diff options
author | Fraser Tweedale <ftweedal@redhat.com> | 2016-08-25 17:00:01 +1000 |
---|---|---|
committer | Martin Babinsky <mbabinsk@redhat.com> | 2016-09-07 12:37:48 +0200 |
commit | c7e0dbc4e174d0bb7577de18cdb2f414f4199c57 (patch) | |
tree | 446f541fa0cc7cad23b96d0a743a2356cf95016a /ipaserver/plugins/dogtag.py | |
parent | 7fea3914fbfc0748f26dfe41445b5f0d12f406e6 (diff) | |
download | freeipa-c7e0dbc4e174d0bb7577de18cdb2f414f4199c57.tar.gz freeipa-c7e0dbc4e174d0bb7577de18cdb2f414f4199c57.tar.xz freeipa-c7e0dbc4e174d0bb7577de18cdb2f414f4199c57.zip |
Add ca-disable and ca-enable commands
We soon plan to revoke certificates upon lightweight CA deletion.
This makes it important to provide a way to prevent a CA from
issuing certificates whilst not deleting and revoking it, and
continuing to allow management of issued certs.
This commit adds the ca-disable and ca-enable commands.
Fixes: https://fedorahosted.org/freeipa/ticket/6257
Reviewed-By: Martin Babinsky <mbabinsk@redhat.com>
Reviewed-By: Jan Cholasta <jcholast@redhat.com>
Diffstat (limited to 'ipaserver/plugins/dogtag.py')
-rw-r--r-- | ipaserver/plugins/dogtag.py | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/ipaserver/plugins/dogtag.py b/ipaserver/plugins/dogtag.py index aef1e888e..01e5f1383 100644 --- a/ipaserver/plugins/dogtag.py +++ b/ipaserver/plugins/dogtag.py @@ -2211,5 +2211,11 @@ class ra_lightweight_ca(RestClient): headers={'Accept': 'application/json'}, ) + def enable_ca(self, ca_id): + self._ssldo( + 'POST', ca_id + '/enable', + headers={'Accept': 'application/json'}, + ) + def delete_ca(self, ca_id): self._ssldo('DELETE', ca_id) |