Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-7911

Split X509 CA into common and build specific parts

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: EJBCA 7.1.0
    • Component/s: None
    • Labels:
      None

      Description

      Extract interfaces from current CA and X509CA classes. Create separate implementations of the interfaces, one full X509CA implementation and a limited implementation only containing functionality required for RA and VA builds. Keep common functionality in a higher level interface and corresponding implementation (used for both X509CA implementations) in an abstract class, implementing the common interface.

      Outcome:

      Possible to only include certain functionality of X509CA for RA / VA builds.

      Acceptance Criteria:

      • RA / VA specific builds can deploy without full X509CA implementations.
      • CA certs can be imported to the RA / VA, creating an external CA.
      • All functionality required for an external RA and VA to operate must remain even without the full X509CA implementation.
      • Specific RA / VA installations cannot create local CAs, generate certificates or perform any other CA specific operations.
      • Deployment and installation procedure must remain the same for all kind of builds.
      • Upgrading from a previous full installation to a RA or VA specific build must be possible.

        Attachments

        1. eca-7911.png
          eca-7911.png
          9 kB
        2. CA.jpg
          CA.jpg
          2.53 MB

          Issue Links

            Activity

              People

              Assignee:
              hsunmark Henrik Sunmark
              Reporter:
              hsunmark Henrik Sunmark
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 1 week Original Estimate - 1 week
                  1w
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 1 week, 1 day, 6 hours
                  1w 1d 6h