freeipa

Clone
Source Code
GIT

5f0e13c ca-add: validate Subject DN name attributes

3 files Authored by ftweedal 6 years ago, Committed by mbasti 6 years ago,
raw patch tree parent
3 files changed. 38 lines added. 2 lines removed.
ipapython/dn.py
file modified
+2 -2
ipaserver/plugins/ca.py
file modified
+21 -0
ipatests/test_xmlrpc/test_ca_plugin.py
file modified
+15 -0 
    ca-add: validate Subject DN name attributes
    
    If the Subject DN is syntactically valid but contains unrecognised
    name attributes, FreeIPA accepts it but Dogtag rejects it, returning
    status 400 and causing the framework to raise RemoteRetrieveError.
    
    Update the ca-add command to perform some additional validation on
    the user-supplied Subject DN, making sure that we recognise all the
    attributes.
    
    Fixes: https://pagure.io/freeipa/issue/6987
    Reviewed-By: Stanislav Laznicka <slaznick@redhat.com>
    Reviewed-By: Felipe Volpone <felipevolpone@gmail.com>
file modified
+2 -2
file modified
+21 -0
file modified
+15 -0
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.