Panagiotis Siatras
6d4d4560df
add --context flag to step-ca command ( #851 )
...
* added the --context flag
* apply the context and allow for different ca.json
* amended usage for consistency
* added an extra example
* added an extra example
* reordered and reworded examples
2022-03-24 18:18:51 +02:00
Panagiotis Siatras
e27124b037
scep: remove Interface and the dependency to pkg/errors ( #872 )
...
* scep: documented the package
* scep/api: removed some top level constants
* scep: removed dependency to pkg/errors
* scep/api: documented the package
2022-03-24 17:08:23 +02:00
Herman Slatman
cf34b32e61
Merge branch 'herman/allow-deny-next' into herman/allow-deny
2022-03-24 14:56:52 +01:00
Herman Slatman
9e0edc7b50
Add early authority policy evaluation to ACME order API
2022-03-24 14:55:40 +01:00
Panagiotis Siatras
b98f86a515
scep: minor cleanup ( #867 )
...
* api, scep: removed scep.Error
* scep/api: replaced nextHTTP with http.HandlerFunc
* scep/api: renamed writeSCEPResponse to writeResponse
* scep/api: renamed decodeSCEPRequest to decodeRequest
* scep/api: renamed writeError to fail
* scep/api: replaced pkg/errors with errors
* scep/api: formatted imports
* scep/api: do not export SCEPRequest & SCEPResponse
* scep/api: do not export Handler
* api: flush errors better
2022-03-24 14:58:50 +02:00
Herman Slatman
c45d177d52
Merge pull request #847 from smallstep/herman/allow-deny-next
...
Refactor allow/deny (WIP)
2022-03-24 13:13:19 +01:00
Herman Slatman
613c99f00f
Fix linting issues
2022-03-24 13:10:49 +01:00
Herman Slatman
dc23fd23bf
Merge branch 'master' into herman/allow-deny-next
2022-03-24 12:36:12 +01:00
Herman Slatman
6b620c8e9c
Improve protobuf unmarshaling error handling
2022-03-24 10:54:45 +01:00
Mariano Cano
ba0b170818
Attempt to fix TestBootstrapClientServerRotation
...
This change attempts to fix the test TestBootstrapClientServerRotation.
Due to the backdate, the renew options get too large, causing
continuous renewals, and random errors. After experimenting with
different options, truncating durations to seconds have shown better
results than rounding or just use the plain time.
2022-03-23 19:14:28 -07:00
Mariano Cano
082734474b
Merge pull request #845 from vijayjt/azure-user-mi-token
...
WIP: Support Azure tokens generated by managed identities
2022-03-23 17:18:51 -07:00
Mariano Cano
f3bade4547
Merge pull request #861 from smallstep/go/1.18
...
Change go version to 1.17 and 1.18
2022-03-23 17:02:43 -07:00
Herman Slatman
63acb47704
Merge pull request #870 from smallstep/armv5
...
Add armv5 build for (cloud|aws)kms
2022-03-24 00:11:32 +01:00
Herman Slatman
904d6712f5
Add armv5 build for (cloud|aws)kms
2022-03-24 00:04:59 +01:00
Herman Slatman
afca57958b
Merge pull request #869 from smallstep/armv5
...
Add armv5 build to GoReleaser configuration
2022-03-23 23:19:39 +01:00
Herman Slatman
907bdd686b
Add armv5 build to GoReleaser configuration
2022-03-23 23:14:04 +01:00
Carl Tashian
ef9e31cd92
Merge branch 'startup-info' of https://github.com/smallstep/certificates into startup-info
2022-03-22 10:41:47 -07:00
Carl Tashian
f20784be56
format
2022-03-22 10:41:16 -07:00
Carl Tashian
25cc9a1728
Update authority/authority.go
...
Co-authored-by: Herman Slatman <hslatman@users.noreply.github.com>
2022-03-22 07:38:09 -07:00
Panagiotis Siatras
80abda22ee
api/log: initial implementation of the package ( #859 )
...
* api/log: initial implementation of the package
* api: refactored to support api/log
* scep/api: refactored to support api/log
* api/log: documented the package
* api: moved log-related tests to api/log
2022-03-22 14:31:18 +02:00
Carl Tashian
91be50cf70
Add --quiet flag
2022-03-21 19:55:21 -07:00
Mariano Cano
9d027c17d0
Send current provisioner on PostCertificate
2022-03-21 19:24:05 -07:00
Mariano Cano
b401376829
Add current provisioner to AuthorizeSign SignOptions.
...
The original provisioner cannot be retrieved from a certificate
if a linked ra is used.
2022-03-21 19:21:40 -07:00
Mariano Cano
f1d586bc6d
Change golang to Go
2022-03-21 17:59:15 -07:00
vijayjt
24a963766e
Pass in the resource name regardless of if its a VM or managed identity
2022-03-22 00:10:43 +00:00
Carl Tashian
91a25b52bd
Print discord
2022-03-21 16:59:28 -07:00
Carl Tashian
baf3c40fef
Print some basic configuration info on startup
2022-03-21 16:55:09 -07:00
Mariano Cano
ad8a813abe
Fix linter errors
2022-03-21 16:53:57 -07:00
Mariano Cano
390054b22e
Change go version to 1.17 and 1.18
2022-03-21 16:22:26 -07:00
Panagiotis Siatras
823170ef57
Merge pull request #858 from smallstep/panos/api/read
...
api/read: initial implementation of the package
2022-03-21 18:24:10 +02:00
Herman Slatman
101ca6a2d3
Check admin subjects before changing policy
2022-03-21 15:53:59 +01:00
Panagiotis Siatras
e6b2359273
ca: fixed import statement order
2022-03-18 20:21:01 +02:00
Panagiotis Siatras
df89ed5acb
api: moved read-related tests to api/read
2022-03-18 20:21:01 +02:00
Panagiotis Siatras
9ba33bab4e
ca: refactored to use the read package
2022-03-18 20:21:00 +02:00
Panagiotis Siatras
4fb38afc57
authority/admin/api: refactored to use the read package
2022-03-18 20:21:00 +02:00
Panagiotis Siatras
29092b9d8a
api: refactored to use the read package
2022-03-18 20:20:59 +02:00
Panagiotis Siatras
7fb8acda27
api/read: initial implementation of the package
2022-03-18 20:20:16 +02:00
Mariano Cano
12000359ad
Merge pull request #849 from smallstep/feat/renewAfterExpiry
...
Renew After Expiry
2022-03-18 11:18:41 -07:00
Herman Slatman
7a13661e4c
Merge pull request #846 from smallstep/herman/scep-url-config
...
Add configuration for custom path segment on SCEP provisioners
2022-03-16 00:19:22 +01:00
Herman Slatman
dcbcd88a62
Add changelog item for dynamic SCEP CA URL paths
2022-03-16 00:04:15 +01:00
Herman Slatman
15477f6d7b
Make custom SCEP CA paths automagic
2022-03-15 23:28:56 +01:00
Mariano Cano
915911efb6
Disable http loggers in test.
...
They hide the test that fail on tests in the CI.
2022-03-15 12:26:00 -07:00
Mariano Cano
ead742ca0f
Fix unit test
2022-03-15 12:13:01 -07:00
Herman Slatman
81b0c6c37c
Add API implementation for authority and provisioner policy
2022-03-15 15:56:04 +01:00
Mariano Cano
6d532045dc
Fix validity check for sshpop provisioner.
2022-03-14 17:31:21 -07:00
Mariano Cano
c903f00cd4
Rename claim to allowRenewAfterExpiry.
2022-03-14 15:40:01 -07:00
Panagiotis Siatras
415276e52b
Merge pull request #850 from smallstep/panos/envrc
...
git: ignore .envrc files
2022-03-14 13:29:35 +02:00
Panagiotis Siatras
f7a044222e
git: ignore .envrc files
2022-03-14 13:18:44 +02:00
Mariano Cano
6dcde8a743
Fix typo
2022-03-11 15:22:53 -08:00
Mariano Cano
a4dd586a81
Add method to get the CA url from the client.
2022-03-11 15:13:39 -08:00