Details
-
Improvement
-
Status: Closed
-
Major
-
Resolution: Fixed
-
None
-
None
-
None
-
Unknown
Description
This task is to support CRL/OCSP cert extensions in the XKMS TrustedAuthorityValidator, by making sure that revocation is enabled for all cases, and not just if the CertStore has a non-empty set of CRLs.
However, a consequence of this is that revocation is now disabled by default for XKMS, as otherwise a bunch of tests fail.