Merge pull request #3 from sanjaymantoor/main

Updated shell scripts as per security review comments

Author: rjeberhard

weblogic-azure-vm/arm-oraclelinux-wls-admin/src/main/scripts/aadIntegration.sh

@@ -215,7 +215,7 @@ function parseLDAPCertificate()
     done
 
     openssl base64 -d -in ${SCRIPT_PWD}/security/AzureADLDAPCerBase64String.txt -out ${SCRIPT_PWD}/security/AzureADTrust.cer
-    export addsCertificate=${SCRIPT_PWD}/security/AzureADTrust.cer
+    addsCertificate=${SCRIPT_PWD}/security/AzureADTrust.cer
 }
 
 function importAADCertificate()
@@ -311,7 +311,7 @@ function wait_for_admin()
 {
     #check admin server status
     count=1
-    export CHECK_URL="http://$wlsAdminURL/weblogic/ready"
+    CHECK_URL="http://$wlsAdminURL/weblogic/ready"
     status=`curl --insecure -ILs $CHECK_URL | tac | grep -m1 HTTP/1.1 | awk {'print $2'}`
     echo "Check admin server status"
     while [[ "$status" != "200" ]]
@@ -361,57 +361,57 @@ fi
 
 function createTempFolder()
 {
-    export SCRIPT_PATH="/u01/tmp"
+    SCRIPT_PATH="/u01/tmp"
     sudo rm -f -r ${SCRIPT_PATH}
     sudo mkdir ${SCRIPT_PATH}
     sudo rm -rf $SCRIPT_PATH/*
 }
 
-export LDAP_USER_NAME='sAMAccountName'
-export LDAP_USER_FROM_NAME_FILTER='(&(sAMAccountName=%u)(objectclass=user))'
-export JAVA_OPTIONS_TLS_V12="-Djdk.tls.client.protocols=TLSv1.2"
-export STRING_ENABLE_TLSV12="Append -Djdk.tls.client.protocols to JAVA_OPTIONS in jdk8"
-export SCRIPT_PWD=`pwd`
-export USER_ORACLE="oracle"
-export GROUP_ORACLE="oracle"
-export DOMAIN_PATH="/u01/domains"
+LDAP_USER_NAME='sAMAccountName'
+LDAP_USER_FROM_NAME_FILTER='(&(sAMAccountName=%u)(objectclass=user))'
+JAVA_OPTIONS_TLS_V12="-Djdk.tls.client.protocols=TLSv1.2"
+STRING_ENABLE_TLSV12="Append -Djdk.tls.client.protocols to JAVA_OPTIONS in jdk8"
+SCRIPT_PWD=`pwd`
+USER_ORACLE="oracle"
+GROUP_ORACLE="oracle"
+DOMAIN_PATH="/u01/domains"
 
 if [ $# -ne 20 ]
 then
     usage
 	exit 1
 fi
 
-export wlsUserName=$1
-export wlsPassword=$2
-export wlsDomainName=$3
-export adProviderName=$4
-export adServerHost=$5
-export adServerPort=$6
-export adPrincipal=$7
-export adPassword=$8
-export adGroupBaseDN=$9
-export adUserBaseDN=${10}
-export oracleHome=${11}
-export wlsAdminHost=${12}
-export wlsAdminPort=${13}
-export wlsADSSLCer="${14}"
-export wlsLDAPPublicIP="${15}"
-export wlsAdminServerName=${16}
-export wlsDomainPath=${17}
-export isCustomSSLEnabled=${18}
-export customTrustKeyStorePassPhrase="${19}"
-export customTrustKeyStoreType="${20}"
-
-export isCustomSSLEnabled="${isCustomSSLEnabled,,}"
+wlsUserName=$1
+wlsPassword=$2
+wlsDomainName=$3
+adProviderName=$4
+adServerHost=$5
+adServerPort=$6
+adPrincipal=$7
+adPassword=$8
+adGroupBaseDN=$9
+adUserBaseDN=${10}
+oracleHome=${11}
+wlsAdminHost=${12}
+wlsAdminPort=${13}
+wlsADSSLCer="${14}"
+wlsLDAPPublicIP="${15}"
+wlsAdminServerName=${16}
+wlsDomainPath=${17}
+isCustomSSLEnabled=${18}
+customTrustKeyStorePassPhrase="${19}"
+customTrustKeyStoreType="${20}"
+
+isCustomSSLEnabled="${isCustomSSLEnabled,,}"
 
 if [ "${isCustomSSLEnabled,,}" == "true" ];
 then
     customTrustKeyStorePassPhrase=$(echo "$customTrustKeyStorePassPhrase" | base64 --decode)
     customTrustKeyStoreType=$(echo "$customTrustKeyStoreType" | base64 --decode)
 fi
 
-export wlsAdminURL=$wlsAdminHost:$wlsAdminPort
+wlsAdminURL=$wlsAdminHost:$wlsAdminPort
 
 validateInput
 createTempFolder

weblogic-azure-vm/arm-oraclelinux-wls-admin/src/main/scripts/datasourceConfig-oracle.sh

@@ -5,18 +5,18 @@
 # Description
 #  This script configures datasource on WebLogic Server Domain for Oracle database.
 
-export oracleHome=$1
-export wlsAdminHost=$2
-export wlsAdminPort=$3
-export wlsUserName=$4
-export wlsPassword=$5
-export jdbcDataSourceName=$6
-export dsConnectionURL=$7
-export dsUser=$8
-export dsPassword=$9
-export wlsClusterName=${10-cluster1}
-export wlsAdminURL=$wlsAdminHost:$wlsAdminPort
-export hostName=`hostname`
+oracleHome=$1
+wlsAdminHost=$2
+wlsAdminPort=$3
+wlsUserName=$4
+wlsPassword=$5
+jdbcDataSourceName=$6
+dsConnectionURL=$7
+dsUser=$8
+dsPassword=$9
+wlsClusterName=${10-cluster1}
+wlsAdminURL=$wlsAdminHost:$wlsAdminPort
+hostName=`hostname`
 
 #Function to output message to StdErr
 function echo_stderr ()
@@ -142,7 +142,7 @@ EOF
 
 function createTempFolder()
 {
-    export scriptPath="/u01/tmp"
+    scriptPath="/u01/tmp"
     sudo rm -f -r ${scriptPath}
     sudo mkdir ${scriptPath}
     sudo rm -rf $scriptPath/*

weblogic-azure-vm/arm-oraclelinux-wls-admin/src/main/scripts/datasourceConfig-postgresql.sh

@@ -5,18 +5,18 @@
 # Description
 #  This script configures datasource on WebLogic Server Domain for PostgreSQL database.
 
-export oracleHome=$1
-export wlsAdminHost=$2
-export wlsAdminPort=$3
-export wlsUserName=$4
-export wlsPassword=$5
-export jdbcDataSourceName=$6
-export dsConnectionURL=$7
-export dsUser=$8
-export dsPassword=$9
-export wlsClusterName=${10-cluster1}
-export wlsAdminURL=$wlsAdminHost:$wlsAdminPort
-export hostName=`hostname`
+oracleHome=$1
+wlsAdminHost=$2
+wlsAdminPort=$3
+wlsUserName=$4
+wlsPassword=$5
+jdbcDataSourceName=$6
+dsConnectionURL=$7
+dsUser=$8
+dsPassword=$9
+wlsClusterName=${10-cluster1}
+wlsAdminURL=$wlsAdminHost:$wlsAdminPort
+hostName=`hostname`
 
 #Function to output message to StdErr
 function echo_stderr ()
@@ -142,7 +142,7 @@ EOF
 
 function createTempFolder()
 {
-    export scriptPath="/u01/tmp"
+    scriptPath="/u01/tmp"
     sudo rm -f -r ${scriptPath}
     sudo mkdir ${scriptPath}
     sudo rm -rf $scriptPath/*

weblogic-azure-vm/arm-oraclelinux-wls-admin/src/main/scripts/datasourceConfig-sqlserver.sh

@@ -5,18 +5,18 @@
 # Description
 #  This script configures datasource on WebLogic Server Domain for SQL Server database.
 
-export oracleHome=$1
-export wlsAdminHost=$2
-export wlsAdminPort=$3
-export wlsUserName=$4
-export wlsPassword=$5
-export jdbcDataSourceName=$6
-export dsConnectionURL=$7
-export dsUser=$8
-export dsPassword=$9
-export wlsClusterName=${10-cluster1}
-export wlsAdminURL=$wlsAdminHost:$wlsAdminPort
-export hostName=`hostname`
+oracleHome=$1
+wlsAdminHost=$2
+wlsAdminPort=$3
+wlsUserName=$4
+wlsPassword=$5
+jdbcDataSourceName=$6
+dsConnectionURL=$7
+dsUser=$8
+dsPassword=$9
+wlsClusterName=${10-cluster1}
+wlsAdminURL=$wlsAdminHost:$wlsAdminPort
+hostName=`hostname`
 
 #Function to output message to StdErr
 function echo_stderr ()
@@ -142,7 +142,7 @@ EOF
 
 function createTempFolder()
 {
-    export scriptPath="/u01/tmp"
+    scriptPath="/u01/tmp"
     sudo rm -f -r ${scriptPath}
     sudo mkdir ${scriptPath}
     sudo rm -rf $scriptPath/*

weblogic-azure-vm/arm-oraclelinux-wls-admin/src/main/scripts/elkIntegration.sh

@@ -5,24 +5,24 @@
 # Description
 #  This script configures ELK (Elasticsearch, Logstash and Kibana) Stack on WebLogic Server Domain.
 
-export oracleHome=$1
-export wlsAdminHost=$2
-export wlsAdminPort=$3
-export wlsUserName=$4
-export wlsPassword=$5
-export wlsAdminServerName=$6
-export elasticURI=$7
-export elasticUserName=$8
-export elasticPassword=$9
-export wlsDomainName=${10}
-export wlsDomainPath=${11}
-export logsToIntegrate=${12}
-export logIndex=${13}
-
-export hostName=`hostname`
-export wlsAdminURL=$wlsAdminHost:$wlsAdminPort
-export userOracle="oracle"
-export groupOracle="oracle"
+oracleHome=$1
+wlsAdminHost=$2
+wlsAdminPort=$3
+wlsUserName=$4
+wlsPassword=$5
+wlsAdminServerName=$6
+elasticURI=$7
+elasticUserName=$8
+elasticPassword=$9
+wlsDomainName=${10}
+wlsDomainPath=${11}
+logsToIntegrate=${12}
+logIndex=${13}
+
+hostName=`hostname`
+wlsAdminURL=$wlsAdminHost:$wlsAdminPort
+userOracle="oracle"
+groupOracle="oracle"
 
 #Function to output message to StdErr
 function echo_stderr ()
@@ -567,7 +567,7 @@ function wait_for_admin()
 {
     #check admin server status
     count=1
-    export CHECK_URL="http://$wlsAdminURL/weblogic/ready"
+    CHECK_URL="http://$wlsAdminURL/weblogic/ready"
     status=`curl --insecure -ILs $CHECK_URL | tac | grep -m1 HTTP/1.1 | awk {'print $2'}`
     echo "Check admin server status"
     while [[ "$status" != "200" ]]
@@ -594,7 +594,7 @@ function wait_for_admin()
 function shutdown_admin() {
     #check admin server status
     count=1
-    export CHECK_URL="http://$wlsAdminURL/weblogic/ready"
+    CHECK_URL="http://$wlsAdminURL/weblogic/ready"
     status=$(curl --insecure -ILs $CHECK_URL | tac | grep -m1 HTTP/1.1 | awk {'print $2'})
     echo "Check admin server status"
     while [[ "$status" == "200" ]]; do
@@ -624,7 +624,7 @@ function cleanup()
 
 function create_temp_folder()
 {
-    export SCRIPT_PATH="/u01/tmp"
+    SCRIPT_PATH="/u01/tmp"
     sudo rm -f -r ${SCRIPT_PATH}
     sudo mkdir ${SCRIPT_PATH}
     sudo rm -rf $SCRIPT_PATH/*
@@ -665,7 +665,7 @@ function validate_elastic_server()
     done
 }
 
-export SCRIPT_PWD=`pwd`
+SCRIPT_PWD=`pwd`
 
 if [ $# -ne 13 ]
 then