April 2016 - Pki-devel - Dogtag Pki List Archives

by Endi Sukma Dewata

The TPS UI home page and the status menu item been temporarily removed. The home links will now redirect to the tokens page. https://fedorahosted.org/pki/ticket/2261 https://fedorahosted.org/pki/ticket/2262 -- Endi S. Dewata

8 years

1
1
0 / 0

[PATCH] 296 - fix cert requests problem ..

by Ade Lee

Fix problem in creating certificate requests Some incorrect code was added to request processing in the realm patches. In the request LDAP modification code, if the realm was not present, we added a modification to remove the realm attribute. Unfortunately, if the realm was not present to begin with, this resulted in LDAP returning a "No Such Attribute (16)" error, causing all kinds of requests - including certificate requests to fail to be submitted. At this point, we do not permit users to change the realm of a request. Therefore, there is no reason to remove the realm. If we ever need to do this in future, we'll have to be smarter about it.

8 years

1
0
0 / 0

[PATCH] 720 Replaced TPS OP_DO_TOKEN activity.

by Endi Sukma Dewata

For clarity the TPS operatons that generate OP_DO_TOKEN activity has been modified to generate OP_MODIFY instead, except for the changeTokenStatus() which will generate OP_STATUS_CHANGE. https://fedorahosted.org/pki/ticket/2268 -- Endi S. Dewata

8 years

2
2
0 / 0

Karma request for Dogtag 10.2.6 on Fedora 23

by Matthew Harmsen

The following ticket has been addressed in Fedora 23: * PKI TRAC Ticket #2022 - pkispawn ignores 3rd party CA certs in pki_clone_pkcs12_path (python hash fix) <https://fedorahosted.org/pki/ticket/2022> by the following build: * pki-core-10.2.6-19.fc23 <http://koji.fedoraproject.org/koji/buildinfo?buildID=756680> Please provide Karma for this build in Bodhi located at: * pki-core-10.2.6-19.fc23 <https://bodhi.fedoraproject.org/updates/FEDORA-2016-8705c11822> Thanks, -- Matt

8 years

1
0
0 / 0

Trac; add "Lightweight CAs" feature?

by Fraser Tweedale

Hi all, Could someone with the relevant permissions please add a "Lightweight CAs" feature to the pki trac? There's a substantial quantity of outstanding tickets for this feature so it would be good to have something more formal than the summary by which to group them. Thanks, Fraser

8 years

2
1
0 / 0

[PATCH] 285 - 293 Patches for fine grained authz in the KRA

by Ade Lee

This is the main series of patches that implements fine grained authorization in the KRA as described in : https://pagure.io/test_dogtag_designs/pull-request/5 I'll be moving this design to the wiki and adding some additional documentation and test scripts shortly. More to come including : 1. authz for the modify method in the Key service. 2. new VLV indexes 3. database migration script 4. Man page updates 5. Python unit tests for the Python CLI changes Please review, Thanks, Ade

8 years

2
5
0 / 0

[PATCH] 717 Fixed PKCS #12 export options.

by Endi Sukma Dewata

The CLIs for exporting PKCS #12 file have been modified to accept options to export without trust flags, keys, and/or certificate chain. https://fedorahosted.org/pki/ticket/1736 -- Endi S. Dewata

8 years

2
2
0 / 0

Karma Request for Dogtag 10.3.0.b1 on Fedora 24

by Matthew Harmsen

The initial beta build of Dogtag on Fedora 24 consists of the following builds: * dogtag-pki-theme-10.3.0.b1-1.fc24 <http://koji.fedoraproject.org/koji/buildinfo?buildID=755652> * dogtag-pki-10.3.0.b1-1.fc24 <http://koji.fedoraproject.org/koji/buildinfo?buildID=755655> * pki-core-10.3.0.b1-1.fc24 <http://koji.fedoraproject.org/koji/buildinfo?buildID=755657> * pki-console-10.3.0.b1-1.fc24 <http://koji.fedoraproject.org/koji/buildinfo?buildID=755676> Please provide Karma for these builds in Bodhi located at: * dogtag-pki-theme-10.3.0.b1-1.fc24 <https://bodhi.fedoraproject.org/updates/FEDORA-2016-67b0155f25> * dogtag-pki-10.3.0.b1-1.fc24 <https://bodhi.fedoraproject.org/updates/FEDORA-2016-1b3db5e583> * pki-core-10.3.0.b1-1.fc24 <https://bodhi.fedoraproject.org/updates/FEDORA-2016-a51b46c2f8> * pki-console-10.3.0.b1-1.fc24 <https://bodhi.fedoraproject.org/updates/FEDORA-2016-b4b6ae555f> Additionally, the following builds have been provided for Fedora 25 (rawhide): * dogtag-pki-theme-10.3.0.b1-1.fc25 <http://koji.fedoraproject.org/koji/buildinfo?buildID=755653> * dogtag-pki-10.3.0.b1-1.fc25 <http://koji.fedoraproject.org/koji/buildinfo?buildID=755656> * pki-core-10.3.0.b1-1.fc25 <http://koji.fedoraproject.org/koji/buildinfo?buildID=755666> * pki-console-10.3.0.b1-1.fc25 <http://koji.fedoraproject.org/koji/buildinfo?buildID=755726> Thanks, -- Matt

8 years

1
0
0 / 0

[284] fix authority monitor so server can start up correctly

by Ade Lee

Author: Ade Lee <alee(a)redhat.com> Date: Fri Apr 15 14:36:00 2016 -0400 Add script to enable USN plugin New authority monitor code requires the USN plugin to be enabled in the database to ensure that the entryUSN attribute is added to authority entries. In the case where this plugin was disabled, accessing this attribute resulted in a null pointer exception whch prevented server startup. The code has been changed so as not to throw a null pointer exception on startup if the entryusn is not present, and also to call an LDIF to enable the plugin when a subsystem is configured thorugh pkispawn. Please review, Ade

8 years

1
1
0 / 0

[PATCH] 713-716 Simplifying existing CA installation.

by Endi Sukma Dewata

Attached are the changes to simplify the existing CA installation: https://fedorahosted.org/pki/ticket/1736 The documentation has been updated: http://pki.fedoraproject.org/wiki/Installing_CA_with_Existing_CA_Certificate -- Endi S. Dewata

8 years

2
3
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

Pki-devel April 2016