Mariano Cano
967d9136ca
Cleanup Vault CAS integration
2022-04-11 18:44:13 -07:00
Mariano Cano
9134bad22c
Run go mod tidy.
2022-04-11 14:59:22 -07:00
Mariano Cano
37b521ec6c
Merge branch 'master' into feat/vault
2022-04-11 14:57:45 -07:00
Mariano Cano
1880b4b2d0
Add codecov token.
...
It shouldn't be necessary for public repos, but GitHub actions
error suggests to add it.
2022-04-11 14:21:14 -07:00
Mariano Cano
435bb8123b
Upgrade codecov to v2
2022-04-11 14:14:02 -07:00
Mariano Cano
c8c59d68f5
Allow mTLS renewals if the provisioner extension does not exists.
...
This fixes a backward compatibility issue with with the new
LoadProvisionerByCertificate.
2022-04-11 12:19:42 -07:00
Mariano Cano
2fbff47acf
Add missing return in test.
2022-04-11 12:18:44 -07:00
Panagiotis Siatras
f2cf9cf828
authority/status: removed the package ( #892 )
2022-04-11 11:56:16 +03:00
Mariano Cano
2ace3097b7
Update changelog.
2022-04-08 14:29:20 -07:00
Mariano Cano
af8fcf5b01
Use always LoadProvisionerByCertificate on authority package
2022-04-08 14:18:24 -07:00
Mariano Cano
1d1e095447
Add tests for LoadProvisionerByCertificate.
2022-04-08 13:06:29 -07:00
Mariano Cano
e53bd64861
Use release version of linkedca.
2022-04-08 11:13:42 -07:00
Mariano Cano
dfdc9c06ed
Fix linter error importShadow
2022-04-07 18:33:13 -07:00
Mariano Cano
304bb5b97a
Remove unused code.
2022-04-07 18:31:41 -07:00
Mariano Cano
cca5679a11
Use branch dependency for linkedca
2022-04-07 18:29:38 -07:00
Mariano Cano
8abd568f03
Merge branch 'master' into fix/adminra
2022-04-07 18:25:41 -07:00
Mariano Cano
67abe6607e
Merge pull request #863 from smallstep/feat/linkedra
...
Linked RA improvements
2022-04-07 18:24:17 -07:00
Mariano Cano
d4013f0df6
Update linkedca
2022-04-07 18:19:56 -07:00
Mariano Cano
b7e11da480
Merge branch 'master' into feat/linkedra
2022-04-07 18:19:04 -07:00
Mariano Cano
c55b27a2fc
Refactor admin token to use with RAs.
2022-04-07 18:14:43 -07:00
Herman Slatman
1fd2481cb4
Merge pull request #891 from smallstep/herman/fix-acme-ipv6-challenge
...
Fix ACME IPv6 HTTP-01 challenges
2022-04-07 12:54:32 +02:00
Herman Slatman
479c6d2bf5
Fix ACME IPv6 HTTP-01 challenges
...
Fixes #890
2022-04-07 12:37:34 +02:00
Mariano Cano
db337debcd
Load provisioner from the database instead of the extension.
2022-04-05 19:25:47 -07:00
Mariano Cano
7d6116c3d0
Add GetCertificateData and refactor x509_certs_data.
2022-04-05 19:24:53 -07:00
Mariano Cano
41c6ded85e
Store in the db the provisioner that granted a cert.
2022-04-05 18:00:01 -07:00
Mariano Cano
df8ffb35af
Remove unnecessary database in provisioner config.
2022-04-05 17:39:06 -07:00
Carl Tashian
949c29d7db
Merge pull request #862 from smallstep/startup-info
...
Print some basic configuration info on startup
2022-04-05 15:33:59 -07:00
Carl Tashian
2e61e01f41
Linted.
2022-04-05 10:59:35 -07:00
Carl Tashian
150eee70df
Updates based on Herman's feedback
2022-04-05 10:59:25 -07:00
Carl Tashian
acc75bc679
Add context name to startup info
2022-04-04 12:29:27 -07:00
Carl Tashian
4b9f44982d
Merge branch 'master' into startup-info
2022-04-04 12:19:55 -07:00
Carl Tashian
43f2c655b9
More info on startup
2022-04-04 12:16:37 -07:00
Carl Tashian
7ebb2e4c74
Update ca/ca.go
...
Co-authored-by: Herman Slatman <hslatman@users.noreply.github.com>
2022-04-04 11:14:04 -07:00
Mariano Cano
dc9db5fbba
Merge pull request #882 from smallstep/dep/crypto
...
Upgrade go.step.sm/crypto
2022-03-30 18:31:07 -07:00
Mariano Cano
f5bf46b950
Upgrade go.step.sm/crypto
2022-03-30 18:24:17 -07:00
Carl Tashian
1ba1584c7a
Formatted.
2022-03-30 16:08:10 -07:00
Carl Tashian
a13e58e340
Update GetAuthorityInfo -> GetInfo
2022-03-30 16:07:16 -07:00
Carl Tashian
90cb6315b1
Progress.
2022-03-30 16:05:26 -07:00
Carl Tashian
055e75f394
Progress?
2022-03-30 15:48:42 -07:00
Panagiotis Siatras
00634fb648
api/render, api/log: initial implementation of the packages ( #860 )
...
* api/render: initial implementation of the package
* acme/api: refactored to support api/render
* authority/admin: refactored to support api/render
* ca: refactored to support api/render
* api: refactored to support api/render
* api/render: implemented Error
* api: refactored to support api/render.Error
* acme/api: refactored to support api/render.Error
* authority/admin: refactored to support api/render.Error
* ca: refactored to support api/render.Error
* ca: fixed broken tests
* api/render, api/log: moved error logging to this package
* acme: refactored Error so that it implements render.RenderableError
* authority/admin: refactored Error so that it implements render.RenderableError
* api/render: implemented RenderableError
* api/render: added test coverage for Error
* api/render: implemented statusCodeFromError
* api: refactored RootsPEM to work with render.Error
* acme, authority/admin: fixed pointer receiver name for consistency
* api/render, errs: moved StatusCoder & StackTracer to the render package
2022-03-30 11:22:22 +03:00
Mariano Cano
abf5fc32a3
Format comment.
2022-03-29 14:26:17 -07:00
Mariano Cano
b42c1dfe64
Merge pull request #879 from smallstep/feat/WithX509SignerFunc
...
Add authority.WithX509SignerFunc
2022-03-29 14:23:33 -07:00
Mariano Cano
c480936ba4
Split comments.
2022-03-29 12:02:17 -07:00
Mariano Cano
0b388942e8
Upgrade linkedca package.
2022-03-28 18:23:36 -07:00
Mariano Cano
955d4cf80d
Add authority.WithX509SignerFunc
...
This change adds a new authority option that allows to pass a callback
that returns the certificate chain and signer used to sign X.509
certificates.
This option will be used by Caddy, they renew the intermediate
certificate weekly and there's no other way to replace it without
re-creating the embedded CA.
Fixes #874
2022-03-28 17:54:35 -07:00
Mariano Cano
8d1ce3133a
Merge branch 'master' into feat/linkedra
2022-03-28 15:07:36 -07:00
Mariano Cano
6851842841
Fix unit tests.
2022-03-28 15:06:56 -07:00
Mariano Cano
580a9c1476
Get linked RA configuration using the linked ca client.
2022-03-28 14:55:40 -07:00
Herman Slatman
4cde2696e5
Update cloud.google.com/go/kms
2022-03-28 14:55:40 -07:00
Andrew Reed
52d7f084d2
Add /roots.pem handler ( #866 )
...
* Add /roots.pem handler
* Review changes
* Remove no peer cert test case
2022-03-28 14:55:40 -07:00