Issue #5177: Add ACI and permission for managing user userCertificate attribute - freeipa

freeipa

#5177 Add ACI and permission for managing user userCertificate attribute

Closed: Fixed None Opened 8 years ago by ftweedal.

"certificate issuer" roles will need write access to users'
userCertificate attribute, so it should be possible to assign
this permission to a role. Currently there is only a "Modify Users"
permission that allows all attributes to be written.

Note that a similar permission already exists for hosts:
"System: Manage Host Certificates"

mbasti commented 8 years ago

master:

6b978d7 add permission: System: Manage User Certificates

ipa-4-2:

7a50998 add permission: System: Manage User Certificates

pvoborni commented 8 years ago

Ticket has been cloned to Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1254637

Metadata Update from @ftweedal:
- Issue assigned to pvoborni
- Issue set to the milestone: FreeIPA 4.2.1

7 years ago

Metadata

Assignee

pvoborni

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 4.2.1

None

affects_doc

None

source

None

knownissue

None

type

enhancement

blockedby

None

test_case

None

component

Certificate management

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

https://bugzilla.redhat.com/show_bug.cgi?id=1254637

tester

None

changelog

None

design

None

freeipa

Source Code

#5177 Add ACI and permission for managing user userCertificate attribute Closed: Fixed None Opened 8 years ago by ftweedal.

Metadata

#5177 Add ACI and permission for managing user userCertificate attribute

Closed: Fixed None Opened 8 years ago by ftweedal.