Project

General

Profile

Bug #32364

Fix for WebDAV SSL choices

Added by brian saia about 1 year ago. Updated about 1 year ago.

Status:
Done
Priority:
No priority
Assignee:
Waqar Ahmed
Category:
Middleware
Target version:
Seen in:
Severity:
Medium
Reason for Closing:
Reason for Blocked:
Waiting for feedback
Needs QA:
No
Needs Doc:
No
Needs Merging:
No
Needs Automation:
No
Support Suite Ticket:
n/a
Hardware Configuration:
ChangeLog Required:
No
Tags:

Description

It appears that only certificates that have been generated in the FreeNAS GUI (signed by a CA created with the FreeNAS GUI) are available to the WEBDAV service when using HTTPS.

Screenshot from 2018-04-17 20-31-29.png (13.5 KB) Screenshot from 2018-04-17 20-31-29.png two certificates created differently brian saia, 04/17/2018 08:45 PM
Screenshot from 2018-04-17 20-34-17.png (189 KB) Screenshot from 2018-04-17 20-34-17.png WEBDAV service only showing one certificate brian saia, 04/17/2018 08:46 PM
list_of_cas.png (162 KB) list_of_cas.png List of CA's Waqar Ahmed, 04/23/2018 03:00 PM
list_of_certs.png (168 KB) list_of_certs.png List of Certificates Waqar Ahmed, 04/23/2018 03:00 PM
webdav_cert_options.png (182 KB) webdav_cert_options.png WebDav Options Waqar Ahmed, 04/23/2018 03:00 PM
Screenshot from 2018-04-24 16-53-19.png (268 KB) Screenshot from 2018-04-24 16-53-19.png Please have a look at the pop up I have open, Is that where you placed the certificate's contents ? Waqar Ahmed, 04/24/2018 09:18 AM
16746
16749
16953
16956
16959
16977

Related issues

Has duplicate FreeNAS - Bug #61839: Bug Fix for WebDAV SSL choicesClosed

Associated revisions

Revision 69de807c (diff)
Added by Waqar Ahmed about 1 year ago

Bug Fix for WebDAV SSL choices
Ticket: #32364

Revision 2aa91648 (diff)
Added by Waqar Ahmed about 1 year ago

Bug Fix for WebDAV SSL choices
Ticket: #32364

Revision d0082ab5 (diff)
Added by Waqar Ahmed 7 months ago

Bug Fix for WebDAV SSL choices
Ticket: #32364

(cherry picked from commit 69de807ce826d4bc034ccb6363a92f7f6d3d2521)

History

#1 Updated by Dru Lavigne about 1 year ago

  • Category changed from GUI (new) to Middleware
  • Assignee changed from Release Council to William Grzybowski
  • Target version set to 11.2-RC2

William: can someone on your team check to see if the middleware is doing the right thing here?

#2 Updated by William Grzybowski about 1 year ago

  • Assignee changed from William Grzybowski to Waqar Ahmed

Waqar, can you look whenever time permits, please?

#3 Updated by Waqar Ahmed about 1 year ago

  • Status changed from Unscreened to In Progress

#4 Updated by Waqar Ahmed about 1 year ago

16953
16956
16959

Hi Brian! I went through the description and the screenshots you shared. Interestingly I wasn't able to reproduce the issue. So what I did was, I created 3 CA's. One using import CA, one using internal CA button and the last one using intermediate_CA's button. After that, I went to certificates and created 3 certificates. First one was creating using import Certificate Button, second was created using create internal button with the CA being selected as internal_ca ( This CA was created internally ), and the last certificate created used the CA "import_ca" ( this is the CA which was imported ). Now in webDAV options, I see all the certificates. I have attached relevant screenshots. Please let me know if I missed something and we can continue from there and have this resolved. Thank you

#5 Updated by Waqar Ahmed about 1 year ago

  • Status changed from In Progress to Blocked
  • Reason for Blocked set to Waiting for feedback

#6 Updated by brian saia about 1 year ago

What I did was create a Certificate Signing Request under System > Certificates, then I had a CA sign it and then imported the Generated certificate. It might have something to do with the fact the way I did it was the only way to have a certificate without a CA's private key residing on FreeNAS.

#7 Updated by Waqar Ahmed about 1 year ago

16977

Hi Brian, please confirm if that's how it went. So what you did was, after the CA ( this CA does not exist on the freenas system I presume ? ) had signed the CSR, you did not use import button to import the newly generated certificate but rather you placed the certificate ( public key ) in the csr row in certificates. I have attached a screenshot for an example as to where you placed the certificate. Kindly let me know if that's where you did it. Cheers

#8 Updated by brian saia about 1 year ago

Yes this is how I created the certificate. After filling in the Certificate information the UI allowed me to edit the certificate with the 'edit' button I copied the Certificate Signing Request, had it signed by a CA and then copied the generated certificate into the empty section labeled 'certificate'

#9 Updated by Waqar Ahmed about 1 year ago

  • Status changed from Blocked to In Progress

#10 Updated by Waqar Ahmed about 1 year ago

  • % Done changed from 0 to 90

#11 Updated by Waqar Ahmed about 1 year ago

  • Status changed from In Progress to Ready for Testing
  • % Done changed from 90 to 100

#12 Updated by Dru Lavigne about 1 year ago

  • Subject changed from Certificates generated outside of FreeNAS are not available to the WEBDAV service when using HTTPS to Fix for WebDAV SSL choices
  • Target version changed from 11.2-RC2 to 11.2-BETA1
  • Needs Doc changed from Yes to No
  • Needs Merging changed from Yes to No

#13 Updated by Rishabh Chauhan about 1 year ago

I was able to create Ca, certi and it was visible with https WebDAV. After consulting Waqar. this is a test pass

#14 Updated by Rishabh Chauhan about 1 year ago

  • Status changed from Ready for Testing to Passed Testing
  • Needs QA changed from Yes to No

I was able to create Ca, certi and it was visible with https WebDAV. After consulting Waqar. this is a test pass

#15 Updated by Dru Lavigne about 1 year ago

  • Status changed from Passed Testing to Done

#16 Updated by Waqar Ahmed 7 months ago

  • Has duplicate Bug #61839: Bug Fix for WebDAV SSL choices added

Also available in: Atom PDF