search

dogtagpki / pki

The Dogtag Certificate System is an enterprise-class Certificate Authority (CA) which supports all aspects of certificate lifecycle management, including key archival, OCSP and smartcard management.
https://www.dogtagpki.org
GNU General Public License v2.0
373 stars 137 forks source link

[RFE]: Add functionality to perform post enroll/format operations to update reporting service. #2363

Open pki-bot opened 4 years ago

pki-bot commented 4 years ago

This issue was migrated from Pagure Issue #2243. Originally filed by dsirrine (@dsirrine) on 2016-03-23 02:28:25:

What problem/issue/behavior are you having trouble with? What do you expect to see?

Currently token format and token enrollment are done outside of TMS. In order to perform post update for TMS after these operations, such as updating token status and site code in the CMT database, we propose to add a function to the Red Hat TPS code. This function will call a http service with the operation and the token id to perform the updates that are needed for TMS. This function will be called at the end of a successful format or enrollment process. This function will be configurable in the CS.cfg for whether there is post service to call.

1. TPS CS.cfg
   The following configurations will be added:
       tps.post.service.enable=true/false
       conn.post.service.hostport=<host and port number of the post service>
       conn.post.service.servlet=<path of the post service>

2. RA_Processor.cpp
        New function TPSPostService will be added to do the following:
        - This function takes 2 parameters: op, tokenId
                    op - operation that was done to the token (formatted or
enrolled in this case)
                    tokenId - the token id
        - If tps.post.service.enable is defined in CS.cfg and set to true
                      - get the post service host, port and path configuration
from CS.cfg
                      - send a http request (including the op and tokenId
parameters) to the post service
        - If tps.post.service.enable is not defined in CS.cfg or set to false
              - function returns

3.      RA_Processor.cpp:
    - Modify RA_Processor::Format() to call TPSPostService("formatted", cuid)
at the end of the function upon successful completion of the format process.

4. RA_Enroll_Processor.cpp:
    - Modify RA_Enroll_Processor::Process() to call TPSPostService("enrolled",
cuid) at the end of the function upon successful completion of the enrollment
process.
pki-bot commented 4 years ago

Comment from dsirrine (@dsirrine) at 2017-02-27 14:03:44

Metadata Update from @dsirrine:

pki-bot commented 4 years ago

Comment from mharmsen (@mharmsen) at 2017-03-03 20:11:38

Metadata Update from @mharmsen:

pki-bot commented 4 years ago

Comment from mharmsen (@mharmsen) at 2017-08-09 12:46:25

Per CS/DS Meeting of August 7, 2017, it was determined to move this issue from 10.4 ==> FUTURE.

pki-bot commented 4 years ago

Comment from mharmsen (@mharmsen) at 2017-08-09 12:46:25

Metadata Update from @mharmsen: