-
Type:
Improvement
-
Status: Resolved
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: None
-
Fix Version/s: 3.4.0
-
Component/s: None
-
Labels:None
-
Estimated Complexity:Unknown
This task is to support CRL/OCSP cert extensions in the XKMS TrustedAuthorityValidator, by making sure that revocation is enabled for all cases, and not just if the CertStore has a non-empty set of CRLs.
However, a consequence of this is that revocation is now disabled by default for XKMS, as otherwise a bunch of tests fail.