[Freeipa-devel] [PATCH] 285 CRL publishing
Pavel Zůna
pzuna at redhat.com
Wed Nov 25 17:16:59 UTC 2009
Rob Crittenden wrote:
> This enables CRL publishing by dogtag to a place where Apache can get
> the files.
>
> I have to do a couple of tricks here because dogtag is an optional
> component. This is why in the installer I first see if the dogtag
> SELinux policy is installed and if not add it. Similarly the installer
> will remove it upon uninstall.
>
> The policy itself just lets dogtag write to some Apache-labeled
> directories. dogtag uses symlinks to mark the latest CRL hence the
> permissions for links.
>
> rob
>
The patch looks fine, except that it doesn't apply on the current tree.
Pavel
More information about the Freeipa-devel
mailing list