Mariano Cano
0b388942e8
Upgrade linkedca package.
2022-03-28 18:23:36 -07:00
Mariano Cano
955d4cf80d
Add authority.WithX509SignerFunc
...
This change adds a new authority option that allows to pass a callback
that returns the certificate chain and signer used to sign X.509
certificates.
This option will be used by Caddy, they renew the intermediate
certificate weekly and there's no other way to replace it without
re-creating the embedded CA.
Fixes #874
2022-03-28 17:54:35 -07:00
Mariano Cano
8d1ce3133a
Merge branch 'master' into feat/linkedra
2022-03-28 15:07:36 -07:00
Mariano Cano
6851842841
Fix unit tests.
2022-03-28 15:06:56 -07:00
Mariano Cano
580a9c1476
Get linked RA configuration using the linked ca client.
2022-03-28 14:55:40 -07:00
Herman Slatman
4cde2696e5
Update cloud.google.com/go/kms
2022-03-28 14:55:40 -07:00
Andrew Reed
52d7f084d2
Add /roots.pem handler ( #866 )
...
* Add /roots.pem handler
* Review changes
* Remove no peer cert test case
2022-03-28 14:55:40 -07:00
Mariano Cano
750e9ee2f8
Attempt to fix TestBootstrapClientServerRotation
...
This change attempts to fix the test TestBootstrapClientServerRotation.
Due to the backdate, the renew options get too large, causing
continuous renewals, and random errors. After experimenting with
different options, truncating durations to seconds have shown better
results than rounding or just use the plain time.
2022-03-28 14:55:40 -07:00
Panagiotis Siatras
27c1d0afc3
add --context flag to step-ca command ( #851 )
...
* added the --context flag
* apply the context and allow for different ca.json
* amended usage for consistency
* added an extra example
* added an extra example
* reordered and reworded examples
2022-03-28 14:55:40 -07:00
Panagiotis Siatras
a852223717
scep: remove Interface and the dependency to pkg/errors ( #872 )
...
* scep: documented the package
* scep/api: removed some top level constants
* scep: removed dependency to pkg/errors
* scep/api: documented the package
2022-03-28 14:55:40 -07:00
Panagiotis Siatras
bca74cb6a7
scep: minor cleanup ( #867 )
...
* api, scep: removed scep.Error
* scep/api: replaced nextHTTP with http.HandlerFunc
* scep/api: renamed writeSCEPResponse to writeResponse
* scep/api: renamed decodeSCEPRequest to decodeRequest
* scep/api: renamed writeError to fail
* scep/api: replaced pkg/errors with errors
* scep/api: formatted imports
* scep/api: do not export SCEPRequest & SCEPResponse
* scep/api: do not export Handler
* api: flush errors better
2022-03-28 14:55:40 -07:00
vijayjt
37207793f9
Pass in the resource name regardless of if its a VM or managed identity
2022-03-28 14:55:40 -07:00
vijayjt
7e47c70af2
Remove redundant parameter type declaration
2022-03-28 14:55:40 -07:00
vijayjt
7b605b2d16
Support Azure tokens from managed identities not associated with a VM
2022-03-28 14:55:39 -07:00
Mariano Cano
76ea1635a7
Change golang to Go
2022-03-28 14:55:39 -07:00
Mariano Cano
5ab79f53be
Fix linter errors
2022-03-28 14:55:39 -07:00
Mariano Cano
161a4b28be
Change go version to 1.17 and 1.18
2022-03-28 14:55:39 -07:00
Herman Slatman
c50800eb01
Add armv5 build for (cloud|aws)kms
2022-03-28 14:55:39 -07:00
Herman Slatman
76e5347923
Add armv5 build to GoReleaser configuration
2022-03-28 14:55:39 -07:00
Panagiotis Siatras
17d7fd70cd
api/log: initial implementation of the package ( #859 )
...
* api/log: initial implementation of the package
* api: refactored to support api/log
* scep/api: refactored to support api/log
* api/log: documented the package
* api: moved log-related tests to api/log
2022-03-28 14:55:39 -07:00
Herman Slatman
49de04661b
Merge pull request #877 from smallstep/herman/update-google-kms
...
Update cloud.google.com/go/kms
2022-03-28 21:58:04 +02:00
Andrew Reed
d5d70baba7
Add /roots.pem handler ( #866 )
...
* Add /roots.pem handler
* Review changes
* Remove no peer cert test case
2022-03-28 09:18:18 -05:00
Herman Slatman
1dbaa62740
Update cloud.google.com/go/kms
2022-03-27 21:40:01 +02:00
Mariano Cano
a7959ac563
Merge pull request #871 from smallstep/fix/renewer
...
Attempt to fix TestBootstrapClientServerRotation
2022-03-24 11:50:11 -07:00
Herman Slatman
23676d3bcc
Merge branch 'master' into herman/allow-deny
2022-03-24 18:35:20 +01:00
Herman Slatman
b49307f326
Fix ACME order tests with mock ACME CA
2022-03-24 18:34:04 +01:00
Panagiotis Siatras
6d4d4560df
add --context flag to step-ca command ( #851 )
...
* added the --context flag
* apply the context and allow for different ca.json
* amended usage for consistency
* added an extra example
* added an extra example
* reordered and reworded examples
2022-03-24 18:18:51 +02:00
Panagiotis Siatras
e27124b037
scep: remove Interface and the dependency to pkg/errors ( #872 )
...
* scep: documented the package
* scep/api: removed some top level constants
* scep: removed dependency to pkg/errors
* scep/api: documented the package
2022-03-24 17:08:23 +02:00
Herman Slatman
cf34b32e61
Merge branch 'herman/allow-deny-next' into herman/allow-deny
2022-03-24 14:56:52 +01:00
Herman Slatman
9e0edc7b50
Add early authority policy evaluation to ACME order API
2022-03-24 14:55:40 +01:00
Panagiotis Siatras
b98f86a515
scep: minor cleanup ( #867 )
...
* api, scep: removed scep.Error
* scep/api: replaced nextHTTP with http.HandlerFunc
* scep/api: renamed writeSCEPResponse to writeResponse
* scep/api: renamed decodeSCEPRequest to decodeRequest
* scep/api: renamed writeError to fail
* scep/api: replaced pkg/errors with errors
* scep/api: formatted imports
* scep/api: do not export SCEPRequest & SCEPResponse
* scep/api: do not export Handler
* api: flush errors better
2022-03-24 14:58:50 +02:00
Herman Slatman
c45d177d52
Merge pull request #847 from smallstep/herman/allow-deny-next
...
Refactor allow/deny (WIP)
2022-03-24 13:13:19 +01:00
Herman Slatman
613c99f00f
Fix linting issues
2022-03-24 13:10:49 +01:00
Herman Slatman
dc23fd23bf
Merge branch 'master' into herman/allow-deny-next
2022-03-24 12:36:12 +01:00
Herman Slatman
6b620c8e9c
Improve protobuf unmarshaling error handling
2022-03-24 10:54:45 +01:00
Mariano Cano
ba0b170818
Attempt to fix TestBootstrapClientServerRotation
...
This change attempts to fix the test TestBootstrapClientServerRotation.
Due to the backdate, the renew options get too large, causing
continuous renewals, and random errors. After experimenting with
different options, truncating durations to seconds have shown better
results than rounding or just use the plain time.
2022-03-23 19:14:28 -07:00
Mariano Cano
082734474b
Merge pull request #845 from vijayjt/azure-user-mi-token
...
WIP: Support Azure tokens generated by managed identities
2022-03-23 17:18:51 -07:00
Mariano Cano
f3bade4547
Merge pull request #861 from smallstep/go/1.18
...
Change go version to 1.17 and 1.18
2022-03-23 17:02:43 -07:00
Herman Slatman
63acb47704
Merge pull request #870 from smallstep/armv5
...
Add armv5 build for (cloud|aws)kms
2022-03-24 00:11:32 +01:00
Herman Slatman
904d6712f5
Add armv5 build for (cloud|aws)kms
2022-03-24 00:04:59 +01:00
Herman Slatman
afca57958b
Merge pull request #869 from smallstep/armv5
...
Add armv5 build to GoReleaser configuration
2022-03-23 23:19:39 +01:00
Herman Slatman
907bdd686b
Add armv5 build to GoReleaser configuration
2022-03-23 23:14:04 +01:00
Carl Tashian
ef9e31cd92
Merge branch 'startup-info' of https://github.com/smallstep/certificates into startup-info
2022-03-22 10:41:47 -07:00
Carl Tashian
f20784be56
format
2022-03-22 10:41:16 -07:00
Carl Tashian
25cc9a1728
Update authority/authority.go
...
Co-authored-by: Herman Slatman <hslatman@users.noreply.github.com>
2022-03-22 07:38:09 -07:00
Panagiotis Siatras
80abda22ee
api/log: initial implementation of the package ( #859 )
...
* api/log: initial implementation of the package
* api: refactored to support api/log
* scep/api: refactored to support api/log
* api/log: documented the package
* api: moved log-related tests to api/log
2022-03-22 14:31:18 +02:00
Carl Tashian
91be50cf70
Add --quiet flag
2022-03-21 19:55:21 -07:00
Mariano Cano
9d027c17d0
Send current provisioner on PostCertificate
2022-03-21 19:24:05 -07:00
Mariano Cano
b401376829
Add current provisioner to AuthorizeSign SignOptions.
...
The original provisioner cannot be retrieved from a certificate
if a linked ra is used.
2022-03-21 19:21:40 -07:00
Mariano Cano
f1d586bc6d
Change golang to Go
2022-03-21 17:59:15 -07:00