max furman
|
b265877050
|
Simplify statuscoder error generators.
|
2020-01-24 13:46:11 -08:00 |
|
max furman
|
c387b21808
|
Introduce generalized statusCoder errors and loads of ssh unit tests.
* StatusCoder api errors that have friendly user messages.
* Unit tests for SSH sign/renew/rekey/revoke across all provisioners.
|
2020-01-22 17:25:23 -08:00 |
|
Mariano Cano
|
935d0d4542
|
Add support for backdate to SSH certificates.
|
2020-01-03 18:22:52 -08:00 |
|
max furman
|
a9ea292bd4
|
sshpop provisioner + ssh renew | revoke | rekey first pass
|
2019-11-05 16:41:42 -08:00 |
|
max furman
|
d368791606
|
Add x5c provisioner capabilities
|
2019-10-14 14:51:37 -07:00 |
|
Mariano Cano
|
396b4222aa
|
Implement validator for ssh keys.
Fixes #100
|
2019-09-10 17:04:13 -07:00 |
|
Mariano Cano
|
10e7b81b9f
|
Merge branch 'master' into ssh-ca
|
2019-09-05 23:06:01 +02:00 |
|
max furman
|
2b41faa9cf
|
Enforce >= 2048 bit rsa keys at the provisioner layer
* Fixes #94
* In the future this should be configurable by provisioner
|
2019-08-27 14:44:59 -07:00 |
|
Mariano Cano
|
57a529cc1a
|
Allow to enable the SSH CA per provisioner
|
2019-08-05 11:40:27 -07:00 |
|
Mariano Cano
|
a8f4ad1b8e
|
Set default SSH options if no user options are given.
|
2019-07-31 17:03:33 -07:00 |
|
Mariano Cano
|
b827a59e96
|
Add SSH host certificate support for GCP provisioner.
|
2019-07-29 18:17:20 -07:00 |
|
Mariano Cano
|
f01286bb48
|
Add support for SSH certificates to OIDC.
Update the interface for all the provisioners.
|
2019-07-29 15:54:07 -07:00 |
|
Mariano Cano
|
900ab9cc12
|
Allow custom common names in cloud identity provisioners.
|
2019-07-15 15:52:36 -07:00 |
|
Mariano Cano
|
6e4a09651a
|
Add comments with links to cloud docs.
|
2019-06-05 11:04:00 -07:00 |
|
Mariano Cano
|
c431538ff2
|
Add support for instance age check in GCP.
Fixes smallstep/step#164
|
2019-06-04 15:57:15 -07:00 |
|
Mariano Cano
|
4cef086c00
|
Allow to use emails as service accounts on GCP
Fixes smallstep/step#163
|
2019-06-03 17:28:39 -07:00 |
|
Mariano Cano
|
0a756ce9d0
|
Use on GCP audiences with the format https://<ca-url>#<provisioner-type>/<provisioner-name>
Fixes smallstep/step#156
|
2019-06-03 17:19:44 -07:00 |
|
Mariano Cano
|
a54bf925eb
|
Add filtering by GCP Project ID.
Fixes smallstep/step#155
|
2019-06-03 11:56:42 -07:00 |
|
Mariano Cano
|
cf07c8f4c0
|
Fix typos.
|
2019-05-09 18:56:24 -07:00 |
|
Mariano Cano
|
37e84aa535
|
Add DisableCustomSANs and DisableTrustOnFirstUse to GCP provisioner.
Fixes #67
|
2019-04-24 13:05:46 -07:00 |
|
Mariano Cano
|
2c68915b70
|
Fix comment.
|
2019-04-23 14:36:11 -07:00 |
|
Mariano Cano
|
fb6321fb2c
|
Use gcpConfig type to keep configuration urls.
Fixes #67
|
2019-04-23 14:33:36 -07:00 |
|
Mariano Cano
|
7e53b28320
|
Disable revoke for GCP.
|
2019-04-23 14:20:14 -07:00 |
|
Mariano Cano
|
7727fa5665
|
Update GCP tests.
|
2019-04-19 10:44:11 -07:00 |
|
Mariano Cano
|
1ea4b0ad64
|
Add unit test for GCP provider
|
2019-04-18 16:01:30 -07:00 |
|
Mariano Cano
|
b4729cd670
|
Use JWKSet to get the GCP keys.
|
2019-04-17 17:38:24 -07:00 |
|
Mariano Cano
|
f794dbeb93
|
Add support for GCP identity tokens.
|
2019-04-17 17:28:21 -07:00 |
|