Skip to content

Add End Entity/Certificate Profile fields to CertSafePublisher's JSON#742

Open
mwllgr wants to merge 6800 commits intoKeyfactor:mainfrom
mwllgr:patch-1
Open

Add End Entity/Certificate Profile fields to CertSafePublisher's JSON#742
mwllgr wants to merge 6800 commits intoKeyfactor:mainfrom
mwllgr:patch-1

Conversation

@mwllgr
Copy link

@mwllgr mwllgr commented Dec 12, 2024
edited
Loading

Describe your changes

This pull request introduces five additional fields in CertSafePublisher's JSON POST data:

  • username
  • certificateProfileId
  • certificateProfileName
  • endEntityProfileId
  • endEntityProfileName

Due to the JSON structure changes, a documentation update at https://doc.primekey.com/ejbca/ejbca-operations/ejbca-ca-concept-guide/publishers-overview/custom-publishers/cert-safe-publisher-for-an-https-server would be necessary.

One might even think about making these changes additional for existing EJBCA installations by using a dedicated checkbox (as a "feature flag", probably?) as some systems might not handle the newly introduced fields correctly.

How has this been tested?

We're currently using the CertSafePublisher with these changes in several systems running EJBCA. The implementation publishes certificate data to a custom API which consumes the JSON content and then publishes certificate details into a dedicated Jira project.

I currently do not have any possibility to execute EJBCA's unit tests, so extending the existing CertSafePublisherUnitTest might be necessary.

Checklist before requesting a review

  • I have performed a self-review of my code
  • I have kept the patch limited to only change the parts related to the patch
  • This change requires a documentation update

samuellbKF and others added 30 commits April 2, 2024 14:09
@samuellbKF
Merge branch 'fix/ECA-12287-adjust-timeout-in-outgoingpeerconnectiont…
053348d 
…est' into 'main'

ECA-12287: fix adjust timeout in test

Closes ECA-12287

See merge request ejbca/ejbca!1519
@dobicinaitis
ECA-12237: Removed references to 'ca.keystorepass' from container fil…
93bf92a 
…es and 'removed.xml'.
ECA-12299 : Replace method parameters with parameter object GenerateO…
900a4cc 
…rKeyRecoverTokenRequest
@mike-agrenius-kushner
ECA-12330: Removed the NODEFAULTPASSWORD value from SoftCryptoToken
0d99df8
@mike-agrenius-kushner
ECA-12230: Fixed a screwup in CaInitCommand
e762e7f
no-ticket: update swagger to match api definitions
f5d845b
no-ticket: update swagger to match api definitions
b200a81
no-ticket: update swagger to match api definitions
c424d25
ECA-12299 : format spacing
a5b9a71
@dobicinaitis
Merge branch 'no-ticket-swagger-update-to-match' into 'main'
c02cad0 
no-ticket: update swagger to match api definitions

See merge request ejbca/ejbca!1525
Merge branch 'fix/ECA-11972-block-cert-profiles-creation-cloning-with…
df5758f 
…-empty-name' into 'main'

ECA-11972 - Block clone/creation of certificate profile when the name is empty or contains

Closes ECA-11972

See merge request ejbca/ejbca!1517
Merge branch 'fix/ECA-12338-improve-error-message-in-approval-profile…
8c0a3a2 
…' into 'main'

ECA-12338 - Add user-friendly error message for rename approval profile action

Closes ECA-12338

See merge request ejbca/ejbca!1515
@mike-agrenius-kushner
Merge branch
81532ed 
'fb-ECA-12237-Remove_ca.keystorepass_and_ca.cmskeystorepass' of
https://neo.repoman.primekey.com/ejbca/ejbca into
fb-ECA-12237-Remove_ca.keystorepass_and_ca.cmskeystorepass
ECA-11416: fix merge conflicts
7f5f7b7
ECA-12299 : pass generateOrKeyRecoverTokenV2 to generateOrKeyRecoverT…
6701072 
…oken in RaMasterApiProxyBean and RaMasterApiPeerImpl
ECA-12094: fix class path issue.
aab131e
ECA-12094: Change default after upgrade to true.
e22d026
ECA-12230: Add xhtml, backing bean and some part of the structure.
574d91c
@dobicinaitis
NoTicket: Setting version 8.3.0-Beta1
768c3f9
@Realiserad @dobicinaitis
ci: use correct version numbers
4fa5efd 
Comment out .image.tag so the correct version number from Chart.yaml
is used and update src/internal.properties to make Jenkins X compute
the correct build number.
Merge branch 'fb-ECA-12104-p11ng-cli-listkeypairs' into 'main'
4ee53f6 
ECA-12104: p11ng-cli command to list usable key pairs

Closes ECA-12104

See merge request ejbca/ejbca!1378
ECA-12230: Add subjectdn section.
c96322a
Merge branch 'main' into fix/EJBCAINTER-792
2837454
@mans-andersson
Merge branch 'bugfix/typo-in-ci-pipeline-step-name' into 'main'
51ec6f2 
CI pipeline step name typo fix

See merge request ejbca/ejbca!1528
EJBCAINTER-792 improve logging
29b9c5e
ECA-12249: Update classpath
e8f37bf
Merge branch 'main' into fix/ECA-12249-enroll-ec-cert-msae
1f7cc30
@dcarella @primetomas
Noticket: Admin GUI French fixes
0454877
@dcarella @primetomas
Noticket: Fix Missing language messages in Admin GUI
867b3ba
@primetomas
Merge branch 'fb-ECA-12367-lingo-carella' into 'main'
40484a1 
fix: Admin GUI French fixes

See merge request ejbca/ejbca!1532
hablutzel1 and others added 23 commits August 24, 2024 19:41
@hablutzel1
Fix for post-upgrade hanging when crldata_idx3 or crldata_idx4 ex…
ad5c81e 
…ist.
@hablutzel1
Remove unneeded @TransactionAttributes.
4c27c20
@primetomas
Merge pull request Keyfactor#654 from hablutzel1/crldata-postupgrade-…
22e35d8 
…hangs

Post-upgrade hangs when `crldata_idx3` or `crldata_idx4` exist
@dcarella
Noticket: RA GUI layout (fix Select Request Template)
3c993ce
@primetomas
Merge pull request Keyfactor#624 from dcarella/fix/ra-gui-layout/8.3.2
bb7373b 
Fix: RA GUI layout (CSS align, SDA bug, Search improv)
@KarolinHem
Update EJBCA Installation link in README to docs.keyfactor.com
52f5646
@primetomas
Merge pull request Keyfactor#658 from KarolinHem/main
e2036e5 
Update EJBCA Installation link in README to docs.keyfactor.com
@KarolinHem
Added OpenSSF Best Practices Badge in README.md
20a5dea
@KarolinHem
Update README.md - Trying out Badges
a4a9c33
@KarolinHem
Update README.md - Testing more badges
28236a8 
Links still to be added.
@KarolinHem
Update README.md - Testing badges
4729218
@dcarella
Noticket: French GUI fix (Peer Systems)
889cc0b
@primetomas
Merge pull request Keyfactor#663 from dcarella/l10n/french-gui-fix-pe…
de7b626 
…ersystems/8.3.2

L10n: French GUI fix (Peer Systems)
@KarolinHem
Merge branch 'Keyfactor:main' into main
4242010
@KarolinHem
Update README.md - Included OpenSSF Best Practices badge
24d11fc
@KarolinHem
Update README.md
da61f76
@KarolinHem
Update README.md
e4b3f03
@KarolinHem
Update README.md
91962ed
@KarolinHem
Temp update - To be removed
698aeb6
@KarolinHem
Update README.md
3d36daa
@primetomas
Merge pull request Keyfactor#676 from KarolinHem/main
b445449 
Added OpenSSF Best Practices badge in README
@mwllgr
Add some fields about end entity/certificate profile to CertSafePubli…
deb49eb 
…sher
@mwllgr
Create string constants for new JSON values in CertSafePublisher
142c02e
@primetomas
Copy link
Collaborator

primetomas commented Dec 13, 2024

Would this normally be backwards compatible? I.e should a normal end point simply ignore the new fields?

@mwllgr
Copy link
Author

mwllgr commented Dec 13, 2024

Thanks for the quick response @primetomas! I assume software that receives the JSON would usually not care if there are more fields than initially known. As I did not remove any fields I think this shouldn't really be a problem.

@hesunmark hesunmark force-pushed the main branch 2 times, most recently from 647a632 to e3961c2 Compare December 19, 2024 11:02
@primetomas
Copy link
Collaborator

primetomas commented Dec 19, 2024

I'm sorry, but we just pushed EJBCA 9.0 to GitHub, which means the PR is messed up and have to be redone/rebased.
Apart from that, I like it very much and I should be able to merge it next year.
Can you rebase the PR for the updated ejbca-ce git?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.