Commit graph

1228 commits

Author SHA1 Message Date
max furman
8e3481a8ef [logger map] small optimization
Rather than doing two key writes and one lookup, just write once.
2020-08-12 16:35:38 -07:00
max furman
55bf5a4526 Add cert logging for acme/certificate api 2020-08-12 15:50:45 -07:00
max furman
e8c5a3b320 Document concurrency limitations in ACME server
- in concurrency / HA section
2020-08-07 13:48:35 -07:00
Max
0eab3727bf
Merge pull request #336 from smallstep/max/docker
introduce docker-buildx
2020-08-04 11:21:53 -07:00
max furman
476bca3717 Add make docker-dev building and testing locally. 2020-08-03 20:45:51 -07:00
Max
7b9ddf1d09
Merge pull request #337 from smallstep/max/debName
Convert '-' to '~' in deb package name
2020-08-03 11:17:13 -07:00
max furman
652377dbf6 Convert '-' to '~' in deb package name 2020-08-03 09:23:29 -07:00
max furman
9e9808fe3d introduce docker-buildx 2020-08-02 13:40:49 -07:00
Max
e55ad2ad52
Merge pull request #335 from smallstep/max/sshpop
Add SSHPOP default provisioner if SSH enabled during init
2020-07-31 11:07:48 -07:00
max furman
3fb116f1b4 Add SSHPOP default provisioner if SSH enabled during init 2020-07-31 11:05:26 -07:00
max furman
3f844c5e23 Update the way SubjectKeyId is calculated, and more ...
- swith lint to first in line for `make all`
- update tests to conform with new subjectkeyid
2020-07-28 12:00:07 -07:00
David Cowden
86efe7aff0 aws: use http.NoBody instead of nil
It's a little more descriptive.
2020-07-22 18:39:46 -07:00
David Cowden
2b121efc8f aws: test constructor with empty IDMS string array 2020-07-22 18:33:44 -07:00
David Cowden
dc39eef721 aws: test badIDMS functional path
The existing test only covers the constructor logic. Also test the live
code path that is executed when a bad IDMS version is supplied.
2020-07-22 17:40:26 -07:00
David Cowden
51f16ee2e0 aws: add tests covering metadata service versions
* Add constructor tests for the aws provisioner.
* Add a test to make sure the "v1" logic continues to work.

By and large, v2 is the way to go. However, there are some instances of
things that specifically request metadata service version 1 and so this
adds minimal coverage to make sure we don't accidentally break the path
should anyone need to depend on the former logic.
2020-07-22 16:52:06 -07:00
David Cowden
5efe5f3573 metadata-v2: pull in joshathysolate-master
Taking of this PR to get it across the goal line.
2020-07-22 04:15:34 -07:00
Carl Tashian
c1e6c0285a
Merge pull request #325 from smallstep/readme-updates
README updates, round 2
2020-07-20 18:56:37 -05:00
Carl Tashian
912e298043 Whitelist -> Allowlist per https://tools.ietf.org/id/draft-knodel-terminology-01.html 2020-07-20 15:42:47 -07:00
Carl Tashian
ed89367fca Round 2 of README updates 2020-07-20 14:10:36 -07:00
Mariano Cano
51b9867c51
Merge pull request #318 from nop33/getting-started-docs-fixes
Getting Started docs fixes
2020-07-15 13:02:47 -07:00
Ilias Trichopoulos
7d5552f53e Fix service logs path 2020-07-14 08:48:43 +02:00
Ilias Trichopoulos
6d8b4a1b9a Fix service name 2020-07-14 08:48:18 +02:00
Ilias Trichopoulos
730639d2a3 Fix service user name
In `ExecStart` the user used us `smallstep` so the same user should be defined in `useradd`.
2020-07-14 08:48:18 +02:00
Carl Tashian
8875097931
Merge pull request #310 from smallstep/fix-docker-build
Fix Docker example build on Linux
2020-07-13 12:23:03 -05:00
Carl Tashian
15bbd1cf20 Remove libpcsclite-dev requirement 2020-07-13 09:29:35 -07:00
Carl Tashian
d0b9538bc5 WIP readme changes 2020-07-13 09:28:46 -07:00
Carl Tashian
8b0da33e27
Merge pull request #313 from smallstep/readme-update
First stab at a README update 😱
2020-07-13 09:45:21 -05:00
Max
fa8a808fc8
Merge pull request #314 from smallstep/max/rekey
A few last fixes and tests added for rekey/renew ...
2020-07-09 12:19:01 -07:00
max furman
fd05f3249b A few last fixes and tests added for rekey/renew ...
- remove all `renewOrRekey`
- explicitly test difference between renew and rekey (diff pub keys)
- add back tests for renew
2020-07-09 12:11:40 -07:00
Max
ea9bc493b8
Merge pull request #307 from dharanikumar-s/master
Add support for rekeying Fixes #292
2020-07-09 11:39:00 -07:00
Carl Tashian
4150ded4c1 First stab at a README update 😱 2020-07-08 18:42:43 -07:00
max furman
b5699892ad Add github response to frequenty asked questions doc
- security risks of exposing the OAuth Client Secret in the output of
  `step ca provisioner list`
2020-07-08 15:18:30 -07:00
dharanikumar-s
57fb0c80cf Removed calculating SubjectKeyIdentifier on Rekey 2020-07-08 12:52:53 +05:30
dharanikumar-s
dfda497929 Renamed RenewOrRekey to Rekey 2020-07-08 11:47:59 +05:30
Carl Tashian
4bde83a262 Fixes #295 2020-07-07 13:09:15 -07:00
dharanikumar-s
fe73154a20 Corrected misspelling 2020-07-05 22:50:02 +05:30
dharanikumar-s
a3b5211e0f gofmted the code 2020-07-05 22:40:36 +05:30
dharanikumar-s
0c21f0ae9e Added error check after GenerateDefaultKeyPair 2020-07-05 22:38:45 +05:30
dharanikumar-s
2479371c06 Added error check while marshalling public key 2020-07-05 22:37:29 +05:30
dharanikumar-s
b368a53149 Modified TestAuthority_Renew to TestAuthority_RenewOrRekey 2020-07-05 22:17:57 +05:30
dharanikumar-s
c8c3581e2f SubjectKeyIdentifier extention is calculated from public key passed to this function instead of copying from old certificate 2020-07-05 22:15:01 +05:30
dharanikumar-s
954fda657b Added renewOrRekey to mockAuthority. Added Test_caHandler_Rekey 2020-07-05 22:05:00 +05:30
dharanikumar-s
01a6469d25 Moved peer certificate check to the first line 2020-07-03 16:00:22 +05:30
dharanikumar-s
8f504483ce Added RenewOrRekey function based on @maraino suggestion. RenewOrReky is called from Renew. 2020-07-03 15:58:15 +05:30
Mariano Cano
6736ddee69 Use smallstep/cli v0.14.6 2020-07-02 13:55:00 -07:00
dharanikumar-s
3813f57b1a Add support for rekeying Fixes #292 2020-07-01 19:10:13 +05:30
max furman
e1fdd9300c go mod tidy 2020-06-30 18:01:31 -07:00
max furman
f5da56e19f Bump version of cli to v0.14.5. 2020-06-30 16:25:58 -07:00
Mariano Cano
900651503e
Merge pull request #305 from mkontani/fix/provisioner-type
docs: fix provisioner type
2020-06-29 12:43:02 -07:00
mkontani
feadaa6c56
docs: fix provisioner type
Signed-off-by: mkontani <itoama@live.jp>
2020-06-30 04:32:42 +09:00