Skip to content

feat(ngts): add Cloud/NGTS certificate revocation via GraphQL#207

Open
TomaszSwierszczCA wants to merge 1 commit into
Venafi:masterfrom
TomaszSwierszczCA:add-revocation-ngts
Open

feat(ngts): add Cloud/NGTS certificate revocation via GraphQL#207
TomaszSwierszczCA wants to merge 1 commit into
Venafi:masterfrom
TomaszSwierszczCA:add-revocation-ngts

Conversation

@TomaszSwierszczCA

Copy link
Copy Markdown
Contributor

Implement revoke_cert on CloudConnection using a new _graphql helper that POSTs the GraphQL revokeCertificate mutation; NGTSConnection inherits it unchanged (Bearer auth + .../ngts/graphql via its _post override). Thumbprint-keyed (Go parity): thumbprint required and uppercased, disable ignored, ca_compromise rejected. Add CertificateRevokeError and an optional RevocationRequest.ca_account_name (resolved to a CA-account id via ListCAAccounts). Add offline unit tests plus live NGTS/VaaS revoke tests (skip when the zone CA cannot revoke). Document revoke in README-NGTS.md and bump version to 0.21.0.

@stkomitov stkomitov requested a review from simeoncybr July 2, 2026 12:33
Implement revoke_cert on CloudConnection using a new _graphql helper that POSTs the
GraphQL revokeCertificate mutation; NGTSConnection inherits it unchanged (Bearer auth +
.../ngts/graphql via its _post override). Thumbprint-keyed (Go parity): thumbprint required
and uppercased, disable ignored, ca_compromise rejected. Add CertificateRevokeError and an
optional RevocationRequest.ca_account_name (resolved to a CA-account id via ListCAAccounts).
Add offline unit tests plus live NGTS/VaaS revoke tests (skip when the zone CA cannot revoke).
Document revoke in README-NGTS.md and bump version to 0.21.0.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants