RFE: fine grained authz per application

[pki-bot]

This issue was migrated from Pagure Issue #2041. Originally filed by vakwetu (@vakwetu) on 2016-02-19 00:33:10:

• Closed as Fixed
• Assigned to vakwetu (@vakwetu)

---

Barbican users should be able to access Barbican secrets only. IPA users should be able to
access IPA secrets only. etc..

Design page: https://pagure.io/test_dogtag_designs/pull-request/5

[pki-bot]

Comment from vakwetu (@vakwetu) at 2016-04-20 23:34:04

Initial set of patches merged.

Total 304 (delta 178), reused 0 (delta 0)
To ssh://vakwetu@git.fedorahosted.org/git/pki.git
b24ea9e..9dc5a78 master -> master

See wiki for details on how to use:
http://pki.fedoraproject.org/wiki/Kra_authz_realm

[pki-bot]

Comment from vakwetu (@vakwetu) at 2016-04-20 23:35:03

Whats left:

1. mechanism to specify realm when archiving through the CA Connector
2. VLV fixes

[pki-bot]

Comment from vakwetu (@vakwetu) at 2016-05-10 03:57:38

The CA-KRA connector bits have been checked in:

[alee@aleeredhat pki]$ git push origin master
Counting objects: 111, done.
Delta compression using up to 8 threads.
Compressing objects: 100% (82/82), done.
Writing objects: 100% (111/111), 18.35 KiB | 0 bytes/s, done.
Total 111 (delta 64), reused 41 (delta 9)
To ssh://vakwetu@git.fedorahosted.org/git/pki.git
fe1f36d..4f7b36b master -> master

The VLV piece has been spawned off into another ticket.

[pki-bot]

Comment from vakwetu (@vakwetu) at 2017-02-27 14:03:43

Metadata Update from @vakwetu:

• Issue assigned to vakwetu
• Issue set to the milestone: 10.3.1