https://redmine.named-data.net/https://redmine.named-data.net/favicon.ico?14759811232019-08-08T13:05:04ZNDN project issue tracking systemndncert - Feature #4977: ndncert-client: non-interactive modehttps://redmine.named-data.net/issues/4977?journal_id=256712019-08-08T13:05:04ZZhiyi Zhangzhangzhiyi1919@gmail.com
<ul></ul><p>One question is how to let the user type in PIN code after it runs the command-line tool?<br>
I assume it still needs some interaction?</p>
ndncert - Feature #4977: ndncert-client: non-interactive modehttps://redmine.named-data.net/issues/4977?journal_id=256722019-08-08T15:43:24ZDavide Pesavento
<ul></ul><p>The issue description clearly says "configuration choices and certificate parameters", it says nothing about PIN entry or any other challenge. Moreover, you cannot have a general rule for challenges, since their interaction requirements are highly dependent on the specific challenge type. Some (but not all) challenges are inherently interactive. In any case, that's outside the scope of this issue.</p>
ndncert - Feature #4977: ndncert-client: non-interactive modehttps://redmine.named-data.net/issues/4977?journal_id=257902019-09-10T11:28:57ZZhiyi Zhangzhangzhiyi1919@gmail.com
<ul></ul><p>Here is a design: </p>
<p>The user will be asked to </p>
<ol>
<li>read the client config, figuring out the ca-name he wants and required probe-info</li>
<li>run the ndncert-client with parameters (i)ca-name, (ii)probe-info, (iii)expected validity (has default value) period time</li>
<li>run another command-line tool ndncert-client-challenge when the PIN code or whatever things are obtained and fetch the certificate back.</li>
</ol>
<p>A database/file directory will be used to keep the state of ongoing applications.</p>