[Pki-devel] [pki-devel][PATCH] 0039-Ability-to-toggle-profile-usablity-in-Web-vs-CLI-too.patch
John Magne
jmagne at redhat.com
Wed Jul 1 22:11:15 UTC 2015
[PATCH] Ability to toggle profile usablity in Web vs CLI tools.
Ticket #1442.
This fix gives the command line enrollment commands the ability to enroll a cert against a profile
that has been marked as not visible but "enabled".
With the simple fix the following scenarios tested to work:
The "caUserCert" Profile was marked as not visible, but enabled.
1. pki -c Secret123 client-cert-request --profile caUserCert uid=jmagne
This is the simplest form of user cert enrollment.
2. pki ca-cert-request-profile-show caUserCert --output testuser.xml
pki ca-cert-request-submit testuser.xml
The first command gives us the profile's xml file, which after modification is used to enroll.
3. pki -d ~/.dogtag/pki -c "" -n "PKI Administrator for localdomain" ca-profile-show caUserCert
This one shows that we can view the contents of a non visible profile. Listing is not allowed.
We felt this appropiate to allow a command line user to get the details of a non visible profile that
they know aobut and want to use.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0039-Ability-to-toggle-profile-usablity-in-Web-vs-CLI-too.patch
Type: text/x-patch
Size: 2390 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/pki-devel/attachments/20150701/fb8c3a19/attachment.bin>
More information about the Pki-devel
mailing list