Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-6063

Make Trust Anchor for CAA Validators configurable

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: EJBCA 6.9.1
    • Component/s: None
    • Labels:

      Description

      CAA should always check DNSSec, but there is an off chance that somebody has signed their records with another trust anchor, or that the trust anchor changes (unlikely, but could happen). Make the trust anchor configurable, keeping the current one as the pre-defined default.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              hsunmark Henrik Sunmark
              Reporter:
              samuel Samuel Lidén Borell
              Verified by:
              Mike Agrenius Kushner, Samuel Lidén Borell
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 1 day Original Estimate - 1 day
                  1d
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 1 day, 30 minutes
                  1d 30m