Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Command for revoking an identity missing #204

Open
koh-osug opened this issue Dec 12, 2023 · 1 comment
Open

Command for revoking an identity missing #204

koh-osug opened this issue Dec 12, 2023 · 1 comment

Comments

@koh-osug
Copy link

What happened?

I use:

kubectl hlf ca register
kubectl hlf ca enroll

to create a new client. The client can interact with the chaincode. Now I have to revoke this created identity. The command is missing.

What did you expect to happen?

That I can run something like:

kubectl hlf ca revoke

How can we reproduce it (as minimally and precisely as possible)?

kubectl hlf ca register ...
kubectl hlf ca enroll ...

Anything else we need to know?

kubectl hlf identity delete does not seem to do what I want and cannot find data.

Logging into the CA container and trying to run gives:

fabric-ca-client identity list
2023/12/12 21:55:04 [ERROR] Enrollment check failed: either because 'x509 enrollment information does not exist - certFile: /var/hyperledger/fabric-ca/msp/signcerts/cert.pem keyFile: /var/hyperledger/fabric-ca/msp/keystore/key.pem' or 'Idemix enrollment information does not exist'

Kubernetes version

v1.27.5-gke.200
@adityajoshi12
Copy link
Contributor

Even after revoking from CA, you need to add it crl in channel to stop accepting txns signed from that identity.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@koh-osug @adityajoshi12