caddypki: Fix caddy trust command to use the correct API endpoint (#4730)

2024-11-23 01:40:09 +08:00 · 2022-04-26 00:00:39 -04:00 · 2022-04-26 00:00:39 -04:00 · d543ad1ffd
commit d543ad1ffd
parent a8bb4a665a
1 changed files with 2 additions and 2 deletions
--- a/modules/caddypki/command.go
+++ b/modules/caddypki/command.go
@ -133,7 +133,7 @@ func cmdTrust(fl caddycmd.Flags) (int, error) {
 	ca := CA{
 		log:          caddy.Log(),
 		root:         rootCert,
-		rootCertPath: adminAddr + path.Join(adminPKIEndpointBase, caID, "certificates"),
+		rootCertPath: adminAddr + path.Join(adminPKIEndpointBase, "ca", caID),
 	}

 	// Install the cert!
@ -207,7 +207,7 @@ func cmdUntrust(fl caddycmd.Flags) (int, error) {

 // rootCertFromAdmin makes the API request to fetch the root certificate for the named CA via admin API.
 func rootCertFromAdmin(adminAddr string, caID string) (*x509.Certificate, error) {
-	uri := path.Join(adminPKIEndpointBase, caID, "certificates")
+	uri := path.Join(adminPKIEndpointBase, "ca", caID)

 	// Make the request to fetch the CA info
 	resp, err := caddycmd.AdminAPIRequest(adminAddr, http.MethodGet, uri, make(http.Header), nil)