Details
-
Type:
extRequest
-
Status: Closed
-
Priority:
Minor
-
Resolution: Done
-
Fix Version/s: Sprint 4.1.2
-
Component/s: FIWARE-TECH-HELP
-
Labels:None
-
HD-Chapter:Security
-
HD-Enabler:AuthZForce
Description
Hi,
While doing the User Registration https://forge.fi-ware.org/plugins/mediawiki/wiki/fiware/index.php/Access_Control_-_Installation_and_Administration_Guide#User_Registration , actually while registering in the User Database, the way to get the subject DN (UUID) is not trivial, so we suggest to add some extra information in order to make it easier.
If helps, we did this:
openssl x509 -in johndoe-taz-client-cert.pem -text | grep CN=
OS: Ubuntu 14.04 Server x64
Regards,
Alberto Martín
_______________________________________________
Fiware-tech-help mailing list
Fiware-tech-help@lists.fi-ware.org
https://lists.fi-ware.org/listinfo/fiware-tech-help
Activity
| Field | Original Value | New Value |
|---|---|---|
| Status | Open [ 1 ] | Answered [ 10104 ] |
| Assignee | Cyril Dangerville [ cyril.dangerville ] |
| Link | This issue is cloned by HELP-637 [ HELP-637 ] |
| Component/s | FIWARE-TECH-HELP [ 10278 ] |
| Reporter | FIWARE-TECH-HELP [ fiware-tech-help ] | FW External User [ fw.external.urser ] |
| Reporter | FW External User [ fw.external.urser ] | Alberto Martín [ alberto.martin ] |
| Workflow | FW eRequest Workflow [ 17426 ] | FW extRequest Workflow-II [ 20385 ] |
| Issue Type | eRequest [ 10101 ] | extRequest [ 10104 ] |
| FI-WARE Environment | FI-LAB [ 10100 ] |
| Resolution | Done [ 10000 ] | |
| Status | Answered [ 10104 ] | Closed [ 6 ] |
| Priority | Major [ 3 ] | Minor [ 4 ] |
| Fix Version/s | Sprint 4.1.2 [ 10738 ] |
| Summary | [Fiware-tech-help] [Chp - Security][Access Control] Registration in the User Database | FIWARE.Request.Lab.Security.AuthorizationPDP.InstallGuideIssueGettingClientDN |
| Summary | FIWARE.Request.Lab.Security.AuthorizationPDP.InstallGuideIssueGettingClientDN | FIWARE.Request.Tech.Security.AuthorizationPDP.InstallGuideIssueGettingClientDN |
| HD-Enabler | AuthZForce [ 10887 ] | |
| HD-Chapter | Security [ 10841 ] |
| Transition | Time In Source Status | Execution Times | Last Executer | Last Execution Date | |||||
|---|---|---|---|---|---|---|---|---|---|
|
15h 33m | 1 | Manuel Escriche | 24/Oct/14 10:27 AM | |||||
|
27d 5h 24m | 1 | Cyril Dangerville | 20/Nov/14 2:52 PM |
Fixed in next release document. The doc will given an example of command to extract the UUID from the certificate subject's common name (CN), like the one suggestion in this issue description. The actual command to get exactly the UUID value will be this one:
$ openssl x509 -in johndoe-taz-client-cert.pem -subject -noout | grep -oP "(?<=/CN=)[^/]+(?=/?)"