Defining the ACL ?
| [EMAIL PROTECTED]
Sent by: [EMAIL PROTECTED] 28/04/2004 11:05
|
|
Hi
OK here's what I've done
- Extracted the three files and move them to <openCA dir>/lib/cmds/
- Give the correct rights to them
- Restarted the openCA server (0.9.2-RC4)
But all I've got is the "Command confirm_revreq Not Supported ( yet ?!? ).." when clicking on the continue button on Certificate Revocation Request at the pub interface.
Any step missing ?
Sebastien
| Michael Bell <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED] 28/04/2004 08:52
|
|
[EMAIL PROTECTED] wrote:
>
> As I was trying on implement my OpenCA based PKI solution, I wasn't able
> to achive a revocation request by a common user from the public interface.
>
> By analyzing the Perl source code in submit_revreq, I conclude that
> $head and $text are always empty variables.
>
> So I added these lines (taken from the addCRR script) to make things
> work in submit_revreq at line 30
Diagnosis correct, therapy wrong ;)
We know two ways to create a new CRR.
RA: revoke_req --> addCRR
pub: revoke_req --> confirm_revreq --> submit_revreq
revoke_req includes a wrong reference directly to submit_revreq. I
changed it to confirm_revreq. I attached the changed files.
submit_revreq itself should be correct. Can you test them please?
Michael
--
-------------------------------------------------------------------
Michael Bell Email: [EMAIL PROTECTED]
ZE Computer- und Medienservice Tel.: +49 (0)30-2093 2482
(Computing Centre) Fax: +49 (0)30-2093 2704
Humboldt-University of Berlin
Unter den Linden 6
10099 Berlin Email (private): [EMAIL PROTECTED]
Germany http://www.openca.org
