Commit graph

50 commits

Author SHA1 Message Date
Mariano Cano
572bf0de96
Merge branch 'master' into update-docker 2019-04-09 12:18:56 -07:00
Sebastian Tiedtke
840916ae1b
Note about usage instructions 2019-04-08 12:37:56 -07:00
Justin
351c01cf7e Do not allow pods in one namespace to create certificates for hostnames from another namespace. (#54)
* Do not allow pods in one namespace to create certificates for hostnames from another namespace.

* Make cluster domain configurable, clean up shouldMutate() logic, and make namespace restrictions configurable with restrictCertificatesToNamespace.

* Return certificate hostname validation errors in the admission webhook response.

* Appease the gometalinter.
2019-04-08 12:24:31 -07:00
Mariano Cano
760117adf6 Fix links and typos. 2019-03-28 16:35:20 -07:00
Mariano Cano
3b2518a106 Update kubectl version. 2019-03-28 12:29:01 -07:00
Mariano Cano
efb2a725a8 Add controller missing dependencies 2019-03-28 12:21:07 -07:00
Mariano Cano
2f661c0941 Update docker images and add docs on how to run step-ca on docker.
Fixes #48
2019-03-26 19:00:13 -07:00
Mariano Cano
83848e9cd3 Fix types in autocert. 2019-03-07 16:15:21 -08:00
Mariano Cano
98b3d971f6
Merge pull request #41 from smallstep/hello-mtls-python
Hello mtls python client + gunicorn server
2019-02-27 16:38:25 -08:00
Mariano Cano
f04e6fdff7 Use super().__init__() 2019-02-27 16:32:41 -08:00
Sebastian Tiedtke
009d38ed64 Add gitter button 2019-02-27 13:23:05 -08:00
Mariano Cano
238657ce3a Update readme. 2019-02-22 14:01:32 -08:00
Mariano Cano
c0992c717c Add example of a python client
Fixes smallstep/ca-component#139
2019-02-22 13:55:24 -08:00
Mariano Cano
b140fe63bd Add a gunicorn server with a flask app using mTLS
Fixes smallstep/ca-component#139
2019-02-22 10:48:26 -08:00
Mariano Cano
1b344d5013 Add comment about fsnotify 2019-02-13 15:15:59 -08:00
Mariano Cano
64cbac4e81 Extract servername from tls connection state. 2019-02-13 15:09:03 -08:00
Mariano Cano
79a030960b Enable client certificate rotation with GetClientCertificate. 2019-02-13 14:31:08 -08:00
Mariano Cano
3ba6e33791 Add a new hello-mTLS example using gRPC in go
Fixes #32
2019-02-13 13:01:35 -08:00
Mariano Cano
852f4ed564 Fix dependency and linter errors. 2019-02-11 20:27:41 -08:00
Mike Malone
a775360f10 fixed link 2019-02-11 17:46:46 -08:00
Mike Malone
68eed1bce9 docs updates 2019-02-11 17:43:47 -08:00
Mike Malone
4fe55051a1 updated README and added issue templates for autocert 2019-02-11 16:59:14 -08:00
Mike Malone
bb31a1634e readme update and new connect-with-mtls.png 2019-02-11 14:52:22 -08:00
Mike Malone
ea23f738cb connect with mtls diagram 2019-02-11 12:09:08 -08:00
Mike Malone
6cb5505026 updated docs 2019-02-08 14:21:07 -08:00
Mike Malone
d40911937f updated readme & added runbook 2019-02-08 09:42:57 -08:00
Mariano Cano
2e98febcd9 Add envoy hello mTLS example.
Fixes smallstep/ca-component#144
2019-02-07 15:30:37 -08:00
Mariano Cano
23c60d5f3f Remove unnecessary sleep. 2019-02-07 12:05:38 -08:00
Mariano Cano
14fcf58903 Add client implementation of hello-mTLS using nodejs
Fixes smallstep/ca-component#138
2019-02-06 16:42:29 -08:00
Mariano Cano
8022ed80bc Add node to README.md 2019-02-06 16:42:29 -08:00
Mariano Cano
1197753f35 Add hello-mTLS server example using nodejs.
Fixes smallstep/ca-component#138
2019-02-06 16:42:29 -08:00
Mike Malone
0c53b0f310 rename cluster role & binding to match other binding names 2019-02-06 13:57:29 -08:00
Mike Malone
3a516d92aa check for permissions init autocert deploy script 2019-02-06 13:56:33 -08:00
Mariano Cano
74114a6234 Add hello-mTLS for nginx 2019-02-06 11:53:10 -08:00
Mike Malone
e70a5dae7d updated README.md 2019-01-25 21:31:03 -08:00
Mike Malone
32c7be6f9d fixed mtls handshake diagram 2019-01-25 21:04:57 -08:00
Mike Malone
1f68bfe7ad mtls handshake diagram 2019-01-25 20:58:06 -08:00
Mike Malone
f58000c28f hello-mtls examples 2019-01-24 17:22:36 -08:00
Mike Malone
8e1505d03f new diagrams 2019-01-23 20:43:19 -08:00
Mike Malone
0fabc06fbb new demo gif 2019-01-23 18:33:56 -08:00
Mike Malone
2c2f390e66 logo 2019-01-23 11:32:14 -08:00
Mike Malone
0bab651a52 architecture diagram rev'd 2019-01-22 16:08:57 -08:00
Mike Malone
c8ebacb8b7 architecture diagram 2019-01-22 15:59:41 -08:00
Mike Malone
1fe5612027 README updates 2019-01-18 19:28:20 -08:00
Mike Malone
2c91f1d2fc fixed autocert-init command 2019-01-18 17:55:03 -08:00
Mike Malone
d61c2ac3dd autocert-init for setup 2019-01-18 17:53:44 -08:00
Mike Malone
72e2388bcc readme cleanup 2019-01-17 16:48:09 -08:00
Mike Malone
98767422b1 added example to beginning of readme 2019-01-17 16:27:25 -08:00
Mike Malone
a9f7510640 readme cleanup 2019-01-17 16:20:56 -08:00
Mike Malone
042e36da65 autocert 2019-01-17 16:07:27 -08:00