ipa-acme-manage *was not* working with my fix to dogtag.py
I followed the indicated steps in https://bugzilla.redhat.com/show_bug.cgi?id=2350322 and everything looks fine now. This fix makes more sense as well.
The steps enable an existing rewrite.config file so that the old endpoints work again, not only "/pki/rest/info" but also "/acme/*"
Thanks!
On Mon, 7 Apr 2025 at 17:06, Rob Crittenden rcritten@redhat.com wrote:
It looks like the root cause of this was discovered in https://bugzilla.redhat.com/show_bug.cgi?id=2350322 . I would recommend following those steps as the changes will survive server package updates.
rob
Vicente Quintans via FreeIPA-users wrote:
Yes... it was my first post and go a little confused creating and
validating account before being able to post.
I simply changed this lines in
/usr/lib/python3.13/site-packages/ipaserver/plugins/dogtag.py
602c602 < url='/ca/rest/account/login', --- > url='/ca/v1/account/login', 618c618 < url='/ca/rest/account/logout', --- > url='/ca/v1/account/logout', 653c653 < resource = '/ca/rest' --- > resource = '/ca/v1' 1071c1071 < path = "/pki/rest/info" --- > path = "/pki/v1/info" 1410c1410 < url = '/ca/rest/certs/search?size=%d' % ( --- > url = '/ca/v1/certs/search?size=%d' % (In regard to the versions I were running, dnf history info show this:
Upgrade freeipa-server-4.12.2-8.fc41.x86_64@updatesUpgraded freeipa-server-4.12.2-4.fc40.x86_64@@SystemUpgrade python3-ipaserver-4.12.2-8.fc41.noarch@updatesUpgraded python3-ipaserver-4.12.2-4.fc40.noarch@@SystemUpgrade dogtag-pki-server-11.6.0-1.fc41.2.noarch@updatesUpgraded dogtag-pki-server-11.5.0-3.fc40.noarch@@SystemVicente Quintáns.