Archives
/
smallstep-certificates
mirror of https://github.com/smallstep/certificates
2
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
4,291 Commits
41 Branches
214 Tags
91 MiB
master
mariano/signer
dependabot/go_modules/github.com/slackhq/nebula-1.9.0
wire-acme-extensions
mariano/init-provisioners
fix-1637
herman/wire-dpop-struct
herman/fix-nebula-curve-param
herman/wrapped-listener
herman/configure-server-http-timeout
josh/fips
herman/acme-macos-properties
josh/webhook-error-response-content
user-regex
max/nebula-sign-curve
carl/bootstrap-error-clarity
max/capabilities
herman/acme-cname-txt
max/test
herman/acme-da-roots
backports
but
collections
update-step-env-vars
panos/api/flow
errors-internal
docker-dns-names
docker-init
carl/sysd-update
carl/readmes
carl/ssh-host-matchbug
nosql-0.3.2
dcow/challenge-retry
ssh
printAud
getHosts
ssh-config
certificate-transparency
seb/ct-local
seb/markdown-issues
seb/anchors
v0.25.3-rc7
v0.25.3-rc6
v0.25.3-rc4
v0.25.3-rc.1
v0.22.2-rc14
v0.22.2-rc13
v0.0.1-rc.1
v0.0.1-rc.2
v0.0.1-rc.3
v0.10.0
v0.11.0
v0.11.0-rc.1
v0.11.0-rc.2
v0.11.0-rc.3
v0.11.0-rc.4
v0.12.0
v0.13.0
v0.13.1
v0.13.2
v0.13.3
v0.14.0
v0.14.0-rc.1
v0.14.0-rc.10.badger2
v0.14.0-rc.14
v0.14.0-rc.15
v0.14.0-rc.16
v0.14.0-rc.2
v0.14.0-rc.3
v0.14.0-rc.4.badger2
v0.14.0-rc.5
v0.14.0-rc.6
v0.14.0-rc.7
v0.14.0-rc.8
v0.14.0-rc.9
v0.14.0.rc.11.badger2
v0.14.0.rc.12.badger2
v0.14.0.rc.13.badger2
v0.14.1
v0.14.2
v0.14.3
v0.14.3-rc.1.badger2
v0.14.3-rc.2.32bitbadger2
v0.14.4
v0.14.5
v0.14.5-rc.1.100MB.badgerV2
v0.14.5-rc.2.100MB.badgerV2
v0.14.5-rc.3.cullACMEOrders
v0.14.5-rc.4
v0.14.6
v0.14.7-rc.1.docker-buildx
v0.14.7-rc.2.deb-name-test
v0.15.0
v0.15.0-rc.1
v0.15.1
v0.15.1-rc.1
v0.15.10
v0.15.11
v0.15.12
v0.15.12-rc1
v0.15.12-rc2
v0.15.12-rc3
v0.15.12-rc4
v0.15.12-rc5
v0.15.13
v0.15.14
v0.15.15
v0.15.16
v0.15.16-rc1.test-arm6
v0.15.16-rc2.test-arm6
v0.15.16-rc3.test-arm6
v0.15.16-rc4
v0.15.16-rc5
v0.15.16-rc6
v0.15.16-rc7
v0.15.2
v0.15.2-rc.1
v0.15.3
v0.15.4
v0.15.5
v0.15.5-rc.1
v0.15.6
v0.15.7
v0.15.7-rc.1
v0.15.8
v0.15.9
v0.15.9-rc1
v0.15.9-rc10
v0.15.9-rc11
v0.15.9-rc12
v0.15.9-rc13
v0.15.9-rc14
v0.15.9-rc15
v0.15.9-rc16
v0.15.9-rc17
v0.15.9-rc18
v0.15.9-rc19
v0.15.9-rc2
v0.15.9-rc3
v0.15.9-rc4
v0.15.9-rc5
v0.15.9-rc6
v0.15.9-rc7
v0.15.9-rc8
v0.15.9-rc9
v0.16.0
v0.16.0-rc.1
v0.16.0-rc.2
v0.16.1
v0.16.2
v0.16.3
v0.16.4
v0.17.0
v0.17.0-rc1
v0.17.1
v0.17.2
v0.17.2-rc1
v0.17.3
v0.17.3-rc1
v0.17.3-rc2
v0.17.3-rc3
v0.17.3-rc4
v0.17.3-rc5
v0.17.3-rc6
v0.17.3-rc7
v0.17.3-rc8
v0.17.3-rc9
v0.17.4
v0.17.4-rc1
v0.17.5
v0.17.5-rc1
v0.17.6
v0.17.6-rc1
v0.17.6-rc2
v0.17.7-rc1
v0.18.0
v0.18.1
v0.18.1-rc1
v0.18.1-rc2
v0.18.1-rc3
v0.18.2
v0.18.3-rc1
v0.18.3-rc2
v0.18.3-rc3
v0.18.3-rc4
v0.19.0
v0.20.0
v0.21.0
v0.22.0
v0.22.1
v0.22.2-rc10
v0.22.2-rc11
v0.22.2-rc12
v0.22.2-rc15
v0.22.2-rc16
v0.22.2-rc17
v0.22.2-rc18
v0.22.2-rc2
v0.22.2-rc3
v0.22.2-rc4
v0.22.2-rc5
v0.22.2-rc6
v0.22.2-rc7
v0.22.2-rc8
v0.22.2-rc9
v0.23.0
v0.23.0-rc.1
v0.23.0-rc.2
v0.23.0-rc.3
v0.23.1
v0.23.1-rc.1
v0.23.2
v0.24.0
v0.24.0-rc.2
v0.24.0-rc1
v0.24.1
v0.24.2
v0.24.3-rc.1
v0.24.3-rc.2
v0.24.3-rc.3
v0.24.3-rc.4
v0.24.3-rc.5
v0.24.3-rc1
v0.25.0
v0.25.1
v0.25.2
v0.25.3-rc2
v0.25.3-rc3
v0.25.3-rc5
v0.26.0
v0.26.0-rc1
v0.26.0-rc2
v0.26.1
v0.8.1
v0.8.1-rc.1
v0.8.1-rc.2
v0.8.2
v0.8.2-rc.1
v0.8.3
v0.8.4
v0.8.4-rc.1
v0.8.4-rc.2
v0.8.5
v0.8.5-rc.1
v0.8.5-rc.2
v0.8.5-rc.3
v0.8.5-rc.4
v0.8.5-rc.5
v0.9.0
v0.9.0-rc.1
v0.9.1
v0.9.1-rc.1
v0.9.1-rc.2
v0.9.2
v0.9.2-rc.1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
Commit Graph

397 Commits (master)

Author SHA1 Message Date
Mariano Cano 4c9dccd3f6 Allow multiple certificates in the root pem. 5 years ago
max furman ab78534b08 add test for SAN backwards compatibility with CLI 
* new provisioner tokens always contain the crt.Subject.CommonName
in the SANS attribute of the token claims. added tests that verifies
backwards compatibility still works in cases where the token does not
contain the subject as a SAN claim.
 5 years ago
max furman e6e8443f3c allow multiple identical SANs in cert 5 years ago
max furman f0683c2e0a Enable signing certificates with custom SANs 
* validate against SANs in token. must be 1:1 equivalent.
 5 years ago
Mariano Cano d394dd233a Initiate default RootCAs/ClientCAs when no options are passed. 5 years ago
Mariano Cano 25eba1a96c WIP on the safely rotate of root and federated certificates. 
Fixes #23
 5 years ago
Mariano Cano bacbf85aa3 Add new bootstrap method that creates a listener. 5 years ago
Mariano Cano 984bf8d38c Add missing file. 5 years ago
Mariano Cano 1cc5e94666 Add simple test for federation. 5 years ago
Mariano Cano dbd1bf11f1 Rename variable. 5 years ago
Mariano Cano 7dc61bf233 Remove deprecated code 5 years ago
Mariano Cano 518b597535 Remove mTLS client requirement in /roots and /federation 5 years ago
Mariano Cano 9adc65febf Add test for newTLSOptionCtx 5 years ago
Mariano Cano 6116523055 Fix random order in tests. 5 years ago
Mariano Cano 8510e25b3b Add test with bootstrap server. 5 years ago
Mariano Cano f99ae9da93 Add root rotation test. 5 years ago
Mariano Cano af9e6488fc Make the renew test shorter. 5 years ago
Mariano Cano 25ddbaedff Allow to customize the minimal cert duration for tests. 5 years ago
Mariano Cano 10aaece1b0 Update root certificates on renew. 5 years ago
Mariano Cano 6d3e8ed93c Add all root certificates by default on bootstrap methods. 5 years ago
Mariano Cano d296cf95a9 Add mTLS request to get all the root CAs, not the federated ones. 5 years ago
Mariano Cano 98cc243a37 Add support for multiple roots. 5 years ago
Mariano Cano 722bcb7e7a Add initial support for federated root certificates. 5 years ago
Mariano Cano 7e2f80ac30 Fix grammar error 6 years ago
max furman c0107ab5b9 Fix ca renew documentation 6 years ago
Mariano Cano f7a5be3942 Force the renew of the CA server. 6 years ago
Mariano Cano b0a410066b Add support for parsing endpoints without schema. 
Fixes smallstep/ca-component#117
 6 years ago
Mariano Cano d872f09910 Use mTLS by default on SDK methods. 
Add options to modify the tls.Config for different configurations.
Fixes #7
 6 years ago
Mariano Cano 9c64dbda9a Add helpers to add direct support for mTLS. 6 years ago
Mariano Cano b23e3bec7f Remove comment of removed arguments. 6 years ago
max furman 5f2d998584 change documentation for bootstrap Server|Client 
* provide documentation for default and non-default invocation.
 6 years ago
Mariano Cano ba88c8c5cb Add context to bootstrap methods. 6 years ago
Mariano Cano 7eb8aeb1f1 Add tests for bootstrap functions. 6 years ago
Mariano Cano 091506a994 Add bootstrap helpers that uses just a token. 6 years ago
max furman c74fcd57a7 ca-component -> certificates 
* fix redundant error check
* add README
 6 years ago
max furman 0d9dd2d14b provisioner issuer -> name 6 years ago
Mariano Cano 71a3587b76 Add client support for provisioner cursor and limit options. 
Fixes #83
 6 years ago
Mariano Cano 99cab73360 Remove unused import /provisioners/jwk-set-by-issuer 6 years ago
max furman ee7db4006a change sign + authorize authority api | add provisioners 
* authorize returns []interface{}
 - operators in this list can conform to any interface the user decides
 - our implementation has a combination of certificate claim validators
 and certificate template modifiers.
* provisioners can set and enforce tls cert options
 6 years ago
Mariano Cano d7c31c3133 Properly fill CSR DNSNames or IPAddresses 6 years ago
Mariano Cano 2b2598c695 Fix audience to fix ca tests. 6 years ago
Mariano Cano 511e1a9e23 Fix getting transport from root fingerprint. 6 years ago
max furman 0b5f6487e1 change provisioners api 
* /provisioners -> /provisioners/jwk-set-by-issuer
* /provisioners now returns a list of Provisioners
 6 years ago
Mariano Cano 7b6a3ea427 Add client methods for provisioning endpoints. 6 years ago
max furman 378166a3b2 add full stack tests for multiple provisioners api 
* /provisioners and /provisioners/<key-id>/encrypted-key
 6 years ago
max furman d773770a44 add authority.New unit tests 6 years ago
max furman c284a2c0ab first commit 6 years ago