Details

    • Type: New Feature
    • Status: Closed
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: EJBCA 6.12.0
    • Component/s: None
    • Labels:
    • Sprint:
      EJBCA Sprint 9

      Description

      Much in the same way as for CMP and EST, we want to support forwarding SCEP requests heading for the CA via an RA over peers.

      This shouldn't be inherently difficult, as it's already been implemented for CMP and EST in RaMasterApi as

      org.ejbca.core.model.era.RaMasterApi.cmpDispatch(AuthenticationToken, byte[], String)
      and
      org.ejbca.core.model.era.RaMasterApi.estDispatch(String, String, X509Certificate, String, String, byte[])

      Focus for now should simply be to forward the payload to the CA as is and passing on the response. Basic checks of the validity of the SCEP message should be done on the RA.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                hsunmark Henrik Sunmark
                Reporter:
                mikek Mike Agrenius Kushner
                Verified by:
                Samuel Lidén Borell
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 3 days Original Estimate - 3 days
                  3d
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 3 days, 2 hours, 10 minutes
                  3d 2h 10m