CertDB: remove unused method issue_signing_cert

The CertDB.issue_signing_cert method was used to issue the object signing cert for signing the Firefox auto-configuration extension (XPI). We removed the extension and certificate some time ago, and the method is now unused so remove it. Part of: https://pagure.io/freeipa/issue/7226 Reviewed-By: Rob Crittenden <rcritten@redhat.com>
freeipa · Nov 1, 2017 · 1ebd819 · 1ebd819
1 parent 260db9d
commit 1ebd819
Showing 1 changed file with 0 additions and 45 deletions.
diff --git a/ipaserver/install/certs.py b/ipaserver/install/certs.py
@@ -456,51 +456,6 @@ def issue_server_cert(self, certreq_fname, cert_fname):
         with open(cert_fname, "wb") as f:
             f.write(cert)
 
-    def issue_signing_cert(self, certreq_fname, cert_fname):
-        self.setup_cert_request()
-
-        if self.host_name is None:
-            raise RuntimeError("CA Host is not set.")
-
-        with open(certreq_fname, "rb") as f:
-            csr = f.read()
-
-        # We just want the CSR bits, make sure there is no thing else
-        csr = strip_csr_header(csr).decode('utf8')
-
-
-        params = {'profileId': 'caJarSigningCert',
-                'cert_request_type': 'pkcs10',
-                'requestor_name': 'IPA Installer',
-                'cert_request': csr,
-                'xmlOutput': 'true'}
-
-        # Send the request to the CA
-        result = dogtag.https_request(
-            self.host_name, 8443,
-            url="/ca/ee/ca/profileSubmitSSLClient",
-            cafile=api.env.tls_ca_cert,
-            client_certfile=paths.RA_AGENT_PEM,
-            client_keyfile=paths.RA_AGENT_KEY,
-            **params)
-        http_status, _http_headers, http_body = result
-        if http_status != 200:
-            raise RuntimeError("Unable to submit cert request")
-
-        # The result is an XML blob. Pull the certificate out of that
-        doc = xml.dom.minidom.parseString(http_body)
-        item_node = doc.getElementsByTagName("b64")
-        cert = item_node[0].childNodes[0].data
-        doc.unlink()
-
-        # base64-decode the cert for uniformity
-        cert = base64.b64decode(cert)
-
-        # Write the certificate to a file. It will be imported in a later
-        # step. This file will be read later to be imported.
-        with open(cert_fname, "wb") as f:
-            f.write(cert)
-
     def add_cert(self, cert, nick, flags):
         self.nssdb.add_cert(cert, nick, flags)