Skip to content

Differences in cli <-> ca versions can lead to removing attributes on CA config overwrite #144

New issue
New issue
Open
Open
Differences in cli <-> ca versions can lead to removing attributes on CA config overwrite#144
Labels
area/cert-management
@dopey

Description

@dopey
dopey
opened on Sep 10, 2019

Differences in cli <-> ca versions can lead to removing attributes on CA config overwrite

Suppose certificates has a higher version than cli and thereby has attributes in the config that are not yet available to the cli. If you run a command that overwrites the CA config (e.g. step ca provisioner add|remove), the newer attributes will be removed because they won't be recognized by the cli.

Expected behaviour

One option would be to warn if there are unrecognized attributes in the config (or if the versions of ca and cli are different). Only proceed if a --force flag (or some such thing) is used.

Metadata

Metadata

Assignees

No one assigned

    Labels

    area/cert-management

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions