Mariano Cano
10f6a901ec
Let the CA determine the RA lifetime
...
When the RA mode with StepCAS is used, let the CA decide which lifetime
the RA should get instead of requiring always 24h.
This commit also fixes linter warnings.
Related to #1094
7 months ago
Panagiotis Siatras
dd1ff9c15b
Implementation of the Prometheus endpoint ( #1669 )
...
Implementation of the http://{metricsAddress}/metrics Prometheus endpoint.
9 months ago
Mariano Cano
57a704f008
Fix typo in flag usage
2 years ago
Carl Tashian
067f9c9a5f
Merge pull request #1252 from smallstep/carl/startup-noconfig-msg
...
Helpful message on CA startup when config can't be opened
2 years ago
Carl Tashian
b76028f3ba
Update commands/app.go
...
Co-authored-by: Mariano Cano <mariano@smallstep.com>
2 years ago
Carl Tashian
1c59b3f132
Fix linting error
2 years ago
Carl Tashian
50b4011b03
Move to commands/app.go
2 years ago
Mariano Cano
0df942b8f6
Add pidfile flag
...
This commit adds an optional flag --pidfile which allows to pass
a filename where step-ca will write its process id.
Fixes #754
2 years ago
Mariano Cano
893147d23a
Create context for automatic RAs
...
It creates a new context with the given name if the flags --token
and --context are passed, and the context does not exist.
Fixes #1047
2 years ago
Mariano Cano
e00781873e
Update commands/app.go
...
Co-authored-by: Max <mx.furman@gmail.com>
2 years ago
Mariano Cano
bae9a0c152
Use the same style of flags
...
It changes the new step-ca flags to use a standard style.
2 years ago
Mariano Cano
e27c6c529b
Add support for custom acme ports
...
This change adds the flags --acme-http-port, --acme-tls-port, that
combined with --insecure can be used to set custom ports for ACME
http-01 and tls-alpn-01 challenges. These flags should only be used
for testing purposes.
Fixes #1015
2 years ago
max furman
ab0d2503ae
Standardize linting file and fix or ignore lots of linting errors
2 years ago
Mariano Cano
23b8f45b37
Address gosec warnings
...
Most if not all false positives
2 years ago
Mariano Cano
0c7467ceb2
Allow to automatically configure and linked RA
2 years ago
Shulhan
fe04f93d7f
all: reformat all go files with the next gofmt (Go 1.19)
...
There are some changes that manually edited, for example using '-' as
default list and grouping imports.
2 years ago
Carl Tashian
2e61e01f41
Linted.
3 years ago
Carl Tashian
150eee70df
Updates based on Herman's feedback
3 years ago
Carl Tashian
4b9f44982d
Merge branch 'master' into startup-info
3 years ago
Panagiotis Siatras
6d4d4560df
add --context flag to step-ca command ( #851 )
...
* added the --context flag
* apply the context and allow for different ca.json
* amended usage for consistency
* added an extra example
* added an extra example
* reordered and reworded examples
3 years ago
Carl Tashian
f20784be56
format
3 years ago
Carl Tashian
91be50cf70
Add --quiet flag
3 years ago
Herman Slatman
e7a988b2cd
Pin golangci-lint to v1.43.0 and fix issues
3 years ago
max furman
933b40a02a
Introduce gocritic linter and address warnings
3 years ago
Mariano Cano
cfe08ad6fe
Add flags to usage.
3 years ago
Mariano Cano
6729c79253
Add support for setting individual password for ssh and tls keys
...
This change add the following flags:
* --ssh-host-password-file
* --ssh-user-password-file
Fixes #693
3 years ago
Mariano Cano
3d141896e2
Remove extra space.
3 years ago
Mariano Cano
e12f6fcc84
Complete phrase in step-ca export help.
3 years ago
Mariano Cano
b1f59586ab
Update message to align with UI.
3 years ago
Mariano Cano
072ba4227c
Add deployment type to config.
...
This field is ignored except for the start of the ca. If the type
is linked and the token is not passed, it will fail with an error.
3 years ago
Mariano Cano
47a30f1524
Add JWK provisioner to generic config.
...
Fix linter errors.
3 years ago
Mariano Cano
f643af7095
Update onboarding flow with new pki package.
3 years ago
Mariano Cano
5344f42f21
Allow to use the environment variable STEP_CA_TOKEN
...
For helm charts we want to store the tokens in a secret and load
it from an environment variable.
3 years ago
Mariano Cano
ac363d7824
Add --password-file and --issuer-password-file flags to export.
3 years ago
Mariano Cano
dc1ec18b52
Create a way to export ca configurations.
3 years ago
Mariano Cano
7c0faab73e
Remove now unused step-ca login.
3 years ago
Mariano Cano
8fb5340dc9
Use a token at start time to configure linkedca.
...
Instead of using `step-ca login` we will use a new token provided
as a flag to configure and start linkedca. Certificates will be kept
in memory and refreshed automatically.
3 years ago
Mariano Cano
f7e09af9df
Implement the login command.
...
The login commands creates a new certificate for the linked ca.
This certificate will be used to sync data with the linkedca
endpoint.
3 years ago
max furman
7b5d6968a5
first commit
3 years ago
Mariano Cano
bdeb0ccd7c
Add support for the flag --issuer-password-file
...
The new flag allows to pass a file with the password used to decrypt
the key used in RA mode.
4 years ago
Mariano Cano
2b4b902975
Add initial support for `step ca init` with cloud cas.
...
Fixes smallstep/cli#363
4 years ago
Mariano Cano
40d0596b71
Use smallstep/cli-utils instead of smallstep/cli
4 years ago
Mariano Cano
e83e47a91e
Use sshutil and randutil from go.step.sm/crypto.
4 years ago
Mariano Cano
8f17a46be0
Fix formatting.
5 years ago
Joël Gähwiler
445fcbe621
added resolver
5 years ago
Mariano Cano
019f679189
Create templates path, and remove unnecessary arguments.
5 years ago
Mariano Cano
d3361e7a58
Add UsageText to virtual command.
5 years ago
Mariano Cano
d0e5976c06
Use production URL and add description.
5 years ago
Mariano Cano
50db67e589
Make dep work copying pki package from cli.
...
TODO: refactor and use this package from the cli.
5 years ago
Mariano Cano
a383669d54
Improve onboard messages.
5 years ago