Commit Graph

2033 Commits (a3028bbc0e60967c994e6b5000c96c778b60cc24)
 

Author SHA1 Message Date
max furman a3028bbc0e Add test for updateAddOrderIDs 3 years ago
Mariano Cano 31d3bf1cfc
Update discord link 3 years ago
Carl Tashian 050b233d43 Merge branch 'docker-init' 3 years ago
Carl Tashian f738cb43c3 Make the default provisioner name optional; change DNS names variable name 3 years ago
Carl Tashian 7f2516f33d
Merge pull request #678 from smallstep/docker-init
New Dockerfile with entrypoint script for easy CA init
3 years ago
Carl Tashian 4e8e4c638e Add newline to password file for readabiliy 3 years ago
max furman f53f78974e Badger bump to fix issue with caddy build 3 years ago
Carl Tashian bc63829111 Auto-generate password by default 3 years ago
Carl Tashian 7ab26c8303 Auto-generate password by default 3 years ago
Mariano Cano 33b6d4c3c8
Merge pull request #677 from smallstep/go1.17
Go 1.17 compatibility
3 years ago
Carl Tashian b88b2f9808 Just adding a comment to the step-ra install script 3 years ago
Carl Tashian 8d52379771 New Dockerfile with entrypoint script for easy CA init 3 years ago
Mariano Cano dc5205cc72 Extract the tls error code and fail accordingly. 3 years ago
Mariano Cano ae58a0ee4e Make tests compatible with Go 1.17.
With Go 1.17 tls.Dial will fail if the client and server configured
protocols do not overlap. See https://golang.org/doc/go1.17#ALPN
3 years ago
Mariano Cano abd78e2d2a Make kms uri compatible with Go 1.17.
Go 1.17 introduces a change in the net/url package disallowing the
use of semicolon (;) in URL queries. We used url.ParseQuery to
decode the opaque string that is semicolon separated. This change
replaces the semicolon with ampersands before decoding it.
3 years ago
Mariano Cano a864f0134d Fix key version when SHA512WithRSA is used.
There was a typo creating RSA keys with SHA256 digests instead of
SHA512
3 years ago
Mariano Cano 6a7ea71f19
Merge pull request #672 from smallstep/azure-tofu
Allow the reuse of azure tokens if DisableTrustOnFirstUse is true
3 years ago
Mariano Cano d4ae267add Fix ErrAllowTokenReuse comment. 3 years ago
Mariano Cano 9e5762fe06 Allow the reuse of azure token if DisableTrustOnFirstUse is true
Azure caches tokens for 24h and we cannot issue a new certificate
for the same instance in that period of time.

The meaning of this parameter is to allow the signing of multiple
certificate in one instance. This is possible in GCP, because we
get a new token, and is possible in AWS because we can generate
a new one. On Azure there was no other way to do it unless you
wait for 24h.

Fixes #656
3 years ago
Carl Tashian 9572c62520
Merge pull request #657 from smallstep/ra-installer
RA install script
3 years ago
Carl Tashian 97af829805 RA install script 3 years ago
Carl Tashian 53d08e1f5c
Remove microbadger.com (the website is gone) 3 years ago
Carl Tashian 8f4c833845
Update README.md 3 years ago
Carl Tashian cff19691b3
Merge pull request #654 from smallstep/needs-renewal
Fix needs-renewal condition and switch to using ExecCondition
3 years ago
Carl Tashian 09b554f855
Merge pull request #609 from smallstep/discord
update gitter to discord
3 years ago
Carl Tashian 22ef324534 Fix needs-renewal condition and switch to using ExecCondition 3 years ago
Carl Tashian f8c137af4f
Update provisioners.md 3 years ago
Carl Tashian 28acc1b7d2
Merge pull request #653 from smallstep/needs-renewal
systemd cert renewer can now use 'step certificate needs-renewal'
3 years ago
Carl Tashian 0dd6564b1e
README link fixes 3 years ago
Carl Tashian 3e5b90b6fa systemd cert renewer can now use 'step certificate needs-renewal' 3 years ago
max furman bd51b1f85b Updates for new issue page 3 years ago
max furman a3af991261 Update pull request labeler action 3 years ago
max furman b71ff09a08 UI updates for certificates new issue page 3 years ago
Mariano Cano 4aa529605d
Merge pull request #641 from hillu/quote-serial
Log certificate's serial number as stringified decimal number
3 years ago
Mariano Cano 76413b845e
Merge pull request #644 from hslatman/hs/fix-provisioner-name-log
Fix logging provisioner name as string
3 years ago
Herman Slatman 9210a6740b
Fix logging provisioner name as string 3 years ago
Hilko Bengen edb01bc9f2 Log certificate's serial number as stringified decimal number
Using a JSON string fixes a common issue with JSON parsers that
deserialize all numbers to a 64-bit IEEE-754 floats. (Certificate
serial numbers are usually 128 bit values.)

This change is consistent with existing log entries for revocation
requests.

See also: #630, #631
3 years ago
Max b9743b36e1
Merge pull request #599 from smallstep/max/cert-mgr-crud
certificate manager
3 years ago
max furman 857a50434c Merge branch 'master' into max/cert-mgr-crud 3 years ago
Max 517fab1b54
Merge pull request #602 from hslatman/hs/ip-verification
IP Identifier Validation [RFC8738]
3 years ago
max furman 681226a798 Merge branch 'master' into max/cert-mgr-crud 3 years ago
max furman 1df21b9b6a Addressing comments in PR review
- added a bit of validation to admin create and update
- using protojson where possible in admin api
- fixing a few instances of admin -> acme in errors
3 years ago
Mariano Cano bc14341387 Fix bootstrap command. 3 years ago
max furman 5679c9933d Fixes from PR review 3 years ago
max furman 77fdfc9fa3 Merge branch 'master' into max/cert-mgr-crud 3 years ago
max furman 9fdef64709 Admin level API for provisioner mgmt v1 3 years ago
Kevin Chen 9d4e6e315a update readme page 3 years ago
Herman Slatman 8e4a4ecc1f
Refactor tests for sans 3 years ago
Herman Slatman 87b72afa25
Fix IP equality check and add more tests 3 years ago
Herman Slatman a6d33b7d06
Add tests for sans() 3 years ago