Mariano Cano
5d87201abc
Ignore principals validations with OIDC
...
This commit will ignore principals validation when an OIDC provisioner
is used. When the principals in the server does not match the principals
given the validation was failing, even if the proper principals were set
by templates or webhooks. With this change OIDC will not validate the
principals and just set the default ones (name, name@example.org ) plus
the ones in the templates.
This commit also includes a change in the templates to allow to pass
a provisioner to the $(step path)/ssh/config template
Related to #807
2022-12-14 17:51:50 -08:00
Herman Slatman
9007e2ef75
Merge pull request #1201 from smallstep/herman/docker-remote-management
...
Add env vars for enabling Remote Management and ACME provisioner
2022-12-14 19:32:19 +01:00
Max
3fb38a3c14
Merge pull request #1203 from smallstep/dependabot/go_modules/google.golang.org/api-0.104.0
...
Bump google.golang.org/api from 0.103.0 to 0.104.0
2022-12-14 09:38:21 -08:00
Max
c2d441fbfd
Merge pull request #1198 from smallstep/dependabot/go_modules/github.com/Masterminds/sprig/v3-3.2.3
...
Bump github.com/Masterminds/sprig/v3 from 3.2.2 to 3.2.3
2022-12-14 09:36:53 -08:00
dependabot[bot]
e07734d90d
Bump google.golang.org/api from 0.103.0 to 0.104.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.103.0 to 0.104.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.103.0...v0.104.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-12-14 06:38:13 +00:00
dependabot[bot]
260f40c6bc
Bump github.com/Masterminds/sprig/v3 from 3.2.2 to 3.2.3
...
Bumps [github.com/Masterminds/sprig/v3](https://github.com/Masterminds/sprig ) from 3.2.2 to 3.2.3.
- [Release notes](https://github.com/Masterminds/sprig/releases )
- [Changelog](https://github.com/Masterminds/sprig/blob/master/CHANGELOG.md )
- [Commits](https://github.com/Masterminds/sprig/compare/v3.2.2...v3.2.3 )
---
updated-dependencies:
- dependency-name: github.com/Masterminds/sprig/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-12-14 06:38:00 +00:00
Max
f26e70cc16
Merge pull request #1202 from smallstep/dependabot/go_modules/golang.org/x/net-0.4.0
...
Bump golang.org/x/net from 0.2.0 to 0.4.0
2022-12-13 22:36:43 -08:00
dependabot[bot]
47dad19bbc
Bump golang.org/x/net from 0.2.0 to 0.4.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.2.0 to 0.4.0.
- [Release notes](https://github.com/golang/net/releases )
- [Commits](https://github.com/golang/net/compare/v0.2.0...v0.4.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-12-12 15:08:15 +00:00
Herman Slatman
4e3a6e67f1
Add env vars for enabling Remote Management and ACME provisioner.
...
A `step-ca` instance created in a container can now be initialized
with Remote Management by setting `DOCKER_STEPCA_INIT_REMOTE_MANAGEMENT`.
An ACME provisioner with default settings can be created at initialization
by setting `DOCKER_STEPCA_INIT_ACME`.
2022-12-07 22:00:39 -07:00
Mariano Cano
a0423a4539
Merge pull request #1193 from smallstep/changelog
...
Update changelog
2022-11-30 14:13:37 -08:00
Mariano Cano
c6e34f7b84
Update changelog
...
This commit updates the changelog with a comment about .crl.idpURL
configuration property.
2022-11-30 11:27:29 -08:00
Mariano Cano
5cce76672d
Merge pull request #1178 from foleyjohnm/adding-CRL-IDP-config
...
Adding crl idp config
2022-11-30 11:20:58 -08:00
Mariano Cano
002a058807
Use idpURL in json
2022-11-30 11:07:07 -08:00
Mariano Cano
be4cd17b40
Add omit empty to IDPurl
2022-11-29 12:23:02 -08:00
Max
262814ac43
Merge pull request #1191 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.51.0
...
Bump google.golang.org/grpc from 1.50.1 to 1.51.0
2022-11-21 09:13:21 -08:00
Max
b655fcda21
Merge pull request #1190 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.20.1
...
Bump github.com/newrelic/go-agent/v3 from 3.20.0 to 3.20.1
2022-11-21 09:12:41 -08:00
dependabot[bot]
596be4bec7
Bump google.golang.org/grpc from 1.50.1 to 1.51.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.50.1 to 1.51.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.50.1...v1.51.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-11-21 15:23:16 +00:00
dependabot[bot]
afc81d96d8
Bump github.com/newrelic/go-agent/v3 from 3.20.0 to 3.20.1
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.20.0 to 3.20.1.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.20.0...v3.20.1 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-11-21 15:23:08 +00:00
Herman Slatman
27a1ab640d
Merge pull request #1187 from smallstep/herman/fix-stack-trace-error-logging
...
Fix `StackTracedError` logging
2022-11-18 10:36:12 +01:00
Herman Slatman
b8c306ebfa
Refactor tests stylistically
2022-11-18 10:26:03 +01:00
Herman Slatman
36da484604
Merge pull request #1188 from smallstep/herman/fix-stack-trace-error-logging-panos
...
Merge log.Error tests
2022-11-17 23:28:48 +01:00
Panagiotis Siatras
9197de3e96
api/log: removed dependency to certificates/logging
2022-11-17 16:04:21 +02:00
Panagiotis Siatras
b7f4881972
merged log tests
2022-11-17 16:00:01 +02:00
Herman Slatman
27bbc3682b
Improve error log test readability
2022-11-17 13:07:19 +01:00
Herman Slatman
362be72120
Fix StackTracedError
logging
...
When running with `STEPDEBUG=1`, a response with a `StackTracedError`
would result in a nil pointer error. This commit fixes the check and
adds a test case.
2022-11-17 12:34:30 +01:00
Max
8a2e49a1e3
Merge pull request #1182 from smallstep/dependabot/go_modules/google.golang.org/api-0.103.0
...
Bump google.golang.org/api from 0.102.0 to 0.103.0
2022-11-14 09:29:34 -08:00
dependabot[bot]
51503dabac
Bump google.golang.org/api from 0.102.0 to 0.103.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.102.0 to 0.103.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.102.0...v0.103.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-11-14 17:23:29 +00:00
Max
b9b60d50fe
Merge pull request #1183 from smallstep/dependabot/go_modules/golang.org/x/net-0.2.0
...
Bump golang.org/x/net from 0.1.0 to 0.2.0
2022-11-14 09:20:22 -08:00
dependabot[bot]
f63a01a4de
Bump golang.org/x/net from 0.1.0 to 0.2.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.1.0 to 0.2.0.
- [Release notes](https://github.com/golang/net/releases )
- [Commits](https://github.com/golang/net/compare/v0.1.0...v0.2.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-11-14 15:07:09 +00:00
Mariano Cano
7a8c6c0abe
Merge pull request #1179 from smallstep/changelog
...
Prepare changelog for v0.23.0 release
2022-11-11 13:09:41 -08:00
Mariano Cano
6d9c184e5a
Prepare changelog for v0.23.0 release
2022-11-11 11:39:04 -08:00
foleyjohnm
d6f9b3336d
Update config.go
2022-11-11 11:52:29 -05:00
foleyjohnm
c79d4e9316
adding CRLIDP config
2022-11-11 11:50:20 -05:00
Mariano Cano
adad7ef970
Merge pull request #1177 from smallstep/fix-cli-738
...
Return an appropriate error when requests fail
2022-11-10 14:59:35 -08:00
Mariano Cano
fcfd2b9bdc
Return an appropriate error when requests fail
...
If an http client Do method fails, it always returns an *url.URL error,
this change generalizes all those errors in one common method instead of
returning an fake HTTP error.
Fixes smallstep/cli#738
2022-11-10 14:49:16 -08:00
Herman Slatman
1f19b8ec5e
Merge pull request #1172 from smallstep/herman/remove-acme-cert-charset
...
Remove `charset=utf-8` from ACME certificate requests
2022-11-10 23:32:48 +01:00
Mariano Cano
ffc30f49b1
Merge pull request #1174 from smallstep/fix-cli-730
...
Set dialer local address with STEP_CLIENT_ADDR
2022-11-10 10:29:19 -08:00
Mariano Cano
a800ffe447
Merge pull request #1173 from smallstep/fix-1047
...
Create context for automatic RAs
2022-11-09 17:27:57 -08:00
Mariano Cano
47bd5a80d9
Set dialer local address with STEP_CLIENT_ADDR
...
The environment variable STEP_CLIENT_ADDR can be used to set the local
address to use when dialing an address. This can be useful when step
is behind an CIDR-based ACL.
Fixes smallstep/cli#730
2022-11-09 15:49:19 -08:00
Mariano Cano
fa8d0a68c4
Merge pull request #1169 from smallstep/root-bundle
...
Allow root and federated root bundles
2022-11-09 12:34:22 -08:00
Mariano Cano
893147d23a
Create context for automatic RAs
...
It creates a new context with the given name if the flags --token
and --context are passed, and the context does not exist.
Fixes #1047
2022-11-09 12:06:45 -08:00
Herman Slatman
817edcbba5
Remove charset=utf-8
from ACME certificate requests
2022-11-09 19:57:50 +01:00
Mariano Cano
ddd5057f63
Allow root and federated root bundles
...
This commit changes the parsing of root and federated roots to support
a bundle of certificates, this makes easier to configure a root rotation
when using helm charts, just appending the old root.
2022-11-08 17:06:22 -08:00
Mariano Cano
e0215e7243
Merge pull request #1167 from smallstep/linked-ra-renewal
...
Add support for linked RA renewals
2022-11-08 14:34:21 -08:00
Max
ca6f4514fd
Merge pull request #1166 from smallstep/max/remove-docs
...
Remove deprecated docs directory
2022-11-08 14:30:17 -08:00
Mariano Cano
07c56f577a
Add support for linked RA renewals
2022-11-08 14:25:54 -08:00
Mariano Cano
3a89428b0f
Merge pull request #1165 from smallstep/upgrade-crypto
...
Upgrade go.step.sm/crypto
2022-11-08 10:17:55 -08:00
Mariano Cano
b31cf1fc18
Fix merge and use last version of linkedca
2022-11-08 10:12:19 -08:00
Mariano Cano
2b928b1afd
Merge branch 'master' into upgrade-crypto
2022-11-08 10:10:34 -08:00
Herman Slatman
c169defc73
Merge pull request #1136 from smallstep/herman/ignore-empty-acme-meta
2022-11-08 09:56:00 +01:00