Sebastian Tiedtke
3a2ba85126
Flip default for certificate restriction to namespace to false ( #60 )
2019-04-17 14:00:24 -07:00
Mariano Cano
572bf0de96
Merge branch 'master' into update-docker
2019-04-09 12:18:56 -07:00
Sebastian Tiedtke
840916ae1b
Note about usage instructions
2019-04-08 12:37:56 -07:00
Justin
351c01cf7e
Do not allow pods in one namespace to create certificates for hostnames from another namespace. ( #54 )
...
* Do not allow pods in one namespace to create certificates for hostnames from another namespace.
* Make cluster domain configurable, clean up shouldMutate() logic, and make namespace restrictions configurable with restrictCertificatesToNamespace.
* Return certificate hostname validation errors in the admission webhook response.
* Appease the gometalinter.
2019-04-08 12:24:31 -07:00
Mariano Cano
760117adf6
Fix links and typos.
2019-03-28 16:35:20 -07:00
Mariano Cano
3b2518a106
Update kubectl version.
2019-03-28 12:29:01 -07:00
Mariano Cano
efb2a725a8
Add controller missing dependencies
2019-03-28 12:21:07 -07:00
Mariano Cano
2f661c0941
Update docker images and add docs on how to run step-ca on docker.
...
Fixes #48
2019-03-26 19:00:13 -07:00
Mariano Cano
83848e9cd3
Fix types in autocert.
2019-03-07 16:15:21 -08:00
Mariano Cano
98b3d971f6
Merge pull request #41 from smallstep/hello-mtls-python
...
Hello mtls python client + gunicorn server
2019-02-27 16:38:25 -08:00
Mariano Cano
f04e6fdff7
Use super().__init__()
2019-02-27 16:32:41 -08:00
Sebastian Tiedtke
009d38ed64
Add gitter button
2019-02-27 13:23:05 -08:00
Mariano Cano
238657ce3a
Update readme.
2019-02-22 14:01:32 -08:00
Mariano Cano
c0992c717c
Add example of a python client
...
Fixes smallstep/ca-component#139
2019-02-22 13:55:24 -08:00
Mariano Cano
b140fe63bd
Add a gunicorn server with a flask app using mTLS
...
Fixes smallstep/ca-component#139
2019-02-22 10:48:26 -08:00
Mariano Cano
1b344d5013
Add comment about fsnotify
2019-02-13 15:15:59 -08:00
Mariano Cano
64cbac4e81
Extract servername from tls connection state.
2019-02-13 15:09:03 -08:00
Mariano Cano
79a030960b
Enable client certificate rotation with GetClientCertificate.
2019-02-13 14:31:08 -08:00
Mariano Cano
3ba6e33791
Add a new hello-mTLS example using gRPC in go
...
Fixes #32
2019-02-13 13:01:35 -08:00
Mariano Cano
852f4ed564
Fix dependency and linter errors.
2019-02-11 20:27:41 -08:00
Mike Malone
a775360f10
fixed link
2019-02-11 17:46:46 -08:00
Mike Malone
68eed1bce9
docs updates
2019-02-11 17:43:47 -08:00
Mike Malone
4fe55051a1
updated README and added issue templates for autocert
2019-02-11 16:59:14 -08:00
Mike Malone
bb31a1634e
readme update and new connect-with-mtls.png
2019-02-11 14:52:22 -08:00
Mike Malone
ea23f738cb
connect with mtls diagram
2019-02-11 12:09:08 -08:00
Mike Malone
6cb5505026
updated docs
2019-02-08 14:21:07 -08:00
Mike Malone
d40911937f
updated readme & added runbook
2019-02-08 09:42:57 -08:00
Mariano Cano
2e98febcd9
Add envoy hello mTLS example.
...
Fixes smallstep/ca-component#144
2019-02-07 15:30:37 -08:00
Mariano Cano
23c60d5f3f
Remove unnecessary sleep.
2019-02-07 12:05:38 -08:00
Mariano Cano
14fcf58903
Add client implementation of hello-mTLS using nodejs
...
Fixes smallstep/ca-component#138
2019-02-06 16:42:29 -08:00
Mariano Cano
8022ed80bc
Add node to README.md
2019-02-06 16:42:29 -08:00
Mariano Cano
1197753f35
Add hello-mTLS server example using nodejs.
...
Fixes smallstep/ca-component#138
2019-02-06 16:42:29 -08:00
Mike Malone
0c53b0f310
rename cluster role & binding to match other binding names
2019-02-06 13:57:29 -08:00
Mike Malone
3a516d92aa
check for permissions init autocert deploy script
2019-02-06 13:56:33 -08:00
Mariano Cano
74114a6234
Add hello-mTLS for nginx
2019-02-06 11:53:10 -08:00
Mike Malone
e70a5dae7d
updated README.md
2019-01-25 21:31:03 -08:00
Mike Malone
32c7be6f9d
fixed mtls handshake diagram
2019-01-25 21:04:57 -08:00
Mike Malone
1f68bfe7ad
mtls handshake diagram
2019-01-25 20:58:06 -08:00
Mike Malone
f58000c28f
hello-mtls examples
2019-01-24 17:22:36 -08:00
Mike Malone
8e1505d03f
new diagrams
2019-01-23 20:43:19 -08:00
Mike Malone
0fabc06fbb
new demo gif
2019-01-23 18:33:56 -08:00
Mike Malone
2c2f390e66
logo
2019-01-23 11:32:14 -08:00
Mike Malone
0bab651a52
architecture diagram rev'd
2019-01-22 16:08:57 -08:00
Mike Malone
c8ebacb8b7
architecture diagram
2019-01-22 15:59:41 -08:00
Mike Malone
1fe5612027
README updates
2019-01-18 19:28:20 -08:00
Mike Malone
2c91f1d2fc
fixed autocert-init command
2019-01-18 17:55:03 -08:00
Mike Malone
d61c2ac3dd
autocert-init for setup
2019-01-18 17:53:44 -08:00
Mike Malone
72e2388bcc
readme cleanup
2019-01-17 16:48:09 -08:00
Mike Malone
98767422b1
added example to beginning of readme
2019-01-17 16:27:25 -08:00
Mike Malone
a9f7510640
readme cleanup
2019-01-17 16:20:56 -08:00