Previously it was created after it was actually needed.
We also fixed us not being able to use SSL by specifying that our self signed certs were coming from a sslCA "" The cause of the CRL not working was the lack of "CRL Sign" under "X509v3 Key Usage". Example: X509v3 Key Usage: Digital Signature, Key Encipherment, Certificate Sign, CRL Sign Additionally, Bryan saw a problem with SSL communication not working, I added "sslCA" to the 'nsCertType', I think this may fix that separate issue. Previously the cert only supported "SSL Server", not "SSL CA". Example: Netscape Cert Type: SSL Server, SSL CA ""
… edit permission
…ete repo promotions
This commit is to address the issue raised by the above bugs with respect to inability to search for repo and package names that contain a -. That said, this commit is a broader fix to handle searching any content that contains a -. The search query syntax used by Katello is based on Lucene query syntax. (e.g. http://lucene.apache.org/core/old_versioned_docs/versions/3_5_0/queryparsersyntax.html). In that syntax, the - is a predefined operator. In order to not have that behavior applied, the user must escape the operator (e.g. /-). Unfortunately, that is a hassle for Katello users since - is commonly used as a seperator in things like package and repo names. As a result, we have chosen to disable the - operator in queries from Katello. This means that any - entered will be automatically escaped. As an alternative, we could have chosen not to use Lucene syntax at all; however, Lucene does provide several of the capabilities that are useful to uses (e.g. such as support for AND, OR...etc).
…e last in a promotion path enforcing at the model level as well
…erts - don't copy whole dirs from etc as they may contain config file backups with passwords - remove passwords and secrts from default files - added warning that the archive can contain scurity sensitive data
…tion will retry status checking 10 times, if all 10 times timeout, promotion will still fail