freeipa

Clone
Source Code
GIT

d124e30 Separate RA cert store from the HTTP cert store

29 files Authored by simo 7 years ago, Committed by jcholast 7 years ago,
raw patch tree parent
29 files changed. 299 lines added. 163 lines removed.
install/certmonger/dogtag-ipa-ca-renew-agent-submit
file modified
+3 -1
install/tools/ipa-csreplica-manage
file modified
+3 -3
install/tools/ipa-replica-manage
file modified
+2 -2
install/updates/05-pre_upgrade_plugins.update
file modified
+1 -0
ipaclient/install/ipa_certupdate.py
file modified
+1 -0
ipaplatform/base/constants.py
file modified
+1 -0
ipaplatform/base/paths.py
file modified
+3 -3
ipapython/certdb.py
file modified
+92 -1
ipaserver/install/ca.py
file modified
+4 -4
ipaserver/install/cainstance.py
file modified
+4 -14
ipaserver/install/certs.py
file modified
+11 -33
ipaserver/install/dogtaginstance.py
file modified
+3 -3
ipaserver/install/dsinstance.py
file modified
+4 -3
ipaserver/install/httpinstance.py
file modified
+39 -44
ipaserver/install/ipa_backup.py
file modified
+15 -14
ipaserver/install/ipa_cacert_manage.py
file modified
+1 -1
ipaserver/install/ipa_replica_prepare.py
file modified
+1 -1
ipaserver/install/ipa_server_certinstall.py
file modified
+1 -1
ipaserver/install/krainstance.py
file modified
+2 -3
ipaserver/install/plugins/ca_renewal_master.py
file modified
+3 -3
ipaserver/install/plugins/update_ca_topology.py
file modified
+2 -2
ipaserver/install/plugins/update_ra_cert_store.py
file added
+76
ipaserver/install/server/install.py
file modified
+7 -10
ipaserver/install/server/replicainstall.py
file modified
+7 -4
ipaserver/install/server/upgrade.py
file modified
+3 -3
ipaserver/plugins/dogtag.py
file modified
+4 -4
ipaserver/plugins/rabase.py
file modified
+2 -2
ipaserver/secrets/store.py
file modified
+2 -2
ipatests/test_xmlrpc/test_cert_plugin.py
file modified
+2 -2 
    Separate RA cert store from the HTTP cert store
    
    This is in preparation for separating out the user under which the
    ipa api framework runs as.
    
    This commit also removes certs.NSS_DIR to avoid confusion and replaces
    it where appropriate with the correct NSS DB directory, either the old
    HTTPD_ALIAS_DIR ot the RA DB IPA_RADB_DIR. In some cases its use is
    removed altogether as it was simply not necessary.
    
    https://fedorahosted.org/freeipa/ticket/5959
    
    Signed-off-by: Simo Sorce <simo@redhat.com>
    Reviewed-By: Jan Cholasta <jcholast@redhat.com>
file modified
+3 -1
file modified
+3 -3
file modified
+2 -2
file modified
+1 -0
file modified
+1 -0
file modified
+1 -0
file modified
+3 -3
file modified
+92 -1
file modified
+4 -4
file modified
+4 -14
file modified
+11 -33
file modified
+3 -3
file modified
+4 -3
file modified
+39 -44
file modified
+15 -14
file modified
+1 -1
file modified
+1 -1
file modified
+1 -1
file modified
+2 -3
file modified
+3 -3
file modified
+2 -2
file added
+76
file modified
+7 -10
file modified
+7 -4
file modified
+3 -3
file modified
+4 -4
file modified
+2 -2
file modified
+2 -2
file modified
+2 -2
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.