Michael,
> > PS I have worked out how to only publish the encryption certs to the
> > directory now, so if you want to know how to hack the right library then
> > drop me a line.
>
> Does it be usable for all or does it be a real hack?
>
It is not very elegant, but it works !!
I edited the file ldap-utils.lib.
Just after the line "## get the needed data" I added:
my $role = $obj->getParsed ()->{HEADER}->{ROLE};
print "Role: $role";
This gets the role of the certificate that is going to be uploaded to the
directory and stores it as $role.
I then put a great big if statement around the lines that actually do the
uploading (just before "## here we could perform some operations with the
data").
if ($role eq "User") {
print "skipping $role";
}
else {
...missing lines
...
}
This means that if the role is User (i.e. a User (or signing cert in our
case)) then don't upload it, else write it to the directory.
If I was doing this properly then I would add a section to ldap.conf to list
the cert types not to upload and then read this list in the if statement.
I hope this help Michael (but it is a bit of a hack I think !).
Chris...
-------------------------------------------------------
This SF.net email is sponsored by:Crypto Challenge is now open!
Get cracking and register here for some mind boggling fun and
the chance of winning an Apple iPod:
http://ads.sourceforge.net/cgi-bin/redirect.pl?thaw0031en
_______________________________________________
Openca-Users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/openca-users
