Mariano Cano
dedf6b17be
Addapt tests to the api change.
5 years ago
max furman
3ac388612a
Use x5cInsecure token for /ssh/check-host endpoint
5 years ago
Mariano Cano
f0eb12372b
Add missing unit tests for ssh.
5 years ago
Mariano Cano
f6ffa2cc43
Check at the cert type instead of at the body.
5 years ago
Mariano Cano
5d7829b198
Replace /ssh/get-hosts to /ssh/hosts
5 years ago
Mariano Cano
d8b3e05a3f
Add error marshaling tests.
5 years ago
Mariano Cano
7b81bec8aa
Use default duration for host certificates identity files.
5 years ago
Mariano Cano
b179ad3662
Fix api tests.
5 years ago
Mariano Cano
3a16835cdd
Make identity duration the same as the SSH cert.
5 years ago
Mariano Cano
4f08a7816f
Fix extra write header.
5 years ago
max furman
656f35e522
Use an actual Hosts type when returning ssh hosts
5 years ago
Mariano Cano
c60641701b
Add version endpoint.
5 years ago
max furman
f92bb06b6c
change func def for getSSHHosts
...
* continue to return all hosts if injection method not specified
5 years ago
Mariano Cano
11c8639782
Add identity certificate in ssh response.
5 years ago
max furman
d940ab7c20
Add getSSHHosts injection func
5 years ago
Mariano Cano
8bf3bf701e
Add support for /ssh/bastion method.
5 years ago
max furman
54e3cf7322
Add multiuse capability to k8ssa provisioners
5 years ago
Mariano Cano
0ae9bab21e
Fix api tests.
5 years ago
max furman
29853ae016
sshpop provisioner + ssh renew | revoke | rekey first pass
5 years ago
max furman
862d704f6b
get-hosts fixes
5 years ago
max furman
5616386eed
Add SSH getHosts api
5 years ago
Mariano Cano
385bf0a14a
Fix lint, add keys to fields.
5 years ago
Mariano Cano
d880a98295
Add tests for ssh api methods.
5 years ago
Mariano Cano
a713277453
Fix return of host configurations.
5 years ago
Mariano Cano
37f17213bb
Add initial support for check-host endpoint.
5 years ago
Mariano Cano
d08db4df23
Rename SSH methods.
5 years ago
Mariano Cano
b5bc249e1c
Add support for multiple ssh roots.
...
Fixes #125
5 years ago
Mariano Cano
91130b9c3f
Add support for user data in templates.
5 years ago
Mariano Cano
a35988ff08
Add initial support for ssh config.
...
Related to smallstep/cli#170
5 years ago
Mariano Cano
b000b59ee6
Fix HTTP method for /ssh/sign
5 years ago
Mariano Cano
961be1fbc7
Add endpoint to return the SSH public keys.
...
Related to smallstep/ca-component#195
5 years ago
Mariano Cano
a197158426
Add initial implementation of ssh config.
5 years ago
Jozef Kralik
bc6074f596
Change api of functions Authority.Sign, Authority.Renew
...
Returns certificate chain instead of 2 members.
Implements #126
5 years ago
max furman
fe7973c060
wip
5 years ago
max furman
e3826dd1c3
Add ACME CA capabilities
5 years ago
max furman
61d52a8510
Small fixes associated with PR review
...
* additions and grammar edits to documentation
* clarification of error msgs
5 years ago
Mariano Cano
10e7b81b9f
Merge branch 'master' into ssh-ca
5 years ago
max furman
2b41faa9cf
Enforce >= 2048 bit rsa keys at the provisioner layer
...
* Fixes #94
* In the future this should be configurable by provisioner
5 years ago
Mariano Cano
ca74bb1de5
Add ssh api tests.
5 years ago
Mariano Cano
e71072d389
Add experimental support for provisioning users.
5 years ago
Mariano Cano
a44b0a1d52
Fix typo
5 years ago
Mariano Cano
ba2ba54928
Adapt api package to new interfaces.
5 years ago
Mariano Cano
d008d2d4d1
Use default base64 encoding for public key
5 years ago
Mariano Cano
1c8f610ca9
Add initial implementation of an SSH CA using the JWK provisioner.
...
Fixes smallstep/ca-component#187
5 years ago
max furman
ab4d569f36
Add /revoke API with interface db backend
6 years ago
Mariano Cano
64f2615864
Fix tests.
6 years ago
Mariano Cano
00fed1c538
Add initial version of time duration support in sign requests.
6 years ago
Mariano Cano
a97ea87caa
Move options to provisioner so we can set the duration of the cert.
6 years ago
Mariano Cano
aa8385b8ba
Fix api tests.
6 years ago
Mariano Cano
507fd01062
Remove provisioner intermediate type.
6 years ago
Mariano Cano
bcaba4f72a
Fix api tests.
6 years ago
Mariano Cano
bc12036330
Update Authority interface.
6 years ago
Mariano Cano
1c7155298b
Log always the token, even on errors.
6 years ago
Mariano Cano
adbc496b40
Improve tests
6 years ago
Mariano Cano
b974957868
Add certificate information to logs.
...
Fixes smallstep/ca-component#147
6 years ago
Mariano Cano
8252608ca2
Fix mock
6 years ago
Mariano Cano
518b597535
Remove mTLS client requirement in /roots and /federation
6 years ago
Mariano Cano
d296cf95a9
Add mTLS request to get all the root CAs, not the federated ones.
6 years ago
Mariano Cano
37149ed3ea
Add method to get all the certs.
6 years ago
max furman
c74fcd57a7
ca-component -> certificates
...
* fix redundant error check
* add README
6 years ago
max furman
0d9dd2d14b
provisioner issuer -> name
6 years ago
Mariano Cano
e54086662f
Add tests with cursors.
6 years ago
Mariano Cano
99cab73360
Remove unused import /provisioners/jwk-set-by-issuer
6 years ago
Mariano Cano
0ccf775f2e
Add support for cursors in the api.
6 years ago
max furman
ee7db4006a
change sign + authorize authority api | add provisioners
...
* authorize returns []interface{}
- operators in this list can conform to any interface the user decides
- our implementation has a combination of certificate claim validators
and certificate template modifiers.
* provisioners can set and enforce tls cert options
6 years ago
Mariano Cano
f938ab113b
Add /re-sign endpoint for compatibility with old code.
6 years ago
max furman
828798418c
gofmt
6 years ago
max furman
0b5f6487e1
change provisioners api
...
* /provisioners -> /provisioners/jwk-set-by-issuer
* /provisioners now returns a list of Provisioners
6 years ago
Mariano Cano
ed13132037
Add unit tests for provisioner endpoints.
6 years ago
Mariano Cano
ff67c17893
Add provisioners endpoints.
6 years ago
max furman
c284a2c0ab
first commit
6 years ago