pki client cert request should prompt for password when password is not provided #5231
Description
Summary:
pki client cert request should prompt for password when password is not provided
Description:
pki client cert request should prompt for password when password is not provided
Environment:
Fedora release 43 (Forty Three)
rpm -qa | grep pki
python3-dogtag-pki-11.9.0alpha1^20251122050601.d39d576c-1.fc43.noarchalpha1^20251122050601.d39d576c-1.fc43.noarch
dogtag-pki-base-11.9.0
dogtag-pki-java-11.9.0alpha1^20251122050601.d39d576c-1.fc43.noarchalpha1^20251122050601.d39d576c-1.fc43.x86_64
dogtag-pki-tools-11.9.0
dogtag-pki-server-11.9.0alpha1^20251122050601.d39d576c-1.fc43.noarchalpha1^20251122050601.d39d576c-1.fc43.noarch
dogtag-pki-acme-11.9.0
dogtag-pki-ca-11.9.0alpha1^20251122050601.d39d576c-1.fc43.noarchalpha1^20251122050601.d39d576c-1.fc43.noarch
dogtag-pki-est-11.9.0
dogtag-pki-kra-11.9.0alpha1^20251122050601.d39d576c-1.fc43.noarchalpha1^20251122050601.d39d576c-1.fc43.noarch
dogtag-pki-ocsp-11.9.0
dogtag-pki-tks-11.9.0alpha1^20251122050601.d39d576c-1.fc43.noarchalpha1^20251122050601.d39d576c-1.fc43.noarch
dogtag-pki-tps-11.9.0
dogtag-pki-theme-11.9.0alpha1^20251122050601.d39d576c-1.fc43.noarchalpha1^20251122050601.d39d576c-1.fc43.noarch
dogtag-pki-tests-11.9.0
dogtag-pki-javadoc-11.9.0alpha1^20251122050601.d39d576c-1.fc43.noarchalpha1^20251122050601.d39d576c-1.fc43.x86_64
dogtag-pki-11.9.0
teps to Reproduce:
Install CA and KRA subsystems
Execute without -c password :
pki -d /tmp/nssdb -P http -p 20080 client-cert-request "uid=testcert"
**If this succeeds change the password and try again to replicate failure
Use command ; certutil -d /tmp/nssdb -W to change password.
Expected Result:
If no password is provided then prompt the user for a password as in layered product
Actual:
pki -d /tmp/nssdb -P http -p 20080 client-cert-request "uid=testcert"
WARNING: This command is deprecated. Please move to the command 'pki nss-cert-request'
ERROR: Unable to create RSA key pair: unable to login to token