pki.git - Unnamed repository; edit this file 'description' to name the repository.

	Commit message (Collapse)	Author	Age	Files	Lines
*	Reorganized REST service classes.	Endi S. Dewata	2014-02-28	1	-66/+0
\| \| \| \| \| \| \| \|	The REST service classes have been moved into org.dogtagpki.server namespace. A new upgrade script has been added to update existing instances. Ticket #114
*	Added ACL for TPS authenticators.	Endi S. Dewata	2013-11-14	1	-3/+3
\| \| \| \| \| \| \| \| \| \|	New ACL has been added to allow only the administrators to access TPS authenticators. The set of interceptors in each application has been modified to preserve the order. Ticket #652
*	Fixed problems finding user and group sub-resources.	Endi S. Dewata	2013-10-25	1	-6/+0
\| \| \| \| \| \| \|	Due to a regression RESTEasy is unable to find some sub-resources properly. As a workaround some resources need to be merged into the parent resource. The UserCertResource and UserMembershipResource have been merged into UserResource. The GroupMemberResource has been merged into GroupResource.
*	Added audit resource.	Endi S. Dewata	2013-10-08	1	-0/+4
\| \| \| \| \| \| \|	A new REST service and clients have been added to manage the audit configuration in all subsystems. Ticket #652
*	Added selftest resource.	Endi S. Dewata	2013-10-08	1	-0/+4
\| \| \| \| \| \| \|	New REST service and clients have been added for managing selftests in all subsystems. Ticket #652
*	Add service to generate and retrieve a shared secret	Ade Lee	2013-09-30	1	-0/+4
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	A new REST service has been added to the TKS to manage shared secrets. The shared secret is tied to the TKS-TPS connector, and is created at the end of the TPS configuration. At this point, the TPS contacts the TKS and requests that the shared secret be generated. The secret is returned to the TPS, wrapped using the subsystem certificate of the TPS. The TPS should then decrypt the shared secret and store it in its certificate database. This operations requires JSS changes, though, and so will be deferred to a later patch. For now, though, if the TPS and TKS share the same certdb, then it is sufficient to generate the shared secret. Clients and CLI are also provided. The CLI in particular is used to remove the TPSConnector entries and the shared secret when the TPS is pkidestroyed.
*	Reorganized interceptors.	Endi S. Dewata	2013-08-20	1	-2/+2
\| \| \| \| \| \|	The ACLInterceptor and AuthMethodInterceptor interceptors only run on the server, so they have been moved from the base package into the server package.
*	Added authentication method validation.	Endi Sukma Dewata	2013-02-19	1	-1/+3
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	A new mechanism has been added to specify the authentication methods that can be used to invoke the REST methods. The AuthMethodMapping annotation maps each REST method to a list of allowed authentication methods. When a client calls a REST method, the AuthMethodInterceptor will intercept the call and verify that the client uses an allowed authentication method. Most REST methods that require authentication have been configured to require client certificate authentication. Authentication using username and password will only be used to get the installation token from security domain. Ticket #477
*	Added CLI to manage user membership.	Endi Sukma Dewata	2013-02-18	1	-0/+2
\| \| \| \| \| \| \| \|	New CLI's have been added to search, add, and remove user membership. The group member management code has been refactored into a processor to allow reuse. Ticket #190
*	Added ACLInterceptor.	Endi Sukma Dewata	2012-11-08	1	-0/+4
\| \| \| \| \| \| \| \| \|	Previously ACL checking was done in PKIRealm by matching the URL. This code has been replaced by ACLInterceptor which will intercept RESTEasy method invocations. This allows more precise mapping of REST methods to ACL entries in acl.ldif. Ticket #287
*	Enabled account service for TKS and OCSP.	Endi Sukma Dewata	2012-10-25	1	-0/+5
\| \| \| \| \| \| \|	The REST account service has been added to TKS and OCSP to enable authentication. Ticket #375
*	Reorganized REST common classes.	Endi Sukma Dewata	2012-08-15	1	-1/+1
\| \| \| \| \| \| \|	The common classes used by REST client and services have been moved into the com.netscape.certsrv.<component> packages. Ticket #215
*	Cleaned up REST common class names.	Endi Sukma Dewata	2012-08-15	1	-2/+2
\| \| \| \| \| \| \|	The REST common classes have been renamed for better clarity and consistency. Ticket #259
*	Cleaned up REST server class names.	Endi Sukma Dewata	2012-08-15	1	-12/+12
\| \| \| \| \| \| \|	The REST server classes have been renamed for better clarity and consistency. Ticket #259
*	Added CMSExceptionMapper class to the Application classes	Ade Lee	2012-07-10	1	-0/+4
\|
*	Add Application files to list REST resources	Ade Lee	2012-07-10	1	-0/+43
\|
*	Removed unused private fields.	Endi Sukma Dewata	2012-04-12	1	-0/+1
\| \| \| \| \| \| \|	Most of unused private fields have been removed because they generate warnings in Eclipse. Some are kept because it might be useful later. Ticket #139
*	Removed whitespaces from Java code.	Endi Sukma Dewata	2012-04-09	1	-6/+6
\| \| \| \| \| \| \| \|	Whitespaces in Java code have been removed with the following command: find . -not -path .git -name *.java -exec sed -i 's/[[:blank:]]\+$//' {} \; Ticket #134
*	Removed unnecessary pki folder.	Endi Sukma Dewata	2012-03-26	1	-0/+160
	Previously the source code was located inside a pki folder. This folder was created during svn migration and is no longer needed. This folder has now been removed and the contents have been moved up one level. Ticket #131