[Freeipa-devel] [PATCH] 491 Fix replacing a certificate in a service.
Rob Crittenden
rcritten at redhat.com
Thu Jul 22 20:14:44 UTC 2010
Rob Crittenden wrote:
> When a service has a certificate and the CA backend doesn't support
> revocation (like selfsign) then we simply drop the old certificate in
> preparation for adding a new one. We weren't setting the usercertificate
> attribute to None so there was nothing to do in ldap_update().
>
> Added a test case for this situation to ensure that re-issuing a
> certificate works.
>
This patch relies on patch 490 to apply.
rob
More information about the Freeipa-devel
mailing list