Two certs RA support - Githubissues

acciduck / jscep

Automatically exported from code.google.com/p/jscep

MIT License

0 stars 0 forks source link

Two certs RA support #44

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago

What steps will reproduce the problem?
1. Try to use SCEP server with two cert RA (one for encryption and another for 
signing)

What version of the product are you using? On what operating system?
Version 1.1.5

Please provide any additional information below

As I understand in the case of 2 Cert RA, private key of first cert is used for 
decryption of envelop which is send by SCEP client. Second cert is used for 
signing the envelop which will be send to SCEP client, so we need private key 
for second cert for singing.

org.jscep.server.ScepServlet class provides interface for only one key - 
getPrivate(), which is suitable for one cert CA or one cert RA operations.

I attached proposed patch. However, I didn't test it.

Original issue reported on code.google.com by victor.r...@gmail.com on 13 May 2011 at 10:14

Blocked on: #48

Attachments:

TwoCertRA.patch

GoogleCodeExporter commented 8 years ago

Thanks for raising this issue, and sending the patch.  I think we will need to 
think about this one a little.  It might be a case of using the following 
method signature:

privateKeyFor(PublicKey key), or
privateKeyFor(Certificate certificate)

Original comment by davidgrant41 on 14 May 2011 at 7:31

Changed state: Accepted
Added labels: Milestone-Release1.2

GoogleCodeExporter commented 8 years ago

Thank you.

Original comment by victor.r...@gmail.com on 14 May 2011 at 8:24

GoogleCodeExporter commented 8 years ago

Original comment by davidgrant41 on 7 Jun 2011 at 11:49

Added labels: Milestone-Release1.3

GoogleCodeExporter commented 8 years ago

You are right. It make sense to use something like what you mentioned.

It will pave the road for support of multiple CA's using one SCEP server.

Original comment by victor.r...@gmail.com on 7 Jun 2011 at 8:27

GoogleCodeExporter commented 8 years ago

Original comment by davidgrant41 on 21 Jun 2011 at 6:24

GoogleCodeExporter commented 8 years ago

Original comment by da...@grant.org.uk on 13 Jul 2011 at 6:35

Added labels: Milestone-1.3

GoogleCodeExporter commented 8 years ago

Original comment by da...@grant.org.uk on 13 Jul 2011 at 6:37

GoogleCodeExporter commented 8 years ago

Original comment by da...@grant.org.uk on 23 Aug 2011 at 8:15

Added labels: Component-Server

GoogleCodeExporter commented 8 years ago

Original comment by da...@grant.org.uk on 29 Mar 2012 at 5:10

Removed labels: Milestone-1.3

GoogleCodeExporter commented 8 years ago

This issue was closed by revision r1424.

Original comment by da...@grant.org.uk on 25 Jul 2012 at 12:42

Changed state: Fixed

GoogleCodeExporter commented 8 years ago

Original comment by da...@grant.org.uk on 21 Aug 2012 at 11:55

Added labels: Release-2.0