From 4333a623da4190a7e59e7397159e8200d131904b Mon Sep 17 00:00:00 2001
From: Jan Cholasta <jcholast@redhat.com>
Date: Wed, 8 Oct 2014 10:27:25 +0200
Subject: Fix certmonger.request_cert

https://fedorahosted.org/freeipa/ticket/4550

Reviewed-By: Petr Vobornik <pvoborni@redhat.com>
---
 ipapython/certmonger.py | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

(limited to 'ipapython')

diff --git a/ipapython/certmonger.py b/ipapython/certmonger.py
index dc6cff966..ac095f070 100644
--- a/ipapython/certmonger.py
+++ b/ipapython/certmonger.py
@@ -254,9 +254,14 @@ def request_cert(nssdb, nickname, subject, principal, passwd_fname=None):
     Execute certmonger to request a server certificate.
     """
     cm = _connect_to_certmonger()
+    ca_path = cm.obj_if.find_ca_by_nickname('IPA')
+    if not ca_path:
+        raise RuntimeError('IPA CA not found')
     request_parameters = dict(KEY_STORAGE='NSSDB', CERT_STORAGE='NSSDB',
                               CERT_LOCATION=nssdb, CERT_NICKNAME=nickname,
-                              SUBJECT=subject, PRINCIPAL=principal,)
+                              KEY_LOCATION=nssdb, KEY_NICKNAME=nickname,
+                              SUBJECT=subject, PRINCIPAL=[principal],
+                              CA=ca_path)
     if passwd_fname:
         request_parameters['KEY_PIN_FILE'] = passwd_fname
     result = cm.obj_if.add_request(request_parameters)
-- 
cgit