Resolves: dogtagpki Pagure Issue: #2541
- https://pagure.io/dogtagpki/issue/2541
- Require "jss >= 4.4.0-1" as a build and runtime requirement
- Require "tomcatjss >= 7.2.1-1" as a build and runtime requirement
- ############################################################################
- dogtagpki Pagure Issue #2541 - Re-base Dogtag pki packages to 10.4.x
- ############################################################################
- dogtagpki Pagure Issue #6 - Remove Policy Framework Deprecations (edewata)
- dogtagpki Pagure Issue #850 - JSS certificate validation function does not
pass up exact errors from NSS (edewata)
- dogtagpki Pagure Issue #1114 - [MAN] Generting Symmetric key fails with
key-generate when --usages verify is passed (vakwetu)
- dogtagpki Pagure Issue #1247 - Better error message when try to renew a
certificate that expires outside renewal grace period (vakwetu)
- dogtagpki Pagure Issue #1309 - Recovering of a revoked cert erroneously
reflects "active" in the token db cert entry (cfu)
- dogtagpki Pagure Issue #1490 - add option to bypass dnsdomainname check in
pkispawn (vakwetu)
- dogtagpki Pagure Issue #1517 - user-cert-add --serial CLI request to secure
port with remote CA shows authentication failure (edewata)
- dogtagpki Pagure Issue #1527 - TPS Enrollment always goes to "ca1" (cfu)
- dogtagpki Pagure Issue #1536 - CA EE: Submit caUserCert request without uid
does not show proper error message (vakwetu)
- dogtagpki Pagure Issue #1663 - Add SCP03 support (jmagne)
- dogtagpki Pagure Issue #1664 - [BUG] Add ability to disallow TPS to enroll
a single user on multiple tokens. (jmagne)
- dogtagpki Pagure Issue #1710 - Add profile component that copies CN to SAN
(ftweedal)
- dogtagpki Pagure Issue #1741 - ECDSA Certificates Generated by Certificate
System fail NIST validation test with parameter field. (cfu)
- dogtagpki Pagure Issue #1897 - [MAN] Man page for logging configuration.
(edewata)
- dogtagpki Pagure Issue #1920 - [MAN] Man page for PKCS #12 utilities
(edewata)
- dogtagpki Pagure Issue #2275 - add options to enable/disable cert or crl
publishing. (vakwetu)
- dogtagpki Pagure Issue #2289 - [MAN] pki ca-cert-request-submit fails
presumably because of missing authentication even if it should not require
any (edewata)
- dogtagpki Pagure Issue #2450 - Unable to search certificate requests using
the latest request ID (edewata)
- dogtagpki Pagure Issue #2453 - IPA replica-prepare failed with error
"Profile caIPAserviceCert Not Found" (ftweedal)
- dogtagpki Pagure Issue #2457 - Misleading Logging for HSM (edewata)
- dogtagpki Pagure Issue #2460 - Typo in comment line of
UserPwdDirAuthentication.java (edewata)
- dogtagpki Pagure Issue #2463 - Troubleshooting improvements (edewata)
- dogtagpki Pagure Issue #2466 - two-step externally-signed CA installation
fails due to missing AuthorityID (ftweedal)
- dogtagpki Pagure Issue #2475 - Multiple host authority entries created
(ftweedal)
- dogtagpki Pagure Issue #2476 - Miscellaneous Minor Changes (edewata)
- dogtagpki Pagure Issue #2478 - pkispawn fails as it is not able to find
openssl as a dependency package (mharmsen)
- dogtagpki Pagure Issue #2483 - Unable to read an encrypted email using
renewed tokens (jmagne)
- dogtagpki Pagure Issue #2486 - Automatic recovery of encryption cert is not
working when a token is physically damaged and a temporary token is issue
(jmagne)
- dogtagpki Pagure Issue #2496 -Cert/Key recovery is successful when the cert
serial number and key id on the ldap user mismatches (cfu)
- dogtagpki Pagure Issue #2497 - KRA installation failed against
externally-signed CA with partial certificate chain (edewata)
- dogtagpki Pagure Issue #2498 -Token format with external reg fails when
op.format.externalRegAddToToken.revokeCert=true (cfu)
- dogtagpki Pagure Issue #2500 - Problems with FIPS mode (edewata)
- dogtagpki Pagure Issue #2505 - Fix packaging duplicates of classes in
multiple jar files (edewata)
- dogtagpki Pagure Issue #2510 - PIN_RESET policy is not giving expected
results when set on a token (jmagne)
- dogtagpki Pagure Issue #2513 -TPS token enrollment fails to
setupSecureChannel when TPS and TKS security db is on fips mode. (jmagne)
- dogtagpki Pagure Issue #2523 - Changes to target.agent.approve.list
parameter is not reflected in the TPS Web UI (edewata)
- dogtagpki Pagure Issue #2524 - Remove xenroll.dll from pki-core (mharmsen)
- dogtagpki Pagure Issue #2525 - [RFE] FreeIPA to Dogtag permission mapping
plugin (ftweedal)
- dogtagpki Pagure Issue #2532 - [RFE] add express archivals and retrievals
from KRA (vakwetu)
- dogtagpki Pagure Issue #2534 - Automatic recovery of encryption cert - CA
and TPS tokendb shows different certificate status (cfu)
- dogtagpki Pagure Issue #2543 - Unable to install subordinate CA with HSM in
FIPS mode (edewata)
- dogtagpki Pagure Issue #2544 - TPS throws "err=6" when attempting to format
and enroll G&D Cards (jmagne)
- dogtagpki Pagure Issue #2552 - pkispawn does not change default ecc key size
from nistp256 when nistp384 is specified in spawn config (jmagne)
- dogtagpki Pagure Issue #2556 - pkispawn fails to create PKI subsystem on
FIPS enabled system (edewata)
- dogtagpki Pagure Issue #2564 - pki-tomcat for 10+ minutes before generating
cert (edewata)
- dogtagpki Pagure Issue #2569 - Token memory not wiped after key deletion
(jmagne)
- dogtagpki Pagure Issue #2570 - Problem with default AJP hostname in IPv6
environment. (edewata)
- dogtagpki Pagure Issue #2571 - Request ID undefined for CA signing
certificate (vakwetu)
- dogtagpki Pagure Issue #2573 - CA Certificate Issuance Date displayed on CA
website incorrect (vakwetu)
- dogtagpki Pagure Issue #2579 - NumberFormatException in
LDAPProfileSubsystem (ftweedal)
- dogtagpki Pagure Issue #2582 - Access banner (edewata)
- dogtagpki Pagure Issue #2601 - Return revocation reason in GET
/ca/rest/certs/{id} response. (ftweedal)
- ############################################################################