Carl Tashian
09b554f855
Merge pull request #609 from smallstep/discord
...
update gitter to discord
3 years ago
Carl Tashian
f8c137af4f
Update provisioners.md
3 years ago
Kevin Chen
9d4e6e315a
update readme page
3 years ago
Kevin Chen
2ac53f7c69
update gitter to discord
3 years ago
Carl Tashian
e305940448
Small docs cleanup
3 years ago
Carl Tashian
6f0f023d2c
Small docs cleanup
3 years ago
FibreFoX
9607691f9c
Added missing hints for running step-ca on Raspberry Pi
...
See #351 , #344 , #279
3 years ago
Carl Tashian
e50c5bc4b1
Remove pronoun
4 years ago
Austin Tucker Hall
6801cf3d05
Update provisioners.md
...
mispelling that is driving me nuts
4 years ago
Carl Tashian
4d7338f763
Merge pull request #499 from smallstep/carl/readmes
...
Update "build from source" instructions
4 years ago
Carl Tashian
35be06f4aa
Amendments to CONTRIBUTING doc
4 years ago
Carl Tashian
c67531134a
Update CONTRIBUTING.md
4 years ago
Carl Tashian
a9e52405a2
Add CGO build instructions to contributing.md
4 years ago
max furman
9cfdd2f3df
[action] change step-certificates to step-ca where possible
4 years ago
max furman
19a3cd10a1
[docs] provisioners fix attr dupe and give warning about stale docs
4 years ago
Anton Lundin
3e6137110b
Add support for using ssh-agent as a KMS
...
This adds a new KMS, SSHAgentKMS, which is a KMS to provide signing keys
for issuing ssh certificates signed by a key managed by a ssh-agent. It
uses the golang.org/x/crypto package to get a native Go implementation
to talk to a ssh-agent.
This was primarly written to be able to use gpg-agent to provide the
keys stored in a YubiKeys openpgp interface, but can be used for other
setups like proxying a ssh-agent over network.
That way the signing key for ssh certificates can be kept in a
"sign-only" hsm.
This code was written for my employer Intinor AB, but for simplicity
sake gifted to me to contribute upstream.
Signed-off-by: Anton Lundin <glance@acc.umu.se>
4 years ago
Carl Tashian
80beff6ce3
Update READMEs with links to new docs
4 years ago
Nico Domino
8aae8a6153
Update provisioners.md
...
Swapped markdown URL / Text
4 years ago
Mariano Cano
341dc1c3ea
Remove merge data.
4 years ago
Mariano Cano
6a818ebc92
Merge branch 'master' into ra-init
4 years ago
Mariano Cano
2ec0c24e98
Update docs for RA.
4 years ago
Mariano Cano
6049d42b5f
Change title to match with CAS
4 years ago
Mariano Cano
7d1686dc53
Add option to specify the AWS IID certificates to use.
...
This changes adds a new option `iidRoots` that allows a user to
define one or more certificates that will be used for AWS IID
signature validation.
Fixes #393
4 years ago
Mariano Cano
647b9b4541
Merge pull request #367 from smallstep/cas
...
Support for CAS Interface and CloudCAS
4 years ago
Carl Tashian
329f401e58
Update cas.md
...
Needed to run two commands to set up IAM roles because passing `--role` twice only uses the second value passed.
4 years ago
Carl Tashian
3f55f22b2e
Update cas.md
...
Added `--location` flag to a couple of the commands
4 years ago
Mariano Cano
7d779e12db
Change service account name.
4 years ago
Mariano Cano
52d857a302
Update CloudCAS instructions.
4 years ago
Mariano Cano
066c7ee10b
Fix iam permissions.
4 years ago
Carl Tashian
fd07e25e61
Change Gitter links to GH Discussions tab
4 years ago
Mariano Cano
42ce78ed43
Add initial docs for CAS.
4 years ago
max furman
e8c5a3b320
Document concurrency limitations in ACME server
...
- in concurrency / HA section
4 years ago
Carl Tashian
c1e6c0285a
Merge pull request #325 from smallstep/readme-updates
...
README updates, round 2
4 years ago
Carl Tashian
ed89367fca
Round 2 of README updates
4 years ago
Ilias Trichopoulos
7d5552f53e
Fix service logs path
4 years ago
Ilias Trichopoulos
6d8b4a1b9a
Fix service name
4 years ago
Ilias Trichopoulos
730639d2a3
Fix service user name
...
In `ExecStart` the user used us `smallstep` so the same user should be defined in `useradd`.
4 years ago
max furman
b5699892ad
Add github response to frequenty asked questions doc
...
- security risks of exposing the OAuth Client Secret in the output of
`step ca provisioner list`
4 years ago
mkontani
feadaa6c56
docs: fix provisioner type
...
Signed-off-by: mkontani <itoama@live.jp>
4 years ago
max furman
84d9bf86f5
Add `forceCN` option in ACME provisioner doc
4 years ago
max furman
5752408618
Document the ACME, SSHPOP, X5C, and K8sSA provisioners.
...
- Fixes #266 , #293 , #294
4 years ago
max furman
c7a6385913
Add authz capabilities table to provisioners doc
4 years ago
max furman
54be8889cd
Correct attribute names for SSH claims in provisioner docs
4 years ago
max furman
aaec9931f4
Add RHEL/Centos install docs and a section on systemctl config
4 years ago
max furman
c4f1eea5dc
Correct badger file loading mode documentation.
4 years ago
max furman
d9a1fb7e5d
Recommend badgerV2 in badger extra options documentation.
4 years ago
Mariano Cano
deac15327f
Add docs for AWS KMS.
4 years ago
Mariano Cano
3e40cb89a7
Add some docs for YubiKey configuration.
4 years ago
max furman
ca0861bf17
Add documentation for running HA
4 years ago
max furman
083abf5150
Fix a bit of getting started doc syntax
4 years ago