On Tue, 2016-03-29 at 22:32 +1000, Fraser Tweedale wrote:
> Hi team,
>
> Lightweight CA key replication is taking shape. I have updated the
> design page with juicy details:
>
> http://pki.fedoraproject.org/wiki/Lightweight_sub-CAs#Key_replication
>
> Could interested parties and Simo pleas
On Thu, Nov 12, 2015 at 07:46:25PM +1000, Fraser Tweedale wrote:
> On Thu, Nov 12, 2015 at 08:34:11AM +0100, Jan Pazdziora wrote:
> >
> > I'm a bit confused. Do you try to do the authentication in tomcat
> > or do you try to front-end tomcat with Apache? If you do it in tomcat
> > itself (like the
On Thu, Nov 12, 2015 at 04:40:10PM +1000, Fraser Tweedale wrote:
>
> Just an update on my investigations of doing SPNEGO authn to
> Dogtag/Tomcat and a summary of what I think I'll need to do to get
> it going.
>
> Even for a trivial app configuring Tomcat to do SPNEGO is pretty
> awful. I made
I try to revoke certificate from code I got exception with info about nonce.
public void revokeAndApprove(int certificateId) {
CertId certId = new CertId(certificateId);
long nonce = new Random().nextLong();
CertRevokeRequest revokeRequest = new CertRevokeRequest();
revokeRequest.setReason(Revoca
problem was using certClient.getCert() instead of certClient.reviewCert().
What is diffrence between those methods, and when use first and when
second? I check javadoc, nothing found.
2015-10-23 19:49 GMT+02:00 John Magne :
> See CertHoldCLI.java
>
> Which has an example of doing what you are try
Hello everyone,
I've been trying to enroll with dogtag via SSCEP for the last few days to
no avail and I've reached the end of my rope, so I'm reaching out for your
help (which I very much would appreciate).
I am running Ubuntu and my dogtag versions are:
hayg@hayg:~$ dpkg -l | grep dogtag
> ii
On Thu, Nov 12, 2015 at 09:26:19PM +1000, Fraser Tweedale wrote:
>
> I was wondering if you (or others) were aware of any existing
> implementation for Tomcat.
I'm not.
--
Jan Pazdziora | adelton at #ipa*, #brno
Senior Principal Software Engineer, Identity Management Engineering, Red Hat
_
This patch fixes the following ticket:
https://fedorahosted.org/pki/ticket/1519 TPS UI lists the certs on the
token when the token is in uninitialized state
It deletes certificates from token record when the token is formatted.
thanks,
Christina
>From ce8a39a071b790e228f7a8e256d11e495659ae25 M
ACK:
Just maybe make a method out of that in case we might need it elsewhere.
- Original Message -
From: "Christina Fu"
To: "pki-devel"
Sent: Tuesday, 5 April, 2016 4:04:58 PM
Subject: [Pki-devel] [PATCH]
pki-cfu-0117-Ticket-1519-token-format-should-delete-certs-from-to.patch
This pat
