From bde2cd1d3e65850c82a6ea7a6cebcae46a4408f2 Mon Sep 17 00:00:00 2001
From: "Endi S. Dewata" <edewata@redhat.com>
Date: Wed, 17 Aug 2016 16:44:48 +0200
Subject: Allowing optional CA signing CSR.

The CA signing CSR is already stored in request record which will
be imported as part of migration process, so it's not necessary to
export and reimport the CSR file again for migration.

To allow optional CSR, the pki-server subsystem-cert-validate
CLI has been modified to no longer check the CSR in CS.cfg. The
ConfigurationUtils.loadCertRequest() has been modified to ignore
the missing CSR in CS.cfg.

https://fedorahosted.org/pki/ticket/2440
---
 base/server/python/pki/server/cli/subsystem.py | 4 ----
 1 file changed, 4 deletions(-)

(limited to 'base/server/python')

diff --git a/base/server/python/pki/server/cli/subsystem.py b/base/server/python/pki/server/cli/subsystem.py
index 4651d74db..c173ea255 100644
--- a/base/server/python/pki/server/cli/subsystem.py
+++ b/base/server/python/pki/server/cli/subsystem.py
@@ -917,10 +917,6 @@ class SubsystemCertValidateCLI(pki.cli.CLI):
 
         print('  Cert ID: %s' % cert['id'])
 
-        if not cert['request']:
-            print('  Status: ERROR: missing certificate request')
-            return False
-
         if not cert['data']:
             print('  Status: ERROR: missing certificate data')
             return False
-- 
cgit