Loading...

XML

Word

Printable

Details

Type: New Feature
Resolution: Fixed
Priority: Major
Fix Version/s: 6.1-milestone-1
Affects Version/s: 5.2
Component/s: Crypto
Labels:
None

Difficulty:
Medium
Similar issues:

Description

This module may provides the following features :

Storage of trusted certificates
Storage of private certificates
Verification of Certificate chain
Creation of Root CA
Signature of CR
Association of Certificates with XWikiUsers
CRL support (verify/provide)

The features will be accessible through a scripting service, complementing the current crypto script service. Storage of certificate should be plug-able, providing storage either in the DB or the FS, and being open to extensions.

The minimal implementation should be able to verify that a given certificate is trusted against a given list of trusted certificates. It will be used by the signed scripts feature to manage trusted certificate for signatures.

Attachments

Issue Links

blocks

XWIKI-9332 Improve security by only giving programming rights to scripts signed by a privileged user

Open

depends on

XCOMMONS-566 Add helpers for direct access to subject and authority key identifier from X509CertifiedPublicKey

Closed

XWIKI-9782 New Crypto Service API

Closed

XWIKI-10002 New Crypto Script API

Closed

Activity

People

Assignee:: Denis Gervalle

Reporter:: Denis Gervalle

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 19/Oct/13 09:47

Updated:: 25/Aug/21 09:17

Resolved:: 25/Aug/21 09:17

Date of First Response:: 25/Aug/21 9:17 AM