URL:
https://github.com/freeipa/freeipa/pull/5756
Author: rcritten
Title: #5756: Only attempt to upgrade ACME configuration files if deployed
Action: opened
PR body:
"""
This can happen on upgrades from older deployments that lack
an ACME installation and don't meet the minimum requirements
to deploy one automatically.
Also don't consider missing ACME schema a total failure, just
log and skip it.
https://pagure.io/freeipa/issue/8832
Signed-off-by: Rob Crittenden <rcritten(a)redhat.com>
TESTING: Testing is difficult because on upgrade IPA will deploy ACME if it isn't
already configured. One way to avoid this is to twiddle with /usr/share/pki/VERSION and
set the value < 10.10.0.
If ACME is already deployed you can remove it with:
# pki-server acme-undeploy
# rm -rf /etc/pki/pki-tomcat/acme
"""
To pull the PR as Git branch:
git remote add ghfreeipa
https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/5756/head:pr5756
git checkout pr5756