mbiryukova/certificates
1
0
Fork 0
forked from TrueCloudLab/certificates
Code Pull requests Activity
789 commits 33 branches 197 tags 41 MiB
Commit graph

131 commits

Author SHA1 Message Date
Mariano Cano
f21f07689e Fix a couple of race conditions in the renewal of certificates. 2020-01-24 13:46:54 -08:00
max furman
b265877050 Simplify statuscoder error generators. 2020-01-24 13:46:11 -08:00
max furman
c387b21808 Introduce generalized statusCoder errors and loads of ssh unit tests. 
* StatusCoder api errors that have friendly user messages.
* Unit tests for SSH sign/renew/rekey/revoke across all provisioners.
 2020-01-22 17:25:23 -08:00
Mariano Cano
64e0a2ca6f Disable backdata on ca tests. 2020-01-03 18:16:45 -08:00
Mariano Cano
76c14560b0 Use errs package for HTTP errors. 2020-01-03 17:41:16 -08:00
Mariano Cano
0b5d37b284 Add method to just write the identity certificate. 2019-12-18 14:39:01 -08:00
Mariano Cano
839fe6b952 Add method to renew the identity. 2019-12-18 12:46:46 -08:00
max furman
aa58940582 Should be returning nil from applyIdentity if cert expired. 2019-12-17 15:53:37 -08:00
max furman
f9ef5070f9 Move api errors to their own package and modify the typedef 2019-12-17 14:26:02 -08:00
Mariano Cano
7ecb831e07 Add wrappers to identity methods in the ca package. 2019-12-12 13:16:17 -08:00
Mariano Cano
3f71b8debd Add mTLS test for identity client. 2019-12-12 12:48:34 -08:00
Mariano Cano
3717c7a8d3 Improve identity tests. 2019-12-12 12:23:53 -08:00
Mariano Cano
0d9a9e083e Add identity client and move identity to a new package. 2019-12-11 20:23:44 -08:00
Mariano Cano
89b216c21e Fix test. 2019-12-11 18:24:32 -08:00
Mariano Cano
28b08ef46b Fail silently if the identity fails. 2019-12-11 16:27:37 -08:00
Max
1f42637ba1
Merge pull request #143 from smallstep/expired-cert 
Expired cert
 2019-12-11 14:55:21 -08:00
max furman
1e17ec7d33 Use x5cInsecure token for /ssh/check-host endpoint 2019-12-11 14:54:29 -08:00
Mariano Cano
7fe1eb8686 Add GetTransport to client. 2019-12-10 16:34:24 -08:00
Mariano Cano
40ec0b435a Add method to create an ssh token. 2019-12-10 13:40:14 -08:00
Mariano Cano
50152391a3 Add leeway in identity not before. 2019-12-09 16:55:25 -08:00
max furman
2676d525c4 redundant variable type def 2019-12-09 12:54:32 -08:00
Mariano Cano
b25cbbe6ca Create a custom client that sends a custom User-Agent. 2019-11-27 17:30:06 -08:00
Mariano Cano
c5e34f777c Replace /ssh/get-hosts to /ssh/hosts 2019-11-27 14:27:23 -08:00
Mariano Cano
b97aeedb78 Fix tests. 2019-11-26 18:53:36 -08:00
Mariano Cano
87ce2c9b4b Add Identity helpers. 2019-11-20 19:12:19 -08:00
Mariano Cano
012f64cdad Add version support to the ca.Client. 2019-11-20 17:15:48 -08:00
Mariano Cano
80ee3645c4 Fix directory permissions. 2019-11-20 16:03:31 -08:00
Mariano Cano
af6f6b4a85 Support for retry and identity files. 2019-11-20 11:52:20 -08:00
Mariano Cano
18f8d90cd7 Add support for identity authentication. 2019-11-20 11:52:20 -08:00
Mariano Cano
35b7539243 Add client method for SSHBastion 2019-11-14 20:32:38 -08:00
max furman
a9ea292bd4 sshpop provisioner + ssh renew | revoke | rekey first pass 2019-11-05 16:41:42 -08:00
max furman
36fc7fa174 get-hosts fixes 2019-11-05 16:41:17 -08:00
max furman
64b69374fa Add SSH getHosts api 2019-11-05 16:41:17 -08:00
Mariano Cano
605d39e4e8 Add proxycommand and new lines to templates. 2019-11-05 16:41:17 -08:00
Mariano Cano
3ee0dcec93 Add initial support for check-host endpoint. 2019-11-05 16:41:17 -08:00
Mariano Cano
a50d59338e Rename SSH methods. 2019-11-05 16:41:17 -08:00
Mariano Cano
e84489775b Add support for multiple ssh roots. 
Fixes #125
 2019-11-05 16:41:17 -08:00
Mariano Cano
7b8bb6deb4 Add initial support for ssh config. 
Related to smallstep/cli#170
 2019-11-05 16:41:17 -08:00
Mariano Cano
fe3149cf52 Add endpoint to return the SSH public keys. 
Related to smallstep/ca-component#195
 2019-11-05 16:41:17 -08:00
Max
0a96062b76
Merge pull request #128 from jkralik/returnCertChain 
Change api of functions Authority.Sign, Authority.Renew
 2019-10-18 14:00:18 -07:00
max furman
d368791606 Add x5c provisioner capabilities 2019-10-14 14:51:37 -07:00
max furman
7aec7c2612 Create ACME database tables when initializing ACME autority. 2019-10-14 14:51:03 -07:00
Jozef Kralik
bc6074f596 Change api of functions Authority.Sign, Authority.Renew 
Returns certificate chain instead of 2 members.

Implements #126
 2019-10-09 22:23:00 +02:00
max furman
fe7973c060 wip 2019-09-19 13:17:45 -07:00
max furman
e3826dd1c3 Add ACME CA capabilities 2019-09-13 15:48:33 -07:00
Mariano Cano
10e7b81b9f Merge branch 'master' into ssh-ca 2019-09-05 23:06:01 +02:00
max furman
635c59ed24 Accept emails SANs 2019-08-23 15:59:30 -07:00
Mariano Cano
1c8f610ca9 Add initial implementation of an SSH CA using the JWK provisioner. 
Fixes smallstep/ca-component#187
 2019-07-23 18:46:43 -07:00
Mariano Cano
44e85b51f2 Add some extra coverage. 2019-06-21 15:12:36 -07:00
Mariano Cano
aa63f8f32c Add missing root certificate to test. 2019-06-21 14:52:06 -07:00