Cristian Le
79eec83f3e
Rename and reformat to PreferredUsername
3 years ago
Cristian Le
09a21fef26
Implement #550
...
- Read `preferred_username` from token
- Add `preferred_username` to the default Usernames
- Check the `admin` array for admin groups that the user might belong to
3 years ago
Cristian Le
bb1e051b27
Revert using preferred_username
...
It might present a security issue if the users can change this value for themselves. Needs further investigation
3 years ago
Max
1ee288f9fb
Merge pull request #565 from smallstep/max/load-init
...
Init config on load | Add wrapper for cli
3 years ago
max furman
8c709fe3c2
Init config on load | Add wrapper for cli
3 years ago
max furman
9a156d2210
Remove distribution doc.
3 years ago
max furman
bc4bf224e8
[action] Add needs-triage labeler
3 years ago
Cristian Le
e5b206c1de
Fix shadow issue in CI
3 years ago
Carl Tashian
0295280c20
Merge branch 'master' of https://github.com/smallstep/certificates
3 years ago
Carl Tashian
25325b6970
Revert systemd renewer unit change that was incorrect
...
This reverts commit 75f24a103a
.
3 years ago
Mariano Cano
484b30d0a1
Fix IsAdminGroup comment.
3 years ago
Mariano Cano
9cc410b308
Use map[string]struct{} instead of map[string]bool
3 years ago
Mariano Cano
c8eb771a8e
Add test for oidc with preferred usernames.
3 years ago
Cristian Le
8b1ab30212
Sanitize usernames
3 years ago
Cristian Le
bf364f0a5f
Draft: adding usernames to GetIdentityFunc
3 years ago
Cristian Le
861ef80e0d
Rename and reformat to PreferredUsername
3 years ago
Mariano Cano
b9b1ac04d1
Merge pull request #562 from smallstep/renew-db-interface
...
Renew DB interface and Rekey
3 years ago
Mariano Cano
5846314f88
Add missing Rekey method to the ca.Client
...
Fixes #315
3 years ago
Mariano Cano
2cbaee9c1d
Allow to use an alternative interface to store renewed certs.
...
This can be useful to know if a certificate has been renewed and
link one certificate with the 'parent'.
3 years ago
Herman Slatman
68d5f6d0d2
Merge branch 'master' into hs/scep
3 years ago
Cristian Le
55fbcfb3be
Implement #550
...
- Read `preferred_username` from token
- Add `preferred_username` to the default Usernames
- Check the `admin` array for admin groups that the user might belong to
3 years ago
Joe Julian
0369151bfa
use InsecureSkipVerify for validation
...
The server will not yet have a valid certificate so we need to disable
certificate validation in the HTTPGetter.
3 years ago
Mariano Cano
582d6b161d
Merge pull request #531 from smallstep/tls-tunnel
...
Add experimental support for a TLS over TLS tunnel.
3 years ago
Mariano Cano
1328aa3e47
Fix review comments.
3 years ago
Mariano Cano
d3c6bcbcce
Merge pull request #553 from smallstep/store-chain
...
Add extension of db.AuthDB to store the fullchain
4 years ago
Mariano Cano
e6833ecee3
Add extension of db.AuthDB to store the fullchain.
...
Add a temporary solution to allow an extension of an db.AuthDB
interface that logs the fullchain of certificates instead of just
the leaf.
4 years ago
Mariano Cano
50b9aaec57
Add new identity tests.
4 years ago
Mariano Cano
e414d0c8ea
Fix unit tests.
4 years ago
Mariano Cano
c5234e9c61
Refactor tls tunnel connections.
...
New method will use an identity-like file with the configuration
used to create the (m)TLS connection to the tunnel.
4 years ago
Mariano Cano
180b5c3e3c
Fix typo.
4 years ago
Mariano Cano
e75a9409a5
Add experimental support for a TLS over TLS tunnel.
4 years ago
Carl Tashian
75f24a103a
Sync cert renewer service with docs
4 years ago
Carl Tashian
e50c5bc4b1
Remove pronoun
4 years ago
Mariano Cano
3769a2760a
Merge pull request #543 from smallstep/no-nonce-on-get
...
Remove the creation on nonce on get acme directory
4 years ago
Herman Slatman
2336936b5c
Fix typo
4 years ago
Herman Slatman
9787728fbd
Mask challenge password after it has been read
4 years ago
Herman Slatman
0487686f69
Merge branch 'master' into hs/scep
4 years ago
Mariano Cano
2e1524ec2f
Remove the creation on nonce on get acme directory.
...
According to RFC 8555, the replay nonces are only required in POST
requests. And of course in the new-nonce request.
4 years ago
max furman
16c20c9279
[action] codecov token not needed for public repos
4 years ago
Max
b7f8f15619
Merge pull request #541 from smallstep/max/ver
...
VERSION from ENV should always take precedence over CI tags
4 years ago
max furman
78c15805f4
VERSION from ENV should always take precedence over CI tags
4 years ago
Mariano Cano
7688ca18ac
Merge pull request #540 from smallstep/proxy-always
...
Always specify a Proxy in all custom transports.
4 years ago
Mariano Cano
02a5879cfe
Specify always a Proxy in all custom transports.
...
Fixes #535
4 years ago
Max
0ec75c98cf
Merge pull request #539 from smallstep/max/escaped-route-fix
...
Use different method for unescpaed paths for the router
4 years ago
max furman
93c3c2bf2e
Error handle non existent provisioner downstream and disable debug route logging
4 years ago
max furman
497ec0c79b
Fix linter issues
4 years ago
max furman
b1888fd34d
Use different method for unescpaed paths for the router
4 years ago
Max
938cd092b4
Merge pull request #536 from smallstep/max/dev
...
Move golangci-lint to github action and fix debian build action
4 years ago
Mariano Cano
e3e34bd00c
Remove dockerignore files that are in the repo.
...
This was causing a dirty repo and versions with -dev.
4 years ago
max furman
335435decf
[action] debian rules syntax
4 years ago