summaryrefslogtreecommitdiffstats
path: root/base/common
Commit message (Collapse)AuthorAgeFilesLines
...
* Bug 1005025 - Unable to view Curve details of ECC Cert request from Agent ↵Christina Fu2013-09-102-323/+12
| | | | interface
* Provide enrollment template per profileAde Lee2013-09-034-12/+140
| | | | | | | | | | | This adds an API call to get a template which can be used to generate an enrollment request which can be passed into the REST API. The template is simply a CertRequest with the relevant inputs for that profile added in. Per code review comments, have added the templates interface to CertRequestResource instead. This patch now includes /certrequests/profiles and /certrequests/profiles/{id}. In a subsequent patch, all calls in ProfileResource will be restricted to admins and agents.
* Add audit logging to profile interfaceAde Lee2013-09-029-113/+785
| | | | | | This patch adds initial audit logging to the Profile interface. A more complete review of audit logging will probably be done for Common Criteria testing.
* Fixed filter code for revocationReasonAde Lee2013-09-022-3/+4
| | | | | | | Filter was incorrectly setting ldap query to revocationReason* resulting in a reach for revocationReason 1 returning 1 and 10 Ticket 712
* Move status marker from CS.cfg to a variable.Ade Lee2013-09-025-24/+20
|
* Added TPS authenticator resource.Endi S. Dewata2013-09-017-0/+686
| | | | | | | A skeleton for TPS authenticator services and the clients have been added. The service implementation will be added later. Ticket #652
* Added TPS connection resource.Endi S. Dewata2013-09-017-0/+686
| | | | | | | A skeleton for TPS connection services and the clients have been added. The service implementation will be added later. Ticket #652
* Reorganized TPS classes.Endi S. Dewata2013-09-018-6/+205
| | | | | | | | | | | The TPS classes have been reorganized as follows: * common: com.netscape.certsrv.tps * CLI: com.netscape.cmstools.tps * server: org.dogtagpki.server.tps TPSConnection and TPSMessage were moved from server package into common package. The build script and configuration files have been modified accordingly.
* UserSubjectNameConstraint plug-inAndrew Wnuk2013-08-292-0/+94
| | | | | | This patch provides new UserSubjectNameConstraint plug-in allowing to include user subject name with its original encoding into certificate. Ticket #682
* Added TPS certificate resource.Endi S. Dewata2013-08-245-0/+408
| | | | | | | | New TPS services and clients have been added for TPS certificates. The certificate database is currently implemented as in-memory database with some sample data. Later it will be converted into LDAP database. Ticket #652
* Added subsystem group commands.Endi S. Dewata2013-08-245-0/+10
| | | | | | | The group client and CLI has been added into each subsystem (e.g. ca-group-*) while keeping the original command for backward compatibility. Ticket #652
* Added TPS user CLI.Endi S. Dewata2013-08-243-13/+28
| | | | | | | | The TPS client has been modified to include user client. The TPS CLI has also been modified to provide user commands. New ACL entries have been added to grant access rights to TPS administrators. Ticket #652
* Added TPS activities resource.Endi S. Dewata2013-08-245-0/+344
| | | | | | | | New REST services and clients have been added for TPS activities. The activity database is currently implemented as in-memory database with some sample data. Later it will be converted into LDAP database. Ticket #652
* Reorganized CLI user commands.Endi S. Dewata2013-08-234-0/+80
| | | | | | | | New CLI modules have been added for each subsystem. The user commands have been added to these subsystems while keeping the original command for backward compatibility. Ticket #701
* Refactored client framework.Endi S. Dewata2013-08-2319-126/+269
| | | | | | | | | A new Client class was added as a base for all client classes. The SubsystemClient was added as a base for all subsystem clients. It also provides methods to authenticate against the subsystem. The DRMClient has been renamed to KRAClient to match the actual subsystem name. Ticket #701
* Added TPS installation to the web based install panels for JavaAde Lee2013-08-239-44/+709
|
* Add TPS profile ID auxilliary object to tps usersAde Lee2013-08-219-6/+254
|
* Added generic database.Endi S. Dewata2013-08-203-31/+145
| | | | | | | | A new generic database class has been added to simplify in-memory database creation. The token database has been refactored to inherit this class. Ticket #652
* Reorganized interceptors.Endi S. Dewata2013-08-202-2/+6
| | | | | | The ACLInterceptor and AuthMethodInterceptor interceptors only run on the server, so they have been moved from the base package into the server package.
* Add TPS self testsAde Lee2013-08-203-7/+19
| | | | | Added self tests analogous to the tests previously performed inthe C subsystem.
* Move security domain session classes to correct packageAde Lee2013-08-154-6/+6
| | | | cmscore classes should not depend on classes in cms.
* Initial code to configure a TPS in tomcatAde Lee2013-08-133-309/+757
| | | | | This code allows pkispawn to configure a tps in tomcat. It does not include any config using the web UI panels.
* Added skeleton for token services.Endi S. Dewata2013-08-136-0/+625
| | | | | | | | A skeleton for token service and the clients has been added. Currently it's storing the database in memory. The actual implementation using LDAP database will be added after the TPS configuration code is ready. Ticket #652
* Fixes for profile REST interface from code review.Ade Lee2013-07-314-108/+87
| | | | Simplified the inputs, outputs for ProfileData
* Add exceptions to Profile REST service.Ade Lee2013-07-311-34/+38
|
* Fix various issues with Profile InterfaceAde Lee2013-07-313-12/+32
| | | | | 1. Fixed REST API as per review. 2. Add output for profile-show and profile-find
* Storing authentication info in session.Endi S. Dewata2013-07-292-0/+9
| | | | | | | | | The authenticator configuration has been modified to store the authentication info in the session so it can be used by the servlets. An upgrade script has been added to update the configuration in existing instances. The SSLAuthenticatorWithFalback was modified to propagate the configuration to the actual authenticator handling the request.
* Bugzilla Bug #975939 - RHCS 8.1: "END CERTIFICATE" tag is not on it's own lineMatthew Harmsen2013-07-231-1/+1
|
* Bugzilla Bug #971561 - DRM - server-side key generation causesMatthew Harmsen2013-07-231-4/+5
| | | | NullPointerException if a parameter is not supplied by the caller (TPS) - cfu
* Fixed token authentication problem on RHEL.Endi S. Dewata2013-07-222-57/+10
| | | | | | | | The CryptoManager.initialize() and CryptoToken.login() invocation has been moved into the main program as a workaround for the authentication problem on RHEL and to ensure proper initialization in general. Bugzilla #985111
* Added man pages for upgrade tools.Endi S. Dewata2013-07-223-12/+190
| | | | | | | New man pages have been added for pki-upgrade and pki-server-upgrade. The spec file and build scripts have been updated accordingly. Ticket #582
* Add interfaces for managing profilesAde Lee2013-07-2222-196/+1133
| | | | | This adds the initial framework for viewing and managing profiles. Also adds CLI code for viewing/adding/deleting and editing profiles.
* Fixed dependency issue on CMSRequest.Endi S. Dewata2013-07-2278-343/+439
| | | | | | | | | The CMSRequest is a server class but it's used by the ICommandQueue that belongs in the base package. To fix the dependency issue the CMSRequest has been refactored to implement a new interface ICMSRequest in the base package. Some constants in CMSRequest have also been moved into ICMSRequest. All code referencing CMSRequest has been adjusted accordingly.
* Fixes for issues reported by pylint.Abhishek Koneru2013-07-182-1/+18
| | | | | | Fixed the warning W0202 - attributes defined outside init and error E0202 - An instance attribute hiding a method (which is actually an error in json.encoder.JSONEncoder line 157.)
* Reorganized server files.Endi S. Dewata2013-07-1357-9902/+0
| | | | | Some server files in base/common have been moved to base/server for consistency. The build scripts have been updated accordingly.
* Fixes for issues reported by pylint.Abhishek Koneru2013-07-101-3/+3
| | | | | Fixes for issues in other files. Ticket #316
* Fix issues reported by pylint.Abhishek Koneru2013-07-102-6/+6
| | | | | | | Fixed all warnings caused due to absolute import of modules in same package and not marking the regexes with an r when trying to match. Ticket #316
* Moved script to remove JNI_JAR_DIR to 10.0.3 folder.Endi S. Dewata2013-07-102-0/+4
| | | | | | | | The redundant JNI_JAR_DIR will be removed from /etc/pki/pki.conf starting from version 10.0.4. Empty folders need be created for each released version number to allow proper upgrade and revert operations.
* Added support to backup folders during upgrade.Endi Sukma Dewata2013-07-083-27/+141
| | | | | | | The upgrade framework has been updated to support backup and restore operations for folders and their contents. Ticket #583
* Fixes for issues reported by pylint.Abhishek Koneru2013-07-032-2/+0
| | | | | Fixes for issues in other files. Ticket #316
* Fixes for issues reported by pylint.Abhishek Koneru2013-07-021-18/+17
| | | | | Fixes for issues in other files. Ticket #316
* Fixes for issues reported by pylint.Abhishek Koneru2013-07-022-4/+4
| | | | | Fixes for issues in other files. Ticket #316
* Applied PEP8 formatting to python files.Abhishek Koneru2013-06-274-16/+16
| | | | | | | General formatting done for all the python files except for the line length issue, which could not be formatted using Pydev in Eclipse. Ticket #316
* Make sure only the master keys and certs are imported.Ade Lee2013-06-261-5/+27
| | | | | | | | The key import code was written for when there was only one subsystem per tomcat instance, and only one subsystems certs and keys per p12 file. We need to ensure that only the master's subsystem keys and certs are imported. Otherwise, unpredictable behavior happens, like in Ticket 665.
* Added Tomcat-based TPS instance.Endi S. Dewata2013-06-102-0/+32
| | | | | | | | | The build and deployment tools have been modified to support creating a basic Tomcat instance to run TPS. New configuration and template files for TPS have been copied from another Tomcat subsystem. The TPS functionality itself will be added in future patches. Ticket #526
* Fix Bug #963073 - rhcs81 tps crash for CN over than 64 bytesJack Magne2013-06-041-0/+108
| | | | Add checking for sane lengths of the fields in the subject dn.
* Fixed hard-coded server certificate nickname.Endi Sukma Dewata2013-06-032-10/+3
| | | | | | | | | | | Previously the server certificate name was partially hard-coded as "Server-Cert cert-[PKI_INSTANCE_NAME]". Now in Tomcat-based subsystems it can be fully configured using pki_ssl_server_nickname parameter. In Apache-based subsystems it's left unchanged. Unused serverCertNick.conf files have been removed. Ticket #631
* Renamed PKI_INSTANCE_ID into PKI_INSTANCE_NAME.Endi Sukma Dewata2013-05-302-7/+7
| | | | | The PKI_INSTANCE_ID variable has been renamed into PKI_INSTANCE_NAME for consistency.
* Renamed SERVER_NAME and PKI_MACHINE_NAME into PKI_HOSTNAME.Endi Sukma Dewata2013-05-301-22/+22
| | | | | The SERVER_NAME and PKI_MACHINE_NAME variables have been renamed into PKI_HOSTNAME for consistency.
* Removing JNI_JAR_DIR from /etc/pki/pki.conf.Endi Sukma Dewata2013-05-151-0/+77
| | | | | | Recently the JNI_JAR_DIR was moved into /usr/share/pki/etc/pki.conf. A new upgrade script has been added to remove the unused JNI_JAR_DIR from /etc/pki/pki.conf.
generated by cgit (git 2.34.1) at 2025-09-28 13:32:07 +0000