the externalRegAddToToken profile was meant for adding certs/keys to the token, so no deletion is supposed to happen, hence no revoke check necessary.  It does no harm to add that param though.

ACK.

Christina

On 07/28/2015 05:57 PM, John Magne wrote:
op.format.externalRegAddToToken.revokeCert parameter missing in TPS CS.cfg.
    
    It is true that his setting is not present.
    The generic code that revokes certs for a format checks this value.
    No harm in putting this value in the CS.cfg and setting it to false by
    default for the externalRegAddToToken profile. No harm in giving the user
    the way to use this feature , even if we decide it is not a good idea to revoke
    certs associated with the external reg feature.



_______________________________________________
Pki-devel mailing list
Pki-devel@redhat.com
https://www.redhat.com/mailman/listinfo/pki-devel