max furman
aecddecf22
Simplify make bundling and generate ARM tarballs.
2020-04-08 14:20:58 -07:00
David Cowden
eb42ea90db
ssh/api: Use host tags instead of groups
...
Tags are more flexible and what we use in the managed offering.
2020-04-03 12:11:19 -07:00
Mariano Cano
1d9edcd48f
Merge pull request #220 from smallstep/identity-cert-duration
...
Enforce a duration for identity certificates
2020-03-31 13:02:23 -07:00
Mariano Cano
bfe1f4952d
Rename interface to CertificateEnforcer and add tests.
2020-03-31 11:41:36 -07:00
Mariano Cano
64f26c0f40
Enforce a duration for identity certificates.
2020-03-30 17:33:04 -07:00
Mariano Cano
041aeb7a90
Add simple rule to run step certificates.
2020-03-25 13:11:03 -07:00
Mariano Cano
83993d31d4
Merge pull request #214 from smallstep/build-with-go.1.13
...
Use go 1.13 to build certificates
2020-03-24 16:32:32 -07:00
Mariano Cano
1d7ab9145a
Avoid lint error.
2020-03-24 14:33:01 -07:00
Mariano Cano
0b62ce9d0e
Use go 1.13 to build certificates.
2020-03-24 14:23:02 -07:00
Mariano Cano
3480ed44c7
Upgrade github.com/x/crypto to fix a vulnerability in ssh.
...
* CVE-2020-9283
2020-03-24 14:17:44 -07:00
max furman
495e60a44b
Extraneous fmt.Sprintf
2020-03-23 12:15:46 -07:00
max furman
0d9cd24d78
Slightly decrease version of golanci-lint to match brew.
2020-03-23 12:13:16 -07:00
max furman
fd80da6a8d
Bump version of golangci-lint in make bootstrap
.
2020-03-23 12:02:43 -07:00
Mariano Cano
ee1c8dd0cd
Merge pull request #207 from smallstep/add-context
...
Add context to ssh methods
2020-03-11 09:34:52 -07:00
Mariano Cano
fa416336a8
Add context to tests.
2020-03-10 19:17:32 -07:00
Mariano Cano
c49a9d5e33
Add context parameter to all SSH methods.
2020-03-10 19:01:45 -07:00
Carl Tashian
164e4ef2d0
Add Build From Source instructions
2020-03-09 13:24:02 -07:00
Mariano Cano
818c38188f
Merge pull request #204 from smallstep/ssh-cloud-identities
...
Allow custom principals on cloud identity provisioners
2020-03-05 19:16:34 -08:00
Mariano Cano
349bca06bb
Fix line error due to deprecated DialTLS.
2020-03-05 15:11:03 -08:00
Mariano Cano
f868e07a76
Allow to use custom principals on cloud provisioners.
...
Fixes #203
2020-03-05 14:33:42 -08:00
Mariano Cano
f37554fddb
Use go 1.14
2020-03-05 14:33:33 -08:00
Mariano Cano
f5d2f92099
Load identity certificate from disk in each connection.
2020-03-04 15:02:17 -08:00
Carl Tashian
a26d489abd
Merge pull request #199 from smallstep/faq-update
...
Update FAQ: "I already have PKI"
2020-03-02 09:46:10 -08:00
Carl Tashian
be4b853d3a
Typo fix
2020-03-02 09:45:21 -08:00
Mariano Cano
59fc8cdd2d
Fix typo in comments.
2020-02-27 10:48:16 -08:00
Carl Tashian
681e15deeb
Replace broken aws-cli commands with a Python script
2020-02-26 17:27:03 -08:00
Carl Tashian
76a077ba3e
Add CFSSL instructions
2020-02-26 10:59:38 -08:00
Carl Tashian
a1debf7b1e
FAQ Update: Intermediate certificates should be valid for 10 years
2020-02-26 10:17:32 -08:00
Mariano Cano
3c5046f0d4
Merge pull request #196 from smallstep/hsm-pending-generation
...
Retry CloudKMS GetPublicKey
2020-02-25 10:44:14 -08:00
Carl Tashian
043233f90f
Update FAQ: I already have PKI
2020-02-24 12:16:16 -08:00
Mariano Cano
1138cc4207
Retry CloudKMS GetPublicKey.
...
On HSM keys are not generated instantly and the GetPublicKey fails
with a FailedPrecondition error. This change will retry GetPublicKey
if this happens.
2020-02-21 12:36:29 -08:00
Mariano Cano
806abb6232
Merge pull request #192 from smallstep/cloudkms-init
...
Cloudkms init
2020-02-21 11:19:45 -08:00
Mariano Cano
6b01128bcc
Reference root.Subject instead of hardcoding it.
2020-02-21 11:14:11 -08:00
Mariano Cano
32c2558b58
Replace project in output.
2020-02-21 10:55:42 -08:00
Mariano Cano
334d191563
Fix docs.
2020-02-21 10:53:22 -08:00
Mariano Cano
8604c31818
Fix in documentation.
2020-02-21 10:51:43 -08:00
Mariano Cano
91f0caa6ff
Merge pull request #195 from smallstep/custom-templates
...
Templates without the filesystem
2020-02-20 16:36:08 -08:00
Mariano Cano
914636668a
Add support for loading templates without using files.
2020-02-20 15:48:48 -08:00
Mariano Cano
55e661bd26
Add initial docs for cloud kms.
2020-02-18 19:07:42 -08:00
Mariano Cano
1535e95d89
Add tool to initialize pki in cloud kms.
2020-02-18 19:07:12 -08:00
max furman
8e882faf44
Remove extraneous "stage" from travis yml
2020-02-16 13:06:36 -08:00
Mariano Cano
cf7ef472f7
Merge pull request #164 from smallstep/kms
...
Kms
2020-02-14 12:08:53 -08:00
Mariano Cano
5c8c741fab
Fix linting issues.
2020-02-14 11:46:31 -08:00
Mariano Cano
dd5a96a42e
Fix typo.
2020-02-14 10:42:50 -08:00
Mariano Cano
b724f5a338
Fix typos.
2020-02-14 10:24:56 -08:00
Mariano Cano
6987a46b76
Skip test on travis.
2020-02-13 18:38:00 -08:00
Mariano Cano
b11bbd5728
Fix typo.
2020-02-13 18:34:43 -08:00
Mariano Cano
05cc1437b7
Remove unnecessary parse of certificate.
2020-02-13 17:48:43 -08:00
Mariano Cano
cff346e7fd
Skip test on travis, it won't fail because they have access to the KMS.
2020-02-13 15:49:16 -08:00
Mariano Cano
2d4f369db2
Add options to set root and federated certificates using x509.Certificate
2020-02-12 15:36:24 -08:00