Mariano Cano
d51c6b7d83
Make step handler backward compatible
2 years ago
Mariano Cano
9147356d8a
Fix linter errors
2 years ago
Herman Slatman
13173ec8a2
Fix SCEP GET requests
3 years ago
Mariano Cano
42435ace64
Use scep authority from context
...
This commit also converts all the methods from the handler to
functions.
3 years ago
Mariano Cano
688f9ceb56
Add scep authority to context.
3 years ago
Panagiotis Siatras
e27124b037
scep: remove Interface and the dependency to pkg/errors ( #872 )
...
* scep: documented the package
* scep/api: removed some top level constants
* scep: removed dependency to pkg/errors
* scep/api: documented the package
3 years ago
Panagiotis Siatras
b98f86a515
scep: minor cleanup ( #867 )
...
* api, scep: removed scep.Error
* scep/api: replaced nextHTTP with http.HandlerFunc
* scep/api: renamed writeSCEPResponse to writeResponse
* scep/api: renamed decodeSCEPRequest to decodeRequest
* scep/api: renamed writeError to fail
* scep/api: replaced pkg/errors with errors
* scep/api: formatted imports
* scep/api: do not export SCEPRequest & SCEPResponse
* scep/api: do not export Handler
* api: flush errors better
3 years ago
Panagiotis Siatras
80abda22ee
api/log: initial implementation of the package ( #859 )
...
* api/log: initial implementation of the package
* api: refactored to support api/log
* scep/api: refactored to support api/log
* api/log: documented the package
* api: moved log-related tests to api/log
3 years ago
Herman Slatman
15477f6d7b
Make custom SCEP CA paths automagic
3 years ago
Herman Slatman
a3cda9c3d7
Add configuration for custom path segment
...
To support SCEP clients that expect a specific path segment in
a SCEP URL, a new "customPath" option was added to the SCEP
provisioner configuration. The configuration can be used to set
a specific path (segment) that the SCEP provisioner will respond to.
3 years ago
Herman Slatman
5f42ae0bce
Remove unused function LoadProvisionerByID from SCEP
3 years ago
Herman Slatman
3b72d241e0
Add LinkedCA integration for improved SCEP provisioner
3 years ago
Herman Slatman
64680bb16d
Fix PR comments
3 years ago
Herman Slatman
3612eefc31
Cleanup
3 years ago
Herman Slatman
9c6580ccd2
Fix macOS SCEP client issues
...
Fixes #746
3 years ago
Herman Slatman
e7a988b2cd
Pin golangci-lint to v1.43.0 and fix issues
3 years ago
max furman
933b40a02a
Introduce gocritic linter and address warnings
3 years ago
Herman Slatman
54610e890b
Improve error logging
4 years ago
Herman Slatman
c3d9cef497
Update to v2.0.0 of github.com/micromdm/scep
4 years ago
Herman Slatman
9bda3c465a
Add more template data
4 years ago
Herman Slatman
b815478981
Make serving SCEP endpoints optional
...
Only when a SCEP provisioner is enabled, the SCEP endpoints
will now be available.
The SCEP endpoints will be served on an "insecure" server,
without TLS, only when an additional "insecureAddress" and a
SCEP provisioner are configured for the CA.
4 years ago
Herman Slatman
69d701062a
Fix typo
4 years ago
Herman Slatman
65aab963c9
Add validation to SCEP Options
4 years ago
Herman Slatman
b97f024f8a
Remove superfluous call to StoreCertificate
4 years ago
Herman Slatman
583d60dc0d
Address (most) PR comments
4 years ago
Herman Slatman
a4844fee7b
Make tests green
4 years ago
Herman Slatman
e30084c9a8
Make linter happy
4 years ago
Herman Slatman
3e0dac3ab4
Fix certificateChain property
4 years ago
Herman Slatman
e1cab4966f
Improve initialization of SCEP authority
4 years ago
Herman Slatman
538fe8114d
Fix linter issues
4 years ago
Herman Slatman
cc1ecb9438
Store new certificates in database
4 years ago
Herman Slatman
9902dc1079
Add signed failure responses
4 years ago
Herman Slatman
2536a08dc2
Add support for configuring capabilities (cacaps)
4 years ago
Herman Slatman
e4d7ea8fa0
Add support for challenge password
4 years ago
Herman Slatman
2d21b09d41
Remove some duplicate and unnecessary logic
4 years ago
Herman Slatman
9df5f513e7
Change to a fixed fork of go.mozilla.org/pkcs7
...
Hopefully this will be a temporary change until
the fix is merged in the upstream module.
4 years ago
Herman Slatman
3a5f633cdd
Add support for multiple SCEP provisioners
...
Similarly to how ACME suppors multiple provisioners, it's
now possible to load the right provisioner based on the
URL.
4 years ago
Herman Slatman
2fc5a7f22e
Improve SCEP API logic and error handling
4 years ago
Herman Slatman
a6d50f2fa0
Remove x509 template from API
4 years ago
Herman Slatman
311c9d767b
Add AuthorizeSign method to SCEP authority
4 years ago
Herman Slatman
4322933588
Add handling of options
4 years ago
Herman Slatman
19f0397fe9
Remove the copy of mozilla/pkcs7
...
Apparently the existing library works out of the box, after all.
We'll have to see how it works out continuing forward.
4 years ago
Herman Slatman
7ad90d10b3
Refactor initialization of SCEP authority
4 years ago
Herman Slatman
f871f8135c
Add full copy of mozilla/pkcs7 module as internal dependency
...
The full contents of the git repository @432b2356ecb...
was copied. Only go.mod was removed from it.
4 years ago
Herman Slatman
702032f2b7
Add number of certs to return and fix CR LF in CACaps
4 years ago
Herman Slatman
165f6a1ccd
Improve setup for multiple SCEP providers (slightly)
4 years ago
Herman Slatman
713b571d7a
Refactor SCEP authority initialization and clean some code
4 years ago
Herman Slatman
ffdd58ea3c
Add rudimentary (and incomplete) support for SCEP
4 years ago