summaryrefslogtreecommitdiffstats
path: root/base/java-tools/src/com
diff options
context:
space:
mode:
authorAde Lee <alee@redhat.com>2016-11-02 11:20:34 -0400
committerAde Lee <alee@redhat.com>2016-11-10 14:32:54 -0500
commit114cc254b5286b83918bb8253e01ba93c4f1c58a (patch)
tree530ffd8f1a8e3ac6a7344e499201c32f91e35133 /base/java-tools/src/com
parent5cbbe976e217bac6ba2ed079d2187c49be9bd4f3 (diff)
downloadpki-114cc254b5286b83918bb8253e01ba93c4f1c58a.tar.gz
pki-114cc254b5286b83918bb8253e01ba93c4f1c58a.tar.xz
pki-114cc254b5286b83918bb8253e01ba93c4f1c58a.zip
Modify retrieval and archival mechanisms in KRA REST
When clients call retrieveKey(), three possible alternatives now obtain: 1. client passes in an approved request. Request is processed and the secret is retrieved. 2. client passes in key_id and wrapping parameters and either: a) request can be processed immediately and synchronously and request is created, and secret is returned. b) request cannot be processed immediately. Recovery request is created and request_id returned to the client Depending on server configuration, the requests in case (2a) will be stored in ldap or will be ephemeral (in memory only). More complicated realm based logic to determine if requests can be processed synchronously or ephemerally will be added in a later patch.
Diffstat (limited to 'base/java-tools/src/com')
0 files changed, 0 insertions, 0 deletions
generated by cgit (git 2.34.1) at 2026-01-08 16:30:35 +0000