[Freeipa-devel] [PATCH] 359 allow cert renewal
Rob Crittenden
rcritten at redhat.com
Thu Jan 28 21:16:39 UTC 2010
Rob Crittenden wrote:
> Be a bit smarter about decoding certificates that might be base64
> encoded. First see if it only contains those characters allowed before
> trying to decode it. This reduces the number of false positives.
>
> rob
Er, duh, I got this description goofed up.
This patch is related to certificate renewal/issuing a new certificate
for a service that already has one. We used to reject inserting a new
certificate altogether. This patch adds a new flag, --renew, that lets
you replace a certificate. The existing certificate is revoked.
rob
More information about the Freeipa-devel
mailing list