-
# Overview
## Explain the topic in 2 sentences
The ecosystem needs to transition from the deprecated StatusList2021 to the current BitStringStatusList format for credential revocation. This requi…
-
### Description
In a case when TLS certificate should be revocade this won't work because of missing logic, `CertificateInvalidatedEvent` is not used.
-
This would require an `OAuth2ClientConfig.tokenRevokeUri?: string` (or similar) property.
-
It's a requirement that CRLs for Intermediate CAs have reason codes. Table 1.2.2 in the TLS BRs says "2020‐09‐30 7.2 and 7.3 All OCSP and CRL responses for Subordinate CA Certificates MUST include a m…
-
Is your an issue a feature request? If so, please raise it as an [enhancement](https://github.com/keylime/enhancements)
# Environment
* OS / version: Fedora, RHEL
* Processor architecture:
*…
-
*Description*:
Add Certificate revocation list (CRL) support for the mTLS based authentication between external clients and the Gateway.
-
Use case: a mobile client is authenticated with an access token and may also have a refresh token, now the user wan't to "log out", and have those tokens revoked.
At the moment we don't have an easy …
-
Without trying to spoil your fun, but the way this project is setup is in violation of the [CA/Browser Forum Baseline Requirements](https://cabforum.org/working-groups/server/baseline-requirements/doc…
BenBE updated
2 weeks ago
-
If the counterparty force-closes with the latest state and we are still able to send them a message over TCP, once the commitment transaction confirms, we could send them the latest revocation secret …
-
##### ISSUE TYPE
- Feature Idea
##### SUMMARY
Include the ability to check CRL and OCSP for integrations associated to AWX/Tower. For example, validate based on CRL when connecting to log aggr…