upgrade: fix spurious certmonger re-tracking

The search for the HTTP Certmonger tracking request uses an
incorrect parameter ('key-storage'), triggering removal and
recreation of tracking requests on every upgrade.  Replace
'key-storage' with the correct parameter, 'key-file'.

Part of: https://pagure.io/freeipa/issue/7991

Reviewed-By: Rob Crittenden <rcritten@redhat.com>
This commit is contained in:
Fraser Tweedale 2019-06-27 11:08:58 +10:00
parent 2d22f568a1
commit fa5675582c

View File

@ -1012,7 +1012,7 @@ def certificate_renewal_update(ca, kra, ds, http):
requests.append(
{
'cert-file': paths.HTTPD_CERT_FILE,
'key-storage': paths.HTTPD_KEY_FILE,
'key-file': paths.HTTPD_KEY_FILE,
'ca-name': 'IPA',
'cert-postsave-command': template % 'restart_httpd',
}