|
|
|
@ -286,8 +286,9 @@ func (a *Authority) authorizeRenew(cert *x509.Certificate) error {
|
|
|
|
|
if err != nil {
|
|
|
|
|
var ok bool
|
|
|
|
|
// For backward compatibility this method will also succeed if the
|
|
|
|
|
// provisioner does not have an extension. LoadByCertificate returns the
|
|
|
|
|
// noop provisioner if this happens, and it allows certificate renewals.
|
|
|
|
|
// certificate does not have a provisioner extension. LoadByCertificate
|
|
|
|
|
// returns the noop provisioner if this happens, and it allows
|
|
|
|
|
// certificate renewals.
|
|
|
|
|
if p, ok = a.provisioners.LoadByCertificate(cert); !ok {
|
|
|
|
|
return errs.Unauthorized("authority.authorizeRenew: provisioner not found", opts...)
|
|
|
|
|
}
|
|
|
|
|