diff options
| author | Jack Magne <jmagne@localhost.localdomain> | 2015-07-28 17:51:34 -0700 |
|---|---|---|
| committer | Jack Magne <jmagne@localhost.localdomain> | 2015-07-28 18:03:29 -0700 |
| commit | c4c28d6f581ba0fa136afaab5651e976f6f79d2c (patch) | |
| tree | 1a34699bc7f87e7a6700d3df10e8af60217ea8af | |
| parent | b68fc753775cf49dcd3bafe046c71dda08ca6b9a (diff) | |
| download | pki-c4c28d6f581ba0fa136afaab5651e976f6f79d2c.tar.gz pki-c4c28d6f581ba0fa136afaab5651e976f6f79d2c.tar.xz pki-c4c28d6f581ba0fa136afaab5651e976f6f79d2c.zip | |
op.format.externalRegAddToToken.revokeCert parameter missing in TPS CS.cfg.
It is true that his setting is not present.
The generic code that revokes certs for a format checks this value.
No harm in putting this value in the CS.cfg and setting it to false by
default for the externalRegAddToToken profile. No harm in giving the user
the way to use this feature , even if we decide it is not a good idea to revoke
certs associated with the external reg feature.
| -rw-r--r-- | base/tps/shared/conf/CS.cfg.in | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/base/tps/shared/conf/CS.cfg.in b/base/tps/shared/conf/CS.cfg.in index fdc3510ed..732d14319 100644 --- a/base/tps/shared/conf/CS.cfg.in +++ b/base/tps/shared/conf/CS.cfg.in @@ -770,6 +770,7 @@ op.format.externalRegAddToToken.update.applet.encryption=true op.format.externalRegAddToToken.update.applet.requiredVersion=1.4.54de790f op.format.externalRegAddToToken.update.symmetricKeys.enable=false op.format.externalRegAddToToken.update.symmetricKeys.requiredVersion=1 +op.format.externalRegAddToToken.revokeCert=false op.enroll.allowUnknownToken=true op.enroll.mappingResolver=enrollProfileMappingResolver op.enroll.soKey.cuidMustMatchKDD=false |