max furman
|
accf1be7e9
|
wip
|
2020-06-25 14:02:24 -07:00 |
|
max furman
|
71d87b4e61
|
wip
|
2020-06-24 23:25:15 -07:00 |
|
max furman
|
d25e7f64c2
|
wip
|
2020-06-24 09:58:40 -07:00 |
|
max furman
|
3636ba3228
|
wip
|
2020-06-23 17:13:39 -07:00 |
|
max furman
|
1951669e13
|
wip
|
2020-06-23 11:10:45 -07:00 |
|
max furman
|
7d5cf34ce5
|
Update profileLimitDuration validator ...
- respect notBefore of the provisioner
- modify/fix the reported errors
|
2020-06-16 12:16:43 -07:00 |
|
Oleksandr Kovalchuk
|
322200b7db
|
Implement modifier to set CommonName
Implement modifier which sets CommonName to the certificate if
CommonName is empty and forceCN is set in the config. Replace previous
implementation introduced in 0218018cee
with new modifier.
Closes https://github.com/smallstep/certificates/issues/259
Ref: https://github.com/smallstep/certificates/pull/260#issuecomment-628961322
|
2020-05-17 20:23:13 +03:00 |
|
Mariano Cano
|
13507efb35
|
Remove the requirement for CSR to have a common name.
Fixes #226
|
2020-04-20 10:43:33 -07:00 |
|
Mariano Cano
|
bfe1f4952d
|
Rename interface to CertificateEnforcer and add tests.
|
2020-03-31 11:41:36 -07:00 |
|
Mariano Cano
|
64f26c0f40
|
Enforce a duration for identity certificates.
|
2020-03-30 17:33:04 -07:00 |
|
max furman
|
397a181d10
|
Add backdate validation to sshCertValidityValidator.
|
2020-01-28 13:29:40 -08:00 |
|
max furman
|
dccbdf3a90
|
Introduce generalized statusCoder errors and loads of ssh unit tests.
* StatusCoder api errors that have friendly user messages.
* Unit tests for SSH sign/renew/rekey/revoke across all provisioners.
|
2020-01-28 13:29:40 -08:00 |
|
Mariano Cano
|
93b65bee7c
|
Add unit test for profileDefaultDuration.
|
2020-01-28 13:29:39 -08:00 |
|
Mariano Cano
|
84ff172093
|
Add support for backdate to SSH certificates.
|
2020-01-28 13:29:39 -08:00 |
|
Mariano Cano
|
5565d61bf3
|
Add fault tolerance against clock skew accross system on TLS certificates.
|
2020-01-28 13:29:39 -08:00 |
|
max furman
|
d368791606
|
Add x5c provisioner capabilities
|
2019-10-14 14:51:37 -07:00 |
|
max furman
|
2b41faa9cf
|
Enforce >= 2048 bit rsa keys at the provisioner layer
* Fixes #94
* In the future this should be configurable by provisioner
|
2019-08-27 14:44:59 -07:00 |
|
max furman
|
635c59ed24
|
Accept emails SANs
|
2019-08-23 15:59:30 -07:00 |
|
Mariano Cano
|
900ab9cc12
|
Allow custom common names in cloud identity provisioners.
|
2019-07-15 15:52:36 -07:00 |
|
Mariano Cano
|
00fed1c538
|
Add initial version of time duration support in sign requests.
|
2019-03-22 18:55:28 -07:00 |
|
Mariano Cano
|
7fd737cbb1
|
Fix lint warnings.
|
2019-03-11 18:47:57 -07:00 |
|
Mariano Cano
|
c24d868d9d
|
Add tests for sign options.
|
2019-03-11 13:25:19 -07:00 |
|
Mariano Cano
|
955405d6aa
|
Add some comments added to master.
|
2019-03-08 18:09:35 -08:00 |
|
Mariano Cano
|
2a5430fee1
|
Complete tests for collection.
|
2019-03-08 12:19:44 -08:00 |
|
Mariano Cano
|
47817ab212
|
Fix interface type.
|
2019-03-07 16:04:56 -08:00 |
|
Mariano Cano
|
a97ea87caa
|
Move options to provisioner so we can set the duration of the cert.
|
2019-03-07 15:14:18 -08:00 |
|
Mariano Cano
|
6d395f3818
|
Add missing validy validator to oidc.
|
2019-03-06 17:30:14 -08:00 |
|
Mariano Cano
|
34833d4fd5
|
Add validators from the authority package.
|
2019-03-06 14:58:46 -08:00 |
|
Mariano Cano
|
a2a45f635b
|
Add initial implementation of an OIDC provisioner.
|
2019-03-04 17:58:20 -08:00 |
|