Endi S. Dewata

It depends on how the `NSSDatabase` object is created. If it's created specifically for a particular token, it will only need a single password which is for that token only....

I think it's a bit more complicated. I'm not sure about this particular usage, but usually the random salt should be encoded and stored together with the password hash. For...

@06shalini Could you take a look at this as well? Feel free to close it if it's already covered in the current tests. Thanks!

@gswami90 Hi, I've fixed the missing pip3 issue. Could you rebase the PR? Thanks.

@stanislavlevin Have the DS changes been publicly released, or is there a DS COPR build that we can test against?

@stanislavlevin We have CI tests defined as GH actions: https://github.com/dogtagpki/pki/tree/master/.github/workflows Currently it will install the official DS from Fedora, for example: https://github.com/dogtagpki/pki/blob/master/.github/workflows/ca-tests.yml#L94 If you have an unreleased DS COPR build...

Just FYI, @jmagne is working on this.

I think the `CommandCLI` is a common class which can be used by the server or the client, so it cannot have a dependency on `TomcatJSS`. It might be better...

Actually I was suggesting that we use the param to specify the actual subject name (instead of boolean), e.g.: ``` defaultSubjectName=CN=Dummy Subject Name ``` This way the code would be...

@06shalini Could you take a look at this as well? Feel free to close it if it's already covered in the current tests. Thanks!