[PATCH] TRAC Ticket #816 - pki-tomcat cannot be started after installation of ipa replica with ca [20140319]
by Matthew Harmsen
This patch causes the 'sslserver' certificate for a CA clone to be
signed by its associated master CA during configuration, and resolves
the following bug:
* Dogtag TRAC Ticket #816 - pki-tomcat cannot be started after
installation of ipa replica with ca
<https://fedorahosted.org/pki/ticket/816>
This was necessary to avoid any changes which may have been made to the
X500Name directory string encoding order (i. e. - creating a Cloned CA
on Fedora 20 from a Master CA on Fedora 19).
This was also tested with an installation of IPA on Fedora 19, and a
replica installation on Fedora 20 (after adding
"|^/ca/ee/ca/profileSubmit" to the
"/etc/httpd/conf.d/ipa-pki-proxy.conf" on the Fedora 19 master -- an IPA
ticket will be filed for this issue).
10 years, 9 months
[PATCH] 426 Added search filter for TPS resources.
by Endi Sukma Dewata
The TPS resources have been modified to accept a basic search filter
for find operation. For resources based on LDAP database, the filtering
is done using LDAP filter. For other resources, the filtering is done
using string comparison. For now the filter is will only be matched
against entry IDs. In the future the filter may be expanded to support
other entry attributes. The CLI has been updated accordingly.
The total attribute in DataCollection was changed from Integer into int
because the total size of the collection cannot be null.
The PKIException constructors have been consolidated into a single
actual constructor. The other constructors have been modified to
call the actual constructor with some default values.
Ticket #847
--
Endi S. Dewata
10 years, 9 months
[PATCH] 425 Added remove button handler for TPS UI.
by Endi Sukma Dewata
The Table class has been modified to handle the remove button.
When the button is clicked, it will get the list of items selected
for deletion. If there is nothing selected it will not do anything.
If there are some items selected, it will display the list in a
dialog box and ask the user to confirm the deletion. If the operation
is confirmed, the items will be deleted one by one. The table will
be refreshed after the process is done.
In some pages the buttons have been updated to reflect the
availability of the add/remove operations for the corresponding
REST resources.
Ticket #654
--
Endi S. Dewata
10 years, 9 months
[PATCH] 423 Removed config path from web.xml.
by Endi Sukma Dewata
Previously the CMSStartServlet always requires a cfgPath parameter
pointing to the CS.cfg location. By default the parameter points to
<instance>/conf/<subsystem>/CS.cfg unless it's manually changed by
the admin after installation.
Recently the servlet has been modified such that if the parameter
is not specified it will generate the default path automatically.
So it is no longer necessary to keep the cfgPath parameter in the
web.xml templates because it will point to the same location.
This patch removes the cfgPath parameters from all web.xml templates.
This way newly created subsystems will not have this parameter, which
will help direct deployment in the future. An upgrade script has been
added to remove the parameter from existing instances if it points to
the default location. If the parameter points to a different location
that means the subsystem has been customized so it will not be changed.
Ticket #748, #499
--
Endi S. Dewata
10 years, 9 months
[PATCH] TRAC Ticket #868 - REST API get certs links missing segment [20140307]
by Matthew Harmsen
Please review the following patch which addresses:
* PKI TRAC Ticket #868 - REST API get certs links missing segment
<https://fedorahosted.org/pki/ticket/868>
This patch has been tested on the DOGTAG_10_0_BRANCH as used on Fedora 19:
Prior to the patch, the following URL:
* https://fedora19.example.com:8443/ca/rest/certs
produces an XML page which contains XML such as:
* <Link href="*https://fedora19.example.com:8443/ca/rest/0x1*"
rel="self"/>
which produces an 'HTTP Status 404' page.
After the patch has been applied, the same URL produces an XML page
which contains XML such as:
* <Link
href="*https://fedora19.example.com:8443/ca/rest/certs/0x1*"
rel="self"/>
which corresponds to a valid URL.
NOTE: This patch needs to be applied to the DOGTAG_10_0_BRANCH (Fedora
19), the DOGTAG_10_1_BRANCH (Fedora 20), and the master (Fedora 21+).
This patch may also need to be applied to the
IPA_V3_RHEL_7_ERRATA_BRANCH.
10 years, 9 months
[PATCH] 424 Fixed javadoc issues.
by Endi Sukma Dewata
Due to recent changes the javadoc command was missing some packages
and a new dependency. This patch fixes the command to include the
missing com.netscape.cms and the new org.dogtagpki packages. It's
also adding the missing RESTEasy client library into the classpath.
--
Endi S. Dewata
10 years, 9 months