Add support for revocation using an extra provisioner in the RA.

This commit is contained in:
Mariano Cano 2021-03-17 19:47:36 -07:00
parent a6115e29c2
commit bcf70206ac
3 changed files with 3 additions and 0 deletions

View file

@ -372,6 +372,7 @@ func (a *Authority) Revoke(ctx context.Context, revokeOpts *RevokeOptions) error
SerialNumber: rci.Serial, SerialNumber: rci.Serial,
Reason: rci.Reason, Reason: rci.Reason,
ReasonCode: rci.ReasonCode, ReasonCode: rci.ReasonCode,
PassiveOnly: revokeOpts.PassiveOnly,
}) })
if err != nil { if err != nil {
return errs.Wrap(http.StatusInternalServerError, err, "authority.Revoke", opts...) return errs.Wrap(http.StatusInternalServerError, err, "authority.Revoke", opts...)

View file

@ -86,6 +86,7 @@ type RevokeCertificateRequest struct {
SerialNumber string SerialNumber string
Reason string Reason string
ReasonCode int ReasonCode int
PassiveOnly bool
RequestID string RequestID string
} }

View file

@ -149,6 +149,7 @@ func (s *StepCAS) RevokeCertificate(req *apiv1.RevokeCertificateRequest) (*apiv1
ReasonCode: req.ReasonCode, ReasonCode: req.ReasonCode,
Reason: req.Reason, Reason: req.Reason,
OTT: token, OTT: token,
Passive: req.PassiveOnly,
}, nil) }, nil)
if err != nil { if err != nil {
return nil, err return nil, err