0008293: Method Privileges are too tight

ID	Project	Category	View Status	Date Submitted	Last Update

0008293	10000-012: Discovery	Spec	public	2022-09-06 13:18	2022-09-20 19:06

Reporter	Jijun Ma	Assigned To	Randy Armstrong
Priority	normal	Severity	minor	Reproducibility	have not tried
Status	closed	Resolution	fixed
Product Version	1.05.02 RC1
Fixed in Version	1.05.02

Summary	0008293: Method Privileges are too tight
Description	For 7.9.11 CheckRevocationStatus, 7.9.10 GetCertificateStatus, 7.9.9 GetTrustList, 7.9.8 GetCertificates, 7.9.7 GetCertificateGroups, below sentences are added to their descriptions: "This Method shall be called from an authenticated SecureChannel and from a Client that has access to the CertificateAuthorityAdmin Role, the ApplicationAdmin Privilege, or the ApplicationSelfAdmin Privilege (see 7.2)." Why read-only methods need some Admin Privileges? For example, why normal privilege cannot CheckRevocationStatus?
Tags	No tags attached.

Commit Version
Fix Due Date

Date Modified	Username	Field	Change
2022-09-06 13:18	Jijun Ma	New Issue
2022-09-06 18:58	Jim Luth	Status	new => assigned
2022-09-06 18:58	Jim Luth	Assigned To	=> Randy Armstrong
2022-09-09 16:42	Randy Armstrong	Status	assigned => resolved
2022-09-09 16:42	Randy Armstrong	Resolution	open => fixed
2022-09-09 16:42	Randy Armstrong	Fixed in Version	=> 1.05.02
2022-09-09 16:42	Randy Armstrong	Note Added: 0017607
2022-09-20 19:06	Jim Luth	Status	resolved => closed
2022-09-20 19:06	Jim Luth	Note Added: 0017734

Randy Armstrong 2022-09-09 16:42 administrator ~0017607	Remove restrictions on CheckRevocationStatus.

Jim Luth 2022-09-20 19:06 administrator ~0017734	Agreed to changes edited in F2F meeting.