Commit graph

655 commits

Author SHA1 Message Date
Oleksandr Kovalchuk
ec8ff0bced
Add testcase which ensures we pass correct domain to lookupTxt
Make sure we do not pass domains with asterisk (wildcard) in the middle,
like _acme-challenge.*.example.com to lookupTxt function, but preprocess
domain and remove leading wildcard so we lookup for
_acme-challenge.example.com.
2019-12-20 22:54:41 +02:00
Oleksandr Kovalchuk
46832bb9b3
Remove superflurous Printf statement
The statement was used for debug purposes and should not be included in
the final build
2019-12-20 22:22:12 +02:00
Oleksandr Kovalchuk
a995cca418
Perform domain normalization for wildcard domains
Perform domain normalization for wildcard domains, so we do query
TXT records for _acme-challenge.example.domain instead of
_acme-challenge.*.example.domain when performing DNS-01 challenge. In
this way the behavior is consistent with letsencrypt and records queried
are in sync with the ones that are shown in certbot manual mode.
2019-12-20 19:17:53 +02:00
Max
9ec2fe74b4
Merge pull request #134 from smallstep/ssh-key-names
Add `ca` to ssh PKI names for clarity
2019-11-05 16:35:30 -08:00
max furman
4cae3bb37c Add ca to ssh PKI names for clarity 2019-11-05 16:20:29 -08:00
Max
ff13b2a699
Merge pull request #133 from smallstep/service-account
kubernetes service account provisioner
2019-10-29 17:45:13 -07:00
max furman
8f07ff6a39 Add kubernetes service account provisioner 2019-10-29 17:42:50 -07:00
Max
24ab77b517
Merge pull request #132 from rmedaer/master
Fix Debian package link and version in README
2019-10-24 13:01:44 -07:00
Raphael Medaer
64c72cf938
Fix Debian package link and version in README
Following the README procedure to install the Debian packages, I figured
out that the links were broken.
2019-10-24 09:58:41 +02:00
Mariano Cano
893b13c277
Merge pull request #130 from smallstep/go-mod
Use go mod in step certificates.
2019-10-22 17:47:14 -07:00
Mariano Cano
edac867cf6 Update dependencies. 2019-10-22 17:41:30 -07:00
Mariano Cano
6c3e5278e2 Update steps for go mod in distribution.md 2019-10-22 17:39:31 -07:00
Mariano Cano
5cdb8f63b2 Add ignored files go.mod and go.sum 2019-10-21 18:56:48 -07:00
Mariano Cano
0631872244 Add go mod download. 2019-10-21 18:52:01 -07:00
Mariano Cano
ac536a42cf Use go mod in step certificates. 2019-10-21 18:45:55 -07:00
Max
0a96062b76
Merge pull request #128 from jkralik/returnCertChain
Change api of functions Authority.Sign, Authority.Renew
2019-10-18 14:00:18 -07:00
max furman
9060d512f9 dep update cli 2019-10-14 15:10:03 -07:00
max furman
397c6466a2 dep update smallstep/cli 2019-10-14 14:55:12 -07:00
max furman
d368791606 Add x5c provisioner capabilities 2019-10-14 14:51:37 -07:00
max furman
2781045524 dep update nosql 2019-10-14 14:51:03 -07:00
max furman
7aec7c2612 Create ACME database tables when initializing ACME autority. 2019-10-14 14:51:03 -07:00
Joseph Voss
f53f4720ad Fix formatting around step certificate install link 2019-10-14 14:51:03 -07:00
max furman
c436dd7363 Fix broken link in getting started guide 2019-10-14 14:51:03 -07:00
Jozef Kralik
bc6074f596 Change api of functions Authority.Sign, Authority.Renew
Returns certificate chain instead of 2 members.

Implements #126
2019-10-09 22:23:00 +02:00
Max
e2858e17b0
Merge pull request #120 from josephvoss/doc_acme_formatting
Fix formatting around step certificate install link
2019-10-07 12:44:30 -07:00
Joseph Voss
fb7298fe95
Fix formatting around step certificate install link 2019-10-07 11:38:37 -04:00
max furman
06db0bc64c Fix broken link in getting started guide 2019-10-03 10:39:41 -07:00
Mariano Cano
a719a847e4
Merge pull request #116 from 4x0v7/provisioner-readme-fix
Fix for typo in `configurationEndpoint`
2019-10-01 17:07:50 -07:00
Andy Wilson
812c3049cf Fix for typo in configurationEndpoint 2019-10-01 22:20:03 +13:00
max furman
e92dfb2516 Fix authz shadow declarations 2019-09-30 11:49:15 -07:00
Mariano Cano
effb490d27
Merge pull request #101 from smallstep/onboarding
Onboarding flow
2019-09-26 17:34:15 -07:00
Mariano Cano
d3361e7a58 Add UsageText to virtual command. 2019-09-26 17:03:27 -07:00
Mariano Cano
be07334164
Merge branch 'master' into onboarding 2019-09-26 15:36:19 -07:00
Mariano Cano
120ebf3941 Update dependencies. 2019-09-26 15:34:56 -07:00
Mariano Cano
8b8faf1b2d Update pki with changes in smallstep/cli 2019-09-26 15:23:32 -07:00
max furman
83a8139543 dep update nosql
* Fixes #112
2019-09-24 14:31:07 -07:00
Mariano Cano
d0e5976c06 Use production URL and add description. 2019-09-24 12:15:41 -07:00
Mariano Cano
c78a47620e Update cli 2019-09-20 16:10:35 -07:00
Mariano Cano
59526d3225
Merge pull request #105 from smallstep/okta-support
Address support on OIDC provisioners
2019-09-20 15:33:11 -07:00
Mariano Cano
39b41b5e83
Merge pull request #107 from smallstep/ssh-valid-after
Truncate to seconds ValidAfter
2019-09-19 15:27:28 -07:00
Max
9f0d8545a3
Merge pull request #106 from smallstep/lint
Added a staticcheck and unused linters and trying to clear up new errors
2019-09-19 15:22:55 -07:00
Mariano Cano
3d46bc13f5 Remove http.CloseNotifier wrapper.
It's deprecated.
2019-09-19 14:36:11 -07:00
Mariano Cano
d59a5b222f Truncate to seconds to avoid rounding up times.
It can cause that certs are not valid yet, if they are used right away.
2019-09-19 13:42:24 -07:00
max furman
fe7973c060 wip 2019-09-19 13:17:45 -07:00
Mariano Cano
adc1d54b0d Define valid after as 1m before now.
It avoids errors with immediate use of cert.
2019-09-19 12:37:41 -07:00
Mariano Cano
fa7273d4f5 Add docs on listenAddress. 2019-09-19 10:20:41 -07:00
Mariano Cano
72f1a61f06 Increase coverage. 2019-09-18 18:08:26 -07:00
Mariano Cano
b7045f27a9 Increase coverage. 2019-09-18 17:13:58 -07:00
Mariano Cano
a16b2125bc Fix tests. 2019-09-18 16:04:43 -07:00
Mariano Cano
6c4abfabbb Make /.well-known/openid-configuration optional 2019-09-18 15:54:10 -07:00