[Pki-devel] [PATCH] 200 Added nonce validation for certificate revocation.
Endi Sukma Dewata
edewata at redhat.com
Tue Jan 15 04:23:42 UTC 2013
On 1/15/2013 9:52 AM, Endi Sukma Dewata wrote:
> On 1/10/2013 7:52 AM, Endi Sukma Dewata wrote:
>> The certificate REST service has been modified to validate
>> nonce when revoking a certificate.
>>
>> Ticket #213
>
> I retested the patch, it works as expected with nonces enabled & disabled.
>
> In most cases you'll get a proper error message (e.g. You did not
> provide a valid certificate) if you don't provide the required client
> cert. The only thing is that if you do a cert-request-approve using
> username & password you'll get an internal error, but this is an
> existing problem and we don't support that scenario.
New patch attached. It fixes the problem getting the cert anonymously.
--
Endi S. Dewata
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pki-edewata-0200-1-Added-nonce-validation-for-certificate-revocation.patch
Type: text/x-patch
Size: 28155 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/pki-devel/attachments/20130115/3d061d69/attachment.bin>
More information about the Pki-devel
mailing list