diff options
| author | Jack Magne <jmagne@dhcp-16-206.sjc.redhat.com> | 2016-07-27 11:43:33 -0700 |
|---|---|---|
| committer | Jack Magne <jmagne@dhcp-16-206.sjc.redhat.com> | 2016-07-27 14:20:28 -0700 |
| commit | 0c502a387c90d2e2d8ebe9e3edf3dfeaf1d6eba4 (patch) | |
| tree | 62e72cf687ff481eee1e421d5fc51e79a7f716e9 /base/ca/src/org | |
| parent | 39b049e2048ba440c2885f4249bedd428fd250b1 (diff) | |
| download | pki-0c502a387c90d2e2d8ebe9e3edf3dfeaf1d6eba4.tar.gz pki-0c502a387c90d2e2d8ebe9e3edf3dfeaf1d6eba4.tar.xz pki-0c502a387c90d2e2d8ebe9e3edf3dfeaf1d6eba4.zip | |
Make starting CRL Number configurable.
Ticket #2406 Make starting CRL Number configurable
This simple patch provides a pkispawn config param that passes
some starting crl number value to the config process.
Here is a sample:
[CA]
pki_ca_starting_crl_number=4000
After the CA comes up the value of "crlNumber" in the db will
reflect that value of 4000.
Currently no other values are changed. We can talk about if we
need more values reset in the given case.
Also, this creates a setting in the CS.cfg
ca.crl.MasterCrl.startingCrlNumber=4000
This setting is only consulted when the crl Issuing Point record is created
for the first time.
Diffstat (limited to 'base/ca/src/org')
| -rw-r--r-- | base/ca/src/org/dogtagpki/server/ca/rest/CAInstallerService.java | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/base/ca/src/org/dogtagpki/server/ca/rest/CAInstallerService.java b/base/ca/src/org/dogtagpki/server/ca/rest/CAInstallerService.java index e1b71604d..3c7e48319 100644 --- a/base/ca/src/org/dogtagpki/server/ca/rest/CAInstallerService.java +++ b/base/ca/src/org/dogtagpki/server/ca/rest/CAInstallerService.java @@ -80,6 +80,8 @@ public class CAInstallerService extends SystemConfigService { disableCRLCachingAndGenerationForClone(request); } + configureStartingCRLNumber(request); + } catch (Exception e) { CMS.debug(e); throw new PKIException("Errors in determining if security domain host is a master CA"); @@ -187,6 +189,11 @@ public class CAInstallerService extends SystemConfigService { configStore.commit(false /* no backup */); } + private void configureStartingCRLNumber(ConfigurationRequest data) { + CMS.debug("CAInstallerService:configureStartingCRLNumber entering."); + cs.putString("ca.crl.MasterCRL.startingCrlNumber",data.getStartingCRLNumber() ); + + } private void disableCRLCachingAndGenerationForClone(ConfigurationRequest data) throws MalformedURLException { CMS.debug("CAInstallerService:disableCRLCachingAndGenerationForClone entering."); |