Issues Resolved in 7.3.0.1

Released 30 October 2019

    New Features

    ECA-8530 - Add CLI support for EST config enhancements

    ECA-8554 - Configdump import of EST Configuration

    ECA-8606 - EJB CLI command for controlling enabled protocols

    Tasks

    ECA-8582 - Resolve circular dependency between Certification Authority and Certificate Profile

    ECA-8583 - Detect early on if export versions are compatible with current software version

    ECA-8602 - Review and update configdump documentation as needed

    ECA-8637 - Security: Upgrade external dependency

    ECA-8650 - Security: Upgrade external dependency

    Improvements

    ECA-8396 - System test for P11NG

    ECA-8572 - Prevent NPE in PeerPublisher if Peer Connector does not exist

    ECA-8574 - Profile edit notification

    ECA-8580 - Option to disable adding of new nodes to GlobalConfiguration

    ECA-8584 - Detect and prompt for all passwords that will be used during import

    ECA-8585 - Add link to Apple CT log list to admin GUI, in addition to Googles

    ECA-8586 - Improve documentation for Managing CAs

    ECA-8589 - CA Life Cycle JSF rendering conditions are wrong

    ECA-8591 - Do not print stack trace in CLI when application server is not running

    ECA-8593 - Add more detailed error message to clientToolBox certreq command when csr can not be read or directory is invalid

    ECA-8600 - Check ConfigDump for unused/unimplemented code

    ECA-8601 - Normalize configdump/src-cli

    ECA-8604 - Refactor ConfigDumpImportItem and BaseCrud

    ECA-8609 - Remove replace option in Configdump

    ECA-8611 - Improve configdump error handling

    ECA-8612 - Auto-resolve configdump references after import

    ECA-8613 - ConfigdumpException should result in rollback

    ECA-8614 - Configdump flag to control non-interactive behavior

    ECA-8626 - Update PMD scan pipeline to use warnings-ng plugin syntax

    ECA-8642 - Improve detection of current software version for Configdump Import

    ECA-8646 - Change session timeouts to 15 minutes for PCI DSS compliance

    Bug Fixes

    ECA-8544 - P11 slot is already used warning displayed incorrectly

    ECA-8553 - Importing CA hierarchies in Configdump not always working

    ECA-8578 - REST API certificate search for active certificates do not include certificates notified about expiration

    ECA-8595 - ant clean does not clean ra-gui or batchenrollment-gui modules

    ECA-8596 - Delta CRL is not generated correctly when a certificate is released from hold

    ECA-8597 - Link to delta CRL in CA web fetches base CRL instead

    ECA-8605 - EJBCA 7.3.0 and ACME with cleartextpassword

    ECA-8617 - Exclude tests for org.cesecore.keys.token.p11ng from non-eidas release

    ECA-8620 - Default OCSP responder always sends "Unknown" for non-existing CA, regardless of settings

    ECA-8623 - Use correct port override in EST alias systemtest

    ECA-8624 - Disabling node tracking prevents local clear cache

    ECA-8625 - p11ng cache not cleared on token reactivation

    ECA-8641 - Improve configdump error message when write access is denied

    ECA-8647 - Fix configdump import of Certificate Policy in Certificate Profile

    ECA-8655 - Ordering of role members varies in Configdump exports

    ECA-8661 - ACME newOrder fails due to lack of access to EEP or other failed assumption

    ECA-8662 - problem importing Scep configuration with configdump

    ECA-8663 - ConfigDump Import: PKCS12 key store mac invalid