cert: fix wrong assumption of cert-show result type

cert-show returns a base64 encoded certificate yet the assumption here was for a PEM bytes instance. https://pagure.io/freeipa/issue/4985 Reviewed-By: Felipe Volpone <fbarreto@redhat.com>
2025-01-26 16:16:31 -06:00 · 2017-08-28 10:54:11 +02:00 · 2017-08-28 10:54:11 +02:00 · 1b78f79283
commit 1b78f79283
parent e09b6c2602
1 changed files with 2 additions and 2 deletions
--- a/ipaserver/plugins/cert.py
+++ b/ipaserver/plugins/cert.py
@ -1270,8 +1270,8 @@ class cert_revoke(PKQuery, CertMethod, VirtualCommand):
            logger.debug("Not granted by ACI to revoke certificate, "
                         "looking at principal")
            try:
-                cert = x509.load_pem_x509_certificate(
-                    resp['result']['certificate'])
+                cert = x509.load_der_x509_certificate(
+                    base64.b64decode(resp['result']['certificate']))
                if not bind_principal_can_manage_cert(cert):
                    raise acierr
            except errors.NotImplementedError: