Mariano Cano
48549bf317
Initialize windows terminal on all binaries.
3 years ago
Mariano Cano
08c9902f29
Add new alias in the kms package.
3 years ago
Mariano Cano
505b1f3678
Add new test case with a version in the opaque string.
3 years ago
Mariano Cano
d2581489a3
Redefine uris and set proper type.
...
URIs will now have the form:
- azurekms:name=my-key;vault=my-vault
- azurekms:name=my-key;vault=my-vault?version=my-version
3 years ago
Mariano Cano
656099c4f0
Add type for azurekms.
3 years ago
Mariano Cano
56c3559e52
Add some extra coverage.
3 years ago
Mariano Cano
6389100325
Add unit tests for azurekms.
3 years ago
Mariano Cano
97d08a1b61
Fix typos.
3 years ago
Mariano Cano
d02cb1c869
Enable azurekms.
3 years ago
Mariano Cano
392a18465f
Add initial implementation of Azure Key Vault KMS.
...
Fixes #462
3 years ago
Mariano Cano
896fd5efae
Merge pull request #715 from smallstep/template-vars
...
Fix ssh template variables when CA is injected using options.
3 years ago
Mariano Cano
9fb6df3abb
Fix ssh template variables when CA is injected using options.
3 years ago
max furman
afe1980d13
changelog update for 0.17.4
3 years ago
Mariano Cano
4a899fbafc
Merge pull request #714 from smallstep/host-or-user-only-ssh-ca
...
SSH host or SSH user only CA
3 years ago
Mariano Cano
42e2635848
Add entry in changelog.
3 years ago
Mariano Cano
aedd7fcc05
Be able to start a SSH host or SSH user only CA
...
In previous versions if the host or user CA is not configured, the
start of step-ca was crashing. This allows to configure a user or
host only ssh ca.
3 years ago
Max
3f44dae26a
Merge pull request #713 from smallstep/max/release
...
[action] update release URLs in header
3 years ago
max furman
6aaa7853b2
[action] update release URLs in header
3 years ago
max furman
ba17869deb
changelog update for 0.17.3
3 years ago
Mariano Cano
28bd2ef6c1
Merge pull request #711 from smallstep/oidc-admin-group
...
Check for admins in both emails and groups.
3 years ago
Mariano Cano
963eaf8882
Fix line in changelog
3 years ago
Mariano Cano
9eb757797e
Add line to changelog.
3 years ago
Mariano Cano
a50654b468
Check for admins in both emails and groups.
3 years ago
Mariano Cano
7f00cc7aad
Clarify changelog feature.
3 years ago
Mariano Cano
2ae6b42cfe
Add missing feature to the changelog.
3 years ago
Mariano Cano
2cf4127310
Merge pull request #710 from smallstep/upgrade-go-jose
...
Upgrade go-jose.v2
3 years ago
Mariano Cano
ad82d8a250
Upgrade go.step.sm/crypto as long with go-jose.v2
...
There was a typo in the OKP template causing bad fingerprints for
Ed25519 keys.
See a10ff54e00
Fixes #705
3 years ago
max furman
2d5bfd3485
fix comment
3 years ago
Carl Tashian
04784be03e
Update cert-renewer@.service
...
Wrap command line env variables in braces so they are treated as a single argument (rather than split on whitespace)
3 years ago
Mariano Cano
845fa07064
Merge pull request #708 from smallstep/helm-fix
...
Use badgerv2 the default DB in helm
3 years ago
Mariano Cano
4fde7b5250
Use badgerv2 the default in helm too.
...
Use also port 443 for the ca-url, as we usually access through the
service, this can be overridden by --with-ca-url flag in the cli.
3 years ago
Mariano Cano
ebf1afa96e
Merge pull request #707 from smallstep/password-flags
...
Add support for setting individual password for ssh and tls keys
3 years ago
Mariano Cano
cfe08ad6fe
Add flags to usage.
3 years ago
Mariano Cano
6729c79253
Add support for setting individual password for ssh and tls keys
...
This change add the following flags:
* --ssh-host-password-file
* --ssh-user-password-file
Fixes #693
3 years ago
max furman
8df9f629b1
go mod tidy
3 years ago
Max
4daef5dd0b
Merge pull request #703 from hslatman/hs/update-pkcs7
...
Update go.mozilla.org/pkcs7
3 years ago
Herman Slatman
73d0a11a20
Update github.com/micromdm/scep/v2
3 years ago
Herman Slatman
611859eec4
Update go.mozilla.org/pkcs7
...
This includes the fix as described in https://github.com/mozilla-services/pkcs7/pull/59 ,
which was the reason a fork of the library was used.
3 years ago
Carl Tashian
e3acea9704
Add release page link to install docs
3 years ago
Max
23add69c9b
Merge pull request #702 from smallstep/max/release-header
...
[action] add official package links to github release header (via goreleaser)
3 years ago
max furman
6d644ddb2a
[action] goreleaser pkg link cli -> certificates
3 years ago
max furman
fcf322023a
[action] goreleaser github release footer fix missing close braces
3 years ago
max furman
494da3d668
[action] goreleaser header packages
3 years ago
max furman
2cce795d8f
[action] reference correct pub key in cosign example release header
3 years ago
max furman
8a99f7e458
[action] add header and footer to github release page
3 years ago
Mariano Cano
ae42daf288
Merge pull request #700 from smallstep/cloudcas-signature-algorithm
...
Allow to kms signers to define the SignatureAlgorithm
3 years ago
Mariano Cano
e4e799ca85
Fix typos in comment.
3 years ago
Mariano Cano
6e0d515a55
Add entry to changelog.
3 years ago
Mariano Cano
6d644880bd
Allow to kms signers to define the SignatureAlgorithm
...
CloudKMS keys signs data using an specific signature algorithm, in RSA keys,
this can be PKCS#1 RSA or RSA-PSS, if the later is used, x509.CreateCertificate
will fail unless the template SignatureCertificate is properly set.
On contrast, AWSKMS RSA keys, are just RSA keys, and can sign with PKCS#1 or
RSA-PSS schemes, so right now the way to enforce one or the other is to used
templates.
3 years ago
Mariano Cano
837db2e147
Merge pull request #699 from fofloinn/master
...
Converts group and subgroup to lowercase for comparison.
3 years ago