[Freeipa-devel] [PATCH] 491 Fix replacing a certificate in a service.

[Rob Crittenden]

Rob Crittenden wrote:
> When a service has a certificate and the CA backend doesn't support 
> revocation (like selfsign) then we simply drop the old certificate in 
> preparation for adding a new one. We weren't setting the usercertificate 
> attribute to None so there was nothing to do in ldap_update().
> 
> Added a test case for this situation to ensure that re-issuing a 
> certificate works.
> 

This patch relies on patch 490 to apply.

rob