Project

Profile

Help

Issue #6424

closed

An expired client RHSM Certificate should be denied

Added by bmbouter almost 3 years ago. Updated over 2 years ago.

Status:
CLOSED - CURRENTRELEASE
Priority:
Low
Assignee:
Sprint/Milestone:
Start date:
Due date:
Estimated time:
Severity:
2. Medium
Platform Release:
OS:
Triaged:
No
Groomed:
No
Sprint Candidate:
No
Tags:
Katello
Sprint:
Sprint 70
Quarter:
Actions #1

Updated by bmbouter almost 3 years ago

  • Subject changed from An Expired client RHSM Certificate should be denied to An expired client RHSM Certificate should be denied
Actions #2

Updated by bmbouter almost 3 years ago

  • Status changed from NEW to ASSIGNED
  • Assignee set to bmbouter
  • Sprint set to Sprint 70
Actions #3

Updated by jsherril@redhat.com almost 3 years ago

  • Tags Katello-P3 added

Added by bmbouter almost 3 years ago

Revision 9f05a5ee

Add RHSM test ensuring expired certs deny content

This adds a test that ensures a trusted-but-expired RHSM certificate with a valid subpath is denied content.

The code worked already, but reported the reason for the failure incorrectly. This adds logic that disambiguates openssl failures due to client cert not being signed versus being expired.

https://pulp.plan.io/issues/6424 closes #6424

Actions #4

Updated by bmbouter almost 3 years ago

  • Status changed from ASSIGNED to MODIFIED
Actions #5

Updated by ggainey over 2 years ago

  • Priority changed from Normal to Low
Actions #6

Updated by ggainey over 2 years ago

  • Tags Katello added
  • Tags deleted (Katello-P3)
Actions #7

Updated by bmbouter over 2 years ago

  • Sprint/Milestone set to 1.0.0 Release
Actions #8

Updated by bmbouter over 2 years ago

  • Status changed from MODIFIED to CLOSED - CURRENTRELEASE

Also available in: Atom PDF