Add support to order new and modify existing SSL certs.

Registered by Chad Lung on 2014-02-18

This blueprint addresses support of ordering (new) and modification (existing) of SSL certificates from both globally rooted and internal certificate authorities through Barbican.

This blueprint would address changes needed to the Barbican orders resource as well as any other new resources that might be required. In addition, a schema would need to be created to track the SSL Certificate data and state as it progresses through the certificate authority's workflow.

Barbican would also require the ability to raise notifications/events to plugins that would handle the interaction between the CA and any other concerned endpoint (ie: a ticketing system). Initial information exists on the Barbican wiki for an eventing system: https://github.com/cloudkeep/barbican/wiki/Blueprint:-Events

(March 31, 2014) Additional details can be found on the wiki page:
https://wiki.openstack.org/wiki/Barbican/Blueprints/ssl-certificates

Blueprint information

Status:
Started
Approver:
Douglas Mendizábal
Priority:
Essential
Drafter:
Chad Lung
Direction:
Approved
Assignee:
John Wood
Definition:
Approved
Series goal:
Accepted for future
Implementation:
Good progress
Milestone target:
None
Started by
Douglas Mendizábal on 2014-07-17

Related branches

Sprints

Whiteboard

Gerrit topic: https://review.openstack.org/#q,topic:bp/add-ssl-ca-support,n,z

Addressed by: https://review.openstack.org/95023
    Initial files for SSL Certificate processing

Addressed by: https://review.openstack.org/107190
    Add Certificate Interface & Symantec Plugin

Addressed by: https://review.openstack.org/115301
    Add initial files for certificate event handling

Addressed by: https://review.openstack.org/115715
    Initial connect orders resource to certificate processing

Addressed by: https://review.openstack.org/116078
    Add order plugin metadata entity and logic

Addressed by: https://review.openstack.org/116956
    Additional work on certificate processing

Addressed by: https://review.openstack.org/117386
    Adding initial update logic for orders

Addressed by: https://review.openstack.org/122498
    Adding sub-status and message to orders

(?)

Work Items

Dependency tree

* Blueprints in grey have been implemented.

This blueprint contains Public information 
Everyone can see this information.