Project

Profile

Help

Actions
Send by e-mail Copy link

Issue #6424

closed

An expired client RHSM Certificate should be denied

Added by bmbouter over 4 years ago. Updated over 4 years ago.

Status:
CLOSED - CURRENTRELEASE
Priority:
Low
Assignee:
bmbouter
Sprint/Milestone:
1.0.0 Release
Start date:
Due date:
Estimated time:
Severity:
2. Medium
Platform Release:
OS:
Triaged:
No
Groomed:
No
Sprint Candidate:
No
Tags:
Katello
Sprint:
Sprint 70
Quarter:
Actions
Copy link
 #1

Updated by bmbouter over 4 years ago

  • Subject changed from An Expired client RHSM Certificate should be denied to An expired client RHSM Certificate should be denied
Actions
Copy link
 #2

Updated by bmbouter over 4 years ago

  • Status changed from NEW to ASSIGNED
  • Assignee set to bmbouter
  • Sprint set to Sprint 70
Actions
Copy link
 #3

Updated by jsherril@redhat.com over 4 years ago

  • Tags Katello-P3 added

Added by bmbouter over 4 years ago

Revision 9f05a5ee | View on GitHub

Add RHSM test ensuring expired certs deny content

This adds a test that ensures a trusted-but-expired RHSM certificate with a valid subpath is denied content.

The code worked already, but reported the reason for the failure incorrectly. This adds logic that disambiguates openssl failures due to client cert not being signed versus being expired.

https://pulp.plan.io/issues/6424 closes #6424

Actions
Copy link
 #4

Updated by bmbouter over 4 years ago

  • Status changed from ASSIGNED to MODIFIED
Actions
Copy link
 #5

Updated by ggainey over 4 years ago

  • Priority changed from Normal to Low
Actions
Copy link
 #6

Updated by ggainey over 4 years ago

  • Tags Katello added
  • Tags deleted (Katello-P3)
Actions
Copy link
 #7

Updated by bmbouter over 4 years ago

  • Sprint/Milestone set to 1.0.0 Release
Actions
Copy link
 #8

Updated by bmbouter over 4 years ago

  • Status changed from MODIFIED to CLOSED - CURRENTRELEASE
Actions
Send by e-mail Copy link

Also available in: Atom PDF