[x509] Fix certificates without organization assigned #34 #61
Conversation
shashwat1002
force-pushed
the
issue#34_autgen_cert
branch
from
c812d02
to
64c69cf
Compare
There was a problem hiding this comment.
Test is missing.
This is not the right place where to put this code, you can delete it entirely.
Write a test failing first that replicates the issue I described in #34.
You have to dig deeper and find where the auto-cert feature is written in django-netjsonconfig, override that method here and solve the issue.
Keep in mind the commit message must explicitly say Closes #34 at the end of the commit message to use the auto-close feature of github, so please adhere strictly to our commit guidelines.
shashwat1002
force-pushed
the
issue#34_autgen_cert
branch
4 times, most recently
from
0a10d7c
to
67c39d9
Compare
shashwat1002
force-pushed
the
issue#34_autgen_cert
branch
2 times, most recently
from
8116b4f
to
18e7250
Compare
nemesifier
changed the title
There was a problem hiding this comment.
@shashwat1002 great progress! 👍
I tested to ensure the test fails without your fix and it does, so that's good!
I need to ask you some final adjustments before I'm able to merge:
- the commit message is too complicated and long, please change it to the following:
[vpn-client] Fixed auto-certificates without organization #34
This bug happened only with shared VPNs and shared VPN-client templates.
Fixes #34
- see my other inline comment below
| from ..models import Ca, Cert | ||
|
|
||
|
|
||
| class TestModels(TestCase, TestPkiMixin, TestOrganizationMixin): | ||
| class TestModels(TestCase, TestVpnX509Mixin, TestOrganizationMixin, CreateConfigTemplateMixin): |
There was a problem hiding this comment.
you need to learn the concept of modules and how they interact otherwise you will never understand openwisp.
The PKI app of openwisp-controller (which handles certification authorities and certificates) is not aware of the internal logic of the Config app (which handles device configurations), so adding this test in the PKI app is a violation of this concept.
I think the best place to put this test is here: https://github.com/openwisp/openwisp-controller/blob/master/openwisp_controller/config/tests/test_template.py
(the Config app instead is aware of the PKI app because it needs it as a dependency so that's fine)
shashwat1002
force-pushed
the
issue#34_autgen_cert
branch
11 times, most recently
from
36b4107
to
77c99df
Compare
This bug happened only with shared VPNs and shared VPN-client templates. Fixes openwisp#34
shashwat1002
force-pushed
the
issue#34_autgen_cert
branch
from
77c99df
to
9ac2ea2
Compare
| @@ -39,7 +39,7 @@ install: | |||
| - pipenv install $DJANGO | |||
| # fix issues with travis | |||
| - pipenv install --skip-lock "attrs>=17.4.0" | |||
| - pipenv install --skip-lock "six>=1.11.0" | |||
| - pipenv install --skip-lock "six" | |||
There was a problem hiding this comment.
Is travis failing with "six>=1.11.0" ?
There was a problem hiding this comment.
could be, these kind of builds are weird sometimes, I'll accept it
|
@nemesisdesign, @atb00ker thanks! |
This code effectively, overrides the save() function of Cert to check for a corresponding device every time a Certificate is created and then checks for the organization of that device and updates the cert object accordingly and saves it.