Issue #6422: Enforce CA ACLs in Dogtag - freeipa

freeipa

#6422 Enforce CA ACLs in Dogtag

Opened 7 years ago by ftweedal. Modified 7 years ago

If we allow GSS-API authentication to Dogtag for cert request/issuance,
we need to enforce CA ACLs within Dogtag (because the request was not
necessarily seen by the IPA framework, where the validation logic currently
resides).

Metadata Update from @ftweedal:
- Issue assigned to ftweedal
- Issue set to the milestone: FreeIPA 4.5 backlog

7 years ago

Metadata

Assignee

ftweedal

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 4.5 backlog

None

affects_doc

None

source

None

knownissue

None

type

enhancement

blockedby

https://fedorahosted.org/freeipa/ticket/5011

test_case

None

component

Certificate management

blocking

None

on_review

None

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

None

tester

None

changelog

None

design

None

freeipa

Source Code

#6422 Enforce CA ACLs in Dogtag Opened 7 years ago by ftweedal. Modified 7 years ago

Close issue as:

Metadata

#6422 Enforce CA ACLs in Dogtag

Opened 7 years ago by ftweedal. Modified 7 years ago