smallstep-certificates

mirror of https://github.com/smallstep/certificates.git synced 2024-11-11 07:11:00 +00:00

Author	SHA1	Message	Date
Mariano Cano	b0b2e77b0e	Avoid doing unauthenticated requests on the SDK When step-ca runs with mTLS required on some endpoints, the SDK used in autocert will fail to start because the identity certificate is missing. This certificate is only required to retrieve all roots, in most cases there's only one, and the SDK has access to it.	2021-12-14 14:42:38 -08:00
Mariano Cano	975cb75fbd	Fix typo.	2019-02-05 17:33:16 -08:00
Mariano Cano	d394dd233a	Initiate default RootCAs/ClientCAs when no options are passed.	2019-01-23 14:33:16 -08:00
Mariano Cano	25eba1a96c	WIP on the safely rotate of root and federated certificates. Fixes #23	2019-01-22 19:54:12 -08:00
Mariano Cano	518b597535	Remove mTLS client requirement in /roots and /federation	2019-01-11 19:08:08 -08:00
Mariano Cano	10aaece1b0	Update root certificates on renew.	2019-01-09 13:20:28 -08:00
Mariano Cano	6d3e8ed93c	Add all root certificates by default on bootstrap methods.	2019-01-07 18:55:40 -08:00
Mariano Cano	d296cf95a9	Add mTLS request to get all the root CAs, not the federated ones.	2019-01-07 17:48:56 -08:00
Mariano Cano	722bcb7e7a	Add initial support for federated root certificates.	2019-01-04 17:51:32 -08:00
Mariano Cano	d872f09910	Use mTLS by default on SDK methods. Add options to modify the tls.Config for different configurations. Fixes #7	2018-11-21 13:31:09 -08:00