pki.git/base/server/cmsbundle, branch master Unnamed repository; edit this file 'description' to name the repository. Fixed error message on invalid log type. 2017-06-27T17:38:50+00:00 Endi S. Dewata edewata@redhat.com 2017-06-27T16:44:16+00:00 833708b48ea76e71ddf1fa9b0cba53a5aa23a459 To help troubleshooting the error message on invalid log type has been modified to include the invalid value. https://pagure.io/dogtagpki/issue/2689 Change-Id: Ie245bd9e3a3925979af4708fa911697a9746e54b 
To help troubleshooting the error message on invalid log type has
been modified to include the invalid value.

https://pagure.io/dogtagpki/issue/2689

Change-Id: Ie245bd9e3a3925979af4708fa911697a9746e54b
Ticket #2616 CMC: id-cmc-statusInfo ==> id-cmc-statusInfoV2 2017-06-23T17:07:40+00:00 Christina Fu cfu@redhat.com 2017-06-17T01:20:38+00:00 6273907e0ca36425fa30c106b7fdd28c510b1162 This patch contains the following update: * Structurely, CMCStatusInfo to CMCStatusInfoV2 update; no extendedFailInfo has been added at this point * In case of EncryptedPOP, instead of returning with CMCStatus pending where PendInfo contains the requestID, it now returns CMCStatus failed whith responseInfo control contains the requestID. On the client side, CMCRequest now processes the responseInfo and returns the DecryptedPOP with requestID in the regInfo control. CMCResponse has been updated to handle the new controls as well. * A number of fail info codes are now being supported by the server to add clarity to CMC failed status, including: badMessageCheck, badRequest, unsuportedExt, badIdentity, popRequired, and popFailed. 
This patch contains the following update:
* Structurely, CMCStatusInfo to CMCStatusInfoV2 update; no extendedFailInfo has been added at this point
* In case of EncryptedPOP, instead of returning with CMCStatus pending where
  PendInfo contains the requestID, it now returns CMCStatus failed whith
  responseInfo control contains the requestID. On the client side, CMCRequest
  now processes the responseInfo and returns the DecryptedPOP with requestID in
  the regInfo control. CMCResponse has been updated to handle the new controls
  as well.
* A number of fail info codes are now being supported by the server to add
  clarity to CMC failed status, including:
  badMessageCheck, badRequest, unsuportedExt, badIdentity, popRequired, and popFailed.
Ticket#2737 CMC: check HTTPS client authentication cert against CMC signer 2017-06-15T19:03:14+00:00 Christina Fu cfu@redhat.com 2017-06-14T21:57:10+00:00 63c9582009b3858a6878863b9658d04c9aad45c1 This patch adds enforcement in CMCUserSignedAuth to make sure SSL client authentication is performed and the authenticated cert matches that of the CMC signing cert. Some auditing adjustments are also done. 
This patch adds enforcement in CMCUserSignedAuth to make sure SSL client authentication is performed and the authenticated cert matches that of the CMC signing cert.
Some auditing adjustments are also done.
Added SCHEDULE_CRL_GENERATION audit event. 2017-05-26T20:12:48+00:00 Endi S. Dewata edewata@redhat.com 2017-05-18T22:33:26+00:00 c9a9fe6e31d860c089dd2b2ee584dd0d4a9b2174 A new SCHEDULE_CRL_GENERATION audit event has been added which will be generated when CRL generation is scheduled manually. https://pagure.io/dogtagpki/issue/2651 Change-Id: I1e2fc307491e796e50b09550d66e5eba370d090a 
A new SCHEDULE_CRL_GENERATION audit event has been added which
will be generated when CRL generation is scheduled manually.

https://pagure.io/dogtagpki/issue/2651

Change-Id: I1e2fc307491e796e50b09550d66e5eba370d090a
Added FULL_CRL_PUBLISHING audit event. 2017-05-26T20:12:48+00:00 Endi S. Dewata edewata@redhat.com 2017-05-25T22:46:53+00:00 33838ebaffcdf121c4167379f0c917b5b5b67d0e A new FULL_CRL_PUBLISHING audit event has been added which will be generated when full CRL publishing is complete. https://pagure.io/dogtagpki/issue/2651 Change-Id: I4461b03f4afd300b65e9d12c7d0bfa935b4e7082 
A new FULL_CRL_PUBLISHING audit event has been added which will
be generated when full CRL publishing is complete.

https://pagure.io/dogtagpki/issue/2651

Change-Id: I4461b03f4afd300b65e9d12c7d0bfa935b4e7082
Added FULL_CRL_GENERATION audit event. 2017-05-26T20:12:48+00:00 Endi S. Dewata edewata@redhat.com 2017-05-25T22:13:10+00:00 37e6ba6d1fb24694c2744adbc27c78b749d7e35d A new FULL_CRL_GENERATION audit event has been added which will be generated when full CRL generation is complete. https://pagure.io/dogtagpki/issue/2651 Change-Id: I74b083721e477ad72fe5a787935af617e89a6968 
A new FULL_CRL_GENERATION audit event has been added which will
be generated when full CRL generation is complete.

https://pagure.io/dogtagpki/issue/2651

Change-Id: I74b083721e477ad72fe5a787935af617e89a6968
Added DELTA_CRL_PUBLISHING audit event. 2017-05-26T20:12:48+00:00 Endi S. Dewata edewata@redhat.com 2017-05-25T20:53:03+00:00 4d5ecb5dd3e1f4eabbe29ab2ddbfeb825f9f4233 A new DELTA_CRL_PUBLISHING audit event has been added which will be generated when delta CRL publishing is complete. https://pagure.io/dogtagpki/issue/2651 Change-Id: I38f84fc2d00ea57ef13f0ee50998da9239437372 
A new DELTA_CRL_PUBLISHING audit event has been added which will
be generated when delta CRL publishing is complete.

https://pagure.io/dogtagpki/issue/2651

Change-Id: I38f84fc2d00ea57ef13f0ee50998da9239437372
Added DELTA_CRL_GENERATION audit event. 2017-05-26T20:12:47+00:00 Endi S. Dewata edewata@redhat.com 2017-05-18T17:38:20+00:00 e3f64ea8ca4ec231a954076a7f6b05dfc626ff1b A new DELTA_CRL_GENERATION audit event has been added which will be generated when delta CRL generation is complete. https://pagure.io/dogtagpki/issue/2651 Change-Id: Ic4759ac2d90b6915443587708292d0f51e11345f 
A new DELTA_CRL_GENERATION audit event has been added which will
be generated when delta CRL generation is complete.

https://pagure.io/dogtagpki/issue/2651

Change-Id: Ic4759ac2d90b6915443587708292d0f51e11345f
Encapsulate server side keygen audit events 2017-05-25T14:40:47+00:00 Ade Lee alee@redhat.com 2017-05-25T03:42:41+00:00 2a947446b81d21758ffadbae905a49e8c4e900ef This encapsulates key gen events for the token servlets. Consolidated the success and failure cases. Note that this event can likely later be replaced with security_data_keygen events. Leaving separate for now. Change-Id: I6caaeb2231fd2f7410eade03cb5fa93d66444bbf 
This encapsulates key gen events for the token servlets.
Consolidated the success and failure cases.  Note that this
event can likely later be replaced with security_data_keygen
events.  Leaving separate for now.

Change-Id: I6caaeb2231fd2f7410eade03cb5fa93d66444bbf
Encapsulate key status change audit logs 2017-05-25T14:30:12+00:00 Ade Lee alee@redhat.com 2017-05-25T02:49:24+00:00 c88ad697138778c597cf8ce361f8ee1761bee0ab Change-Id: I57b30cdff571056d0a95436858308872a8dc007b 
Change-Id: I57b30cdff571056d0a95436858308872a8dc007b