[Freeipa-devel] Reasons for not using certmonger DBus API
Martin Kosek
mkosek at redhat.com
Wed Jul 23 08:12:39 UTC 2014
On 07/23/2014 09:56 AM, David Kupka wrote:
> While solving ticket #4280 I noticed that we are messing with certmonger's
> files right under its hands. That can lead to some unpleasant race condition
> issues.
> Is there any reason why not to call certmonger via DBus and ask it to stop
> tracking the requests?
+1 for using the dbus API. When I saw the hacky way of parsing certmonger
internal configuration files in ipapython/certmonger.py, I suggested the dbus
way as IMO it would not be difficult to implement, it would make us more future
proof and it would remove intermittent problems like #4280.
Certmonger API looked complete enough to pull this off:
https://git.fedorahosted.org/cgit/certmonger.git/tree/doc/api.txt
If I am wrong, please tell me.
Thanks,
Martin
More information about the Freeipa-devel
mailing list