Mariano Cano
39ae5636fe
Complete AuthDB interface.
2020-01-28 13:28:16 -08:00
Mariano Cano
d4627d1282
Make provisioner tests compile, they are still failing.
2020-01-28 13:28:16 -08:00
Mariano Cano
a8a6d0ada3
Fix indentation.
2020-01-28 13:28:16 -08:00
Mariano Cano
5c24ca81f4
Allow to set the ssh user, and registry username and password.
2020-01-28 13:28:16 -08:00
Mariano Cano
cf592fa0e1
Remove global check for number of k8sSA provisioners.
...
This was causing a bug in the reload of the ca.
2020-01-28 13:28:16 -08:00
max furman
5788ac3f4f
sshpop token should not allow renew/rekey of user ssh certs
2020-01-28 13:28:16 -08:00
max furman
54e3cf7322
Add multiuse capability to k8ssa provisioners
2020-01-28 13:28:16 -08:00
Mariano Cano
0ae9bab21e
Fix api tests.
2020-01-28 13:28:16 -08:00
max furman
29853ae016
sshpop provisioner + ssh renew | revoke | rekey first pass
2020-01-28 13:28:16 -08:00
max furman
c04f1e1bd4
sshpop first pass
2020-01-28 13:28:16 -08:00
max furman
862d704f6b
get-hosts fixes
2020-01-28 13:28:16 -08:00
max furman
5616386eed
Add SSH getHosts api
2020-01-28 13:28:16 -08:00
Mariano Cano
ded8087042
Go mod tidy.
2020-01-28 13:28:16 -08:00
Mariano Cano
b4f02a04e1
Make templates public.
2020-01-28 13:28:16 -08:00
Mariano Cano
8e794259eb
Update dependencies.
2020-01-28 13:28:16 -08:00
Mariano Cano
b8817ad648
Add proxycommand and new lines to templates.
2020-01-28 13:28:16 -08:00
Mariano Cano
c7e4cc96a4
Change default user duration to 16h.
2020-01-28 13:28:16 -08:00
Mariano Cano
c729c5f925
Fix list of user ssh public keys.
2020-01-28 13:28:16 -08:00
Mariano Cano
ec90c41de6
Use nosql version with go mod.
2020-01-28 13:28:16 -08:00
Mariano Cano
d59a07ad89
Upgrade cli version.
2020-01-28 13:28:16 -08:00
Mariano Cano
bceb12a169
Upgrade go-jose to 2.4.0.
2020-01-28 13:28:16 -08:00
Mariano Cano
ee22778264
Fix lint error.
2020-01-28 13:28:16 -08:00
Mariano Cano
6489c26d4c
Use github.com/Masterminds/sprig/v3
2020-01-28 13:28:16 -08:00
Mariano Cano
4b68f1611f
Add tests for templates and some fixes.
2020-01-28 13:28:16 -08:00
Mariano Cano
8939caace4
Add tests for ssh authority methods.
2020-01-28 13:28:16 -08:00
Mariano Cano
e0bfbc4b62
Fix known_host path.
2020-01-28 13:28:16 -08:00
Mariano Cano
4f06f3901e
Add some ssh related tests.
2020-01-28 13:28:16 -08:00
Mariano Cano
385bf0a14a
Fix lint, add keys to fields.
2020-01-28 13:28:16 -08:00
Mariano Cano
d880a98295
Add tests for ssh api methods.
2020-01-28 13:28:16 -08:00
Mariano Cano
08850d5334
Add support for federated keys.
2020-01-28 13:28:16 -08:00
Mariano Cano
a713277453
Fix return of host configurations.
2020-01-28 13:28:16 -08:00
Mariano Cano
1b0d05097b
Add Write method to templates.Output.
2020-01-28 13:28:16 -08:00
Mariano Cano
b792d5c07d
Add first version of ssh templates.
2020-01-28 13:28:16 -08:00
Mariano Cano
019f679189
Create templates path, and remove unnecessary arguments.
2020-01-28 13:28:16 -08:00
Mariano Cano
37f17213bb
Add initial support for check-host endpoint.
2020-01-28 13:28:16 -08:00
Mariano Cano
d08db4df23
Rename SSH methods.
2020-01-28 13:28:16 -08:00
Mariano Cano
b5bc249e1c
Add support for multiple ssh roots.
...
Fixes #125
2020-01-28 13:28:16 -08:00
Mariano Cano
91130b9c3f
Add support for user data in templates.
2020-01-28 13:28:16 -08:00
Mariano Cano
a35988ff08
Add initial support for ssh config.
...
Related to smallstep/cli#170
2020-01-28 13:28:16 -08:00
Mariano Cano
b000b59ee6
Fix HTTP method for /ssh/sign
2020-01-28 13:28:16 -08:00
Mariano Cano
d4c47cf3e1
Fix tests.
2020-01-28 13:28:16 -08:00
Alan Christopher Thomas
8f08b47a9c
Rough wiring for basics of connecting to onboarding flow
2020-01-28 13:28:16 -08:00
Mariano Cano
961be1fbc7
Add endpoint to return the SSH public keys.
...
Related to smallstep/ca-component#195
2020-01-28 13:28:16 -08:00
Mariano Cano
a197158426
Add initial implementation of ssh config.
2020-01-28 13:28:16 -08:00
max furman
967e86a48b
Simplify trimming *. prefix of domain in acme dns validation.
2019-12-20 13:32:44 -08:00
Max
37d33968f1
Merge pull request #146 from anxolerd/normalize-wildcard
...
Perform domain normalization for wildcard domains
2019-12-20 13:29:24 -08:00
Oleksandr Kovalchuk
ec8ff0bced
Add testcase which ensures we pass correct domain to lookupTxt
...
Make sure we do not pass domains with asterisk (wildcard) in the middle,
like _acme-challenge.*.example.com to lookupTxt function, but preprocess
domain and remove leading wildcard so we lookup for
_acme-challenge.example.com.
2019-12-20 22:54:41 +02:00
Oleksandr Kovalchuk
46832bb9b3
Remove superflurous Printf statement
...
The statement was used for debug purposes and should not be included in
the final build
2019-12-20 22:22:12 +02:00
Oleksandr Kovalchuk
a995cca418
Perform domain normalization for wildcard domains
...
Perform domain normalization for wildcard domains, so we do query
TXT records for _acme-challenge.example.domain instead of
_acme-challenge.*.example.domain when performing DNS-01 challenge. In
this way the behavior is consistent with letsencrypt and records queried
are in sync with the ones that are shown in certbot manual mode.
2019-12-20 19:17:53 +02:00
Max
9ec2fe74b4
Merge pull request #134 from smallstep/ssh-key-names
...
Add `ca` to ssh PKI names for clarity
2019-11-05 16:35:30 -08:00