Commit graph

117 commits

Author SHA1 Message Date
Mariano Cano
28b08ef46b Fail silently if the identity fails. 2019-12-11 16:27:37 -08:00
Max
1f42637ba1
Merge pull request #143 from smallstep/expired-cert
Expired cert
2019-12-11 14:55:21 -08:00
max furman
1e17ec7d33 Use x5cInsecure token for /ssh/check-host endpoint 2019-12-11 14:54:29 -08:00
Mariano Cano
7fe1eb8686 Add GetTransport to client. 2019-12-10 16:34:24 -08:00
Mariano Cano
40ec0b435a Add method to create an ssh token. 2019-12-10 13:40:14 -08:00
Mariano Cano
50152391a3 Add leeway in identity not before. 2019-12-09 16:55:25 -08:00
max furman
2676d525c4 redundant variable type def 2019-12-09 12:54:32 -08:00
Mariano Cano
b25cbbe6ca Create a custom client that sends a custom User-Agent. 2019-11-27 17:30:06 -08:00
Mariano Cano
c5e34f777c Replace /ssh/get-hosts to /ssh/hosts 2019-11-27 14:27:23 -08:00
Mariano Cano
b97aeedb78 Fix tests. 2019-11-26 18:53:36 -08:00
Mariano Cano
87ce2c9b4b Add Identity helpers. 2019-11-20 19:12:19 -08:00
Mariano Cano
012f64cdad Add version support to the ca.Client. 2019-11-20 17:15:48 -08:00
Mariano Cano
80ee3645c4 Fix directory permissions. 2019-11-20 16:03:31 -08:00
Mariano Cano
af6f6b4a85 Support for retry and identity files. 2019-11-20 11:52:20 -08:00
Mariano Cano
18f8d90cd7 Add support for identity authentication. 2019-11-20 11:52:20 -08:00
Mariano Cano
35b7539243 Add client method for SSHBastion 2019-11-14 20:32:38 -08:00
max furman
a9ea292bd4 sshpop provisioner + ssh renew | revoke | rekey first pass 2019-11-05 16:41:42 -08:00
max furman
36fc7fa174 get-hosts fixes 2019-11-05 16:41:17 -08:00
max furman
64b69374fa Add SSH getHosts api 2019-11-05 16:41:17 -08:00
Mariano Cano
605d39e4e8 Add proxycommand and new lines to templates. 2019-11-05 16:41:17 -08:00
Mariano Cano
3ee0dcec93 Add initial support for check-host endpoint. 2019-11-05 16:41:17 -08:00
Mariano Cano
a50d59338e Rename SSH methods. 2019-11-05 16:41:17 -08:00
Mariano Cano
e84489775b Add support for multiple ssh roots.
Fixes #125
2019-11-05 16:41:17 -08:00
Mariano Cano
7b8bb6deb4 Add initial support for ssh config.
Related to smallstep/cli#170
2019-11-05 16:41:17 -08:00
Mariano Cano
fe3149cf52 Add endpoint to return the SSH public keys.
Related to smallstep/ca-component#195
2019-11-05 16:41:17 -08:00
Max
0a96062b76
Merge pull request #128 from jkralik/returnCertChain
Change api of functions Authority.Sign, Authority.Renew
2019-10-18 14:00:18 -07:00
max furman
d368791606 Add x5c provisioner capabilities 2019-10-14 14:51:37 -07:00
max furman
7aec7c2612 Create ACME database tables when initializing ACME autority. 2019-10-14 14:51:03 -07:00
Jozef Kralik
bc6074f596 Change api of functions Authority.Sign, Authority.Renew
Returns certificate chain instead of 2 members.

Implements #126
2019-10-09 22:23:00 +02:00
max furman
fe7973c060 wip 2019-09-19 13:17:45 -07:00
max furman
e3826dd1c3 Add ACME CA capabilities 2019-09-13 15:48:33 -07:00
Mariano Cano
10e7b81b9f Merge branch 'master' into ssh-ca 2019-09-05 23:06:01 +02:00
max furman
635c59ed24 Accept emails SANs 2019-08-23 15:59:30 -07:00
Mariano Cano
1c8f610ca9 Add initial implementation of an SSH CA using the JWK provisioner.
Fixes smallstep/ca-component#187
2019-07-23 18:46:43 -07:00
Mariano Cano
44e85b51f2 Add some extra coverage. 2019-06-21 15:12:36 -07:00
Mariano Cano
aa63f8f32c Add missing root certificate to test. 2019-06-21 14:52:06 -07:00
Mariano Cano
f9e2ea9bd6 Revert "Do not depend on config package."
This reverts commit cc1c6f2cb4.
2019-06-18 14:44:19 -07:00
Mariano Cano
cc1c6f2cb4 Do not depend on config package.
Config package will panic if it cannot create the step path folder.
2019-06-18 13:16:23 -07:00
Mariano Cano
01b6aebbf7 Make provisioner more configurable.
The intention of this change is to make it usable from cert-manager.
2019-06-17 19:01:04 -07:00
Mariano Cano
e8498bf612 Add new WithDatabase to test reload. 2019-05-10 17:49:15 -07:00
Mariano Cano
120e2d0caf Fix restart with simple DB. 2019-05-10 16:14:21 -07:00
Mariano Cano
3a1a4c5ea9 Do not allow reload with database configuration changes.
Fixes #smallstep/ca-component#170
2019-05-10 15:58:37 -07:00
Mariano Cano
b595c55f0a Update CA properties on reload.
Fixes #71
2019-05-03 15:40:59 -07:00
max furman
c242602231 reload and shutdown trickery
* Only shutdown the database once.
* Be careful when reloading the CA. Depending on whether the DB has
already been shutdown, and error may be unrecoverable.
2019-04-25 13:25:41 -07:00
max furman
cbeca9383b Update nosql integration
* shutdown and reload database on SIGHUP
2019-04-24 18:00:59 -07:00
Mariano Cano
c2c9798149 Fix review issues. 2019-04-12 14:59:55 -07:00
Mariano Cano
46b9b117e3 Add test for provisioner type. 2019-04-12 13:05:56 -07:00
Mariano Cano
13783301ce Remove test for unnecessary method. 2019-04-12 11:22:49 -07:00
Mariano Cano
b4739c185d Remove unnecessary method GetCertificateRenewer. 2019-04-12 11:10:56 -07:00
Mariano Cano
fa216ccaad Use SetTransport method. 2019-04-12 11:06:38 -07:00