| Summary: | RFE: provide a command/signal for certmonger to send after renewing cert | |||
|---|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Rob Crittenden <rcritten> | |
| Component: | certmonger | Assignee: | Nalin Dahyabhai <nalin> | |
| Status: | CLOSED CURRENTRELEASE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | |
| Severity: | unspecified | Docs Contact: | ||
| Priority: | unspecified | |||
| Version: | 15 | CC: | kchamart, mharmsen, nalin | |
| Target Milestone: | --- | |||
| Target Release: | --- | |||
| Hardware: | Unspecified | |||
| OS: | Unspecified | |||
| Whiteboard: | ||||
| Fixed In Version: | certmonger-0.56-1.fc15 | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | ||
| Clone Of: | ||||
| : | 766167 (view as bug list) | Environment: | ||
| Last Closed: | 2012-03-21 22:58:26 UTC | Type: | --- | |
| Regression: | --- | Mount Type: | --- | |
| Documentation: | --- | CRM: | ||
| Verified Versions: | Category: | --- | ||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
| Cloudforms Team: | --- | Target Upstream Version: | ||
| Bug Depends On: | ||||
| Bug Blocks: | 766167 | |||
|
Description
Rob Crittenden
2011-12-07 20:35:33 UTC
Emitting a signal is more common for services, and doesn't require any additional privileges to be granted in the SELinux policy. If we implement properties, and one of them reflects the contents of the certificate associated with a given request, then the client can wait for a signal that the contents of that property have changed to a non-empty value. Commands can be specified using the new -C flag when running getcert, and the service now emits a SavedCertificate signal on the request when the certificate is saved to the specified location. Note that certmonger needs sufficient privileges granted to it in the SELinux policy to run the specified command. |