[PATCH] 84 Added CLI to manage client configuration.
by Endi Sukma Dewata
New connect, disconnect, and status commands have been added to
manage client configuration. This way it is no longer necessary
to repeat the connection parameters on a sequence of commands
that connect to the same server. For example:
pki connect -u <username> -w <password>
pki user-find
pki user-del testuser
pki disconnect
The connect command stores the connection parameters into
$HOME/.pki/client.xml. Subsequent commands will read the
connection parameters from this file to connect to the server.
The disconnect command will remove the file. The status command
can be used to view the connection status.
Ticket #107
--
Endi S. Dewata
12 years, 1 month
[PATCH] PKI Deployment Framework PKI TRAC issues (07/25/2012)
by Matthew Harmsen
NOTE: This version of the patch applies the fixes previously requested:
Comments:
1. As noted, please open trac ticket to remove custom args from the
command line from pkispawn, and add -i instance mandatory parameter to
pkidestroy.
2. In pkihelper, you add logic that separates out the case of the
subordinate CA because subordinate is not defined for any subsystem
other than a CA. You could leave it in the same conditional, and
simplify the conditional to be: if (clone) or (!ca) or (subordinate):
3. Please shorten the name of
util.namespace.pki_instance_name_collision_detection_avoidance()
You can make those changes and check in without re-review. As long as
you test of course to confirm you have not broken anything.
Ade
This patch documents continued implementation of the PKI Deployment
Framework based upon the revised filesystem layout documented here:
* http://pki.fedoraproject.org/wiki/PKI_Instance_Deployment#CA_.2F_KRA_.2F_...
This patch addresses the following issues:
* PKI TRAC Ticket #244 - Non-user-friendly message when deleting
non-existent subsystem with pkidestroy
* PKI TRAC Ticket #246 - Incorrect parameter names in pkispawn
configuration
* PKI TRAC Ticket #248 - pki_ds_database should not be a DN
* PKI TRAC Ticket #249 - pki_ds_base_dn causing pkispawn failure
* PKI TRAC Ticket #250 - Creating/removing custom instances should not
require http/ajp ports
* PKI TRAC Ticket #251 - Instance name may conflict with other files
* PKI TRAC Ticket #253 - Fix pki-destroy removal of
'/var/log/pki/{pki_instance_id}' directory . . .
* PKI TRAC Ticket #254 - Dogtag 10: Fix spec file to build
successfully via mock on Fedora 17 . . .
* PKI TRAC Ticket #255 - Missing resteasy-atom-provider.jar
* PKI TRAC Ticket #260 - Dogtag 10: Change the layout of
'pki_instance_id' . . .
*WARNING: As this patch does fundamentally change instance names from
"[pki_admin_domain_name-]pki_instance_name" to
"pki_instance_name[.pki_admin_domain_name]", users of this patch must
FIRST remove all old PKI instances.*
12 years, 1 month
[PATCH] 41 - Merge most DAO objects into ResourceService files
by Ade Lee
We decided we no longer need the DAO level. I have merged the logic in
those files into the ResourceService files.
The DAO objects for Requests still seem to be useful though - mainly
because requests have a lot in common for keys and certs - so we may or
may not remove them. Either way, we'll deal with them in a separate
patch.
Ade
12 years, 1 month
[PATCH] 41 - selinux policy changes
by Ade Lee
This patch includes a simplification to the selinux policy because all
the java subsystems can co-exist on the same tomcat instance. Hence, a
new type pki_tomcat_t has been introduced. Aliases for old types have
also been introduced.
Scriptlets to add the selinux context (if needed) have also been added.
This checkin will likely break f16 builds because the selinux patch no
longer applies - and it likely calls on types that were only introduced
in f17+. As dogtag 10 is targeted to f18, this is not something we
should worry about. As of now, dogtag 10 must be run on f17+.
A separate patch will clean up the spec file.
12 years, 1 month
[PATCH] PKI Deployment Framework PKI TRAC issues
by Matthew Harmsen
This patch documents continued implementation of the PKI Deployment
Framework based upon the revised filesystem layout documented here:
* http://pki.fedoraproject.org/wiki/PKI_Instance_Deployment#CA_.2F_KRA_.2F_...
This patch addresses the following issues:
* PKI TRAC Ticket #244 - Non-user-friendly message when deleting
non-existent subsystem with pkidestroy
* PKI TRAC Ticket #246 - Incorrect parameter names in pkispawn
configuration
* PKI TRAC Ticket #248 - pki_ds_database should not be a DN
* PKI TRAC Ticket #249 - pki_ds_base_dn causing pkispawn failure
* PKI TRAC Ticket #250 - Creating/removing custom instances should not
require http/ajp ports
* PKI TRAC Ticket #251 - Instance name may conflict with other files
* PKI TRAC Ticket #253 - Fix pki-destroy removal of
'/var/log/pki/{pki_instance_id}' directory . . .
* PKI TRAC Ticket #254 - Dogtag 10: Fix spec file to build
successfully via mock on Fedora 17 . . .
* PKI TRAC Ticket #255 - Missing resteasy-atom-provider.jar
*WARNING: As this patch does fundamentally change instance names from
"[pki_admin_domain_name-]pki_instance_name" to
"pki_instance_name[.pki_admin_domain_name]", users of this patch must
FIRST remove all old PKI instances.*
12 years, 1 month
[PATCH] 40 - pluralized paths only
by Ade Lee
This patch consolidates the REST classes - and only uses pluralized
paths for the restful interface.
Please review.
Thanks,
Ade
12 years, 2 months