Uploaded image for project: 'Puppet Server'
  1. Puppet Server
  2. SERVER-2205

Ensure Server CA can use a CRL path that contains multiple PEM encoded CRLs

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Normal
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: SERVER 6.0.0
    • Component/s: None
    • Labels:
      None
    • Release Notes:
      Bug Fix
    • Release Notes Summary:
      Hide
      Server side fixes for finally, fully supporting intermediate CA-ness:
      with this CRL chains will be persisted when revoking certs.
      Show
      Server side fixes for finally, fully supporting intermediate CA-ness: with this CRL chains will be persisted when revoking certs.
    • QA Risk Assessment:
      Needs Assessment

      Description

      We need to make sure that Puppet Server can actually handle the CRLs that we are expecting it to. This will most likely entail updating our calls of pem->crl to be the newer pem->crls. And updating the revoke behavior to write out the additional crls in the chain when replacing the current crl file.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                tony.vu Tony Vu
                Reporter:
                justin Justin Stoller
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Zendesk Support