Fixes (#476)

* Ensures that Vault can accept bytes and strings.

* Make restricted domains optional.

* Fixing notify flag.

lemur/common/validators.py

@@ -46,15 +46,16 @@ def sensitive_domain(domain):
     :param domain:
     :return:
     """
-    restricted_domains = current_app.config['LEMUR_RESTRICTED_DOMAINS']
-    domains = domain_service.get_by_name(domain)
-    for domain in domains:
-        # we only care about non-admins
-        if not SensitiveDomainPermission().can():
-            if domain.sensitive or any([re.match(pattern, domain.name) for pattern in restricted_domains]):
-                raise ValidationError(
-                    'Domain {0} has been marked as sensitive, contact and administrator \
-                    to issue the certificate.'.format(domain))
+    restricted_domains = current_app.config.get('LEMUR_RESTRICTED_DOMAINS', [])
+    if restricted_domains:
+        domains = domain_service.get_by_name(domain)
+        for domain in domains:
+            # we only care about non-admins
+            if not SensitiveDomainPermission().can():
+                if domain.sensitive or any([re.match(pattern, domain.name) for pattern in restricted_domains]):
+                    raise ValidationError(
+                        'Domain {0} has been marked as sensitive, contact and administrator \
+                        to issue the certificate.'.format(domain))
 
 
 def encoding(oid_encoding):