Installation Parameter Deprecation - dogtagpki/pki GitHub Wiki
Installation parameter deprecation is defined in pkiparser.py
Deprecated param can be defined with the following tuple:
(sections, param, new_section, new_param)
The sections is a list of sections to check for the deprecated param. None
means the following sections will be checked: DEFAULT, Tomcat, and <subsystem>. See default.cfg.
The param is the deprecated param name.
The new_section is the proper section of the new param. None means unchanged.
The new_param is the new param name.
DEPRECATED_DEFAULT_PARAMS = [
(None, 'pki_admin_keysize',
None, 'pki_admin_key_size'),
(None, 'pki_external_ca_cert_path',
None, 'pki_ca_signing_cert_path'),
(None, 'pki_external_ca_cert_chain_path',
None, 'pki_cert_chain_path'),
(None, 'pki_external_ca_cert_chain_nickname',
None, 'pki_cert_chain_nickname'),
(None, 'pki_ssl_server_key_algorithm',
None, 'pki_sslserver_key_algorithm'),
(None, 'pki_ssl_server_key_size',
None, 'pki_sslserver_key_size'),
(None, 'pki_ssl_server_key_type',
None, 'pki_sslserver_key_type'),
(None, 'pki_ssl_server_nickname',
None, 'pki_sslserver_nickname'),
(None, 'pki_ssl_server_subject_dn',
None, 'pki_sslserver_subject_dn'),
(None, 'pki_ssl_server_token',
None, 'pki_sslserver_token')
]
DEPRECATED_CA_PARAMS = [
(['CA'], 'pki_external_csr_path',
None, 'pki_ca_signing_csr_path')
]
DEPRECATED_KRA_PARAMS = [
(['KRA'], 'pki_external_admin_csr_path',
None, 'pki_admin_csr_path'),
(['KRA'], 'pki_external_audit_signing_csr_path',
None, 'pki_audit_signing_csr_path'),
(['KRA'], 'pki_external_sslserver_csr_path',
None, 'pki_sslserver_csr_path'),
(['KRA'], 'pki_external_storage_csr_path',
None, 'pki_storage_csr_path'),
(['KRA'], 'pki_external_subsystem_csr_path',
None, 'pki_subsystem_csr_path'),
(['KRA'], 'pki_external_transport_csr_path',
None, 'pki_transport_csr_path'),
(['KRA'], 'pki_external_admin_cert_path',
None, 'pki_admin_cert_path'),
(['KRA'], 'pki_external_audit_signing_cert_path',
None, 'pki_audit_signing_cert_path'),
(['KRA'], 'pki_external_sslserver_cert_path',
None, 'pki_sslserver_cert_path'),
(['KRA'], 'pki_external_storage_cert_path',
None, 'pki_storage_cert_path'),
(['KRA'], 'pki_external_subsystem_cert_path',
None, 'pki_subsystem_cert_path'),
(['KRA'], 'pki_external_transport_cert_path',
None, 'pki_transport_cert_path'),
]
DEPRECATED_OCSP_PARAMS = [
(['OCSP'], 'pki_external_admin_csr_path',
None, 'pki_admin_csr_path'),
(['OCSP'], 'pki_external_audit_signing_csr_path',
None, 'pki_audit_signing_csr_path'),
(['OCSP'], 'pki_external_signing_csr_path',
None, 'pki_ocsp_signing_csr_path'),
(['OCSP'], 'pki_external_sslserver_csr_path',
None, 'pki_sslserver_csr_path'),
(['OCSP'], 'pki_external_subsystem_csr_path',
None, 'pki_subsystem_csr_path'),
(['OCSP'], 'pki_external_admin_cert_path',
None, 'pki_admin_cert_path'),
(['OCSP'], 'pki_external_audit_signing_cert_path',
None, 'pki_audit_signing_cert_path'),
(['OCSP'], 'pki_external_signing_cert_path',
None, 'pki_ocsp_signing_cert_path'),
(['OCSP'], 'pki_external_sslserver_cert_path',
None, 'pki_sslserver_cert_path'),
(['OCSP'], 'pki_external_subsystem_cert_path',
None, 'pki_subsystem_cert_path')
]
DEPRECATED_PARAMS = DEPRECATED_DEFAULT_PARAMS + \
DEPRECATED_CA_PARAMS + \
DEPRECATED_KRA_PARAMS + \
DEPRECATED_OCSP_PARAMS