We're updating the issue view to help you get more done. 

Cannot sign certificates via API / docker not working

Description

The API request trough PyFi to sign a CSR (fifo users sign) doesn't work. The API returns a token JSON instead of a signed cert, as if it were requesting an access code, as checked by running with the --curl output:

1 {"token":"TqlGfR4k1Zm927sLqoRaOqIxi2JGe9pO","token-id":"ffaa3fd7-6edc-40ec-90d1-912aa7594ab9"}

.

Quickly asked around at IRC and tried some variations, setting up symlinks to account for code not working with the move to /data, but that didn't make a difference. Suggested I open a ticket here.

Could cleanly reproduce this with empty SmartOS install + FiFo AIO zone updated to 0.9 packages + following setup Docker SSL as in docs. My notes during reproducing this: http://pastebin.com/DxrN7LGV

Environment

  • Set up PyFi to connect to FiFo 0.9 zone

  •  

    1 openssl req -newkey rsa:4096 -nodes -sha256 -keyout "key.pem" -out "cert.csr"
  •  

    1 fifo --insecure users sign --csr cert.csr <UUID>

Status

Assignee

Heinz N. Gies

Reporter

Daniël van de Giessen

Components

Fix versions

Affects versions

0.9.0

Priority

Low