Merge pull request #4184 from Infisical/fix/cliExportFileFlag

Updated CLI export doc to document the new --output-file behavior
Merge pull request #4185 from Infisical/fix/pkiImportCertToCaIssueWithDn
2025-07-20 01:48:03 +00:00 · 2025-07-17 11:12:33 -03:00 · 2025-07-17 10:42:01 -03:00 · 2025-07-17 10:28:31 -03:00 · 2025-07-17 17:59:49 +05:30
3 changed files with 8 additions and 4 deletions
--- a/backend/src/services/app-connection/1password/1password-connection-fns.ts
+++ b/backend/src/services/app-connection/1password/1password-connection-fns.ts
@ -31,12 +31,16 @@ export const validateOnePassConnectionCredentials = async (config: TOnePassConne
  const { apiToken } = config.credentials;

  try {
-    await request.get(`${instanceUrl}/v1/vaults`, {
+    const res = await request.get(`${instanceUrl}/v1/vaults`, {
      headers: {
        Authorization: `Bearer ${apiToken}`,
        Accept: "application/json"
      }
    });
+
+    if (!Array.isArray(res.data)) {
+      throw new AxiosError("Invalid response from 1Password API");
+    }
  } catch (error: unknown) {
    if (error instanceof AxiosError) {
      throw new BadRequestError({
--- a/backend/src/services/certificate-authority/certificate-authority-dal.ts
+++ b/backend/src/services/certificate-authority/certificate-authority-dal.ts
@ -218,7 +218,7 @@ export const certificateAuthorityDALFactory = (db: TDbClient) => {
  };

  const findWithAssociatedCa = async (
-    filter: Parameters<(typeof caOrm)["find"]>[0] & { dn?: string; type?: string },
+    filter: Parameters<(typeof caOrm)["find"]>[0] & { dn?: string; type?: string; serialNumber?: string },
    { offset, limit, sort = [["createdAt", "desc"]] }: TFindOpt<TCertificateAuthorities> = {},
    tx?: Knex
  ) => {
--- a/backend/src/services/certificate-authority/internal/internal-certificate-authority-service.ts
+++ b/backend/src/services/certificate-authority/internal/internal-certificate-authority-service.ts
@ -1068,11 +1068,11 @@ export const internalCertificateAuthorityServiceFactory = ({
      throw new BadRequestError({ message: "Invalid certificate chain" });

    const parentCertObj = chainItems[1];
-    const parentCertSubject = parentCertObj.subject;
+    const parentSerialNumber = parentCertObj.serialNumber;

    const [parentCa] = await certificateAuthorityDAL.findWithAssociatedCa({
      [`${TableName.CertificateAuthority}.projectId` as "projectId"]: ca.projectId,
-      [`${TableName.InternalCertificateAuthority}.dn` as "dn"]: parentCertSubject
+      [`${TableName.InternalCertificateAuthority}.serialNumber` as "serialNumber"]: parentSerialNumber
    });

    const certificateManagerKmsId = await getProjectKmsCertificateKeyId({
Author	SHA1	Message	Date
carlosmonastyrski	144143b43a	Merge pull request #4184 from Infisical/fix/cliExportFileFlag Updated CLI export doc to document the new --output-file behavior	2025-07-17 11:12:33 -03:00
carlosmonastyrski	b9a05688cd	Merge pull request #4185 from Infisical/fix/pkiImportCertToCaIssueWithDn On importCertToCa use serialNumber instead of dn to get the parentCa	2025-07-17 10:42:01 -03:00
Carlos Monastyrski	c06c6c6c61	On importCertToCa use serialNumber instead of dn to get the parentCa	2025-07-17 10:28:31 -03:00
Sid	5ae18a691d	fix: verify response type (#4182 ) Co-authored-by: sidwebworks <xodeveloper@gmail.com>	2025-07-17 17:59:49 +05:30