[Pki-devel] [PATCH] 862 TPS rewrite: provide connector service for JAVA-based TPS subsystem

Christina Fu cfu at redhat.com
Tue Mar 4 00:14:04 UTC 2014 

The is a request for code review.

Attached please find the code that implements the following trac ticket:
https://fedorahosted.org/pki/ticket/862 TPS rewrite: provide connector 
service for JAVA-based TPS subsystem

This patch makes available the connector that has been used between CA 
and KRA to TPS and other authorities (CA, TKS, KRA).

A few things to note:
1.
One key modification to the existing connector framework is the 
introduction of "muti-uri" implementation which will allow TPS to 
provide connectors according to an "op".   For example:
tps.connector.ca1.uri.enrollment=/ca/ee/ca/profileSubmitSSLClient
tps.connector.ca1.uri.renewal=/ca/ee/ca/profileSubmitSSLClient
tps.connector.ca1.uri.revoke=/ca/ee/subsystem/ca/doRevoke
tps.connector.ca1.uri.unrevoke=/ca/ee/subsystem/ca/doUnrevoke
In the above configuration, "renewal" is an op, which will match to the 
servlet /ca/ee/ca/profileSubmitSSLClient in the uri.

2.
The connection configuration has been modified to take after the same 
style as that of the CA/KRA.
  - the change of target.Subsystem_Connections.pattern allows cli to 
work with the new connector parameters, however, the browser will show 
raw xml (it reports: "This XML file does not appear to have any style 
information associated with it. The document tree is shown below.")

3.
Due to the unfilled parameters in the connector area, CS.cfg needs to be 
manually configured at this time.  Which means you need to add 
"pki_skip_configuration=True" to your tps.cfg for pkispawn, and manually 
configure it.

4.
Due to some unfortunate constant eclipse crashing issue, I had to 
manually visit each modified/added file to check for warnings.  It is to 
my best knowledge that I did not add new warnings to the tree.

5.
To know what NOT to expect in this ticket, please take a look of the 
following two tickets:
https://fedorahosted.org/pki/ticket/888 - TPS rewrite: provide remote 
authority functions
https://fedorahosted.org/pki/ticket/890 - TPS rewrite: connector 
configuration during installation

thank you,
Christina

-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-trac-ticket-862-TPS-rewrite-provide-connector-servic.patch
Type: text/x-patch
Size: 59636 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/pki-devel/attachments/20140303/ea3e0e3c/attachment.bin>

More information about the Pki-devel mailing list