summaryrefslogtreecommitdiffstats
path: root/base
Commit message (Collapse)AuthorAgeFilesLines
* Added interactive subsystem installation.Endi Sukma Dewata2013-01-087-136/+215
| | | | | | | | | The pkispawn has been modified such that if there is no configuration file specified it will enter an interactive mode. The pkidestroy has been modified such that if the instance name or subsystem type is not specified it will enter an interactive mode. Ticket #380
* Increase root CA validity to 20 yearsAde Lee2013-01-074-5/+5
| | | | Trac Ticket #466
* Use tomcatjss 7.1.0 and fix weird errno=0 exceptionMatthew Harmsen2013-01-074-4/+10
| | | | | | * TRAC Ticket #469 - Dogtag 10: Fix tomcatjss issue in pki-core.spec and dogtag-pki.spec . . . * TRAC Ticket #468 - pkispawn throws exception
* Ticket 191 - Mapping HTTP Exception to their proper HTTP error codesAbhishek Koneru2013-01-0420-162/+333
|
* TRAC Ticket #271 - Dogtag 10: Fix 'status' command in 'pkidaemon' . . .Matthew Harmsen2012-12-192-31/+183
|
* fix typo in default.cfgAde Lee2012-12-191-1/+1
|
* Man page addition for parameter pki_client_admin_cert_p12Ade Lee2012-12-191-0/+4
|
* Make admin cert p12 file location configurableAde Lee2012-12-193-61/+18
| | | | | Ticket 437. Also moved a bunch of client path parameters to default.cfg template file.
* pkispawn modified to not relabel when selinux is disabledAde Lee2012-12-193-2/+25
| | | | Ticket 393
* Punctuation and formatting changes in man pagesAde Lee2012-12-184-78/+93
| | | | Changes provided by Deon Lackey.
* Revert to using default config file for pkidestroyAde Lee2012-12-183-12/+2
| | | | | | | | Previously, we archived the default config file when an instance was created, and used that file in running pkidestroy. We plan to replace this mechanism in favor of actually reading the instance's config files. For now, we return to using the standard default config template, so that we can change it without breaking pkidestroy.
* Hardcode setting of resteasy-lib for instanceAde Lee2012-12-183-5/+4
| | | | | | | | | | Tomcat in f17 expects the file under /etc/sysconfig/foo to be a set of environment variables being set, and parses it that way. We recently added some logic to source the global pki.conf file. This works in f18, but breaks instance startup in f17. While this works in f18, its an indication that we are using the tomcat config file incorrectly. Reverting to hardcoding resteasy lib.
* interpolate more pathsAde Lee2012-12-184-250/+63
|
* interpolated jarsAde Lee2012-12-182-300/+94
|
* interpolation for paths part 1Ade Lee2012-12-182-139/+73
|
* Removed duplicate pki_instance_id parameter.Ade Lee2012-12-186-76/+71
| | | | Ticket 435
* More edits to man pages including spell checking provided via 'aspell'.Matthew Harmsen2012-12-104-128/+163
|
* Revised 'pki_default.cfg5' man page.Matthew Harmsen2012-12-071-18/+179
|
* Added more detail to man page for pki(1)Ade Lee2012-12-071-27/+171
|
* Added man pages.Matthew Harmsen2012-12-066-0/+537
| | | | | * TRAC Ticket #315 - Man pages for pkispawn/pkidestroy. * Added place-holders for 'pki.1' and 'pki_default.cfg.5' man pages.
* Remove server code from CertSearchRequestAde Lee2012-12-074-312/+337
| | | | Ticket #418
* Parameterizing RESTEasy paths.Endi Sukma Dewata2012-12-0619-179/+118
| | | | | | | | | The paths to RESTEasy jar files have been modified such that it can be configured globally at build time using the spec file to support different distributions, and at deployment time using a system-wide configuration in /etc/pki/pki.conf. Ticket #422, #423.
* number verificationAndrew Wnuk2012-12-064-6/+30
| | | | | | This patch improves number verification. Bug 864397.
* Implemented ability to utilize an external CAMatthew Harmsen2012-12-068-64/+148
| | | | * TRAC Ticket #231 - Dogtag 10: Update PKI Deployment to handle external CA
* Latest TPS memory related fixes.Jack Magne2012-12-063-292/+400
|
* Modified section on sample.cfgAde Lee2012-12-051-1/+1
|
* Archiving default deployment configuration.Endi Sukma Dewata2012-12-049-137/+201
| | | | | | | | | | | The default deployment configuration has been renamed and moved to /etc/pki/default.cfg to make it more accessible to users. The pkispawn has been modified to archive the default deployment configuration along with the user-provided configuration in the registry. The pkidestroy will now use both archived configuration files to ensure proper removal of the subsystem. Ticket #399
* Run restorecon on top-level log directoryNathan Kinder2012-12-041-0/+1
| | | | | | | | | | | We currently run a restorecon on the instance log directory, but not on the top level log directory. Restorecon is required for the top level log directory since pkispawn creates it. Without running a restorecon, it gets the label of the parent directory (var_log_t) instead of consulting the fcontext rule in the base policy and using pki_var_log_t. Ticket #431
* Interpolation correction patch based on review commentsAde Lee2012-12-045-75/+57
|
* Use interpolation to build default parametersAde Lee2012-12-045-754/+139
| | | | | | This patch replaces the code in pkiparser with defaults that are built up using ConfigParser interpolation. The patch gets most (but not all) default parameters.
* I18n for ProfileList.template.Endi Sukma Dewata2012-12-035-38/+92
| | | | | | | | | | | | | The messages in ProfileList.template in CA EE has been extracted into a properties file which can be translated separately. The original messages in the template have been marked as follows: <span class="message" name="...key...">...message...</span> When the page is loaded into the browser, the original message will be replaced with the translated messages. Ticket #406
* Removed RA and TPS theme packages.Endi Sukma Dewata2012-12-033-25/+9
| | | | | | | | The RA and TPS theme packages are no longer necessary due to the reorganization of the theme files. The build and deployment scripts have been updated accordingly. Ticket #407
* Reorganized TPS CSS files.Endi Sukma Dewata2012-12-0325-38/+38
| | | | | | | The CSS files for TPS have been moved into the server theme package. All references have been modified accordingly. Ticket #407
* Reorganized TPS templates and scripts.Endi Sukma Dewata2012-12-03151-63/+32533
| | | | | | | The templates, JS, and CGI scripts for TPS have been moved into the TPS core package. Removed unused cfg.pl. Ticket #407
* Reorganized RA templates and scripts.Endi Sukma Dewata2012-12-03130-0/+7421
| | | | | | | The templates, JS, and CGI scripts for RA have been moved into the RA core package. Ticket #407
* Change the structure of the client directory.Ade Lee2012-12-033-14/+15
| | | | | We need to keep the admin cert and p12 file in case the client directory is purged.
* Common User: pkispawn changesAde Lee2012-12-033-149/+55
|
* Common admin user: config servlet changesAde Lee2012-12-032-35/+78
| | | | As oer review, changed useCommonAdmin to importAdminCert
* Fixed permission problem in TKS.Endi Sukma Dewata2012-11-301-0/+8
| | | | | | | The pki.policy has been modified to grant permission to symkey.jar which is used by TKS. Ticket #415
* Replaced links of scriptlets with lists.Endi Sukma Dewata2012-11-304-154/+35
| | | | | | | | | Previously the deployment tools used symbolic links to determine the scriplets to execute and their order. The code has been changed such that now the scriplets are listed as parameters (spawn_scriplets and destroy_scriplets) in the configuration file. Ticket #403
* Simplified the configuration file using defaults.Endi Sukma Dewata2012-11-307-18/+26
| | | | | | | | | | | | | | Previously to create a subsystem the admin would have to copy the entire default deployment configuration, which contains many parameters, and then customize it. Now the deployment code has been changed such that the default config file will be used to provide the default values, so the admin will only need to provide the non-default parameters, thus reducing the size of the file. Sample configuration files are provided in /usr/share/pki/ deployment/config. Ticket #399
* Reorganized sensitive parameters.Endi Sukma Dewata2012-11-3012-123/+150
| | | | | | | | | | | | | | | Previously sensitive parameters are stored in the Sensitive section in the configuration file, separate from the hierarchical structure used by non-sensitive parameters. To allow defining multiple subsystems in a single configuration file the sensitive and non-sensitive parameters have been reorganized into the same hierarchical structure. To maintain the security a new meta-parameter has been added to list all sensitive parameter names. This way the deployment code will know whether a parameter is sensitive, which then will mask the value before displaying it to the screen or storing it in a log file. Ticket #399
* Fixed issuedOn parameters for cert-find.Endi Sukma Dewata2012-11-302-9/+30
| | | | | | | | The CertSearchRequest has been modified to fix the infinite loop in getIssuedOnTo(). The CertFindCLI has been modified to accept dates with format YYYY-MM-DD instead of epoch time. Ticket #416
* Fixed default security domain user.Endi Sukma Dewata2012-11-301-18/+39
| | | | | | | | | The deployment code has been modified such that if the security domain user is not specified it will use the CA admin uid, or Common uid, if it is defined. Otherwise it will use the default "caadmin". Ticket #399
* Refactored pkiparser.py into PKIConfigParser.Endi Sukma Dewata2012-11-304-2239/+2244
| | | | | | | The code in pkiparser.py has been converted into PKIConfigParser class to facilitate further improvements. Ticket #399
* Fix for improper crl retrieval from CA.Abhishek Koneru2012-11-211-21/+22
|
* Misc changes to get rhel 7 build to workAde Lee2012-11-217-0/+30
| | | | | | | 1. Modified cmake dependency 2. Corrected conditionals in spec file 3. Added paths for resteasy-base 4. Added paths to policy for resteasy-base
* Link to resteasy-base on rhel systems when running pkispawnalee-91Ade Lee2012-11-214-13/+35
|
* Updating cmake variablesAde Lee2012-11-201-1/+1
|
* Change cmake projects from Java to NONEAde Lee2012-11-2023-23/+23
|
generated by cgit (git 2.34.1) at 2025-05-11 16:28:51 +0000