Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-8146

OCSP signer renewal via peers not working for throw-away CA

    Details

    • Issue discovered during:
      Customer
    • Sprint:
      EJBCA Team Alice - 2019 w45, EJBCA Team Alice - 2019 w48, EJBCA Team Alice - 2019 w51

      Description

      OCSP signer renewal via peers is not working for throw-away CAs.

      This happens because SignSession.createCertificate tries to generate a throw-away certificate rather than a normal certificate in this case.

      The solution should be to check if isUseUserStorage==false and suppliedUserData==null in SignSession.createCertificate. If so, check if there is a username/password in the request, and take the usual authUser code path.

      Tasks:

      • Testing
      • Setup test environment

        Attachments

          Activity

            People

            Assignee:
            laurik_helmes Lauri Kongas
            Reporter:
            samuel Samuel Lidén Borell
            Verified by:
            Henrik Sunmark
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Time Tracking

                Estimated:
                Original Estimate - 4 days Original Estimate - 4 days
                4d
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 1 week, 4 days
                1w 4d