[Freeipa-devel] [freeipa PR#652][opened] dogtag-ipa-ca-renew-agent-submit: fix the is_replicated() function
flo-renaud
freeipa-github-notification at redhat.com
Fri Mar 24 10:53:41 UTC 2017
URL: https://github.com/freeipa/freeipa/pull/652
Author: flo-renaud
Title: #652: dogtag-ipa-ca-renew-agent-submit: fix the is_replicated() function
Action: opened
PR body:
"""
dogtag-ipa-ca-renew-agent-submit behaves differently depending on the
certificate it needs to renew. For instance, some certificates (such as IPA RA)
are the same on all the hosts and the renewal is actually done only on
the renewal master. On other nodes, the new cert is downloaded from LDAP.
The function is_replicated() is returning the opposite as what it should. If
the cert nickname is IPA RA, it should return that the cert is replicated but
it doesn't, and this leads to a wrong code path to renew the cert.
https://pagure.io/freeipa/issue/6813
"""
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/652/head:pr652
git checkout pr652
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-pr-652.patch
Type: text/x-diff
Size: 1333 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20170324/3698d52d/attachment.bin>
More information about the Freeipa-devel
mailing list