While working on another ticket, I noticed that in CAService.java, when revocation fails, audit message AUDIT_PRIVATE_KEY_ARCHIVE_REQUEST appears in the log.
There seems to be multiple places in the code that does that. It is unclear to me if there is just one place that is audited the wrong event, or there are others. I don't want to trample on other areas, so I will not attempt to change it while working on that other ticket.
Per discussion with cfu on 06/03/2016: 10.3.3
Checkin:
ommit bd18c3395671dbf586214709d62246e70fba5e2a Author: Jack Magne jmagne@dhcp-16-206.sjc.redhat.com Date: Tue Jun 14 16:00:39 2016 -0700
Revocation failure causes AUDIT_PRIVATE_KEY_ARCHIVE_REQUEST The fix here is to make sure no archive related audits get issued for doing things other than key archivals. Other operations such as revoking and unrevoking cert in the code path laready have audit logs issued separately for success or failure.
Metadata Update from @cfu: - Issue assigned to jmagne - Issue set to the milestone: 10.3.3
Dogtag PKI is moving from Pagure issues to GitHub issues. This means that existing or new issues will be reported and tracked through Dogtag PKI's GitHub Issue tracker.
This issue has been cloned to GitHub and is available here: https://github.com/dogtagpki/pki/issues/2460
If you want to receive further updates on the issue, please navigate to the GitHub issue and click on Subscribe button.
Subscribe
Thank you for understanding, and we apologize for any inconvenience.
Log in to comment on this ticket.