verbal conditional ack from Jack.
addressed and committed.

commit 9a6a3d1cbf6e347b2cf0737afca4f793a6a0d0ba

Christina

On 01/13/2016 05:49 PM, Christina Fu wrote:

Ticket #1375 Provide cert/key retention for externalReg
Ticket #1514 TPS: Recovered certs on a token has status expired
Ticket #1587 External Registration Recovery only works for 1024 sized keys out of the box
This patch provides the cert/key retention feature for externalReg. if the
certsToAdd field contains (serial,ca#) instead of the full (serial, ca#,
keyId, kra#), then it is expecting the cert/key to be retained from token
without having to do a full retrieval (recovery). This patch also fixes the
issues reported in #1514 and #1587 as testing of #1375 is easier with those
two issues addressed. An issue was found during development where Coolkey
puts limits on the cert/key ids on the token and make it impossible to inject
cert ID higher than 4, as it would then result in key ids into two digits.
This issue will be filed as a separte ticket and addressed separately. Most
testing will then be conducted.

thanks,
Christina
_______________________________________________
Pki-devel mailing list
Pki-devel@redhat.com
https://www.redhat.com/mailman/listinfo/pki-devel