Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-8484

RA enrollment returns older certificate when validation fails

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: EJBCA 7.3.0
    • Component/s: RA UI
    • Labels:
      None
    • Issue discovered during:
      Ad Hoc
    • Sprint:
      EJBCA Team Alice - 2019 w34

      Description

      Trying to enroll for a certificate using the RA web. I have an end entity which already have multiple certificates issued to it.

      • configure profiles to use server generated keys, and return PEM file
      • configure profiles to use pre-sign validation, make sure it fails
      • set end entity to status new, with an enrollment code
      • go to RA web and use "Enroll->User username
      • enroll for the user
        • watch in the log that pre-sign validaton fails and that no certificate it issued
        • in RA web I get to download a PEM file still
        • looking at the PEM file it is the last, old, certificate that was issued to this used
      • Expected behavior: there should be an error in the RA web when enrollment fails

       

        Attachments

          Activity

            People

            Assignee:
            tomas Tomas Gustavsson
            Reporter:
            tomas Tomas Gustavsson
            Verified by:
            Henrik Sunmark
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Time Tracking

                Estimated:
                Original Estimate - 30 minutes
                30m
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 30 minutes
                30m