Raal Goff
|
f7df865687
|
refactor crl config, add some tests
|
2022-10-07 10:30:00 +08:00 |
|
Raal Goff
|
d0e81af524
|
Merge branch 'master' into crl-support
|
2022-09-30 08:45:48 +08:00 |
|
Mariano Cano
|
906c5067b9
|
Include attestation roots on provisioner converters
|
2022-09-29 16:12:55 -07:00 |
|
Mariano Cano
|
2b19ba41fb
|
Merge branch 'master' into name-constraints
|
2022-09-23 11:07:57 -07:00 |
|
Mariano Cano
|
c9e7af3722
|
Use only name constraints in GetTLSCertificate
|
2022-09-23 11:04:27 -07:00 |
|
Mariano Cano
|
0bedd22850
|
Fix typos in WithX509IntermediateCerts comment
|
2022-09-23 10:55:20 -07:00 |
|
Mariano Cano
|
8374c0d26e
|
Fix some more extra white spaces
|
2022-09-23 10:52:24 -07:00 |
|
Mariano Cano
|
965d59c0a8
|
Fix comment typos and extra white spaces
|
2022-09-23 10:50:44 -07:00 |
|
Mariano Cano
|
2eba5326db
|
Remove policy validation on renew
|
2022-09-22 12:17:16 -07:00 |
|
Mariano Cano
|
ccd93684c3
|
Remove unused variable
|
2022-09-22 11:54:21 -07:00 |
|
Mariano Cano
|
246566a195
|
Change way to get hasNameConstraints
|
2022-09-22 11:35:11 -07:00 |
|
Mariano Cano
|
b94c0d09be
|
Set up test properly
|
2022-09-22 11:07:28 -07:00 |
|
Mariano Cano
|
0214e015a0
|
Clarify comments by code review
|
2022-09-22 11:07:22 -07:00 |
|
Mariano Cano
|
23045e1812
|
Clarify comments by code review
|
2022-09-22 11:05:06 -07:00 |
|
max furman
|
4c7a2ce3eb
|
Fix errors.As linter warnings
|
2022-09-22 00:04:31 -07:00 |
|
Mariano Cano
|
15dc7901e5
|
Fix unit tests
|
2022-09-21 18:46:46 -07:00 |
|
Mariano Cano
|
d68c765e20
|
Add context to errors
|
2022-09-21 18:46:34 -07:00 |
|
Mariano Cano
|
72e2c4eb2e
|
Render proper policy and constrains errors
|
2022-09-21 18:35:18 -07:00 |
|
Mariano Cano
|
4b79405dac
|
Check constraints and policy for leaf certificates too
|
2022-09-21 15:54:28 -07:00 |
|
Mariano Cano
|
a6e85cbbf6
|
Fix linter errors
|
2022-09-21 14:56:15 -07:00 |
|
Mariano Cano
|
325d8bca4f
|
Merge branch 'master' into name-constraints
|
2022-09-21 13:29:44 -07:00 |
|
max furman
|
2d4efc8292
|
Fix linter warnings
|
2022-09-21 12:29:20 -07:00 |
|
max furman
|
75bb196193
|
Add concurrency workflow config | fix broken test due to golang ver
|
2022-09-21 12:26:45 -07:00 |
|
max furman
|
120629edab
|
Do not use the templateError in the BadRequestErr
|
2022-09-20 23:07:16 -07:00 |
|
max furman
|
7c5e5b2b87
|
Even more linter fixes
|
2022-09-20 21:48:04 -07:00 |
|
max furman
|
f3d1863ec6
|
A few more linter errors
|
2022-09-20 21:01:55 -07:00 |
|
max furman
|
1e0ea6f958
|
more linting fixes
|
2022-09-20 19:05:12 -07:00 |
|
max furman
|
33458c88aa
|
Standardize linting file and fix or ignore lots of linting errors
|
2022-09-20 19:05:12 -07:00 |
|
Mariano Cano
|
f0a24bd8ca
|
Add acme property to enable challenges
Fixes #1027
|
2022-09-20 19:01:53 -07:00 |
|
Mariano Cano
|
567d96c771
|
Revert "Run on plaintext HTTP to support Cloud Run"
This reverts commit 09b9673a60 .
|
2022-09-20 18:57:46 -07:00 |
|
Mariano Cano
|
191d9e8629
|
Use go.step.sm/crypto to set the permanent identifier
|
2022-09-20 18:57:43 -07:00 |
|
Mariano Cano
|
debe565e42
|
Validate constraints on Sign and Renew/Rekey
Fixes #1060
|
2022-09-20 18:52:47 -07:00 |
|
Mariano Cano
|
89b6aa924a
|
Normalize IPs in matchIPConstraint
|
2022-09-20 18:44:15 -07:00 |
|
Brandon Weeks
|
f3d2bd7a19
|
Run on plaintext HTTP to support Cloud Run
|
2022-09-20 16:43:30 -07:00 |
|
Herman Slatman
|
25cbe02b9e
|
Add provisioner template validation
Fixes #1012
|
2022-09-20 16:40:25 -07:00 |
|
Max
|
2de7d3fcf0
|
Update authority/provisioner/claims.go
Co-authored-by: Mariano Cano <mariano@smallstep.com>
|
2022-09-20 16:35:43 -07:00 |
|
max furman
|
ab0d2503ae
|
Standardize linting file and fix or ignore lots of linting errors
|
2022-09-20 16:35:41 -07:00 |
|
Mariano Cano
|
3f58f30b21
|
Name tests properly
|
2022-09-20 15:53:08 -07:00 |
|
Mariano Cano
|
75bff055fc
|
Add StatusCoder to ConstraintError
|
2022-09-20 14:45:47 -07:00 |
|
Mariano Cano
|
2959aa676d
|
Add helper ValidateCertificate
|
2022-09-20 13:12:34 -07:00 |
|
Mariano Cano
|
8b54e25f64
|
Allow nil engines
|
2022-09-20 12:33:03 -07:00 |
|
Mariano Cano
|
2a15e3eee1
|
Rename constraint.Service to constraint.Engine
|
2022-09-20 11:38:32 -07:00 |
|
Mariano Cano
|
45e594f98c
|
Make the constraint service public
|
2022-09-20 11:36:45 -07:00 |
|
Mariano Cano
|
7bea2f4d0e
|
Add more constraint unit tests
|
2022-09-20 11:33:36 -07:00 |
|
Mariano Cano
|
495494ce8f
|
Return a typed error
|
2022-09-20 10:36:44 -07:00 |
|
Mariano Cano
|
6686f0437d
|
Remove x509 prefixes
|
2022-09-20 10:23:51 -07:00 |
|
Mariano Cano
|
0263468424
|
Initial work on name constraints validation
Issue #1060
|
2022-09-19 19:45:13 -07:00 |
|
Mariano Cano
|
34c6c65671
|
Pass attestation information to the Sign method
Attestation information might be useful in authorizing webhooks
|
2022-09-16 12:37:41 -07:00 |
|
Mariano Cano
|
42102d88d5
|
Fix merge and add unit tests
|
2022-09-15 15:50:04 -07:00 |
|
Mariano Cano
|
ee7307bd41
|
Cherry-pick acme.go from acdfdf3
|
2022-09-15 14:45:14 -07:00 |
|