David Cowden
|
eb42ea90db
|
ssh/api: Use host tags instead of groups
Tags are more flexible and what we use in the managed offering.
|
2020-04-03 12:11:19 -07:00 |
|
Mariano Cano
|
bfe1f4952d
|
Rename interface to CertificateEnforcer and add tests.
|
2020-03-31 11:41:36 -07:00 |
|
Mariano Cano
|
64f26c0f40
|
Enforce a duration for identity certificates.
|
2020-03-30 17:33:04 -07:00 |
|
Mariano Cano
|
fa416336a8
|
Add context to tests.
|
2020-03-10 19:17:32 -07:00 |
|
Mariano Cano
|
c49a9d5e33
|
Add context parameter to all SSH methods.
|
2020-03-10 19:01:45 -07:00 |
|
max furman
|
1cb8bb3ae1
|
Simplify statuscoder error generators.
|
2020-01-28 13:29:40 -08:00 |
|
max furman
|
dccbdf3a90
|
Introduce generalized statusCoder errors and loads of ssh unit tests.
* StatusCoder api errors that have friendly user messages.
* Unit tests for SSH sign/renew/rekey/revoke across all provisioners.
|
2020-01-28 13:29:40 -08:00 |
|
Mariano Cano
|
ed26e97487
|
Fix tests.
|
2020-01-28 13:29:39 -08:00 |
|
Mariano Cano
|
c1bd1561dd
|
Renew identity certificate in /ssh/rekey and /ssh/renew
|
2020-01-28 13:29:39 -08:00 |
|
max furman
|
b9f6aacb0f
|
Move api errors to their own package and modify the typedef
|
2020-01-28 13:29:39 -08:00 |
|
Mariano Cano
|
dedf6b17be
|
Addapt tests to the api change.
|
2020-01-28 13:29:39 -08:00 |
|
max furman
|
3ac388612a
|
Use x5cInsecure token for /ssh/check-host endpoint
|
2020-01-28 13:29:39 -08:00 |
|
Mariano Cano
|
f0eb12372b
|
Add missing unit tests for ssh.
|
2020-01-28 13:29:39 -08:00 |
|
Mariano Cano
|
f6ffa2cc43
|
Check at the cert type instead of at the body.
|
2020-01-28 13:29:39 -08:00 |
|
Mariano Cano
|
5d7829b198
|
Replace /ssh/get-hosts to /ssh/hosts
|
2020-01-28 13:29:39 -08:00 |
|
Mariano Cano
|
d8b3e05a3f
|
Add error marshaling tests.
|
2020-01-28 13:29:39 -08:00 |
|
Mariano Cano
|
7b81bec8aa
|
Use default duration for host certificates identity files.
|
2020-01-28 13:29:39 -08:00 |
|
Mariano Cano
|
b179ad3662
|
Fix api tests.
|
2020-01-28 13:29:39 -08:00 |
|
Mariano Cano
|
3a16835cdd
|
Make identity duration the same as the SSH cert.
|
2020-01-28 13:29:39 -08:00 |
|
Mariano Cano
|
4f08a7816f
|
Fix extra write header.
|
2020-01-28 13:29:39 -08:00 |
|
max furman
|
656f35e522
|
Use an actual Hosts type when returning ssh hosts
|
2020-01-28 13:29:39 -08:00 |
|
Mariano Cano
|
c60641701b
|
Add version endpoint.
|
2020-01-28 13:28:16 -08:00 |
|
max furman
|
f92bb06b6c
|
change func def for getSSHHosts
* continue to return all hosts if injection method not specified
|
2020-01-28 13:28:16 -08:00 |
|
Mariano Cano
|
11c8639782
|
Add identity certificate in ssh response.
|
2020-01-28 13:28:16 -08:00 |
|
max furman
|
d940ab7c20
|
Add getSSHHosts injection func
|
2020-01-28 13:28:16 -08:00 |
|
Mariano Cano
|
8bf3bf701e
|
Add support for /ssh/bastion method.
|
2020-01-28 13:28:16 -08:00 |
|
max furman
|
54e3cf7322
|
Add multiuse capability to k8ssa provisioners
|
2020-01-28 13:28:16 -08:00 |
|
Mariano Cano
|
0ae9bab21e
|
Fix api tests.
|
2020-01-28 13:28:16 -08:00 |
|
max furman
|
29853ae016
|
sshpop provisioner + ssh renew | revoke | rekey first pass
|
2020-01-28 13:28:16 -08:00 |
|
max furman
|
862d704f6b
|
get-hosts fixes
|
2020-01-28 13:28:16 -08:00 |
|
max furman
|
5616386eed
|
Add SSH getHosts api
|
2020-01-28 13:28:16 -08:00 |
|
Mariano Cano
|
385bf0a14a
|
Fix lint, add keys to fields.
|
2020-01-28 13:28:16 -08:00 |
|
Mariano Cano
|
d880a98295
|
Add tests for ssh api methods.
|
2020-01-28 13:28:16 -08:00 |
|
Mariano Cano
|
a713277453
|
Fix return of host configurations.
|
2020-01-28 13:28:16 -08:00 |
|
Mariano Cano
|
37f17213bb
|
Add initial support for check-host endpoint.
|
2020-01-28 13:28:16 -08:00 |
|
Mariano Cano
|
d08db4df23
|
Rename SSH methods.
|
2020-01-28 13:28:16 -08:00 |
|
Mariano Cano
|
b5bc249e1c
|
Add support for multiple ssh roots.
Fixes #125
|
2020-01-28 13:28:16 -08:00 |
|
Mariano Cano
|
91130b9c3f
|
Add support for user data in templates.
|
2020-01-28 13:28:16 -08:00 |
|
Mariano Cano
|
a35988ff08
|
Add initial support for ssh config.
Related to smallstep/cli#170
|
2020-01-28 13:28:16 -08:00 |
|
Mariano Cano
|
b000b59ee6
|
Fix HTTP method for /ssh/sign
|
2020-01-28 13:28:16 -08:00 |
|
Mariano Cano
|
961be1fbc7
|
Add endpoint to return the SSH public keys.
Related to smallstep/ca-component#195
|
2020-01-28 13:28:16 -08:00 |
|
Mariano Cano
|
a197158426
|
Add initial implementation of ssh config.
|
2020-01-28 13:28:16 -08:00 |
|
Jozef Kralik
|
bc6074f596
|
Change api of functions Authority.Sign, Authority.Renew
Returns certificate chain instead of 2 members.
Implements #126
|
2019-10-09 22:23:00 +02:00 |
|
max furman
|
fe7973c060
|
wip
|
2019-09-19 13:17:45 -07:00 |
|
max furman
|
e3826dd1c3
|
Add ACME CA capabilities
|
2019-09-13 15:48:33 -07:00 |
|
max furman
|
61d52a8510
|
Small fixes associated with PR review
* additions and grammar edits to documentation
* clarification of error msgs
|
2019-09-08 21:05:36 -07:00 |
|
Mariano Cano
|
10e7b81b9f
|
Merge branch 'master' into ssh-ca
|
2019-09-05 23:06:01 +02:00 |
|
max furman
|
2b41faa9cf
|
Enforce >= 2048 bit rsa keys at the provisioner layer
* Fixes #94
* In the future this should be configurable by provisioner
|
2019-08-27 14:44:59 -07:00 |
|
Mariano Cano
|
ca74bb1de5
|
Add ssh api tests.
|
2019-08-05 16:06:05 -07:00 |
|
Mariano Cano
|
e71072d389
|
Add experimental support for provisioning users.
|
2019-08-02 17:48:34 -07:00 |
|