<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
the externalRegAddToToken profile was meant for adding certs/keys to
the token, so no deletion is supposed to happen, hence no revoke
check necessary. It does no harm to add that param though.<br>
<br>
ACK.<br>
<br>
Christina<br>
<br>
<div class="moz-cite-prefix">On 07/28/2015 05:57 PM, John Magne
wrote:<br>
</div>
<blockquote
cite="mid:1569453765.174621.1438131440473.JavaMail.zimbra@redhat.com"
type="cite">
<pre wrap="">op.format.externalRegAddToToken.revokeCert parameter missing in TPS CS.cfg.
It is true that his setting is not present.
The generic code that revokes certs for a format checks this value.
No harm in putting this value in the CS.cfg and setting it to false by
default for the externalRegAddToToken profile. No harm in giving the user
the way to use this feature , even if we decide it is not a good idea to revoke
certs associated with the external reg feature.
</pre>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
Pki-devel mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Pki-devel@redhat.com">Pki-devel@redhat.com</a>
<a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/pki-devel">https://www.redhat.com/mailman/listinfo/pki-devel</a></pre>
</blockquote>
<br>
</body>
</html>