Commit Graph

53 Commits (dccbdf3a9071c1291cd7e9fa53943c43c03b5182)

Author SHA1 Message Date
max furman dccbdf3a90 Introduce generalized statusCoder errors and loads of ssh unit tests.
* StatusCoder api errors that have friendly user messages.
* Unit tests for SSH sign/renew/rekey/revoke across all provisioners.
4 years ago
max furman 9aafe265d0 Should be returning nil from applyIdentity if cert expired. 4 years ago
max furman b9f6aacb0f Move api errors to their own package and modify the typedef 4 years ago
Mariano Cano 65b4dda420 Add wrappers to identity methods in the ca package. 4 years ago
Mariano Cano d85386d0b4 Add identity client and move identity to a new package. 4 years ago
Mariano Cano c6f6493bb7 Fail silently if the identity fails. 4 years ago
max furman 3ac388612a Use x5cInsecure token for /ssh/check-host endpoint 4 years ago
Mariano Cano ab126d6405 Add GetTransport to client. 4 years ago
Mariano Cano d2b1f1547f Create a custom client that sends a custom User-Agent. 4 years ago
Mariano Cano 5d7829b198 Replace /ssh/get-hosts to /ssh/hosts 4 years ago
Mariano Cano 2fe07cd79c Fix tests. 4 years ago
Mariano Cano 85d3843968 Add Identity helpers. 4 years ago
Mariano Cano 50188fc901 Add version support to the ca.Client. 4 years ago
Mariano Cano db3b795eea Fix directory permissions. 4 years ago
Mariano Cano bbaf8e106e Support for retry and identity files. 4 years ago
Mariano Cano d555f310dc Add support for identity authentication. 4 years ago
Mariano Cano f9e5b27e63 Add client method for SSHBastion 4 years ago
max furman 29853ae016 sshpop provisioner + ssh renew | revoke | rekey first pass 4 years ago
max furman 862d704f6b get-hosts fixes 4 years ago
max furman 5616386eed Add SSH getHosts api 4 years ago
Mariano Cano b8817ad648 Add proxycommand and new lines to templates. 4 years ago
Mariano Cano 37f17213bb Add initial support for check-host endpoint. 4 years ago
Mariano Cano d08db4df23 Rename SSH methods. 4 years ago
Mariano Cano b5bc249e1c Add support for multiple ssh roots.
Fixes #125
4 years ago
Mariano Cano a35988ff08 Add initial support for ssh config.
Related to smallstep/cli#170
4 years ago
Mariano Cano 961be1fbc7 Add endpoint to return the SSH public keys.
Related to smallstep/ca-component#195
4 years ago
Mariano Cano 10e7b81b9f Merge branch 'master' into ssh-ca 5 years ago
max furman 635c59ed24 Accept emails SANs 5 years ago
Mariano Cano 1c8f610ca9 Add initial implementation of an SSH CA using the JWK provisioner.
Fixes smallstep/ca-component#187
5 years ago
Mariano Cano f9e2ea9bd6 Revert "Do not depend on config package."
This reverts commit cc1c6f2cb4.
5 years ago
Mariano Cano cc1c6f2cb4 Do not depend on config package.
Config package will panic if it cannot create the step path folder.
5 years ago
Mariano Cano 01b6aebbf7 Make provisioner more configurable.
The intention of this change is to make it usable from cert-manager.
5 years ago
Mariano Cano 43c5831582 Merge branch 'master' into step-sds 5 years ago
max furman ab4d569f36 Add /revoke API with interface db backend 5 years ago
Mariano Cano 888ef147fa Expose a way to update the transport. 5 years ago
Mariano Cano 5ce5a891f7 Add email SAN with email parameter in the JWK 5 years ago
Mariano Cano 262a9d0978
Merge pull request #27 from smallstep/mariano/renew-pool
SDK should update certificate pools safely
5 years ago
max furman 3415a1fef8 move SplitSANs to cli 5 years ago
max furman 6937bfea7b claims.SANS -> claims.SANs 5 years ago
Mariano Cano 4c9dccd3f6 Allow multiple certificates in the root pem. 5 years ago
max furman f0683c2e0a Enable signing certificates with custom SANs
* validate against SANs in token. must be 1:1 equivalent.
5 years ago
Mariano Cano dbd1bf11f1 Rename variable. 5 years ago
Mariano Cano 7dc61bf233 Remove deprecated code 6 years ago
Mariano Cano 518b597535 Remove mTLS client requirement in /roots and /federation 6 years ago
Mariano Cano d296cf95a9 Add mTLS request to get all the root CAs, not the federated ones. 6 years ago
Mariano Cano 722bcb7e7a Add initial support for federated root certificates. 6 years ago
Mariano Cano b0a410066b Add support for parsing endpoints without schema.
Fixes smallstep/ca-component#117
6 years ago
max furman c74fcd57a7 ca-component -> certificates
* fix redundant error check
* add README
6 years ago
Mariano Cano 71a3587b76 Add client support for provisioner cursor and limit options.
Fixes #83
6 years ago
Mariano Cano d7c31c3133 Properly fill CSR DNSNames or IPAddresses 6 years ago