Commit graph

659 commits

Author SHA1 Message Date
Mariano Cano
961be1fbc7 Add endpoint to return the SSH public keys.
Related to smallstep/ca-component#195
2020-01-28 13:28:16 -08:00
Mariano Cano
a197158426 Add initial implementation of ssh config. 2020-01-28 13:28:16 -08:00
max furman
967e86a48b Simplify trimming *. prefix of domain in acme dns validation. 2019-12-20 13:32:44 -08:00
Max
37d33968f1
Merge pull request #146 from anxolerd/normalize-wildcard
Perform domain normalization for wildcard domains
2019-12-20 13:29:24 -08:00
Oleksandr Kovalchuk
ec8ff0bced
Add testcase which ensures we pass correct domain to lookupTxt
Make sure we do not pass domains with asterisk (wildcard) in the middle,
like _acme-challenge.*.example.com to lookupTxt function, but preprocess
domain and remove leading wildcard so we lookup for
_acme-challenge.example.com.
2019-12-20 22:54:41 +02:00
Oleksandr Kovalchuk
46832bb9b3
Remove superflurous Printf statement
The statement was used for debug purposes and should not be included in
the final build
2019-12-20 22:22:12 +02:00
Oleksandr Kovalchuk
a995cca418
Perform domain normalization for wildcard domains
Perform domain normalization for wildcard domains, so we do query
TXT records for _acme-challenge.example.domain instead of
_acme-challenge.*.example.domain when performing DNS-01 challenge. In
this way the behavior is consistent with letsencrypt and records queried
are in sync with the ones that are shown in certbot manual mode.
2019-12-20 19:17:53 +02:00
Max
9ec2fe74b4
Merge pull request #134 from smallstep/ssh-key-names
Add `ca` to ssh PKI names for clarity
2019-11-05 16:35:30 -08:00
max furman
4cae3bb37c Add ca to ssh PKI names for clarity 2019-11-05 16:20:29 -08:00
Max
ff13b2a699
Merge pull request #133 from smallstep/service-account
kubernetes service account provisioner
2019-10-29 17:45:13 -07:00
max furman
8f07ff6a39 Add kubernetes service account provisioner 2019-10-29 17:42:50 -07:00
Max
24ab77b517
Merge pull request #132 from rmedaer/master
Fix Debian package link and version in README
2019-10-24 13:01:44 -07:00
Raphael Medaer
64c72cf938
Fix Debian package link and version in README
Following the README procedure to install the Debian packages, I figured
out that the links were broken.
2019-10-24 09:58:41 +02:00
Mariano Cano
893b13c277
Merge pull request #130 from smallstep/go-mod
Use go mod in step certificates.
2019-10-22 17:47:14 -07:00
Mariano Cano
edac867cf6 Update dependencies. 2019-10-22 17:41:30 -07:00
Mariano Cano
6c3e5278e2 Update steps for go mod in distribution.md 2019-10-22 17:39:31 -07:00
Mariano Cano
5cdb8f63b2 Add ignored files go.mod and go.sum 2019-10-21 18:56:48 -07:00
Mariano Cano
0631872244 Add go mod download. 2019-10-21 18:52:01 -07:00
Mariano Cano
ac536a42cf Use go mod in step certificates. 2019-10-21 18:45:55 -07:00
Max
0a96062b76
Merge pull request #128 from jkralik/returnCertChain
Change api of functions Authority.Sign, Authority.Renew
2019-10-18 14:00:18 -07:00
max furman
9060d512f9 dep update cli 2019-10-14 15:10:03 -07:00
max furman
397c6466a2 dep update smallstep/cli 2019-10-14 14:55:12 -07:00
max furman
d368791606 Add x5c provisioner capabilities 2019-10-14 14:51:37 -07:00
max furman
2781045524 dep update nosql 2019-10-14 14:51:03 -07:00
max furman
7aec7c2612 Create ACME database tables when initializing ACME autority. 2019-10-14 14:51:03 -07:00
Joseph Voss
f53f4720ad Fix formatting around step certificate install link 2019-10-14 14:51:03 -07:00
max furman
c436dd7363 Fix broken link in getting started guide 2019-10-14 14:51:03 -07:00
Jozef Kralik
bc6074f596 Change api of functions Authority.Sign, Authority.Renew
Returns certificate chain instead of 2 members.

Implements #126
2019-10-09 22:23:00 +02:00
Max
e2858e17b0
Merge pull request #120 from josephvoss/doc_acme_formatting
Fix formatting around step certificate install link
2019-10-07 12:44:30 -07:00
Joseph Voss
fb7298fe95
Fix formatting around step certificate install link 2019-10-07 11:38:37 -04:00
max furman
06db0bc64c Fix broken link in getting started guide 2019-10-03 10:39:41 -07:00
Mariano Cano
a719a847e4
Merge pull request #116 from 4x0v7/provisioner-readme-fix
Fix for typo in `configurationEndpoint`
2019-10-01 17:07:50 -07:00
Andy Wilson
812c3049cf Fix for typo in configurationEndpoint 2019-10-01 22:20:03 +13:00
max furman
e92dfb2516 Fix authz shadow declarations 2019-09-30 11:49:15 -07:00
Mariano Cano
effb490d27
Merge pull request #101 from smallstep/onboarding
Onboarding flow
2019-09-26 17:34:15 -07:00
Mariano Cano
d3361e7a58 Add UsageText to virtual command. 2019-09-26 17:03:27 -07:00
Mariano Cano
be07334164
Merge branch 'master' into onboarding 2019-09-26 15:36:19 -07:00
Mariano Cano
120ebf3941 Update dependencies. 2019-09-26 15:34:56 -07:00
Mariano Cano
8b8faf1b2d Update pki with changes in smallstep/cli 2019-09-26 15:23:32 -07:00
max furman
83a8139543 dep update nosql
* Fixes #112
2019-09-24 14:31:07 -07:00
Mariano Cano
d0e5976c06 Use production URL and add description. 2019-09-24 12:15:41 -07:00
Mariano Cano
c78a47620e Update cli 2019-09-20 16:10:35 -07:00
Mariano Cano
59526d3225
Merge pull request #105 from smallstep/okta-support
Address support on OIDC provisioners
2019-09-20 15:33:11 -07:00
Mariano Cano
39b41b5e83
Merge pull request #107 from smallstep/ssh-valid-after
Truncate to seconds ValidAfter
2019-09-19 15:27:28 -07:00
Max
9f0d8545a3
Merge pull request #106 from smallstep/lint
Added a staticcheck and unused linters and trying to clear up new errors
2019-09-19 15:22:55 -07:00
Mariano Cano
3d46bc13f5 Remove http.CloseNotifier wrapper.
It's deprecated.
2019-09-19 14:36:11 -07:00
Mariano Cano
d59a5b222f Truncate to seconds to avoid rounding up times.
It can cause that certs are not valid yet, if they are used right away.
2019-09-19 13:42:24 -07:00
max furman
fe7973c060 wip 2019-09-19 13:17:45 -07:00
Mariano Cano
adc1d54b0d Define valid after as 1m before now.
It avoids errors with immediate use of cert.
2019-09-19 12:37:41 -07:00
Mariano Cano
fa7273d4f5 Add docs on listenAddress. 2019-09-19 10:20:41 -07:00