Use tidy_revoked_certs instead of tidy_revocation_list (#5608)
This commit is contained in:
parent
fca7cb3794
commit
ca5c60642e
|
@ -507,9 +507,9 @@ func runSteps(t *testing.T, rootB, intB *backend, client *api.Client, rootName,
|
|||
// Run with a high safety buffer, nothing should happen
|
||||
{
|
||||
resp, err := client.Logical().Write(rootName+"tidy", map[string]interface{}{
|
||||
"safety_buffer": "3h",
|
||||
"tidy_cert_store": true,
|
||||
"tidy_revocation_list": true,
|
||||
"safety_buffer": "3h",
|
||||
"tidy_cert_store": true,
|
||||
"tidy_revoked_certs": true,
|
||||
})
|
||||
if err != nil {
|
||||
t.Fatal(err)
|
||||
|
@ -528,9 +528,9 @@ func runSteps(t *testing.T, rootB, intB *backend, client *api.Client, rootName,
|
|||
// Run with both values set false, nothing should happen
|
||||
{
|
||||
resp, err := client.Logical().Write(rootName+"tidy", map[string]interface{}{
|
||||
"safety_buffer": "1s",
|
||||
"tidy_cert_store": false,
|
||||
"tidy_revocation_list": false,
|
||||
"safety_buffer": "1s",
|
||||
"tidy_cert_store": false,
|
||||
"tidy_revoked_certs": false,
|
||||
})
|
||||
if err != nil {
|
||||
t.Fatal(err)
|
||||
|
@ -549,9 +549,9 @@ func runSteps(t *testing.T, rootB, intB *backend, client *api.Client, rootName,
|
|||
// Run with a short safety buffer and both set to true, both should be cleared
|
||||
{
|
||||
resp, err := client.Logical().Write(rootName+"tidy", map[string]interface{}{
|
||||
"safety_buffer": "1s",
|
||||
"tidy_cert_store": true,
|
||||
"tidy_revocation_list": true,
|
||||
"safety_buffer": "1s",
|
||||
"tidy_cert_store": true,
|
||||
"tidy_revoked_certs": true,
|
||||
})
|
||||
if err != nil {
|
||||
t.Fatal(err)
|
||||
|
|
|
@ -673,7 +673,7 @@ expired and are past a certain buffer period beyond their expiration time.
|
|||
To remove revoked certificate and clean the CRL.
|
||||
|
||||
```plaintext
|
||||
$ vault write pki_int/tidy tidy_cert_store=true tidy_revocation_list=true
|
||||
$ vault write pki_int/tidy tidy_cert_store=true tidy_revoked_certs=true
|
||||
```
|
||||
|
||||
#### API call using cURL
|
||||
|
@ -686,7 +686,7 @@ the CRL.
|
|||
```plaintext
|
||||
$ curl --header "X-Vault-Token: ..." \
|
||||
--request POST \
|
||||
--data '{"tidy_cert_store": true, "tidy_revocation_list": true}' \
|
||||
--data '{"tidy_cert_store": true, "tidy_revoked_certs": true}' \
|
||||
https://127.0.0.1:8200/v1/pki_int/tidy
|
||||
```
|
||||
|
||||
|
|
Loading…
Reference in a new issue