Commit graph

1236 commits

Author SHA1 Message Date
max furman
17097eb9f0 Bump cli to v0.14.1 to break dependency cycle. 2020-04-09 11:04:28 -07:00
max furman
344e7b99fb bump cli dependency 2020-04-09 09:34:20 -07:00
max furman
aecddecf22 Simplify make bundling and generate ARM tarballs. 2020-04-08 14:20:58 -07:00
David Cowden
eb42ea90db ssh/api: Use host tags instead of groups
Tags are more flexible and what we use in the managed offering.
2020-04-03 12:11:19 -07:00
Mariano Cano
1d9edcd48f
Merge pull request #220 from smallstep/identity-cert-duration
Enforce a duration for identity certificates
2020-03-31 13:02:23 -07:00
Mariano Cano
bfe1f4952d Rename interface to CertificateEnforcer and add tests. 2020-03-31 11:41:36 -07:00
Mariano Cano
64f26c0f40 Enforce a duration for identity certificates. 2020-03-30 17:33:04 -07:00
Mariano Cano
041aeb7a90 Add simple rule to run step certificates. 2020-03-25 13:11:03 -07:00
Mariano Cano
83993d31d4
Merge pull request #214 from smallstep/build-with-go.1.13
Use go 1.13 to build certificates
2020-03-24 16:32:32 -07:00
Mariano Cano
1d7ab9145a Avoid lint error. 2020-03-24 14:33:01 -07:00
Mariano Cano
0b62ce9d0e Use go 1.13 to build certificates. 2020-03-24 14:23:02 -07:00
Mariano Cano
3480ed44c7 Upgrade github.com/x/crypto to fix a vulnerability in ssh.
* CVE-2020-9283
2020-03-24 14:17:44 -07:00
max furman
495e60a44b Extraneous fmt.Sprintf 2020-03-23 12:15:46 -07:00
max furman
0d9cd24d78 Slightly decrease version of golanci-lint to match brew. 2020-03-23 12:13:16 -07:00
max furman
fd80da6a8d Bump version of golangci-lint in make bootstrap. 2020-03-23 12:02:43 -07:00
Mariano Cano
ee1c8dd0cd
Merge pull request #207 from smallstep/add-context
Add context to ssh methods
2020-03-11 09:34:52 -07:00
Mariano Cano
fa416336a8 Add context to tests. 2020-03-10 19:17:32 -07:00
Mariano Cano
c49a9d5e33 Add context parameter to all SSH methods. 2020-03-10 19:01:45 -07:00
Carl Tashian
164e4ef2d0 Add Build From Source instructions 2020-03-09 13:24:02 -07:00
Mariano Cano
818c38188f
Merge pull request #204 from smallstep/ssh-cloud-identities
Allow custom principals on cloud identity provisioners
2020-03-05 19:16:34 -08:00
Mariano Cano
349bca06bb Fix line error due to deprecated DialTLS. 2020-03-05 15:11:03 -08:00
Mariano Cano
f868e07a76 Allow to use custom principals on cloud provisioners.
Fixes #203
2020-03-05 14:33:42 -08:00
Mariano Cano
f37554fddb Use go 1.14 2020-03-05 14:33:33 -08:00
Mariano Cano
f5d2f92099 Load identity certificate from disk in each connection. 2020-03-04 15:02:17 -08:00
Carl Tashian
a26d489abd
Merge pull request #199 from smallstep/faq-update
Update FAQ: "I already have PKI"
2020-03-02 09:46:10 -08:00
Carl Tashian
be4b853d3a Typo fix 2020-03-02 09:45:21 -08:00
Mariano Cano
59fc8cdd2d Fix typo in comments. 2020-02-27 10:48:16 -08:00
Carl Tashian
681e15deeb Replace broken aws-cli commands with a Python script 2020-02-26 17:27:03 -08:00
Carl Tashian
76a077ba3e Add CFSSL instructions 2020-02-26 10:59:38 -08:00
Carl Tashian
a1debf7b1e FAQ Update: Intermediate certificates should be valid for 10 years 2020-02-26 10:17:32 -08:00
Mariano Cano
3c5046f0d4
Merge pull request #196 from smallstep/hsm-pending-generation
Retry CloudKMS GetPublicKey
2020-02-25 10:44:14 -08:00
Carl Tashian
043233f90f Update FAQ: I already have PKI 2020-02-24 12:16:16 -08:00
Mariano Cano
1138cc4207 Retry CloudKMS GetPublicKey.
On HSM keys are not generated instantly and the GetPublicKey fails
with a FailedPrecondition error. This change will retry GetPublicKey
if this happens.
2020-02-21 12:36:29 -08:00
Mariano Cano
806abb6232
Merge pull request #192 from smallstep/cloudkms-init
Cloudkms init
2020-02-21 11:19:45 -08:00
Mariano Cano
6b01128bcc Reference root.Subject instead of hardcoding it. 2020-02-21 11:14:11 -08:00
Mariano Cano
32c2558b58 Replace project in output. 2020-02-21 10:55:42 -08:00
Mariano Cano
334d191563 Fix docs. 2020-02-21 10:53:22 -08:00
Mariano Cano
8604c31818 Fix in documentation. 2020-02-21 10:51:43 -08:00
Mariano Cano
91f0caa6ff
Merge pull request #195 from smallstep/custom-templates
Templates without the filesystem
2020-02-20 16:36:08 -08:00
Mariano Cano
914636668a Add support for loading templates without using files. 2020-02-20 15:48:48 -08:00
Mariano Cano
55e661bd26 Add initial docs for cloud kms. 2020-02-18 19:07:42 -08:00
Mariano Cano
1535e95d89 Add tool to initialize pki in cloud kms. 2020-02-18 19:07:12 -08:00
max furman
8e882faf44 Remove extraneous "stage" from travis yml 2020-02-16 13:06:36 -08:00
Mariano Cano
cf7ef472f7
Merge pull request #164 from smallstep/kms
Kms
2020-02-14 12:08:53 -08:00
Mariano Cano
5c8c741fab Fix linting issues. 2020-02-14 11:46:31 -08:00
Mariano Cano
dd5a96a42e Fix typo. 2020-02-14 10:42:50 -08:00
Mariano Cano
b724f5a338 Fix typos. 2020-02-14 10:24:56 -08:00
Mariano Cano
6987a46b76 Skip test on travis. 2020-02-13 18:38:00 -08:00
Mariano Cano
b11bbd5728 Fix typo. 2020-02-13 18:34:43 -08:00
Mariano Cano
05cc1437b7 Remove unnecessary parse of certificate. 2020-02-13 17:48:43 -08:00