Jose Plana

Actually I was thinking of having the very same approach for certificates (so using the very same annotation in the method you pointed out). While it might seem useful to...

Just to explicitly answer your question: Would restricting pending_certificates to those roles work for your use case? Actually no, It wouldn't, as we'd like the creator or the cert not...

@hosseinsh I completely understand the need for it. Part of our needs come from the fact that, while in our case the destination can be automated, the source for the...

@castrapel that was actually our long term plan, but probably only the first step. I'd say that instead of setting up "nothing" or "admin" during cert creation for those "Roles...