francescocapuano
7f54153a1b
Add DOCKER_STEPCA_INIT_PASSWORD_FILE variable for docker secrets
...
Add the management of the DOCKER_STEPCA_INIT_PASSWORD_FILE variable. over DOCKER_STEPCA_INIT_PASSWORD.
If both are used only DOCKER_STEPCA_INIT_PASSWORD_FILE will be used.
2023-05-10 14:11:41 +02:00
Herman Slatman
e52e79f745
Update changelog for v0.24.2 release
2023-05-10 13:31:31 +02:00
Herman Slatman
8abb511f64
Merge branch 'master' into herman/update-crypto-v0.29.4
2023-05-10 10:44:36 +02:00
max furman
8b256f0351
address linter warning for go 1.19
2023-05-09 23:47:28 -07:00
Mariano Cano
0b832e389d
Merge pull request #1383 from smallstep/azidentity
...
Upgrade go.step.sm/crypto
2023-05-09 15:59:32 -07:00
Mariano Cano
2b209b94e8
Upgrade go.step.sm/crypto with new version of azidentity
2023-05-09 15:51:36 -07:00
Herman Slatman
0c2b00f6a1
Depend on our fork of go-attestation
2023-05-10 00:38:40 +02:00
Herman Slatman
3c7b247712
Upgrade to go.step.sm/crypto@v0.29.4
2023-05-10 00:35:43 +02:00
Herman Slatman
017c3273ef
Merge pull request #1374 from smallstep/herman/log-ssh-certificate
...
Log SSH certificates
2023-05-09 17:21:03 +02:00
github-actions[bot]
f93548df40
Merge pull request #1379 from smallstep/dependabot/go_modules/google.golang.org/api-0.121.0
...
Bump google.golang.org/api from 0.120.0 to 0.121.0
2023-05-08 09:43:27 -07:00
max furman
5735d1d354
Bump go.mod golang version to 1.19
2023-05-08 09:24:29 -07:00
Max
6bf7943a1b
Merge branch 'master' into dependabot/go_modules/google.golang.org/api-0.121.0
2023-05-08 09:22:00 -07:00
github-actions[bot]
f4c6a72967
Merge pull request #1380 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.55.0
...
Bump google.golang.org/grpc from 1.54.0 to 1.55.0
2023-05-08 18:15:34 +02:00
dependabot[bot]
93426d72a9
Bump google.golang.org/grpc from 1.54.0 to 1.55.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.54.0 to 1.55.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.54.0...v1.55.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-08 16:00:38 +00:00
dependabot[bot]
570b10b8e8
Bump google.golang.org/api from 0.120.0 to 0.121.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.120.0 to 0.121.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.120.0...v0.121.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-08 16:00:05 +00:00
Herman Slatman
f17bfdf57d
Reformat the SSH certificate logging output for read- and parsability
2023-05-08 13:46:20 +02:00
Herman Slatman
4c56877d97
Add SSH certificate logging to renew and rekey too
2023-05-05 11:06:01 +02:00
Mariano Cano
1180e33228
Merge pull request #1376 from smallstep/fix-1375
...
Use vaultcas ttl as a duration string
2023-05-04 20:42:28 -07:00
Mariano Cano
afd5d46a90
Use vaultcas ttl as a duration string
...
According to docs at thttps://developer.hashicorp.com/vault/api-docs/secret/pki#ttl
the ttl can be sent as a time.Duration string.
Fixes #1375
2023-05-04 18:36:08 -07:00
Panagiotis Siatras
2139121683
optimized render.JSON ( #929 )
...
* api/render: render JSON directly to the underlying writer
* also consider json.MarshalerError a panic
2023-05-04 22:16:12 +03:00
Herman Slatman
81140f859c
Fix valid-from
and valid-to
times
2023-05-04 16:15:03 +02:00
Herman Slatman
39e658b527
Add test for LogSSHCertificate
2023-05-04 15:52:49 +02:00
Herman Slatman
922f702da3
Add logging for SSH certificate issuance
2023-05-04 15:33:06 +02:00
Herman Slatman
ef951f2075
Merge pull request #1204 from smallstep/herman/improve-scep-marshaling
...
Improve SCEP provisioner marshaling
2023-05-04 11:55:05 +02:00
Herman Slatman
8c53dc9029
Use require.NoError
where appropriate in provisioner tests
2023-05-04 11:44:22 +02:00
Herman Slatman
0153ff4377
Remove superfluous GetChallengePassword
2023-05-04 11:43:57 +02:00
Herman Slatman
f9ec62f46c
Merge branch 'master' into herman/improve-scep-marshaling
2023-05-04 10:47:53 +02:00
Herman Slatman
eba93da6d6
Merge pull request #1372 from smallstep/herman/crl-on-http
2023-05-04 07:31:33 +02:00
Panagiotis Siatras
d797941137
do not render CRLs in memory ( #1373 )
2023-05-03 23:49:26 +03:00
Herman Slatman
5e35aca29c
Use CRLConfig.IsEnabled
2023-05-02 15:17:50 +02:00
Herman Slatman
60a4512abe
Add /crl
and /1.0/crl
to the insecure HTTP handler
2023-05-02 14:58:32 +02:00
Herman Slatman
cb1dc8055d
Merge pull request #1366 from smallstep/herman/dynamic-scep-webhook
...
Dynamic SCEP challenge validation using webhooks
2023-05-02 00:53:39 +02:00
Herman Slatman
c73f157ea4
Remove unused error from challenge validation controller creator
2023-05-02 00:52:11 +02:00
Herman Slatman
4f7a4f63f7
Merge branch 'master' into herman/dynamic-scep-webhook
2023-05-02 00:01:03 +02:00
Herman Slatman
4bb88adf63
Move SCEP checks after reload of provisioners in CA initialization
2023-05-01 23:59:48 +02:00
Herman Slatman
e8c1e8719d
Refactor SCEP webhook validation
2023-05-01 22:09:42 +02:00
github-actions[bot]
19d72c9905
Merge pull request #1369 from smallstep/dependabot/go_modules/google.golang.org/api-0.120.0
...
Bump google.golang.org/api from 0.119.0 to 0.120.0
2023-05-01 09:16:48 -07:00
github-actions[bot]
3a2e60a139
Merge pull request #1370 from smallstep/dependabot/go_modules/github.com/urfave/cli-1.22.13
...
Bump github.com/urfave/cli from 1.22.12 to 1.22.13
2023-05-01 09:16:11 -07:00
github-actions[bot]
5ea72a2432
Merge pull request #1368 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.21.1
...
Bump github.com/newrelic/go-agent/v3 from 3.21.0 to 3.21.1
2023-05-01 18:14:44 +02:00
github-actions[bot]
eec7d1ee6a
Merge pull request #1371 from smallstep/dependabot/go_modules/go.step.sm/linkedca-0.19.1
...
Bump go.step.sm/linkedca from 0.19.0 to 0.19.1
2023-05-01 18:12:17 +02:00
dependabot[bot]
047bb6a826
Bump go.step.sm/linkedca from 0.19.0 to 0.19.1
...
Bumps [go.step.sm/linkedca](https://github.com/smallstep/linkedca ) from 0.19.0 to 0.19.1.
- [Release notes](https://github.com/smallstep/linkedca/releases )
- [Commits](https://github.com/smallstep/linkedca/compare/v0.19.0...v0.19.1 )
---
updated-dependencies:
- dependency-name: go.step.sm/linkedca
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-01 16:02:29 +00:00
dependabot[bot]
d19c77795e
Bump github.com/urfave/cli from 1.22.12 to 1.22.13
...
Bumps [github.com/urfave/cli](https://github.com/urfave/cli ) from 1.22.12 to 1.22.13.
- [Release notes](https://github.com/urfave/cli/releases )
- [Changelog](https://github.com/urfave/cli/blob/main/docs/CHANGELOG.md )
- [Commits](https://github.com/urfave/cli/compare/v1.22.12...v1.22.13 )
---
updated-dependencies:
- dependency-name: github.com/urfave/cli
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-01 16:02:14 +00:00
dependabot[bot]
3a50a2fa28
Bump google.golang.org/api from 0.119.0 to 0.120.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.119.0 to 0.120.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.119.0...v0.120.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-01 16:01:57 +00:00
dependabot[bot]
bb33134f8a
Bump github.com/newrelic/go-agent/v3 from 3.21.0 to 3.21.1
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.21.0 to 3.21.1.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.21.0...v3.21.1 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-01 16:01:31 +00:00
Herman Slatman
668ff9b515
Cleanup some comments and tests
2023-05-01 11:55:05 +02:00
Herman Slatman
5f0f0f4bcc
Add SCEP webhook validation tests
2023-05-01 11:14:50 +02:00
Herman Slatman
ad4d8e6c68
Add SCEPCHALLENGE
as valid webhook type in admin API
2023-04-29 01:40:03 +02:00
Herman Slatman
419478d1e5
Make SCEP webhook validation look better
2023-04-29 01:15:39 +02:00
Herman Slatman
27cdcaf5ee
Integrate the SCEP webhook with the existing webhook logic
2023-04-28 17:15:05 +02:00
Herman Slatman
05f7ab979f
Create basic webhook for SCEP challenge validation
2023-04-28 15:47:22 +02:00