Mariano Cano
b0b2e77b0e
Avoid doing unauthenticated requests on the SDK
...
When step-ca runs with mTLS required on some endpoints, the SDK
used in autocert will fail to start because the identity certificate
is missing. This certificate is only required to retrieve all roots,
in most cases there's only one, and the SDK has access to it.
2021-12-14 14:42:38 -08:00
Mariano Cano
975cb75fbd
Fix typo.
2019-02-05 17:33:16 -08:00
Mariano Cano
d394dd233a
Initiate default RootCAs/ClientCAs when no options are passed.
2019-01-23 14:33:16 -08:00
Mariano Cano
25eba1a96c
WIP on the safely rotate of root and federated certificates.
...
Fixes #23
2019-01-22 19:54:12 -08:00
Mariano Cano
518b597535
Remove mTLS client requirement in /roots and /federation
2019-01-11 19:08:08 -08:00
Mariano Cano
10aaece1b0
Update root certificates on renew.
2019-01-09 13:20:28 -08:00
Mariano Cano
6d3e8ed93c
Add all root certificates by default on bootstrap methods.
2019-01-07 18:55:40 -08:00
Mariano Cano
d296cf95a9
Add mTLS request to get all the root CAs, not the federated ones.
2019-01-07 17:48:56 -08:00
Mariano Cano
722bcb7e7a
Add initial support for federated root certificates.
2019-01-04 17:51:32 -08:00
Mariano Cano
d872f09910
Use mTLS by default on SDK methods.
...
Add options to modify the tls.Config for different configurations.
Fixes #7
2018-11-21 13:31:09 -08:00
