststore.jks
rename to tools/docker/mongo/pki/dev/keystores/server/truststore.jks
diff --git a/tools/docker/mongo/start_dev.sh b/tools/docker/mongo/start_dev.sh
index c3a04275963b01d18703ed9c77a316ec3073d5e7..54d911a428321f5408351a6c91b5ee3862c99f2d 100755
--- a/tools/docker/mongo/start_dev.sh
+++ b/tools/docker/mongo/start_dev.sh
@@ -3,24 +3,22 @@
#########################
# Copy mongo scripts and template them
-PWD=`pwd`
-CUR_DIR=$PWD
+CUR_DIR=`pwd`
+TEMPLATER_EXTRA_VARS="--extra-vars \"@$CUR_DIR/mongo_vars_dev.yml\""
-#echo "Remove old files (mongo-entrypoint)."
-#rm mongo-entrypoint/last/*
-
-echo "Execute $CUR_DIR/database_scripts_templater with custom variables."
-ansible-playbook -i $CUR_DIR/hosts $CUR_DIR/database_scripts_templater.yml -e "@$CUR_DIR/mongo_vars_dev.yml"
-
-#########################
+if [ ! -z "$ADDITIONNAL_VITAMUI_CONFIG_FILE" ]; then
+ TEMPLATER_EXTRA_VARS="${TEMPLATER_EXTRA_VARS} --extra-vars \"@${ADDITIONNAL_VITAMUI_CONFIG_FILE}\""
+fi
docker-compose -f ./mongo_dev.yml up -d
sleep 2
# Create replica set and wait a few before execution other init scripts
-docker exec -it vitamui-mongo /bin/bash -c "mongo --port=27018 < /vitamui/scripts/mongo/replica-set/000_replicaset_dev.js;sleep 5;mongo --port=27018 < /vitamui/scripts/mongo/replica-set/00_check_replicaset.js"
+docker exec -it vitamui-mongo /bin/bash -c "mongo --port=27018 < /scripts/mongo/replica-set/000_replicaset_dev.js;sleep 5;mongo --port=27018 < /scripts/mongo/replica-set/00_check_replicaset.js"
-docker exec -it vitamui-mongo bash -c "cat /vitamui/scripts/mongo/data/last/*.js | mongo --port=27018 "
+#########################
+echo "Execute $CUR_DIR/database_scripts_templater with custom variables."
+eval "ansible-playbook -i $CUR_DIR/hosts $CUR_DIR/database_scripts_templater.yml $TEMPLATER_EXTRA_VARS"
echo "vitamui-mongo is started"
diff --git a/tools/docker/mongo/start_docker_cluster.sh b/tools/docker/mongo/start_docker_cluster.sh
index e9b0ddbf2c2a8ee7c3e4a2fea242b75779ed204e..88634f88f6f8640219b122423784aad85cc473b5 100755
--- a/tools/docker/mongo/start_docker_cluster.sh
+++ b/tools/docker/mongo/start_docker_cluster.sh
@@ -1,26 +1,21 @@
#!/bin/bash
-# Emmanuel Deviller
-#########################
-# Copy mongo scripts and template them
-PWD=`pwd`
-CUR_DIR=$PWD
-
-#echo "Remove old files (mongo-entrypoint)."
-#rm mongo-entrypoint/last/*
+CUR_DIR=`pwd`
+TEMPLATER_EXTRA_VARS="--extra-vars \"@$CUR_DIR/mongo_vars_dev.yml\""
-echo "Execute $CUR_DIR/database_scripts_templater with custom variables."
-ansible-playbook -i $CUR_DIR/hosts $CUR_DIR//database_scripts_templater.yml -e "@$CUR_DIR/mongo_vars_dev.yml"
-
-#########################
+if [ ! -z "$ADDITIONNAL_VITAMUI_CONFIG_FILE" ]; then
+ TEMPLATER_EXTRA_VARS="${TEMPLATER_EXTRA_VARS} --extra-vars \"@${ADDITIONNAL_VITAMUI_CONFIG_FILE}\""
+fi
docker-compose -f ./mongo_cluster.yml up -d
sleep 2
# Create replica set and wait a few before execution other init scripts
-docker exec -it vitamui-mongo /bin/bash -c "mongo --port=27018 < /vitamui/scripts/mongo/replica-set/000_replicaset_dev.js;sleep 5;mongo --port=27018 < /vitamui/scripts/mongo/replica-set/00_check_replicaset.js"
+docker exec -it vitamui-mongo /bin/bash -c "mongo --port=27018 < /scripts/mongo/replica-set/000_replicaset_dev.js;sleep 5;mongo --port=27018 < /scripts/mongo/replica-set/00_check_replicaset.js"
-docker exec -it vitamui-mongo bash -c "cat /vitamui/scripts/mongo/data/last/*.js | mongo --port=27018 "
+#########################
+echo "Execute $CUR_DIR/database_scripts_templater with custom variables."
+eval "ansible-playbook -i $CUR_DIR/hosts $CUR_DIR/database_scripts_templater.yml $TEMPLATER_EXTRA_VARS"
echo "vitamui-mongo is started"
diff --git a/tools/docker/mongo/template_scripts.sh b/tools/docker/mongo/template_scripts.sh
deleted file mode 100755
index ffead4ec3215efa29b23cb9a0a53f5f4afa9902c..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/template_scripts.sh
+++ /dev/null
@@ -1,30 +0,0 @@
-#!/usr/bin/env bash
-
-set -e
-
-INPUT_TEMPLATES_DIR="$(readlink -f ./database_scripts/)"
-OUTPUT_TEMPLATES_DIR="$(readlink -f ./mongo-entrypoint/)"
-VITAMUI_DEPLOYMENT_DIR="$(readlink -f ../../../deployment)"
-DEVELOPPEMENT_CONFIG_FILE="$(readlink -f ./deployment_dev_config.yml)"
-
-
-# Clean old scripts
-rm -Rf $OUTPUT_TEMPLATES_DIR/*
-
-### Override deployment/ansible.cfg config for template scropt
-# Use default ansible stdout format
-export ANSIBLE_CALLBACK_PLUGINS=/usr/share/ansible/plugins/callback
-export ANSIBLE_STDOUT_CALLBACK=skippy
-
-
-cd $VITAMUI_DEPLOYMENT_DIR
-# Used by deployment/roles/tools/vitamui-mongod-templater
-ansible-playbook -i environment/hosts playbooks/tools/database_scripts_templater.yml \
- -e mongod_source_template_dir="$INPUT_TEMPLATES_DIR" \
- -e mongod_output_template_dir="$OUTPUT_TEMPLATES_DIR" \
- --extra-vars @$DEVELOPPEMENT_CONFIG_FILE $@
-RC=$?
-if [ $RC != "0" ] ; then
- echo "Error happened during script generation"
- exit $RC
-fi
diff --git a/tools/docker/mongo/vitamui-database-scripts-templater/README.md b/tools/docker/mongo/vitamui-database-scripts-templater/README.md
deleted file mode 100644
index e69de29bb2d1d6434b8b29ae775ad8c2e48c5391..0000000000000000000000000000000000000000
diff --git a/tools/docker/mongo/vitamui-database-scripts-templater/defaults/main.yml b/tools/docker/mongo/vitamui-database-scripts-templater/defaults/main.yml
deleted file mode 100644
index 00d71233a95b64810ac79496d004aa29b92ffb6f..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/vitamui-database-scripts-templater/defaults/main.yml
+++ /dev/null
@@ -1,11 +0,0 @@
----
-# defaults file for vitamui-database-scripts-templater
-
-# Character that replaces "/" in script path
-mongod_scripts_template_path_replace_str: "--"
-mongod_source_template_files: []
-mongod_source_template_files_sorted: []
-
-# list used by jinja for hash
-mongod_addedScripts: []
-
diff --git a/tools/docker/mongo/vitamui-database-scripts-templater/handlers/main.yml b/tools/docker/mongo/vitamui-database-scripts-templater/handlers/main.yml
deleted file mode 100644
index c404226556bda430d550dd863faa4dbbf027152d..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/vitamui-database-scripts-templater/handlers/main.yml
+++ /dev/null
@@ -1,2 +0,0 @@
----
-# handlers file for vitamui-database-scripts-templater
diff --git a/tools/docker/mongo/vitamui-database-scripts-templater/tasks/main.yml b/tools/docker/mongo/vitamui-database-scripts-templater/tasks/main.yml
deleted file mode 100644
index 82d9fdf72720216fafcfbe9515b321b29cd21f3b..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/vitamui-database-scripts-templater/tasks/main.yml
+++ /dev/null
@@ -1,112 +0,0 @@
----
-
-- name: Test directories
- stat:
- path: "{{ mongod_output_dir_entry_point_current }}/last"
- register: folders
-
-- name: Create directories for first install
- file:
- path: "{{ mongod_output_dir_entry_point_current }}/{{ item }}"
- state: directory
- with_items:
- - "last"
- - "previous"
- when: not folders.stat.exists
-
-- name: Move files for update DEV
- delegate_to: localhost
- shell: "cd {{ mongod_output_dir_entry_point_current }}; mv last/* previous/"
- when: deployLocalhost
- ignore_errors: true
-
-- name: Move files for update deployment
- shell: "cd {{ mongod_output_dir_entry_point_current }}; mv last/* previous/"
- when: not deployLocalhost
- ignore_errors: true
-
-# tasks file for vitamui-database-scripts-templater
-- name: "List all templates files in source template dir {{ mongod_source_template_dir }} (jinja files included)"
- delegate_to: localhost
- vars:
- excluded: "{{ mongo_files_excluded }}"
- set_fact:
- mongod_source_template_files: "{{ mongod_source_template_files + [ item.path ] }}"
- when:
- - item.state == 'file'
- - item.path not in excluded
- with_filetree:
- - "{{ mongod_source_template_dir_current }}"
-
-- name: Sorts files list with boot order
- delegate_to: localhost
- set_fact:
- mongod_source_template_files_sorted: "{{ mongod_source_template_files_sorted + [item.1] | unique }}"
- when: item.1 is match(item.0) and item.2 in (item.1)
- #when: deployLocalhost and item.1 is match(item.0) and item.2 in (item.1)
- with_nested:
- - "{{ mongod_scripts_load_order }}"
- - "{{ mongod_source_template_files | sort(case_sensitive=False) }}"
- - "{{ mongodb_vitamuiScripts_version }}"
-
-- name: Compute sprintf like for having right 0 padding in scripts index name ("%0[NB_DIGITS]d")
- delegate_to: localhost
- set_fact:
- nb_scripts_digits_sprintf: "%0{{ mongod_source_template_files_sorted | length | string | length }}d"
-
-- name: Computes files templates immediately for DEV mongo-entrypoint
- delegate_to: localhost
- template:
- src: "{{ mongod_source_template_dir_current }}/{{ item.1 }}"
- dest: "{{ mongod_output_dir_entry_point_current }}/last/{{ nb_scripts_digits_sprintf | format(item.0|int) }}{{ mongod_scripts_template_path_replace_str }}{{ item.1 | replace('/',mongod_scripts_template_path_replace_str) | replace('.j2', '') }}"
- with_indexed_items: "{{ mongod_source_template_files_sorted | unique }}"
- when: deployLocalhost
-
-- name: Computes files templates immediately for deployment mongo-entrypoint
- template:
- src: "{{ mongod_source_template_dir_current }}/{{ item.1}}"
- dest: "{{ mongod_output_dir_entry_point_current }}/last/{{ nb_scripts_digits_sprintf | format(item.0|int) }}{{ mongod_scripts_template_path_replace_str }}{{ item.1 | replace('/',mongod_scripts_template_path_replace_str) | replace('.j2', '') }}"
- with_indexed_items: "{{ mongod_source_template_files_sorted | unique }}"
- when: not deployLocalhost
-
-- name: Read generated files in DEV
- delegate_to: localhost
- find:
- paths: "{{ mongod_output_dir_entry_point_current }}/last/"
- file_type: file
- when: deployLocalhost
- register: filesDEV
-
-- name: Read generated files for deployment
- find:
- paths: "{{ mongod_output_dir_entry_point_current }}/last/"
- file_type: file
- when: not deployLocalhost
- register: filesPROD
-
-# Docker use case
-- name: Set list for versioning DEV
- vars:
- temp: "{{ mongod_output_dir_entry_point_current }}/last/"
- old_path: "{{ temp | replace( '/deployment/../', '/') }}"
- set_fact:
- mongod_addedScripts: "{{ filesDEV.files | map(attribute='path') | list | sort | replace( old_path, docker_data_path )}}"
- when: deployLocalhost
-
-- name: Set list for versioning for deployment
- set_fact:
- mongod_addedScripts: "{{ filesPROD.files | map(attribute='path') | list | sort }}"
- when: not deployLocalhost
-
-- name: Computes versioning and add to DEV mongo-entrypoint
- delegate_to: localhost
- template:
- src: "{{ mongod_source_template_dir_current }}/versioning.js.j2"
- dest: "{{ mongod_output_dir_entry_point_current }}/last/versioning.js"
- when: deployLocalhost
-
-- name: Computes versioning and add to deployment mongo-entrypoint
- template:
- src: "{{ mongod_source_template_dir_current }}/versioning.js.j2"
- dest: "{{ mongod_output_dir_entry_point_current }}/last/versioning.js"
- when: not deployLocalhost
diff --git a/tools/docker/mongo/vitamui-database-scripts-templater/tests/inventory b/tools/docker/mongo/vitamui-database-scripts-templater/tests/inventory
deleted file mode 100644
index 878877b0776c44f55fc4e458f70840f31da5bb01..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/vitamui-database-scripts-templater/tests/inventory
+++ /dev/null
@@ -1,2 +0,0 @@
-localhost
-
diff --git a/tools/docker/mongo/vitamui-database-scripts-templater/tests/test.yml b/tools/docker/mongo/vitamui-database-scripts-templater/tests/test.yml
deleted file mode 100644
index 7df41f4e1140e49e525f27c9347d10ffb724c90f..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/vitamui-database-scripts-templater/tests/test.yml
+++ /dev/null
@@ -1,5 +0,0 @@
----
-- hosts: localhost
- remote_user: root
- roles:
- - vitamui-database-scripts-templater
diff --git a/tools/docker/mongo/vitamui-database-scripts-templater/vars/main.yml b/tools/docker/mongo/vitamui-database-scripts-templater/vars/main.yml
deleted file mode 100644
index d70164f584683d60bfaeccf5323152144a384786..0000000000000000000000000000000000000000
--- a/tools/docker/mongo/vitamui-database-scripts-templater/vars/main.yml
+++ /dev/null
@@ -1,2 +0,0 @@
----
-# vars file for vitamui-database-scripts-templater
diff --git a/ui/ui-frontend/package-lock.json b/ui/ui-frontend/package-lock.json
index 6b1916c56653e466ce9c355211d9e183e0d8f760..aafe1649e728de3eff61e5d68ee7a530352c9577 100644
--- a/ui/ui-frontend/package-lock.json
+++ b/ui/ui-frontend/package-lock.json
@@ -10446,6 +10446,7 @@
},
"ui-frontend-common": {
"version": "file:../ui-frontend-common/ui-frontend-common-0.0.12.tgz",
+ "integrity": "sha512-g6ve0QMNUjnOTDHIOi+3dGTVAG0xvAd7oSNEfwdcRNg0VQ9FPriEdWUaNdJwPBIt1hn5O1SNz6HBCKSxkIHNIQ==",
"requires": {
"@angular/animations": "8.0.0",
"@angular/cdk": "^8.0.0",
diff --git a/ui/ui-identity/package-lock.json b/ui/ui-identity/package-lock.json
deleted file mode 100644
index 48e341a0954d5f8c2accf3a6731be28e5bb9c0de..0000000000000000000000000000000000000000
--- a/ui/ui-identity/package-lock.json
+++ /dev/null
@@ -1,3 +0,0 @@
-{
- "lockfileVersion": 1
-}
diff --git a/ui/ui-identity/src/main/config/keystore_ui-identity.jks b/ui/ui-identity/src/main/config/keystore_ui-identity.jks
new file mode 100644
index 0000000000000000000000000000000000000000..e5c9e841f135a8890a4e57245003b2d5772a400a
Binary files /dev/null and b/ui/ui-identity/src/main/config/keystore_ui-identity.jks differ
diff --git a/ui/ui-identity/src/main/config/truststore.jks b/ui/ui-identity/src/main/config/truststore.jks
deleted file mode 100644
index 33058df7190e4c48f79813ce75b4e4da97b77b3c..0000000000000000000000000000000000000000
Binary files a/ui/ui-identity/src/main/config/truststore.jks and /dev/null differ
diff --git a/ui/ui-identity/src/main/config/truststore_server.jks b/ui/ui-identity/src/main/config/truststore_server.jks
new file mode 100644
index 0000000000000000000000000000000000000000..c25bb727ec4db42c6b9582f530209b6fc160ffff
Binary files /dev/null and b/ui/ui-identity/src/main/config/truststore_server.jks differ
diff --git a/ui/ui-identity/src/main/config/ui-identity-application-dev.yml b/ui/ui-identity/src/main/config/ui-identity-application-dev.yml
index bd0d40ca5417161e26a5cc4b6a6fe7f495bea9af..b900fde87334a3d68f2e050ab6fb38638ef38005 100644
--- a/ui/ui-identity/src/main/config/ui-identity-application-dev.yml
+++ b/ui/ui-identity/src/main/config/ui-identity-application-dev.yml
@@ -16,12 +16,12 @@ ui-identity:
secure: true
ssl-configuration:
keystore:
- key-path: src/main/config/ui-identity.jks
- key-password: jkspasswd
+ key-path: src/main/config/keystore_ui-identity.jks
+ key-password: changeme
type: JKS
truststore:
- key-path: src/main/config/truststore.jks
- key-password: jkspasswd
+ key-path: src/main/config/truststore_server.jks
+ key-password: changeme
hostname-verification: false
base-url:
portal: "https://dev.vitamui.com:4200"
@@ -33,9 +33,9 @@ server:
port: 9001
scheme: https
ssl:
- key-store: src/main/config/ui-identity.jks
- key-store-password: jkspasswd
- key-password: jkspasswd
+ key-store: src/main/config/keystore_ui-identity.jks
+ key-store-password: changeme
+ key-password: changeme
servlet.session.cookie.path: /identity-api
management:
@@ -54,8 +54,8 @@ cas:
external-url: https://dev.vitamui.com:8080/cas
callback-url: ${ui.url}/identity-api/callback
ssl:
- trust-store: src/main/config/truststore.jks
- trust-store-password: jkspasswd
+ trust-store: src/main/config/truststore_server.jks
+ trust-store-password: changeme
# Uncomment if you want to use you specific logback config.
#logging:
diff --git a/ui/ui-identity/src/main/config/ui-identity-application-recette.yml b/ui/ui-identity/src/main/config/ui-identity-application-recette.yml
index ebe706b2995adc854a7de1d92f5a8a5a248e656d..ac50fa347b4df0999acf3e37a1e50c23386345d3 100644
--- a/ui/ui-identity/src/main/config/ui-identity-application-recette.yml
+++ b/ui/ui-identity/src/main/config/ui-identity-application-recette.yml
@@ -16,12 +16,12 @@ ui-identity:
secure: true
ssl-configuration:
keystore:
- key-path: src/main/config/ui-identity.jks
- key-password: jkspasswd
+ key-path: src/main/config/keystore_ui-identity.jks
+ key-password: changeme
type: JKS
truststore:
- key-path: src/main/config/truststore.jks
- key-password: jkspasswd
+ key-path: src/main/config/truststore_server.jks
+ key-password: changeme
hostname-verification: false
base-url:
portal: "https://dev.vitamui.com"
@@ -34,9 +34,9 @@ server:
servlet.context-path: /identity
scheme: https
ssl:
- key-store: src/main/config/ui-identity.jks
- key-store-password: jkspasswd
- key-password: jkspasswd
+ key-store: src/main/config/keystore_ui-identity.jks
+ key-store-password: changeme
+ key-password: changeme
servlet.session.cookie.path: /identity
management:
@@ -55,8 +55,8 @@ cas:
external-url: https://dev.vitamui.com/cas
callback-url: ${ui.url}/identity-api/callback
ssl:
- trust-store: src/main/config/truststore.jks
- trust-store-password: jkspasswd
+ trust-store: src/main/config/truststore_server.jks
+ trust-store-password: changeme
management.endpoints.web.exposure.include: "*"
debug: false
diff --git a/ui/ui-identity/src/main/config/ui-identity.jks b/ui/ui-identity/src/main/config/ui-identity.jks
deleted file mode 100644
index 81c11377fd2bcbb05feb0f51da76ee030768c2db..0000000000000000000000000000000000000000
Binary files a/ui/ui-identity/src/main/config/ui-identity.jks and /dev/null differ
diff --git a/ui/ui-identity/src/test/resources/ui-identity-application.yml b/ui/ui-identity/src/test/resources/ui-identity-application.yml
index 0f770ccb5659e6428f1eb18ef895883435b94fbf..32cab7ff38a6c6f575b1a8bb7117df16a0f5ce3f 100644
--- a/ui/ui-identity/src/test/resources/ui-identity-application.yml
+++ b/ui/ui-identity/src/test/resources/ui-identity-application.yml
@@ -50,9 +50,9 @@ server:
port: 8081
scheme: https
ssl:
- key-store: src/main/config/ui-identity.jks
- key-store-password: jkspasswd
- key-password: jkspasswd
+ key-store: src/main/config/keystore_ui-identity.jks
+ key-store-password: changeme
+ key-password: changeme
controller:
subrogation:
@@ -69,8 +69,8 @@ cas:
external-url: https://dev-cas.vitamui.com:8080
callback-url: ${ui.url}/callback
ssl:
- trust-store: src/main/config/truststore.jks
- trust-store-password: jkspasswd
+ trust-store: src/main/config/truststore_server.jks
+ trust-store-password: changeme
debug: false
logging:
diff --git a/ui/ui-portal/src/main/config/keystore_ui-portal.jks b/ui/ui-portal/src/main/config/keystore_ui-portal.jks
new file mode 100644
index 0000000000000000000000000000000000000000..07f63162f4b4065aa83e3aa50caf5027a4a6e8bf
Binary files /dev/null and b/ui/ui-portal/src/main/config/keystore_ui-portal.jks differ
diff --git a/ui/ui-portal/src/main/config/truststore.jks b/ui/ui-portal/src/main/config/truststore.jks
deleted file mode 100644
index 39e3ec129059907d201ef83e1353b92b625db87f..0000000000000000000000000000000000000000
Binary files a/ui/ui-portal/src/main/config/truststore.jks and /dev/null differ
diff --git a/ui/ui-portal/src/main/config/truststore_server.jks b/ui/ui-portal/src/main/config/truststore_server.jks
new file mode 100644
index 0000000000000000000000000000000000000000..c25bb727ec4db42c6b9582f530209b6fc160ffff
Binary files /dev/null and b/ui/ui-portal/src/main/config/truststore_server.jks differ
diff --git a/ui/ui-portal/src/main/config/ui-portal-application-dev.yml b/ui/ui-portal/src/main/config/ui-portal-application-dev.yml
index 2829bb2e56f081f113df5fecbcbc6df5785bb261..db1f3b7086a3e4472ad7428951384028ba40d55c 100644
--- a/ui/ui-portal/src/main/config/ui-portal-application-dev.yml
+++ b/ui/ui-portal/src/main/config/ui-portal-application-dev.yml
@@ -14,9 +14,9 @@ server:
port: 9000
scheme: https
ssl:
- key-store: src/main/config/ui-portal.jks
- key-store-password: jkspasswd
- key-password: jkspasswd
+ key-store: src/main/config/keystore_ui-portal.jks
+ key-store-password: changeme
+ key-password: changeme
management:
server:
address: localhost
@@ -31,12 +31,12 @@ ui-portal:
secure: true
ssl-configuration:
keystore:
- key-path: src/main/config/ui-portal.jks
- key-password: jkspasswd
+ key-path: src/main/config/keystore_ui-portal.jks
+ key-password: changeme
type: JKS
truststore:
- key-path: src/main/config/truststore.jks
- key-password: jkspasswd
+ key-path: src/main/config/truststore_server.jks
+ key-password: changeme
hostname-verification: false
base-url:
portal: "https://dev.vitamui.com:4200"
@@ -52,8 +52,8 @@ cas:
external-url: https://dev.vitamui.com:8080/cas
callback-url: ${ui.url}/portal-api/callback
ssl:
- trust-store: src/main/config/truststore.jks
- trust-store-password: jkspasswd
+ trust-store: src/main/config/truststore_server.jks
+ trust-store-password: changeme
logging:
level:
diff --git a/ui/ui-portal/src/main/config/ui-portal-application-recette.yml b/ui/ui-portal/src/main/config/ui-portal-application-recette.yml
index 98619d32169ef6c2653cbb5d57599bffc6642805..cbe224dc0653b0f30e7b26d425f1741a95459151 100644
--- a/ui/ui-portal/src/main/config/ui-portal-application-recette.yml
+++ b/ui/ui-portal/src/main/config/ui-portal-application-recette.yml
@@ -15,8 +15,8 @@ server:
scheme: https
ssl:
key-store: src/main/config/ui-portal.jks
- key-store-password: jkspasswd
- key-password: jkspasswd
+ key-store-password: changeme
+ key-password: changeme
management:
server:
address: localhost
@@ -31,12 +31,12 @@ ui-portal:
secure: true
ssl-configuration:
keystore:
- key-path: src/main/config/ui-portal.jks
- key-password: jkspasswd
+ key-path: src/main/config/keystore_ui-portal.jks
+ key-password: changeme
type: JKS
truststore:
- key-path: src/main/config/truststore.jks
- key-password: jkspasswd
+ key-path: src/main/config/truststore_server.jks
+ key-password: changeme
hostname-verification: false
base-url:
portal: "https://dev.vitamui.com"
@@ -52,8 +52,8 @@ cas:
external-url: https://dev.vitamui.com/cas
callback-url: ${ui.url}/portal-api/callback
ssl:
- trust-store: src/main/config/truststore.jks
- trust-store-password: jkspasswd
+ trust-store: src/main/config/truststore_server.jks
+ trust-store-password: changeme
debug: false
logging:
diff --git a/ui/ui-portal/src/main/config/ui-portal.jks b/ui/ui-portal/src/main/config/ui-portal.jks
deleted file mode 100644
index cb7803ab0ff9af33706a7a94dfbf5fa71b92461f..0000000000000000000000000000000000000000
Binary files a/ui/ui-portal/src/main/config/ui-portal.jks and /dev/null differ
diff --git a/ui/ui-portal/src/test/resources/ui-portal-application.yml b/ui/ui-portal/src/test/resources/ui-portal-application.yml
index 1aa13f2a033d22f01fba07eeb4f8869eeafb9ebb..8adb7244868462a42bb9261e299a3fbee4ba17e6 100644
--- a/ui/ui-portal/src/test/resources/ui-portal-application.yml
+++ b/ui/ui-portal/src/test/resources/ui-portal-application.yml
@@ -25,12 +25,12 @@ ui-portal:
secure: true
ssl-configuration:
keystore:
- key-path: src/main/config/ui-portal.jks
- key-password: jkspasswd
+ key-path: src/main/config/keystore_ui-portal.jks
+ key-password: changeme
type: JKS
truststore:
- key-path: src/main/config/truststore.jks
- key-password: jkspasswd
+ key-path: src/main/config/truststore_server.jks
+ key-password: changeme
hostname-verification: false
ui-prefix: portal-api
@@ -61,8 +61,8 @@ cas:
external-url: https://dev-cas.vitamui.com:8080
callback-url: ${ui.url}/callback
ssl:
- trust-store: src/main/config/truststore.jks
- trust-store-password: jkspasswd
+ trust-store: src/main/config/truststore_server.jks
+ trust-store-password: changeme
logging:
level: