pki.git/base/common/src/com/netscape, branch alee-interpolation Unnamed repository; edit this file 'description' to name the repository. Common admin user: config servlet changes 2012-12-03T14:08:35+00:00 Ade Lee alee@redhat.com 2012-11-28T18:48:30+00:00 6be1194058b64e24848b0f12eaa3d6cee0cadf2e As oer review, changed useCommonAdmin to importAdminCert 
As oer review, changed useCommonAdmin to importAdminCert
Fixed issuedOn parameters for cert-find. 2012-11-30T20:02:06+00:00 Endi Sukma Dewata edewata@redhat.com 2012-11-16T15:13:33+00:00 cef7a7704f9f4b48c0a9b242fabd3a919f2068d5 The CertSearchRequest has been modified to fix the infinite loop in getIssuedOnTo(). The CertFindCLI has been modified to accept dates with format YYYY-MM-DD instead of epoch time. Ticket #416 
The CertSearchRequest has been modified to fix the infinite loop
in getIssuedOnTo(). The CertFindCLI has been modified to accept
dates with format YYYY-MM-DD instead of epoch time.

Ticket #416
Fix for improper crl retrieval from CA. 2012-11-21T17:16:37+00:00 Abhishek Koneru akoneru@redhat.com 2012-11-20T02:20:37+00:00 066789642947768eceb024a4064af88efeed24b0 






Added ACLInterceptor.
2012-11-08T16:20:05+00:00

Endi Sukma Dewata
edewata@redhat.com

2012-10-10T09:38:05+00:00

cb209df95c4dee11f2a912e20b417fa3bc41c88f

Previously ACL checking was done in PKIRealm by matching the URL.
This code has been replaced by ACLInterceptor which will intercept
RESTEasy method invocations. This allows more precise mapping of
REST methods to ACL entries in acl.ldif.

Ticket #287





Previously ACL checking was done in PKIRealm by matching the URL.
This code has been replaced by ACLInterceptor which will intercept
RESTEasy method invocations. This allows more precise mapping of
REST methods to ACL entries in acl.ldif.

Ticket #287







Set paths for default instance
2012-11-05T03:12:57+00:00

Ade Lee
alee@redhat.com

2012-10-26T16:36:14+00:00

db9537d210a20b90115374e5b406db6c9658bc3a

With this patch, it will be possible to install a default instance
simply by adding the passwords in the pkideployment.cfg.  This file
can then be used without additional alteration to add subsystems to the
same instance, by re-running pkispawn against the config file.

The patch makes sure that cert nicknames, database and baseDN , admin users
and client db are unique per subsystem.  An option is added to reuse the
existing server cert generated by the first subsystem and copy the
required data to all subsystems.

Ticket 379, 385





With this patch, it will be possible to install a default instance
simply by adding the passwords in the pkideployment.cfg.  This file
can then be used without additional alteration to add subsystems to the
same instance, by re-running pkispawn against the config file.

The patch makes sure that cert nicknames, database and baseDN , admin users
and client db are unique per subsystem.  An option is added to reuse the
existing server cert generated by the first subsystem and copy the
required data to all subsystems.

Ticket 379, 385







Fix for ticket 384 - Incorrect profiles path referenced
2012-10-29T20:55:36+00:00

Abhishek Koneru
akoneru@redhat.com

2012-10-25T06:19:58+00:00

1485a05654211eec7935441b468769298782df6e












Enabled authentication for key services.
2012-10-29T15:38:38+00:00

Endi Sukma Dewata
edewata@redhat.com

2012-10-25T16:52:15+00:00

c1aa8b2d05cb1873990d1a3e9cf007cca240f135

The web.xml in KRA has been modified to enable the authentication
for key and key request services. Some tools have been added to
access the services via command-line.

Ticket #376





The web.xml in KRA has been modified to enable the authentication
for key and key request services. Some tools have been added to
access the services via command-line.

Ticket #376







Fixed synchronization problem in CertificateRepository.
2012-10-29T15:38:29+00:00

Endi Sukma Dewata
edewata@redhat.com

2012-09-26T02:40:04+00:00

748605a324266bb515a3d1124bc55deb3be4df71

Some synchronized methods in CertificateRepository may block
modifyCeritifcateRecord() too long, so they have been moved
into CRLIssuingPoint and CertStatusUpdateThread.

Ticket #313





Some synchronized methods in CertificateRepository may block
modifyCeritifcateRecord() too long, so they have been moved
into CRLIssuingPoint and CertStatusUpdateThread.

Ticket #313







Refactored GetDomainXML servlet.
2012-10-26T21:02:00+00:00

Endi Sukma Dewata
edewata@redhat.com

2012-10-16T02:11:55+00:00

9c17ef40d7ee983e59ad009d960473611262ac40

The GetDomainXML servlet has been refactored to use the new
SecurityDomainProcessor.

Ticket #309





The GetDomainXML servlet has been refactored to use the new
SecurityDomainProcessor.

Ticket #309







Added REST interface to get domain info.
2012-10-26T21:01:40+00:00

Endi Sukma Dewata
edewata@redhat.com

2012-09-06T21:33:48+00:00

5bb7933dd00f11ec87237d3bad7756989abb59ee

The REST interface for security domain has been updated to provide
a method to get the domain info. A CLI has been provided to access
this method.

Ticket #309





The REST interface for security domain has been updated to provide
a method to get the domain info. A CLI has been provided to access
this method.

Ticket #309