pki.git/base/ca/shared/webapps, branch branch-10.2.7-dev1 Unnamed repository; edit this file 'description' to name the repository. Internet Explorer 11 not working browser warning. 2015-08-21T03:17:09+00:00 Jack Magne jmagne@localhost.localdomain 2015-08-20T19:06:32+00:00 f44e1a7a987bfe024fbd18cf4ca0e867112edcfd Related to ticket #1575 Internet Explorer 11: caUserCert request submission fails using the EE page. This patch will only do the following: Detect IE when IE11 is being used. Before this IE11 was mistaken for Firefox. Detect IE11 specifically and warn the user that there is no support. This ticket will live to se we can fix this properly by porting the current VBS script to Javascript to support cert enrollment on IE 11. (cherry picked from commit 0baf14ad496d18991a83f211b4b60d1811e21fb3) 
Related to ticket #1575 Internet Explorer 11: caUserCert request submission fails using the EE page.

This patch will only do the following:

Detect IE when IE11 is being used. Before this IE11 was mistaken for Firefox.
Detect IE11 specifically and warn the user that there is no support.

This ticket will live to se we can fix this properly by porting the current
VBS script to Javascript to support cert enrollment on IE 11.

(cherry picked from commit 0baf14ad496d18991a83f211b4b60d1811e21fb3)
Fixed missing query parameters in ListCerts page. 2015-08-14T17:58:59+00:00 Endi S. Dewata edewata@redhat.com 2015-08-12T16:59:57+00:00 2f4d04be6d6191d57082e3c8a17d73c74c6c427c The ListCerts servlet and the templates have been fixed to pass the skipRevoked and skipNonValid parameters to the subsequent page. Some debugging messages have been cleaned up as well. https://fedorahosted.org/pki/ticket/1538 (cherry picked from commit 24d7d88bd0d8b79fe5b8b6dfd84238399bc1433c) 
The ListCerts servlet and the templates have been fixed to pass
the skipRevoked and skipNonValid parameters to the subsequent page.

Some debugging messages have been cleaned up as well.

https://fedorahosted.org/pki/ticket/1538
(cherry picked from commit 24d7d88bd0d8b79fe5b8b6dfd84238399bc1433c)
remove extra space from Base 64 encoded cert displays 2015-08-01T00:21:55+00:00 Matthew Harmsen mharmsen@redhat.com 2015-07-31T23:28:57+00:00 6999197b067af920b53c75e17dc20181ba49e997 - PKI TRAC Ticket #1522 - CA UI adds extra space in Base 64 encoded certificate display 
- PKI TRAC Ticket #1522 - CA UI adds extra space in Base 64 encoded
  certificate display
Firefox warning 2015-07-31T22:28:47+00:00 Jack Magne jmagne@localhost.localdomain 2015-07-31T20:55:07+00:00 e1eb261b467f6e19c7e6604fc7ecb03e8b1f8166 Ticket #1523 Move the dire warning about the crypto object to sections where it applies. Also slightly changed the message due to context. 
Ticket #1523

Move the dire warning about the crypto object to sections where it applies.

Also slightly changed the message due to context.
Unable to select ECC Curves from EE fix. 2015-07-02T17:53:42+00:00 Jack Magne jmagne@localhost.localdomain 2015-07-01T00:22:23+00:00 bbd2feaa1f0ca4c338ca490f191184f2bd5c1a41 Ticket #1446: Without the crypto object, the user is now presented with a very bared bones keygen tag powered UI. ONe can only select a key strength and only use RSA. This fix adds simple UI to make better use of the keygen tag: 1. Allows the use of ECC. 2. Gives simple info on how the key strengths map to RSA key size and ECC curves. When the user selects High, they get RSA 2043, and ECC nistp384. When the user selects Medium, they get RSA 1024, and ECC nistp256. 
Ticket #1446:

Without the crypto object, the user is now presented with a very bared bones
keygen tag powered UI. ONe can only select a key strength and only use RSA.

This fix adds simple UI to make better use of the keygen tag:

1. Allows the use of ECC.
2. Gives simple info on how the key strengths map to RSA key size and
ECC curves.

When the user selects High, they get RSA 2043, and ECC nistp384.
When the user selects Medium, they get RSA 1024, and ECC nistp256.
Fixed typos in Web UI. 2015-06-18T04:58:29+00:00 Endi S. Dewata edewata@redhat.com 2015-06-18T04:58:29+00:00 8cd43950a25b819c07c9d913da794068db58e18a 






Mozilla crypto object warning:
2015-06-16T17:09:01+00:00

Jack Magne
jmagne@localhost.localdomain

2015-06-16T17:09:01+00:00

bd780990a15d10c3df9a8da81486878012e00884

Provide simple textual warning when the user is using a browser that no longer supports the crypto object, which results in reduced CA certficat enrollment functionality. For simplicity provide the warning at the top of the main index page and at the top of the CA's services page. The services page is where the pkispawn of the CA points the uers after installation. The ticket originally called for a JS warnign but the simple text warning should be less intrusive and repetitive to the user.

Ticket #1398 Provide UI Javascript warning for missing Mozilla Crypto Object in the CA.





Provide simple textual warning when the user is using a browser that no longer supports the crypto object, which results in reduced CA certficat enrollment functionality. For simplicity provide the warning at the top of the main index page and at the top of the CA's services page. The services page is where the pkispawn of the CA points the uers after installation. The ticket originally called for a JS warnign but the simple text warning should be less intrusive and repetitive to the user.

Ticket #1398 Provide UI Javascript warning for missing Mozilla Crypto Object in the CA.







Cleaned up links in main page.
2015-06-12T01:15:56+00:00

Endi S. Dewata
edewata@redhat.com

2015-06-11T21:48:05+00:00

3b54cb0a675bbdf345e3fd5c914886483d98a821

The ROOT's index.jsp has been modified to show the links to all
subsystems installed on the instance. When opened, it will show
the services provided by the subsystem.

The pkispawn output has been modified to show the subsystem URL
more consistently:
   https://<hostname>:<port>/<subsystem>

In all subsystems except TPS the page will redirect to:
   https://<hostname>:<port>/<subsystem>/services





The ROOT's index.jsp has been modified to show the links to all
subsystems installed on the instance. When opened, it will show
the services provided by the subsystem.

The pkispawn output has been modified to show the subsystem URL
more consistently:
   https://<hostname>:<port>/<subsystem>

In all subsystems except TPS the page will redirect to:
   https://<hostname>:<port>/<subsystem>/services







Ticket #1295 CA: OCSP via GET does not work
2015-04-28T22:32:56+00:00

Christina Fu
cfu@redhat.com

2015-04-28T22:32:56+00:00

267635f87c5ba9382f0931ad3e1b7cb9e42c6a6d












Parameterized CA templates.
2015-04-23T02:57:55+00:00

Endi S. Dewata
edewata@redhat.com

2015-04-23T01:16:20+00:00

3b6f95641f11ed3789cff14d244f4b19cc873414

https://fedorahosted.org/pki/ticket/1296





https://fedorahosted.org/pki/ticket/1296