Uploaded image for project: 'Puppet Server'
  1. Puppet Server
  2. SERVER-2205

Ensure Server CA can use a CRL path that contains multiple PEM encoded CRLs

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Normal
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: SERVER 6.0.0
    • Component/s: None
    • Labels:
      None
    • Template:
    • Team:
      Froyo
    • Release Notes:
      Bug Fix
    • Release Notes Summary:
      Hide
      Server side fixes for finally, fully supporting intermediate CA-ness:
      with this CRL chains will be persisted when revoking certs.
      Show
      Server side fixes for finally, fully supporting intermediate CA-ness: with this CRL chains will be persisted when revoking certs.
    • QA Risk Assessment:
      Needs Assessment

      Description

      We need to make sure that Puppet Server can actually handle the CRLs that we are expecting it to. This will most likely entail updating our calls of pem->crl to be the newer pem->crls. And updating the revoke behavior to write out the additional crls in the chain when replacing the current crl file.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              tony.vu Tony Vu
              Reporter:
              justin Justin Stoller
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Zendesk Support