Herman Slatman
9787728fbd
Mask challenge password after it has been read
2021-04-16 14:09:34 +02:00
Herman Slatman
0487686f69
Merge branch 'master' into hs/scep
2021-04-16 13:25:01 +02:00
Mariano Cano
2e1524ec2f
Remove the creation on nonce on get acme directory.
...
According to RFC 8555, the replay nonces are only required in POST
requests. And of course in the new-nonce request.
2021-04-15 17:54:22 -07:00
max furman
16c20c9279
[action] codecov token not needed for public repos
2021-04-15 15:43:12 -07:00
Max
b7f8f15619
Merge pull request #541 from smallstep/max/ver
...
VERSION from ENV should always take precedence over CI tags
2021-04-15 15:23:19 -07:00
max furman
78c15805f4
VERSION from ENV should always take precedence over CI tags
2021-04-15 15:16:32 -07:00
Mariano Cano
7688ca18ac
Merge pull request #540 from smallstep/proxy-always
...
Always specify a Proxy in all custom transports.
2021-04-14 21:05:32 -07:00
Mariano Cano
02a5879cfe
Specify always a Proxy in all custom transports.
...
Fixes #535
2021-04-14 19:35:31 -07:00
Max
0ec75c98cf
Merge pull request #539 from smallstep/max/escaped-route-fix
...
Use different method for unescpaed paths for the router
2021-04-14 15:43:12 -07:00
max furman
93c3c2bf2e
Error handle non existent provisioner downstream and disable debug route logging
2021-04-14 15:35:43 -07:00
max furman
497ec0c79b
Fix linter issues
2021-04-14 15:14:27 -07:00
max furman
b1888fd34d
Use different method for unescpaed paths for the router
2021-04-14 15:11:15 -07:00
Max
938cd092b4
Merge pull request #536 from smallstep/max/dev
...
Move golangci-lint to github action and fix debian build action
2021-04-14 13:14:34 -07:00
Mariano Cano
e3e34bd00c
Remove dockerignore files that are in the repo.
...
This was causing a dirty repo and versions with -dev.
2021-04-13 18:24:02 -07:00
max furman
335435decf
[action] debian rules syntax
2021-04-13 16:53:30 -07:00
max furman
6a6be84874
[action] debian rules syntax
2021-04-13 16:37:00 -07:00
max furman
39f6a27515
[action] alternate makefile target for dh_auto_build
2021-04-13 16:30:13 -07:00
max furman
ee4d45cf79
[action] remove make bootstrap from debian build process
2021-04-13 16:02:46 -07:00
max furman
f02d97e621
[action] use matrix strategy in release.test | bump to 1.16
2021-04-13 15:53:49 -07:00
max furman
c71d56e4ae
[action] use go version matrix for the test / build step
2021-04-13 15:47:26 -07:00
max furman
fa9bceefa2
[action] but golangci-lint timeout
2021-04-13 15:42:54 -07:00
max furman
819d466790
[actions] update test action as well
2021-04-13 15:38:36 -07:00
max furman
42a470d803
Move golangci-lint to github action | update bootstrap
...
- Update bootstrap to use official golangci-lint install
2021-04-13 15:32:46 -07:00
max furman
72217c972d
GO111MODULE should not be necessary in bootstrap
2021-04-13 15:21:45 -07:00
max furman
79eb822326
Change go get
to go install
in bootstrap ...
...
- avoid the `-dev` tag
2021-04-13 15:13:44 -07:00
Max
b724af30ad
Merge pull request #496 from smallstep/max/acme
...
Convert to ACME DB interface
2021-04-13 15:02:03 -07:00
max furman
6cfb9b790c
Remove check of deprecated value
...
- NegotiatedProtocolIsMutual is always true: Deprecated according to
golang docs
2021-04-13 14:53:05 -07:00
max furman
63ec2e35b0
Change Clock to empty struct in nosql/nosql | truncate > round
...
- saves space
-
2021-04-13 14:42:37 -07:00
Mariano Cano
1ebfacc101
Merge pull request #534 from smallstep/match-all
...
Update sshd_config.tpl to a Match all block.
2021-04-12 19:21:00 -07:00
max furman
672e3f976e
Few ACME fixes ...
...
- always URL escape linker output
- validateJWS should accept RSAPSS
- GetUpdateAccount -> GetOrUpdateAccount
2021-04-12 19:06:07 -07:00
Mariano Cano
aea2a7c9f3
Update sshd_config.tpl to a Match all block.
...
Fixes #479
2021-04-12 18:37:10 -07:00
Max
7d119c23fc
Merge pull request #528 from smallstep/max/install
...
Updates to README
2021-04-06 13:02:47 -07:00
max furman
2fee0c92a3
Updates to README
...
* forward installation and quickstart to website
* remove quickstart completely as it's a copy of the getting started
2021-04-06 12:58:36 -07:00
Mariano Cano
ca1286aec2
Merge pull request #525 from ionrover2/patch-1
...
Update a spelling error in provisioners.md
2021-04-06 10:02:05 -07:00
Austin Tucker Hall
6801cf3d05
Update provisioners.md
...
mispelling that is driving me nuts
2021-04-05 17:19:27 -05:00
Herman Slatman
944736526c
Merge branch 'master' into hs/scep
2021-04-01 21:19:15 +02:00
Max
cdbdd7410d
Merge pull request #421 from dnwe/only-trace-for-kube-probe
...
Log successful kube-probe requests at Trace lvl
2021-03-31 12:43:15 -07:00
max furman
2e0e62bc4c
add WriteError method for acme api
2021-03-29 23:16:39 -07:00
max furman
9aef84b9af
remove unused nonce.clone method
2021-03-29 23:02:41 -07:00
max furman
440678cb62
Add markInvalid arg to storeError for invalidating challenge
2021-03-29 22:58:26 -07:00
max furman
6b8585c702
PR review fixes / updates
2021-03-29 12:04:14 -07:00
Herman Slatman
c3d9cef497
Update to v2.0.0 of github.com/micromdm/scep
2021-03-26 22:04:18 +01:00
Herman Slatman
2320d0911e
Add sync.WaitGroup for proper error handling in Run()
2021-03-26 16:21:02 +01:00
Herman Slatman
9bda3c465a
Add more template data
2021-03-26 16:11:35 +01:00
Herman Slatman
b815478981
Make serving SCEP endpoints optional
...
Only when a SCEP provisioner is enabled, the SCEP endpoints
will now be available.
The SCEP endpoints will be served on an "insecure" server,
without TLS, only when an additional "insecureAddress" and a
SCEP provisioner are configured for the CA.
2021-03-26 16:05:33 +01:00
Herman Slatman
69d701062a
Fix typo
2021-03-26 15:24:27 +01:00
Herman Slatman
c5e4ea08b3
Merge branch 'master' into hs/scep
2021-03-26 15:22:41 +01:00
Herman Slatman
65aab963c9
Add validation to SCEP Options
2021-03-26 15:22:04 +01:00
Herman Slatman
b97f024f8a
Remove superfluous call to StoreCertificate
2021-03-26 14:02:52 +01:00
max furman
bdace1e53f
Add failure scenarios to db.CreateOrder unit tests
2021-03-25 19:40:18 -07:00