* getcert: add-scep-ca: fix help for --ca-cert and --ra-cert
* Don't restrict tokens to CKM_RSA_X_509
* Updated translations from Weblate
- Update to 0.79.18
* Rename DBus service and conf files to match canonical name
* Add missing .TP tags in getcert-resubmit man page
* migrated to SPDX license
* Include owner and perms in getcert list output
* Don't require an NSS database in cm_certread_n_parse
* Add new certs to internal token, try harder to remove on renewal
- Update to 0.79.17
* Respect LDFLAGS settings defined by user
* Switch to CA user when saving NSS certificates
* Translated using Weblate (German)
* Translated using Weblate (Georgian)
- Update to 0.79.16
* Add a PEM validity checker and validate SCEP CA files
* Fix implicit declaration of function ‘PEM_read_bio_X509’
* Don't include "NEW" in certificate signing requests
* Verify that the AES-128 is used for encrypting the local CA
* Replace DER-encoded test file with a base64-encoded one
* Correct a bad date in the spec changelog
* Switch to https URLs for Sources, etc.
* Remove dependency on SHA-1
* tests: Test that the CA constraint DER encoding is correct
* Disable DSA in the RPM spec
* Manually build the srpm for the copr CI
* Require jansson >= 2.12
* Mark the current directory as a safe git directory
* Fix usage of PKCS#7 ASN1 attribute retrieval for SCEP keygen
OBS-URL: https://build.opensuse.org/request/show/1141177
OBS-URL: https://build.opensuse.org/package/show/security:idm/certmonger?expand=0&rev=19
- update to 0.79.11:
- Fix crash bug when generating thumbprints
- dogtag: use POST for profileProcess requests
- Improve logging in SCEP helper
- Add verbose option to SCEP CA if requested in add-scep-ca
- Re-order the way the SCEP signing and CA certs are collected
- Add new option to allow overriding the detected SCEP CA chain
- template_profile, issuer and MS certificate template are single-value
- Ensure that files read in have a trailing new-line
- Adapt to the new behavior of disconnect in dbus-broker
- Add long command-line options to CLI and man pages
- Include &message=CA-IDENT with GetCACaps and GetCACert requests
- Address issues uncovered by clang and Coverity
- Handle an uninitialized token when adding CA certs to an NSS db
- tests: Parametrize 025-casave with NSS db types
OBS-URL: https://build.opensuse.org/request/show/830735
OBS-URL: https://build.opensuse.org/package/show/security:idm/certmonger?expand=0&rev=3
