Archives/smallstep-certificates
2
0
Fork 0
mirror of https://github.com/smallstep/certificates.git synced 2024-11-11 07:11:00 +00:00
Code Issues Packages Projects Releases Wiki Activity

Remove the Wire oidc and dpop from attestation formats

Browse Source
This commit is contained in:
Herman Slatman 2024-01-10 19:12:22 +01:00
parent 6a98fea1f3
commit bf8c17e3ec
No known key found for this signature in database
GPG Key ID: F4D8A44EA0A75A4F
1 changed files with 2 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
authority/provisioner/acme.go
View File

@ -64,9 +64,6 @@ const (
// TPM is the format used to enable device-attest-01 with TPMs.
TPM ACMEAttestationFormat = "tpm"
WIREOIDC ACMEAttestationFormat = "oidc"
WIREDPOP ACMEAttestationFormat = "dpop"
)
// String returns a normalized version of the attestation format.
@ -77,7 +74,7 @@ func (f ACMEAttestationFormat) String() string {
// Validate returns an error if the attestation format is not a valid one.
func (f ACMEAttestationFormat) Validate() error {
switch ACMEAttestationFormat(f.String()) {
case APPLE, STEP, TPM, WIREOIDC, WIREDPOP:
case APPLE, STEP, TPM:
return nil
default:
return fmt.Errorf("acme attestation format %q is not supported", f)
@ -325,7 +322,7 @@ func (p *ACME) IsChallengeEnabled(_ context.Context, challenge ACMEChallenge) bo
// AttestationFormat provisioner property should have at least one element.
func (p *ACME) IsAttestationFormatEnabled(_ context.Context, format ACMEAttestationFormat) bool {
enabledFormats := []ACMEAttestationFormat{
APPLE, STEP, TPM, WIREOIDC, WIREDPOP,
APPLE, STEP, TPM,
}
if len(p.AttestationFormats) > 0 {
enabledFormats = p.AttestationFormats