Jira (PUP-9964) Puppet Server CA auth is missing from the list of recognized certificate extensions

1 view
Skip to first unread message

Charlie Sharpsteen (JIRA)

unread,
Aug 13, 2019, 2:27:03 PM8/13/19
to puppe...@googlegroups.com
Charlie Sharpsteen created an issue
 
Puppet / Bug PUP-9964
Puppet Server CA auth is missing from the list of recognized certificate extensions
Issue Type: Bug Bug
Affects Versions: PUP 6.7.2, PUP 6.4.3, PUP 5.5.16
Assignee: Unassigned
Created: 2019/08/13 11:26 AM
Priority: Normal Normal
Reporter: Charlie Sharpsteen

As part of SERVER-2287, OID 1.3.6.1.4.1.34380.1.3.39 was designated as the certificate extension that allows a certificate to make REST calls to the CA API:

https://github.com/puppetlabs/puppetserver/blob/6.5.0/src/clj/puppetlabs/puppetserver/certificate_authority.clj#L196-L199

However, this OID was never added to the list of extensions that Puppet's Ruby code recognizes:

https://github.com/puppetlabs/puppet/blob/6.7.2/lib/puppet/ssl/oids.rb
Add Comment Add Comment
 
This message was sent by Atlassian JIRA (v7.7.1#77002-sha1:e75ca93)
Atlassian logo

Charlie Sharpsteen (JIRA)

unread,
Aug 13, 2019, 2:29:03 PM8/13/19
to puppe...@googlegroups.com
Charlie Sharpsteen commented on Bug PUP-9964
 
Re: Puppet Server CA auth is missing from the list of recognized certificate extensions

Note that the question around naming raised in SERVER-2357 must be settled before this change is implemented.

Josh Cooper (Jira)

unread,
Mar 13, 2020, 1:11:03 PM3/13/20
to puppe...@googlegroups.com
Josh Cooper commented on Bug PUP-9964

Putting this in needs information until the server issue is resolved.
This message was sent by Atlassian Jira (v8.5.2#805002-sha1:a66f935)
Atlassian logo

David McTavish (Jira)

unread,
Jan 26, 2022, 1:37:02 PM1/26/22
to puppe...@googlegroups.com
David McTavish updated an issue
 
Change By: David McTavish
Labels: low-hanging-fruit
This message was sent by Atlassian Jira (v8.20.2#820002-sha1:829506d)
Atlassian logo

Maggie Dreyer (Jira)

unread,
Jan 26, 2022, 1:41:01 PM1/26/22
to puppe...@googlegroups.com
Maggie Dreyer commented on Bug PUP-9964
 
Re: Puppet Server CA auth is missing from the list of recognized certificate extensions

We're not going to do the rename, unless people really really want us to. So I think this should just be worked using the existing name.

Josh Cooper (Jira)

unread,
Oct 19, 2022, 11:48:02 PM10/19/22
to puppe...@googlegroups.com
Josh Cooper updated an issue
 
Change By: Josh Cooper
Labels: Easy low-hanging-fruit
This message was sent by Atlassian Jira (v8.20.11#820011-sha1:0629dd8)
Atlassian logo
Reply all
Reply to author
Forward
0 new messages