search

dogtagpki / pki

The Dogtag Certificate System is an enterprise-class Certificate Authority (CA) which supports all aspects of certificate lifecycle management, including key archival, OCSP and smartcard management.
https://www.dogtagpki.org
GNU General Public License v2.0
374 stars 138 forks source link

Enable registry for ACME #4860

Closed edewata closed 1 month ago

edewata commented 1 month ago

The default pki_registry_enable for ACME has been changed to True. This allows pkispawn and pkidestroy to create and remove ACME properly.

The PKIDeployer.create_acme_subsystem() has been modified to create the registry. The remove_acme_subsystem() has been modified to remove the registry.

The PKISubsystem.remove_registry() has been modified to check whether the files/folders exist before removing them in case the subsystem was created without registry.

The test for ACME on separate instance has been modified to no longer create the server and NSS database before calling pkispawn. Some file/folder permissions have also changed due to these changes.

sonarcloud[bot] commented 1 month ago

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

edewata commented 1 month ago

@fmarco76 Thanks!