certificates

Author	SHA1	Message	Date
max furman	54e3cf7322	Add multiuse capability to k8ssa provisioners	2020-01-28 13:28:16 -08:00
max furman	d368791606	Add x5c provisioner capabilities	2019-10-14 14:51:37 -07:00
Mariano Cano	d59a5b222f	Truncate to seconds to avoid rounding up times. It can cause that certs are not valid yet, if they are used right away.	2019-09-19 13:42:24 -07:00
Mariano Cano	adc1d54b0d	Define valid after as 1m before now. It avoids errors with immediate use of cert.	2019-09-19 12:37:41 -07:00
max furman	e3826dd1c3	Add ACME CA capabilities	2019-09-13 15:48:33 -07:00
max furman	d204469280	Add a few more validity checks to default ssh cert validator	2019-09-12 19:27:59 -07:00
Mariano Cano	396b4222aa	Implement validator for ssh keys. Fixes #100	2019-09-10 17:04:13 -07:00
max furman	61d52a8510	Small fixes associated with PR review * additions and grammar edits to documentation * clarification of error msgs	2019-09-08 21:05:36 -07:00
Mariano Cano	34e1e3380a	Fix lint errors.	2019-08-05 16:14:25 -07:00
Mariano Cano	e71072d389	Add experimental support for provisioning users.	2019-08-02 17:48:34 -07:00
Mariano Cano	a8f4ad1b8e	Set default SSH options if no user options are given.	2019-07-31 17:03:33 -07:00
Mariano Cano	780eeb5487	Remove debug print.	2019-07-30 16:56:30 -07:00
Mariano Cano	221d323b68	Fix containsAllMembers	2019-07-29 18:16:52 -07:00
Mariano Cano	7583f1c739	Do not require all principals, allow subgroups.	2019-07-29 17:54:13 -07:00
Mariano Cano	53f62f871c	Set not extensions to host certificates.	2019-07-29 16:36:46 -07:00
Mariano Cano	48c98dea2a	Make SanitizeSSHPrincipal a public function.	2019-07-29 16:21:22 -07:00
Mariano Cano	f01286bb48	Add support for SSH certificates to OIDC. Update the interface for all the provisioners.	2019-07-29 15:54:07 -07:00
Mariano Cano	3ff410c695	fix ssh validity modifier	2019-07-25 18:41:32 -07:00
Mariano Cano	1c8f610ca9	Add initial implementation of an SSH CA using the JWK provisioner. Fixes smallstep/ca-component#187	2019-07-23 18:46:43 -07:00

19 commits