Re: [Pki-devel] [PATCH] 0109-Ticket-1375-Provide-cert-key-retention-for-externalR.patch

Ticket #1375 Provide cert/key retention for externalReg Ticket #1514 TPS: Recovered certs on a token has status expired Ticket #1587 External Registration Recovery only works for 1024 sized keys out of the box This patch provides the cert/key retention feature for externalReg. if the certsToAdd field contains (serial,ca#) instead of the full (serial, ca#, keyId, kra#), then it is expecting the cert/key to be retained from token without having to do a full retrieval (recovery). This patch also fixes the issues reported in #1514 and #1587 as testing of #1375 is easier with those two issues addressed. An issue was found during development where Coolkey puts limits on the cert/key ids on the token and make it impossible to inject cert ID higher than 4, as it would then result in key ids into two digits. This issue will be filed as a separte ticket and addressed separately. Most testing will then be conducted. thanks, Christina _______________________________________________ Pki-devel mailing list Pki-devel(a)redhat.com https://www.redhat.com/mailman/listinfo/pki-devel