github-actions[bot]
a85723d9f8
Merge pull request #1897 from smallstep/dependabot/go_modules/google.golang.org/api-0.185.0
...
Bump google.golang.org/api from 0.184.0 to 0.185.0
16 hours ago
Max
c3beeaf44c
Merge branch 'master' into dependabot/go_modules/google.golang.org/api-0.185.0
16 hours ago
github-actions[bot]
367d90d0cc
Merge pull request #1898 from smallstep/dependabot/go_modules/github.com/go-chi/chi/v5-5.0.14
...
Bump github.com/go-chi/chi/v5 from 5.0.12 to 5.0.14
16 hours ago
dependabot[bot]
27bea359cb
Bump github.com/go-chi/chi/v5 from 5.0.12 to 5.0.14
...
Bumps [github.com/go-chi/chi/v5](https://github.com/go-chi/chi ) from 5.0.12 to 5.0.14.
- [Release notes](https://github.com/go-chi/chi/releases )
- [Changelog](https://github.com/go-chi/chi/blob/master/CHANGELOG.md )
- [Commits](https://github.com/go-chi/chi/compare/v5.0.12...v5.0.14 )
---
updated-dependencies:
- dependency-name: github.com/go-chi/chi/v5
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
16 hours ago
github-actions[bot]
5eb1849a8f
Merge pull request #1896 from smallstep/dependabot/github_actions/softprops/action-gh-release-2.0.6
...
Bump softprops/action-gh-release from 2.0.5 to 2.0.6
16 hours ago
Max
ee69818c27
Merge branch 'master' into dependabot/go_modules/google.golang.org/api-0.185.0
16 hours ago
github-actions[bot]
7ff52f6e6c
Merge pull request #1899 from smallstep/dependabot/go_modules/github.com/fxamacker/cbor/v2-2.7.0
...
Bump github.com/fxamacker/cbor/v2 from 2.6.0 to 2.7.0
16 hours ago
Carl Tashian
12c2e75db6
Update goreleaser YML version ( #1901 )
...
* Update goreleaser YML version
* Update http-retryable go pkg
---------
Co-authored-by: max furman <mx.furman@gmail.com>
16 hours ago
dependabot[bot]
d12d866f84
Bump github.com/fxamacker/cbor/v2 from 2.6.0 to 2.7.0
...
Bumps [github.com/fxamacker/cbor/v2](https://github.com/fxamacker/cbor ) from 2.6.0 to 2.7.0.
- [Release notes](https://github.com/fxamacker/cbor/releases )
- [Commits](https://github.com/fxamacker/cbor/compare/v2.6.0...v2.7.0 )
---
updated-dependencies:
- dependency-name: github.com/fxamacker/cbor/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 days ago
dependabot[bot]
43bf6b5a46
Bump google.golang.org/api from 0.184.0 to 0.185.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.184.0 to 0.185.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.184.0...v0.185.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 days ago
dependabot[bot]
fffffc60a8
Bump softprops/action-gh-release from 2.0.5 to 2.0.6
...
Bumps [softprops/action-gh-release](https://github.com/softprops/action-gh-release ) from 2.0.5 to 2.0.6.
- [Release notes](https://github.com/softprops/action-gh-release/releases )
- [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md )
- [Commits](69320dbe05...a74c6b72af
)
---
updated-dependencies:
- dependency-name: softprops/action-gh-release
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 days ago
github-actions[bot]
9bf6a8369f
Merge pull request #1891 from smallstep/dependabot/go_modules/google.golang.org/protobuf-1.34.2
...
Bump google.golang.org/protobuf from 1.34.1 to 1.34.2
1 week ago
dependabot[bot]
43bdd61803
Bump google.golang.org/protobuf from 1.34.1 to 1.34.2
...
Bumps google.golang.org/protobuf from 1.34.1 to 1.34.2.
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 week ago
github-actions[bot]
1563c264bd
Merge pull request #1890 from smallstep/dependabot/go_modules/google.golang.org/api-0.184.0
...
Bump google.golang.org/api from 0.183.0 to 0.184.0
1 week ago
github-actions[bot]
14230d8696
Merge pull request #1889 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.47.1
...
Bump go.step.sm/crypto from 0.47.0 to 0.47.1
1 week ago
dependabot[bot]
958c344f18
Bump google.golang.org/api from 0.183.0 to 0.184.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.183.0 to 0.184.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.183.0...v0.184.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 week ago
dependabot[bot]
8a7892463d
Bump go.step.sm/crypto from 0.47.0 to 0.47.1
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.47.0 to 0.47.1.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.47.0...v0.47.1 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 week ago
Max
890e81cb66
[actions] dependabot to common workflow | move to new release action ( #1887 )
2 weeks ago
github-actions[bot]
2d4bc95460
Merge pull request #1883 from smallstep/dependabot/go_modules/github.com/Azure/azure-sdk-for-go/sdk/azidentity-1.6.0
...
Bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.5.2 to 1.6.0
2 weeks ago
Max
93ca1e21c1
Merge branch 'master' into dependabot/go_modules/github.com/Azure/azure-sdk-for-go/sdk/azidentity-1.6.0
2 weeks ago
Max
d6973c979e
Set date for 0.26.2 release in changelog ( #1886 )
2 weeks ago
Max
d4b2916650
Changelog update for 0.26.2 ( #1885 )
2 weeks ago
Mariano Cano
f9e5971978
Merge pull request #1884 from smallstep/mariano/linkedca
...
Upgrade linkedca
2 weeks ago
Mariano Cano
c8e65abfb1
Fix linter warnings
2 weeks ago
Mariano Cano
b4616ee8f1
Upgrade linkedca
...
This commit upgrades go.step.sm/linkedca with dependencies required by
smallstep/certificates#1802 . It also fixes some linter warnings.
2 weeks ago
Mariano Cano
634ece4489
Merge pull request #1802 from jdoupe/AuthParams
...
add AuthParams to OIDC struct
2 weeks ago
Mariano Cano
a017c0e3fb
Merge branch 'master' into AuthParams
2 weeks ago
dependabot[bot]
7bc9d15849
Bump github.com/Azure/azure-sdk-for-go/sdk/azidentity
...
Bumps [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go ) from 1.5.2 to 1.6.0.
- [Release notes](https://github.com/Azure/azure-sdk-for-go/releases )
- [Changelog](https://github.com/Azure/azure-sdk-for-go/blob/main/documentation/release.md )
- [Commits](https://github.com/Azure/azure-sdk-for-go/compare/sdk/internal/v1.5.2...sdk/azcore/v1.6.0 )
---
updated-dependencies:
- dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azidentity
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2 weeks ago
github-actions[bot]
8b36f7bc11
Merge pull request #1878 from smallstep/dependabot/go_modules/google.golang.org/api-0.183.0
...
Bump google.golang.org/api from 0.182.0 to 0.183.0
2 weeks ago
Max
30b2cd1e5c
Merge branch 'master' into dependabot/go_modules/google.golang.org/api-0.183.0
2 weeks ago
github-actions[bot]
a0b9360725
Merge pull request #1879 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.24.0
...
Bump golang.org/x/crypto from 0.23.0 to 0.24.0
2 weeks ago
Max
d5171be998
Merge branch 'master' into dependabot/go_modules/golang.org/x/crypto-0.24.0
2 weeks ago
github-actions[bot]
6e12cfa46c
Merge pull request #1880 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.47.0
...
Bump go.step.sm/crypto from 0.46.0 to 0.47.0
2 weeks ago
Max
d1de1ad8df
Merge branch 'master' into dependabot/go_modules/google.golang.org/api-0.183.0
2 weeks ago
Max
0ce8fb6db5
Merge branch 'master' into dependabot/go_modules/golang.org/x/crypto-0.24.0
2 weeks ago
Max
3b9631b883
Merge branch 'master' into dependabot/go_modules/go.step.sm/crypto-0.47.0
2 weeks ago
Max
474f5d28f4
Update hardcoded AWS certs ( #1881 )
2 weeks ago
dependabot[bot]
7ab8391070
Bump go.step.sm/crypto from 0.46.0 to 0.47.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.46.0 to 0.47.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.46.0...v0.47.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 weeks ago
dependabot[bot]
23f120e9db
Bump golang.org/x/crypto from 0.23.0 to 0.24.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.23.0 to 0.24.0.
- [Commits](https://github.com/golang/crypto/compare/v0.23.0...v0.24.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 weeks ago
dependabot[bot]
e3444c0736
Bump google.golang.org/api from 0.182.0 to 0.183.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.182.0 to 0.183.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.182.0...v0.183.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 weeks ago
github-actions[bot]
669d992d59
Merge pull request #1870 from smallstep/dependabot/go_modules/google.golang.org/api-0.182.0
...
Bump google.golang.org/api from 0.181.0 to 0.182.0
3 weeks ago
github-actions[bot]
68c5238fe7
Merge pull request #1869 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/approle-0.7.0
...
Bump github.com/hashicorp/vault/api/auth/approle from 0.6.0 to 0.7.0
3 weeks ago
github-actions[bot]
4884379710
Merge pull request #1868 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.46.0
...
Bump go.step.sm/crypto from 0.45.1 to 0.46.0
3 weeks ago
dependabot[bot]
437154d70e
Bump google.golang.org/api from 0.181.0 to 0.182.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.181.0 to 0.182.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.181.0...v0.182.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
3 weeks ago
dependabot[bot]
2a9bbff8ce
Bump github.com/hashicorp/vault/api/auth/approle from 0.6.0 to 0.7.0
...
Bumps [github.com/hashicorp/vault/api/auth/approle](https://github.com/hashicorp/vault ) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG-v0.md )
- [Commits](https://github.com/hashicorp/vault/compare/v0.6.0...v0.7.0 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api/auth/approle
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
3 weeks ago
dependabot[bot]
4d7ca9d672
Bump go.step.sm/crypto from 0.45.1 to 0.46.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.45.1 to 0.46.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.45.1...v0.46.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
3 weeks ago
github-actions[bot]
587d0d5a27
Merge pull request #1858 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.17.0
...
Bump cloud.google.com/go/security from 1.16.1 to 1.17.0
4 weeks ago
dependabot[bot]
34fde59927
Bump cloud.google.com/go/security from 1.16.1 to 1.17.0
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.16.1 to 1.17.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/video/v1.16.1...kms/v1.17.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 weeks ago
github-actions[bot]
fe8c3d3ee8
Merge pull request #1859 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/kubernetes-0.7.0
...
Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.6.0 to 0.7.0
4 weeks ago
dependabot[bot]
013c2f2f04
Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.6.0 to 0.7.0
...
Bumps [github.com/hashicorp/vault/api/auth/kubernetes](https://github.com/hashicorp/vault ) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG-v0.md )
- [Commits](https://github.com/hashicorp/vault/compare/v0.6.0...v0.7.0 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api/auth/kubernetes
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 weeks ago
github-actions[bot]
4208b0a63f
Merge pull request #1860 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.14.0
...
Bump github.com/hashicorp/vault/api from 1.13.0 to 1.14.0
4 weeks ago
github-actions[bot]
6de7aa97dc
Merge pull request #1861 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.45.1
...
Bump go.step.sm/crypto from 0.45.0 to 0.45.1
4 weeks ago
dependabot[bot]
f3e4f0ae64
Bump go.step.sm/crypto from 0.45.0 to 0.45.1
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.45.0 to 0.45.1.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.45.0...v0.45.1 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 weeks ago
dependabot[bot]
2b8f3e7080
Bump github.com/hashicorp/vault/api from 1.13.0 to 1.14.0
...
Bumps [github.com/hashicorp/vault/api](https://github.com/hashicorp/vault ) from 1.13.0 to 1.14.0.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md )
- [Commits](https://github.com/hashicorp/vault/compare/v1.13.0...v1.14.0 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 weeks ago
Mariano Cano
47b5048d82
Merge pull request #1850 from smallstep/mariano/signer
...
Add GetX509Signer method
1 month ago
github-actions[bot]
7d6eea0ff0
Merge pull request #1853 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.64.0
...
Bump google.golang.org/grpc from 1.63.2 to 1.64.0
1 month ago
max furman
99ce13a4ea
Fix linter warnings
1 month ago
dependabot[bot]
5cdfc2c972
Bump google.golang.org/grpc from 1.63.2 to 1.64.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.63.2 to 1.64.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.63.2...v1.64.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 month ago
github-actions[bot]
980687bc0e
Merge pull request #1854 from smallstep/dependabot/go_modules/google.golang.org/api-0.181.0
...
Bump google.golang.org/api from 0.180.0 to 0.181.0
1 month ago
dependabot[bot]
8121a05c55
Bump google.golang.org/api from 0.180.0 to 0.181.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.180.0 to 0.181.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.180.0...v0.181.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 month ago
Mariano Cano
ad0ac55b41
Merge pull request #1844 from smallstep/mariano/account-provisioner
...
Verify provisioner with id if available
1 month ago
Mariano Cano
192e90eea7
Merge branch 'master' into mariano/account-provisioner
1 month ago
Mariano Cano
812ffd3c40
Reverse assert statements
1 month ago
Mariano Cano
d0548f9ec9
Use %q instead of '%s'
...
Co-authored-by: Herman Slatman <hslatman@users.noreply.github.com>
1 month ago
Mariano Cano
14959dbb2e
Merge pull request #1849 from smallstep/mariano/log-errors
...
Log errors using slog.Logger
1 month ago
Mariano Cano
c0b7c33a58
Use a function as the error logger
...
This commit addresses comment in the code review. Now, instead of
injecting an slog.Logger we can inject any method that can use a more
flexible implementation.
1 month ago
Mariano Cano
9e8087fbb1
Add GetX509Signer method
...
This commit adds a method to the Authority type that returns the signer
used to sign X509 certificates.
1 month ago
Mariano Cano
8673818980
Split provisioner check in two cases
1 month ago
Mariano Cano
f3f484cee2
Log errors using slog.Logger
...
This commit allows logging errors in a slog.Logger injected in the
context. This type of logger is not currently used directly in step-ca,
but this will change in the future.
1 month ago
Mariano Cano
fdb0cf03f6
Merge pull request #1848 from smallstep/mariano/intermediates
...
Add methods to get the intermediate certificates
1 month ago
Mariano Cano
d4862a2520
Add methods to get the intermediate certificates
...
This commit adds new methods to get the intermediate certificates.
1 month ago
Mariano Cano
e08b27708b
Merge pull request #1847 from smallstep/mariano/x5c-insecure
...
Upgrade go.step.sm/crypto to v0.45.0
1 month ago
Mariano Cano
b6afed3be7
Upgrade go.step.sm/crypto to v0.45.0
...
This commit upgrades go.step.sm/crypto to a version that fixes
`jose.ParseX5cInsecure`. It should require a certificate with ClientAuth
instead of the default ServerAuth.
1 month ago
github-actions[bot]
9355923799
Merge pull request #1839 from smallstep/dependabot/go_modules/google.golang.org/api-0.180.0
...
Bump google.golang.org/api from 0.177.0 to 0.180.0
1 month ago
dependabot[bot]
a8e9a18bcc
Bump google.golang.org/api from 0.177.0 to 0.180.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.177.0 to 0.180.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.177.0...v0.180.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 month ago
github-actions[bot]
803d3d3981
Merge pull request #1840 from smallstep/dependabot/go_modules/google.golang.org/protobuf-1.34.1
...
Bump google.golang.org/protobuf from 1.34.0 to 1.34.1
1 month ago
github-actions[bot]
e0e7ae6c89
Merge pull request #1841 from smallstep/dependabot/go_modules/golang.org/x/net-0.25.0
...
Bump golang.org/x/net from 0.24.0 to 0.25.0
1 month ago
github-actions[bot]
72a8bb3d39
Merge pull request #1842 from smallstep/dependabot/go_modules/github.com/prometheus/client_golang-1.19.1
...
Bump github.com/prometheus/client_golang from 1.19.0 to 1.19.1
1 month ago
Mariano Cano
5fa5a63de8
Verify provisioner with id if available
...
This commit allows verifying the account provisioner with the request
provisioner using the ID instead of the name. When the provisioner are
stored in the DB, the provisioner ID is not mutable but the name is.
1 month ago
dependabot[bot]
9cbdc73809
Bump github.com/prometheus/client_golang from 1.19.0 to 1.19.1
...
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang ) from 1.19.0 to 1.19.1.
- [Release notes](https://github.com/prometheus/client_golang/releases )
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prometheus/client_golang/compare/v1.19.0...v1.19.1 )
---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 month ago
dependabot[bot]
42341c7a39
Bump golang.org/x/net from 0.24.0 to 0.25.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.24.0 to 0.25.0.
- [Commits](https://github.com/golang/net/compare/v0.24.0...v0.25.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 month ago
dependabot[bot]
0dff5c4b84
Bump google.golang.org/protobuf from 1.34.0 to 1.34.1
...
Bumps google.golang.org/protobuf from 1.34.0 to 1.34.1.
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 month ago
github-actions[bot]
e3ba702811
Merge pull request #1827 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.23.0
...
Bump golang.org/x/crypto from 0.22.0 to 0.23.0
2 months ago
github-actions[bot]
fe29ccaee3
Merge pull request #1828 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.33.0
...
Bump github.com/newrelic/go-agent/v3 from 3.32.0 to 3.33.0
2 months ago
github-actions[bot]
8cf5e3c2c6
Merge pull request #1829 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.7
...
Bump cloud.google.com/go/longrunning from 0.5.6 to 0.5.7
2 months ago
dependabot[bot]
928d446e93
Bump golang.org/x/crypto from 0.22.0 to 0.23.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.22.0 to 0.23.0.
- [Commits](https://github.com/golang/crypto/compare/v0.22.0...v0.23.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
dependabot[bot]
e11833ef7a
Bump cloud.google.com/go/longrunning from 0.5.6 to 0.5.7
...
Bumps [cloud.google.com/go/longrunning](https://github.com/googleapis/google-cloud-go ) from 0.5.6 to 0.5.7.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/longrunning/v0.5.6...longrunning/v0.5.7 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/longrunning
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
github-actions[bot]
591b9f743d
Merge pull request #1826 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.16.1
...
Bump cloud.google.com/go/security from 1.16.0 to 1.16.1
2 months ago
Mariano Cano
a2f2332848
Merge pull request #1831 from smallstep/mariano/err-not-found
...
Use always acme.IsErrNotFound
2 months ago
Mariano Cano
b1e31b1726
Use always acme.IsErrNotFound
...
This commit replaces the comparisons with acme.ErrNotFound and always
uses acme.IsErrNotFound.
2 months ago
Mariano Cano
cca6f6d01b
Merge pull request #1830 from smallstep/mariano/provisioner-id
...
Add provisioner id to acme accounts
2 months ago
Mariano Cano
d037ed6ff2
Add provisioner id to acme accounts
...
This commit adds a new field that allows to have a reference to
a provisioner id in the acme account.
2 months ago
dependabot[bot]
9b2566556e
Bump github.com/newrelic/go-agent/v3 from 3.32.0 to 3.33.0
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.32.0 to 3.33.0.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.32.0...v3.33.0 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
dependabot[bot]
8933a2e514
Bump cloud.google.com/go/security from 1.16.0 to 1.16.1
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.16.0 to 1.16.1.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/video/v1.16.0...video/v1.16.1 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
github-actions[bot]
2c71543d33
Merge pull request #1817 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.44.8
...
Bump go.step.sm/crypto from 0.44.6 to 0.44.8
2 months ago
Herman Slatman
949e2fdb1c
Fix test error expectation in `TestAuthorityNew`
2 months ago
dependabot[bot]
281efbb949
Bump go.step.sm/crypto from 0.44.6 to 0.44.8
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.44.6 to 0.44.8.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.44.6...v0.44.8 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
github-actions[bot]
14b1211e7a
Merge pull request #1815 from smallstep/dependabot/go_modules/github.com/urfave/cli-1.22.15
...
Bump github.com/urfave/cli from 1.22.14 to 1.22.15
2 months ago
github-actions[bot]
0b894a0d4a
Merge pull request #1816 from smallstep/dependabot/go_modules/google.golang.org/api-0.176.1
...
Bump google.golang.org/api from 0.176.0 to 0.176.1
2 months ago
Mariano Cano
20e315bac0
Merge pull request #1819 from smallstep/mariano/not-found
...
Make IsErrNotFound more flexible
2 months ago
Mariano Cano
296ac4e207
Make ISErrNotFound more flexible
...
This commit allows to use the standard error sql.ErrNoRows for not found
errors.
2 months ago
github-actions[bot]
28a87bbaa6
Merge pull request #1818 from smallstep/dependabot/github_actions/dependabot/fetch-metadata-2.1.0
...
Bump dependabot/fetch-metadata from 2.0.0 to 2.1.0
2 months ago
dependabot[bot]
bf03d56ae4
Bump dependabot/fetch-metadata from 2.0.0 to 2.1.0
...
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata ) from 2.0.0 to 2.1.0.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases )
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v2.0.0...v2.1.0 )
---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
dependabot[bot]
6715c653ca
Bump google.golang.org/api from 0.176.0 to 0.176.1
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.176.0 to 0.176.1.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.176.0...v0.176.1 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
dependabot[bot]
798e190621
Bump github.com/urfave/cli from 1.22.14 to 1.22.15
...
Bumps [github.com/urfave/cli](https://github.com/urfave/cli ) from 1.22.14 to 1.22.15.
- [Release notes](https://github.com/urfave/cli/releases )
- [Changelog](https://github.com/urfave/cli/blob/main/docs/CHANGELOG.md )
- [Commits](https://github.com/urfave/cli/compare/v1.22.14...v1.22.15 )
---
updated-dependencies:
- dependency-name: github.com/urfave/cli
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
findnature
5072d7a58f
chore: fix function names in comment ( #1813 )
...
Signed-off-by: findnature <cricis@aliyun.com>
2 months ago
Max
9cbab5a5b3
Add changelog for 0.26.1 ( #1812 )
2 months ago
Jeremy Doupe
03c3cf5790
fixed Scopes and AuthParams assignment
2 months ago
Herman Slatman
d6bf551f87
Merge pull request #1803 from smallstep/herman/fix-scep-vault-ra
...
Fix CA startup with Vault RA configuration
2 months ago
github-actions[bot]
f4d506f659
Merge pull request #1811 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.13.0
...
Bump github.com/hashicorp/vault/api from 1.12.2 to 1.13.0
2 months ago
Herman Slatman
1e5e267b2b
Remove leftover debug print
2 months ago
max furman
760014c64b
go mod tidy
2 months ago
Herman Slatman
2561a7271e
Dedupe CA and SCEP client creation logic
2 months ago
dependabot[bot]
39653050dc
Bump github.com/hashicorp/vault/api from 1.12.2 to 1.13.0
...
Bumps [github.com/hashicorp/vault/api](https://github.com/hashicorp/vault ) from 1.12.2 to 1.13.0.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md )
- [Commits](https://github.com/hashicorp/vault/compare/v1.12.2...v1.13.0 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
github-actions[bot]
65cfee56df
Merge pull request #1810 from smallstep/dependabot/go_modules/google.golang.org/api-0.176.0
...
Bump google.golang.org/api from 0.172.0 to 0.176.0
2 months ago
dependabot[bot]
8d4effcce8
Bump google.golang.org/api from 0.172.0 to 0.176.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.172.0 to 0.176.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.172.0...v0.176.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
github-actions[bot]
4a375592d3
Merge pull request #1809 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.44.6
...
Bump go.step.sm/crypto from 0.44.4 to 0.44.6
2 months ago
github-actions[bot]
d7ed03124f
Merge pull request #1808 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.16.0
...
Bump cloud.google.com/go/security from 1.15.6 to 1.16.0
2 months ago
Herman Slatman
87202001a8
Rewrite SCEP integration tests to only use the HTTPS endpoint
2 months ago
dependabot[bot]
57a6b85388
Bump go.step.sm/crypto from 0.44.4 to 0.44.6
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.44.4 to 0.44.6.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.44.4...v0.44.6 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
dependabot[bot]
0ba61c58e8
Bump cloud.google.com/go/security from 1.15.6 to 1.16.0
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.15.6 to 1.16.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/kms/v1.15.6...asset/v1.16.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 months ago
Herman Slatman
b0fabe1346
Add some SCEP integration tests
2 months ago
Herman Slatman
113a6dd8ab
Remove reporting the CA mode from startup logs
2 months ago
Herman Slatman
6bc0a86207
Fix CA startup with Vault RA configuration
2 months ago
Jeremy Doupe
aa543a335a
add Scopes to OIDC struct
2 months ago
Jeremy Doupe
4879376138
add AuthParams and Scopes to linkedca OIDC structures
2 months ago
Jeremy Doupe
2fcf34066b
add AuthParams to OIDC struct
2 months ago
Herman Slatman
07279dd248
Merge pull request #1801 from smallstep/herman/upgrade-crypto-v0.44.4
...
Upgrade `go.step.sm/crypto` to `v0.44.4`
2 months ago
Herman Slatman
4c6b0b318e
Upgrade `go.step.sm/crypto` to `v0.44.4`
2 months ago
Herman Slatman
f1a2c68f43
Merge pull request #1798 from smallstep/herman/fix-instrumented-key-manager
...
Add support for `kmsapi.Decrypter` to instrumented key manager
2 months ago
Mariano Cano
7df3ad05ed
Merge pull request #1797 from smallstep/mariano/init-scep
...
Allow custom SCEP key manager
3 months ago
Mariano Cano
4202d6673c
Remove debug statement
3 months ago
Herman Slatman
d6bbe5b06b
Add support for `kmsapi.Decrypter` to instrumented key manager
3 months ago
Herman Slatman
721345eea6
Merge pull request #1793 from verytrap/master
...
chore: fix function names in comment
3 months ago
verytrap
db92404342
chore: fix function names in comment
...
Signed-off-by: verytrap <wangqiuyue@outlook.com>
3 months ago
Mariano Cano
725a913f66
Allow custom SCEP key manager
...
This commit allows to inject a custom key manger for SCEP.
3 months ago
Herman Slatman
397877a7b6
Merge pull request #1795 from smallstep/herman/fix-scep-failinfo-oid
...
Prevent exposing any internal details in SCEP failure message
3 months ago
Herman Slatman
b226b6eb4c
Prevent exposing any internal details in SCEP failure message
...
To be on the safe side, block errors from signing operations from
being returned to the client. We should revisit, and make it return
a more informative error, but with high assurance that no sensitive
information is added to the message.
3 months ago
Herman Slatman
02956ad0e3
Merge pull request #1794 from smallstep/herman/fix-scep-failinfo-oid
...
Fix the `id-scep-failInfoText` OID
3 months ago
Herman Slatman
037554e774
Fix the `id-scep-failInfoText` OID
3 months ago
github-actions[bot]
1513152cb2
Merge pull request #1791 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.32.0
...
Bump github.com/newrelic/go-agent/v3 from 3.31.0 to 3.32.0
3 months ago
dependabot[bot]
c9ba31ae61
Bump github.com/newrelic/go-agent/v3 from 3.31.0 to 3.32.0
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.31.0 to 3.32.0.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.31.0...v3.32.0 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
github-actions[bot]
1f69ff84a1
Merge pull request #1792 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.63.2
...
Bump google.golang.org/grpc from 1.62.1 to 1.63.2
3 months ago
dependabot[bot]
a76f07143b
Bump google.golang.org/grpc from 1.62.1 to 1.63.2
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.62.1 to 1.63.2.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.62.1...v1.63.2 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
github-actions[bot]
08ef9fe245
Merge pull request #1789 from smallstep/dependabot/go_modules/golang.org/x/net-0.24.0
...
Bump golang.org/x/net from 0.22.0 to 0.24.0
3 months ago
dependabot[bot]
57d628513b
Bump golang.org/x/net from 0.22.0 to 0.24.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.22.0 to 0.24.0.
- [Commits](https://github.com/golang/net/compare/v0.22.0...v0.24.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
github-actions[bot]
d5758ba3a3
Merge pull request #1784 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.31.0
...
Bump github.com/newrelic/go-agent/v3 from 3.30.0 to 3.31.0
3 months ago
github-actions[bot]
166c4968cf
Merge pull request #1785 from smallstep/dependabot/go_modules/google.golang.org/api-0.172.0
...
Bump google.golang.org/api from 0.171.0 to 0.172.0
3 months ago
Carl Tashian
1be0932a0f
Merge pull request #1786 from smallstep/carl/winget-fix
...
Fix winget release notes URL
3 months ago
Carl Tashian
f04a5e39c4
Fix winget release URL
3 months ago
dependabot[bot]
d1523c93bc
Bump google.golang.org/api from 0.171.0 to 0.172.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.171.0 to 0.172.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.171.0...v0.172.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
dependabot[bot]
44c48a7494
Bump github.com/newrelic/go-agent/v3 from 3.30.0 to 3.31.0
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.30.0 to 3.31.0.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.30.0...v3.31.0 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
Carl Tashian
188e4e3ff3
Add version number to winget branch name ( #1783 )
3 months ago
Max
395a3eeb93
Update go.step.sm/crypto ( #1781 )
3 months ago
Herman Slatman
4772d7cc28
Merge pull request #1780 from smallstep/herman/update-changelog-20240328
...
Update changelog for `v0.26.0` release
3 months ago
Herman Slatman
854288a0cb
Update changelog for `v0.26.0` release
3 months ago
github-actions[bot]
4016b69b28
Merge pull request #1776 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.12.2
...
Bump github.com/hashicorp/vault/api from 1.12.1 to 1.12.2
3 months ago
github-actions[bot]
b5b723e835
Merge pull request #1775 from smallstep/dependabot/go_modules/google.golang.org/api-0.171.0
...
Bump google.golang.org/api from 0.169.0 to 0.171.0
3 months ago
github-actions[bot]
0a6e79a745
Merge pull request #1778 from smallstep/dependabot/github_actions/dependabot/fetch-metadata-2.0.0
...
Bump dependabot/fetch-metadata from 1.6.0 to 2.0.0
3 months ago
dependabot[bot]
9d86361ae3
Bump github.com/hashicorp/vault/api from 1.12.1 to 1.12.2
...
Bumps [github.com/hashicorp/vault/api](https://github.com/hashicorp/vault ) from 1.12.1 to 1.12.2.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md )
- [Commits](https://github.com/hashicorp/vault/compare/v1.12.1...v1.12.2 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
github-actions[bot]
7e053437b1
Merge pull request #1774 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.44.1
...
Bump go.step.sm/crypto from 0.43.1 to 0.44.1
3 months ago
dependabot[bot]
014b4ef2c0
Bump dependabot/fetch-metadata from 1.6.0 to 2.0.0
...
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata ) from 1.6.0 to 2.0.0.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases )
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.6.0...v2.0.0 )
---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
dependabot[bot]
21734f7742
Bump google.golang.org/api from 0.169.0 to 0.171.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.169.0 to 0.171.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.169.0...v0.171.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
dependabot[bot]
927cd97bd5
Bump go.step.sm/crypto from 0.43.1 to 0.44.1
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.43.1 to 0.44.1.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.43.1...v0.44.1 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
Herman Slatman
2650944d65
Merge pull request #1773 from smallstep/herman/cosign-2.x
...
Use `--yes` to acknowledge user prompts for `cosign` signing
3 months ago
Herman Slatman
7888d868ba
Use `--yes` to acknowledge user prompts for `cosign` signing
3 months ago
Joe Doss
56c4f3bdd5
Merge pull request #1772 from smallstep/jdoss/Enable_tpmkms
...
Enable tpmkms
3 months ago
Joe Doss
14c9de2570
Enable tpmkms.
3 months ago
github-actions[bot]
44f44e34e4
Merge pull request #1767 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.6
...
Bump cloud.google.com/go/longrunning from 0.5.5 to 0.5.6
3 months ago
github-actions[bot]
73c827c7fa
Merge pull request #1768 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.12.1
...
Bump github.com/hashicorp/vault/api from 1.12.0 to 1.12.1
3 months ago
dependabot[bot]
9874214669
Bump cloud.google.com/go/longrunning from 0.5.5 to 0.5.6
...
Bumps [cloud.google.com/go/longrunning](https://github.com/googleapis/google-cloud-go ) from 0.5.5 to 0.5.6.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/longrunning/v0.5.5...longrunning/v0.5.6 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/longrunning
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
github-actions[bot]
c5a13d86ba
Merge pull request #1766 from smallstep/dependabot/go_modules/golang.org/x/net-0.22.0
...
Bump golang.org/x/net from 0.21.0 to 0.22.0
3 months ago
github-actions[bot]
70085fcfeb
Merge pull request #1769 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.15.6
...
Bump cloud.google.com/go/security from 1.15.5 to 1.15.6
3 months ago
dependabot[bot]
1a768ad522
Bump cloud.google.com/go/security from 1.15.5 to 1.15.6
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.15.5 to 1.15.6.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/kms/v1.15.5...kms/v1.15.6 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
dependabot[bot]
4dfade10b8
Bump github.com/hashicorp/vault/api from 1.12.0 to 1.12.1
...
Bumps [github.com/hashicorp/vault/api](https://github.com/hashicorp/vault ) from 1.12.0 to 1.12.1.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md )
- [Commits](https://github.com/hashicorp/vault/compare/v1.12.0...v1.12.1 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
dependabot[bot]
9a75f93250
Bump golang.org/x/net from 0.21.0 to 0.22.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.21.0 to 0.22.0.
- [Commits](https://github.com/golang/net/compare/v0.21.0...v0.22.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
3 months ago
Mariano Cano
fe364d5081
Merge pull request #1764 from smallstep/mariano/ra-lifetime
...
Let the CA determine the RA lifetime
4 months ago
Mariano Cano
0ac9023590
Fix typo in error message and comment
4 months ago
Mariano Cano
10f6a901ec
Let the CA determine the RA lifetime
...
When the RA mode with StepCAS is used, let the CA decide which lifetime
the RA should get instead of requiring always 24h.
This commit also fixes linter warnings.
Related to #1094
4 months ago
Herman Slatman
ef1631b00d
Merge pull request #1762 from smallstep/herman/upgrade-pgx-v4.18.3
...
Upgrade `pgx` to `v4.18.3`
4 months ago
Herman Slatman
6204a1441e
Upgrade `pgx` to `v4.18.3`
4 months ago
github-actions[bot]
d03700b155
Merge pull request #1761 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.62.1
...
Bump google.golang.org/grpc from 1.62.0 to 1.62.1
4 months ago
github-actions[bot]
1362d4dea6
Merge pull request #1759 from smallstep/dependabot/go_modules/go.step.sm/cli-utils-0.9.0
...
Bump go.step.sm/cli-utils from 0.8.0 to 0.9.0
4 months ago
dependabot[bot]
cc7ac97c51
Bump go.step.sm/cli-utils from 0.8.0 to 0.9.0
...
Bumps [go.step.sm/cli-utils](https://github.com/smallstep/cli-utils ) from 0.8.0 to 0.9.0.
- [Release notes](https://github.com/smallstep/cli-utils/releases )
- [Commits](https://github.com/smallstep/cli-utils/compare/v0.8.0...v0.9.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/cli-utils
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
dependabot[bot]
22781b8460
Bump google.golang.org/grpc from 1.62.0 to 1.62.1
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.62.0 to 1.62.1.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.62.0...v1.62.1 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
github-actions[bot]
9033120401
Merge pull request #1758 from smallstep/dependabot/go_modules/google.golang.org/api-0.169.0
...
Bump google.golang.org/api from 0.167.0 to 0.169.0
4 months ago
github-actions[bot]
87506d738c
Merge pull request #1760 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.21.0
...
Bump golang.org/x/crypto from 0.19.0 to 0.21.0
4 months ago
dependabot[bot]
4940556234
Bump golang.org/x/crypto from 0.19.0 to 0.21.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.19.0 to 0.21.0.
- [Commits](https://github.com/golang/crypto/compare/v0.19.0...v0.21.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
dependabot[bot]
299102955b
Bump google.golang.org/api from 0.167.0 to 0.169.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.167.0 to 0.169.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.167.0...v0.169.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
Herman Slatman
5254702130
Merge pull request #1755 from smallstep/herman/export-requestid-middleware
...
Export `requestid` middleware
4 months ago
Herman Slatman
b7a6b93717
Add package comment
4 months ago
github-actions[bot]
9b1dfcf5d0
Merge pull request #1756 from smallstep/dependabot/go_modules/github.com/go-jose/go-jose/v3-3.0.3
...
Bump github.com/go-jose/go-jose/v3 from 3.0.2 to 3.0.3
4 months ago
dependabot[bot]
9327859f55
Bump github.com/go-jose/go-jose/v3 from 3.0.2 to 3.0.3
...
Bumps [github.com/go-jose/go-jose/v3](https://github.com/go-jose/go-jose ) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/go-jose/go-jose/releases )
- [Changelog](https://github.com/go-jose/go-jose/blob/v3.0.3/CHANGELOG.md )
- [Commits](https://github.com/go-jose/go-jose/compare/v3.0.2...v3.0.3 )
---
updated-dependencies:
- dependency-name: github.com/go-jose/go-jose/v3
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
Carl Tashian
26b7761a9c
Merge pull request #1719 from smallstep/carl/fix-ra-install
...
Update RA installer step-ca package URL
4 months ago
Herman Slatman
b8510dd5b2
Make the `requestid` an exported middleware
4 months ago
Herman Slatman
4cae19f94f
Merge pull request #1753 from smallstep/fix-peak-typo
...
Fix `peak` -> `peek`
4 months ago
Herman Slatman
af76ebdc1d
Fix `peak` -> `peek`
4 months ago
github-actions[bot]
2e9c5bbc1a
Merge pull request #1747 from smallstep/dependabot/go_modules/github.com/go-chi/chi/v5-5.0.12
...
Bump github.com/go-chi/chi/v5 from 5.0.11 to 5.0.12
4 months ago
Herman Slatman
a7a4b47ead
Merge pull request #1751 from smallstep/herman/handle-server-startup-errors
...
Handle CA server startup errors
4 months ago
Herman Slatman
01de10d447
Merge pull request #1752 from smallstep/herman/upgrade-protobuf-v1.33.0
...
Upgrade `google.golang.org/protobuf` to `v1.33.0`
4 months ago
Herman Slatman
fa5117adaa
Upgrade `google.golang.org/protobuf` to `v1.33.0`
4 months ago
Herman Slatman
bbb80cde16
Add startup error shutdown message to log
4 months ago
Herman Slatman
f02d4546a9
Handle CA server startup errors
4 months ago
github-actions[bot]
ec223c1cc2
Merge pull request #1748 from smallstep/dependabot/go_modules/github.com/stretchr/testify-1.9.0
...
Bump github.com/stretchr/testify from 1.8.4 to 1.9.0
4 months ago
github-actions[bot]
b7e3e0be20
Merge pull request #1746 from smallstep/dependabot/go_modules/google.golang.org/api-0.167.0
...
Bump google.golang.org/api from 0.165.0 to 0.167.0
4 months ago
github-actions[bot]
022deaf610
Merge pull request #1749 from smallstep/dependabot/go_modules/github.com/prometheus/client_golang-1.19.0
...
Bump github.com/prometheus/client_golang from 1.18.0 to 1.19.0
4 months ago
dependabot[bot]
5853c73268
Bump github.com/prometheus/client_golang from 1.18.0 to 1.19.0
...
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang ) from 1.18.0 to 1.19.0.
- [Release notes](https://github.com/prometheus/client_golang/releases )
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prometheus/client_golang/compare/v1.18.0...v1.19.0 )
---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
dependabot[bot]
cf0d6f8f5c
Bump github.com/stretchr/testify from 1.8.4 to 1.9.0
...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.8.4 to 1.9.0.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.8.4...v1.9.0 )
---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
dependabot[bot]
3656b458ea
Bump github.com/go-chi/chi/v5 from 5.0.11 to 5.0.12
...
Bumps [github.com/go-chi/chi/v5](https://github.com/go-chi/chi ) from 5.0.11 to 5.0.12.
- [Release notes](https://github.com/go-chi/chi/releases )
- [Changelog](https://github.com/go-chi/chi/blob/master/CHANGELOG.md )
- [Commits](https://github.com/go-chi/chi/compare/v5.0.11...v5.0.12 )
---
updated-dependencies:
- dependency-name: github.com/go-chi/chi/v5
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
dependabot[bot]
69c7ca9809
Bump google.golang.org/api from 0.165.0 to 0.167.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.165.0 to 0.167.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.165.0...v0.167.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
Herman Slatman
10aa48c74a
Merge pull request #1743 from smallstep/herman/improve-request-id
...
Improve end-to-end request ID propagation
4 months ago
Herman Slatman
2a47644d31
Fix linting issue
4 months ago
Herman Slatman
d392c169fc
Improve functional coverage of request ID integration test
4 months ago
Herman Slatman
7fd524f70b
Default to generating request IDs using UUIDv4 format in CA
4 months ago
Herman Slatman
0898c6db97
Use UUIDv4 as automatically generated client request identifier
4 months ago
Carl Tashian
0d5c692b2c
Merge pull request #1744 from smallstep/carl/readme-updates
...
Updated README
4 months ago
Carl Tashian
cd3e91b198
Updated README
4 months ago
Herman Slatman
b9d6bfc1eb
Cleanup CA client tests by removing `smallstep/assert`
4 months ago
Herman Slatman
532b9df0a3
Improve CA client request ID handling
4 months ago
Herman Slatman
06696e6492
Move user ID handling to `userid` package
4 months ago
Herman Slatman
7e5f10927f
Decouple request ID middleware from logging middleware
4 months ago
Herman Slatman
535e2a96d5
Fix the e2e request ID test (again)
4 months ago
Herman Slatman
b83b8aa079
Make random TCP address reservation more contained
4 months ago
Herman Slatman
2255857b3a
Fix `client` shadowing and e2e request ID test case
4 months ago
Herman Slatman
5c2572c443
Add support for user provider `X-Request-Id` header value
4 months ago
Herman Slatman
cf8a50157f
Add a basic e2e test for `X-Request-Id` reflection
4 months ago
Panagiotis Siatras
fb4cd6fe81
fix: Webhook-related instruments
...
* fix: also instrument webhooks that do not reach the wire
* fix: register the webhook instrumentation
4 months ago
Herman Slatman
a58f5956e3
Add reflection of request ID in `X-Request-Id` response header
4 months ago
Herman Slatman
c798735f7e
Merge pull request #1542 from smallstep/herman/webhook-request-id
...
Propagate request ID when webhook requests are made
4 months ago
Herman Slatman
c1c2e73475
Add `X-Request-Id` to all requests made by our CA clients
4 months ago
Herman Slatman
4213a190d5
Use `X-Request-Id` as canonical request identifier (if available)
...
If `X-Request-Id` is available in an HTTP request made against the
CA server, it'll be used as the identifier for the request. This
slightly changes the existing behavior, which relied on the custom
`X-Smallstep-Id` header, but usage of that header is currently not
very widespread, and `X-Request-Id` is more generally known for
the use case `X-Smallstep-Id` is used for.
`X-Smallstep-Id` is currently still considered, but it'll only be
used if `X-Request-Id` is not set.
4 months ago
Herman Slatman
041b486c55
Remove usages of `Sign` without context
4 months ago
Herman Slatman
c16a0b70ee
Remove `smallstep/assert` and `pkg/errors` from webhook tests
4 months ago
Herman Slatman
9689508709
Add tests for webhook request IDs
4 months ago
Herman Slatman
2a8b80a3e1
Merge branch 'master' into herman/webhook-request-id
4 months ago
github-actions[bot]
6ce502c50e
Merge pull request #1741 from smallstep/dependabot/go_modules/github.com/go-jose/go-jose/v3-3.0.2
...
Bump github.com/go-jose/go-jose/v3 from 3.0.1 to 3.0.2
4 months ago
github-actions[bot]
0d2aeff95c
Merge pull request #1739 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.62.0
...
Bump google.golang.org/grpc from 1.61.0 to 1.62.0
4 months ago
dependabot[bot]
5ee2e0274c
Bump github.com/go-jose/go-jose/v3 from 3.0.1 to 3.0.2
...
Bumps [github.com/go-jose/go-jose/v3](https://github.com/go-jose/go-jose ) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/go-jose/go-jose/releases )
- [Changelog](https://github.com/go-jose/go-jose/blob/main/CHANGELOG.md )
- [Commits](https://github.com/go-jose/go-jose/compare/v3.0.1...v3.0.2 )
---
updated-dependencies:
- dependency-name: github.com/go-jose/go-jose/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
dependabot[bot]
e4bbe8970e
Bump google.golang.org/grpc from 1.61.0 to 1.62.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.61.0 to 1.62.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.61.0...v1.62.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
github-actions[bot]
98a976b59e
Merge pull request #1740 from smallstep/dependabot/go_modules/github.com/fxamacker/cbor/v2-2.6.0
...
Bump github.com/fxamacker/cbor/v2 from 2.5.0 to 2.6.0
4 months ago
github-actions[bot]
a583b59e1d
Merge pull request #1738 from smallstep/dependabot/go_modules/github.com/googleapis/gax-go/v2-2.12.2
...
Bump github.com/googleapis/gax-go/v2 from 2.12.0 to 2.12.2
4 months ago
dependabot[bot]
0b196b0b81
Bump github.com/fxamacker/cbor/v2 from 2.5.0 to 2.6.0
...
Bumps [github.com/fxamacker/cbor/v2](https://github.com/fxamacker/cbor ) from 2.5.0 to 2.6.0.
- [Release notes](https://github.com/fxamacker/cbor/releases )
- [Commits](https://github.com/fxamacker/cbor/compare/v2.5.0...v2.6.0 )
---
updated-dependencies:
- dependency-name: github.com/fxamacker/cbor/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
dependabot[bot]
fa941dc967
Bump github.com/googleapis/gax-go/v2 from 2.12.0 to 2.12.2
...
Bumps [github.com/googleapis/gax-go/v2](https://github.com/googleapis/gax-go ) from 2.12.0 to 2.12.2.
- [Release notes](https://github.com/googleapis/gax-go/releases )
- [Commits](https://github.com/googleapis/gax-go/compare/v2.12.0...v2.12.2 )
---
updated-dependencies:
- dependency-name: github.com/googleapis/gax-go/v2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
Herman Slatman
bb6aae0dfc
Merge pull request #1736 from patsevanton/master
...
Сorrection of spelling errors
4 months ago
Anton Patsev
c2dfe595f1
Сorrection of spelling errors
4 months ago
Herman Slatman
e968275a20
Merge pull request #1729 from patsevanton/master
...
Spelling errors and punctuation have been corrected
4 months ago
Herman Slatman
7e1b93b628
Update examples/README.md
4 months ago
github-actions[bot]
dc577e2213
Merge pull request #1724 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.30.0
...
Bump github.com/newrelic/go-agent/v3 from 3.29.1 to 3.30.0
4 months ago
dependabot[bot]
3a2b426879
Bump github.com/newrelic/go-agent/v3 from 3.29.1 to 3.30.0
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.29.1 to 3.30.0.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.29.1...v3.30.0 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
github-actions[bot]
f7554a0a43
Merge pull request #1725 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/kubernetes-0.6.0
...
Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.5.0 to 0.6.0
4 months ago
github-actions[bot]
685e107bfe
Merge pull request #1726 from smallstep/dependabot/go_modules/google.golang.org/api-0.165.0
...
Bump google.golang.org/api from 0.160.0 to 0.165.0
4 months ago
Anton Patsev
0a074cb8ff
Spelling errors and punctuation have been corrected
4 months ago
dependabot[bot]
8e1f53857b
Bump google.golang.org/api from 0.160.0 to 0.165.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.160.0 to 0.165.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.160.0...v0.165.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
github-actions[bot]
e6491ca28b
Merge pull request #1727 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.43.1
...
Bump go.step.sm/crypto from 0.43.0 to 0.43.1
4 months ago
dependabot[bot]
507f4d04d3
Bump go.step.sm/crypto from 0.43.0 to 0.43.1
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.43.0 to 0.43.1.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.43.0...v0.43.1 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
dependabot[bot]
2ffc9081e7
Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.5.0 to 0.6.0
...
Bumps [github.com/hashicorp/vault/api/auth/kubernetes](https://github.com/hashicorp/vault ) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG-v0.md )
- [Commits](https://github.com/hashicorp/vault/compare/v0.5.0...v0.6.0 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api/auth/kubernetes
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
Herman Slatman
bb296c9d19
Merge pull request #1708 from smallstep/herman/csr-expires-header
...
Add `Expires` header to CRL endpoint
4 months ago
Mariano Cano
bd99db0071
Merge pull request #1685 from venkyg-sec/allow_custom_tls_config
...
Allow usage of externally supplied TLS config
4 months ago
Mariano Cano
503e5046ea
Merge branch 'master' into allow_custom_tls_config
4 months ago
Mariano Cano
beea482a0c
Fix linter errors in ca/ca.go
4 months ago
Mariano Cano
073fcb7e75
Merge pull request #1684 from venkyg-sec/allow_external_x509_ca_service_intf
...
Allow x509 Service CA implementation to be injected through ca and authority options
4 months ago
Mariano Cano
ac773ff44e
Merge branch 'master' into allow_external_x509_ca_service_intf
4 months ago
Mariano Cano
9fcdd3ffa6
Fix format warnings on ca/ca.go
4 months ago
Herman Slatman
3dbb4aad3d
Change CRL unavailable case to HTTP 404
4 months ago
Herman Slatman
5d865b28d1
Merge pull request #1715 from rvichery/aws-ca-west-1-iid-certificate
...
Add AWS ca-west-1 identity document certificate
4 months ago
Carl Tashian
e542a26d4b
Fix RA installer step-ca package URL
4 months ago
Remi Vichery
ee44ac104d
fixup! Add AWS ca-west-1 identity document certificate
4 months ago
github-actions[bot]
490d065c8e
Merge pull request #1713 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/approle-0.6.0
...
Bump github.com/hashicorp/vault/api/auth/approle from 0.5.0 to 0.6.0
4 months ago
Remi Vichery
283d46d9a7
Add AWS ca-west-1 identity document certificate
4 months ago
dependabot[bot]
a3bed4095a
Bump github.com/hashicorp/vault/api/auth/approle from 0.5.0 to 0.6.0
...
Bumps [github.com/hashicorp/vault/api/auth/approle](https://github.com/hashicorp/vault ) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG-v0.md )
- [Commits](https://github.com/hashicorp/vault/compare/v0.5.0...v0.6.0 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api/auth/approle
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
github-actions[bot]
d174e78801
Merge pull request #1712 from smallstep/dependabot/go_modules/golang.org/x/net-0.21.0
...
Bump golang.org/x/net from 0.20.0 to 0.21.0
4 months ago
github-actions[bot]
5f91441d44
Merge pull request #1711 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.5
...
Bump cloud.google.com/go/longrunning from 0.5.4 to 0.5.5
4 months ago
dependabot[bot]
a32dade78d
Bump golang.org/x/net from 0.20.0 to 0.21.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.20.0 to 0.21.0.
- [Commits](https://github.com/golang/net/compare/v0.20.0...v0.21.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
dependabot[bot]
b9db4e3fa4
Bump cloud.google.com/go/longrunning from 0.5.4 to 0.5.5
...
Bumps [cloud.google.com/go/longrunning](https://github.com/googleapis/google-cloud-go ) from 0.5.4 to 0.5.5.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/longrunning/v0.5.4...longrunning/v0.5.5 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/longrunning
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
4 months ago
Herman Slatman
c76dad8a22
Improve tests for CRL HTTP handler
5 months ago
Herman Slatman
69f5f8d8ea
Use `stretchr/testify` instead of `smallstep/assert` for tests
5 months ago
Herman Slatman
d1deb7f930
Add `Expires` header to CRL response
5 months ago
github-actions[bot]
67246925d2
Merge pull request #1706 from smallstep/dependabot/go_modules/github.com/prometheus/client_golang-1.18.0
...
Bump github.com/prometheus/client_golang from 1.15.1 to 1.18.0
5 months ago
github-actions[bot]
6d29e8ade8
Merge pull request #1704 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.43.0
...
Bump go.step.sm/crypto from 0.42.1 to 0.43.0
5 months ago
github-actions[bot]
05ccf84623
Merge pull request #1705 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.15.5
...
Bump cloud.google.com/go/security from 1.15.4 to 1.15.5
5 months ago
dependabot[bot]
78522c7544
Bump github.com/prometheus/client_golang from 1.15.1 to 1.18.0
...
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang ) from 1.15.1 to 1.18.0.
- [Release notes](https://github.com/prometheus/client_golang/releases )
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prometheus/client_golang/compare/v1.15.1...v1.18.0 )
---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
dependabot[bot]
053d05b4a1
Bump cloud.google.com/go/security from 1.15.4 to 1.15.5
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.15.4 to 1.15.5.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/kms/v1.15.4...kms/v1.15.5 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
dependabot[bot]
5209393197
Bump go.step.sm/crypto from 0.42.1 to 0.43.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.42.1 to 0.43.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.42.1...v0.43.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
github-actions[bot]
59ea73129a
Merge pull request #1693 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.11.0
...
Bump github.com/hashicorp/vault/api from 1.10.0 to 1.11.0
5 months ago
dependabot[bot]
78d889a047
Bump github.com/hashicorp/vault/api from 1.10.0 to 1.11.0
...
Bumps [github.com/hashicorp/vault/api](https://github.com/hashicorp/vault ) from 1.10.0 to 1.11.0.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md )
- [Commits](https://github.com/hashicorp/vault/compare/v1.10.0...v1.11.0 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
github-actions[bot]
2fcb33bd3a
Merge pull request #1695 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.29.1
...
Bump github.com/newrelic/go-agent/v3 from 3.29.0 to 3.29.1
5 months ago
github-actions[bot]
fe926e9ad6
Merge pull request #1694 from smallstep/dependabot/go_modules/github.com/google/uuid-1.6.0
...
Bump github.com/google/uuid from 1.5.0 to 1.6.0
5 months ago
github-actions[bot]
8123d6a405
Merge pull request #1692 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.42.1
...
Bump go.step.sm/crypto from 0.42.0 to 0.42.1
5 months ago
dependabot[bot]
d9cf8aa685
Bump github.com/newrelic/go-agent/v3 from 3.29.0 to 3.29.1
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.29.0 to 3.29.1.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.29.0...v3.29.1 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
dependabot[bot]
eeaabbc481
Bump github.com/google/uuid from 1.5.0 to 1.6.0
...
Bumps [github.com/google/uuid](https://github.com/google/uuid ) from 1.5.0 to 1.6.0.
- [Release notes](https://github.com/google/uuid/releases )
- [Changelog](https://github.com/google/uuid/blob/master/CHANGELOG.md )
- [Commits](https://github.com/google/uuid/compare/v1.5.0...v1.6.0 )
---
updated-dependencies:
- dependency-name: github.com/google/uuid
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
dependabot[bot]
11220903d2
Bump go.step.sm/crypto from 0.42.0 to 0.42.1
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.42.0 to 0.42.1.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.42.0...v0.42.1 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
Panagiotis Siatras
dd1ff9c15b
Implementation of the Prometheus endpoint ( #1669 )
...
Implementation of the http://{metricsAddress}/metrics Prometheus endpoint.
5 months ago
github-actions[bot]
27ea4de240
Merge pull request #1687 from smallstep/dependabot/go_modules/google.golang.org/api-0.157.0
...
Bump google.golang.org/api from 0.156.0 to 0.157.0
5 months ago
github-actions[bot]
b0833d7992
Merge pull request #1686 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.42.0
...
Bump go.step.sm/crypto from 0.41.0 to 0.42.0
5 months ago
dependabot[bot]
bcaf8a5624
Bump google.golang.org/api from 0.156.0 to 0.157.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.156.0 to 0.157.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.156.0...v0.157.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
dependabot[bot]
18d3b7f61e
Bump go.step.sm/crypto from 0.41.0 to 0.42.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.41.0 to 0.42.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.41.0...v0.42.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
Venky Gopal
356e7070ef
Allow usage of externally supplied TLS config
5 months ago
Venky Gopal
fbc1e895c2
Allow x509 Service CA implementation to be injected through ca and authority options
5 months ago
github-actions[bot]
3a840bf605
Merge pull request #1676 from smallstep/dependabot/go_modules/google.golang.org/api-0.156.0
...
Bump google.golang.org/api from 0.155.0 to 0.156.0
5 months ago
dependabot[bot]
5b35f5c2d7
Bump google.golang.org/api from 0.155.0 to 0.156.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.155.0 to 0.156.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.155.0...v0.156.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
github-actions[bot]
ff7e2f9c2d
Merge pull request #1675 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.41.0
...
Bump go.step.sm/crypto from 0.40.0 to 0.41.0
5 months ago
dependabot[bot]
ee4f51a7af
Bump go.step.sm/crypto from 0.40.0 to 0.41.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.40.0 to 0.41.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.40.0...v0.41.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
Herman Slatman
f1c54d6852
Merge pull request #1665 from smallstep/herman/fix-error-msg-csr-validation
...
Change error message for CSR validation
6 months ago
Herman Slatman
25c109e75d
Change error message for CSR validation
6 months ago
github-actions[bot]
fc55fba5b5
Merge pull request #1664 from smallstep/dependabot/go_modules/google.golang.org/api-0.155.0
...
Bump google.golang.org/api from 0.154.0 to 0.155.0
6 months ago
Herman Slatman
4ba2e22b8d
Merge pull request #1663 from smallstep/herman/acme-cose-rs1-support
6 months ago
dependabot[bot]
a49d1f7dc0
Bump google.golang.org/api from 0.154.0 to 0.155.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.154.0 to 0.155.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.154.0...v0.155.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
6 months ago
Herman Slatman
e52836f0ab
Add `RS1` support for ACME `device-attest-01`
6 months ago
Herman Slatman
581db00a00
Merge pull request #1661 from smallstep/herman/acme-challenge-client-proxy
...
Add support for `HTTP_PROXY` and `HTTPS_PROXY` to ACME solver client
6 months ago
Herman Slatman
c59d293d26
Add support for `HTTP_PROXY` and `HTTPS_PROXY` to ACME solver client
6 months ago
github-actions[bot]
b75773e193
Merge pull request #1655 from smallstep/dependabot/go_modules/google.golang.org/protobuf-1.32.0
...
Bump google.golang.org/protobuf from 1.31.0 to 1.32.0
6 months ago
github-actions[bot]
5432316f2c
Merge pull request #1657 from smallstep/dependabot/go_modules/github.com/go-chi/chi/v5-5.0.11
...
Bump github.com/go-chi/chi/v5 from 5.0.10 to 5.0.11
6 months ago
dependabot[bot]
a612efff5a
Bump google.golang.org/protobuf from 1.31.0 to 1.32.0
...
Bumps google.golang.org/protobuf from 1.31.0 to 1.32.0.
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
6 months ago
github-actions[bot]
428404870e
Merge pull request #1654 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.60.1
...
Bump google.golang.org/grpc from 1.60.0 to 1.60.1
6 months ago
dependabot[bot]
f3572b39c6
Bump github.com/go-chi/chi/v5 from 5.0.10 to 5.0.11
...
Bumps [github.com/go-chi/chi/v5](https://github.com/go-chi/chi ) from 5.0.10 to 5.0.11.
- [Release notes](https://github.com/go-chi/chi/releases )
- [Changelog](https://github.com/go-chi/chi/blob/master/CHANGELOG.md )
- [Commits](https://github.com/go-chi/chi/compare/v5.0.10...v5.0.11 )
---
updated-dependencies:
- dependency-name: github.com/go-chi/chi/v5
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
6 months ago
dependabot[bot]
e45be31055
Bump google.golang.org/grpc from 1.60.0 to 1.60.1
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.60.0 to 1.60.1.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.60.0...v1.60.1 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
6 months ago
github-actions[bot]
4a580f59fb
Merge pull request #1649 from smallstep/dependabot/go_modules/google.golang.org/api-0.154.0
...
Bump google.golang.org/api from 0.153.0 to 0.154.0
6 months ago
dependabot[bot]
56daa26900
Bump google.golang.org/api from 0.153.0 to 0.154.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.153.0 to 0.154.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.153.0...v0.154.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
6 months ago
github-actions[bot]
9eecd12fc2
Merge pull request #1651 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.29.0
...
Bump github.com/newrelic/go-agent/v3 from 3.28.1 to 3.29.0
6 months ago
github-actions[bot]
40c58cb1ec
Merge pull request #1650 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.60.0
...
Bump google.golang.org/grpc from 1.59.0 to 1.60.0
6 months ago
github-actions[bot]
9780cf7b80
Merge pull request #1648 from smallstep/dependabot/go_modules/github.com/google/uuid-1.5.0
...
Bump github.com/google/uuid from 1.4.0 to 1.5.0
6 months ago
github-actions[bot]
0e3964ee80
Merge pull request #1652 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.17.0
...
Bump golang.org/x/crypto from 0.16.0 to 0.17.0
6 months ago
dependabot[bot]
5d446dedd6
Bump golang.org/x/crypto from 0.16.0 to 0.17.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.16.0 to 0.17.0.
- [Commits](https://github.com/golang/crypto/compare/v0.16.0...v0.17.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
6 months ago
dependabot[bot]
46237b8638
Bump github.com/newrelic/go-agent/v3 from 3.28.1 to 3.29.0
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.28.1 to 3.29.0.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.28.1...v3.29.0 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
6 months ago
dependabot[bot]
33e6f2bae2
Bump google.golang.org/grpc from 1.59.0 to 1.60.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.59.0 to 1.60.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.59.0...v1.60.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
6 months ago
dependabot[bot]
2a5a65161c
Bump github.com/google/uuid from 1.4.0 to 1.5.0
...
Bumps [github.com/google/uuid](https://github.com/google/uuid ) from 1.4.0 to 1.5.0.
- [Release notes](https://github.com/google/uuid/releases )
- [Changelog](https://github.com/google/uuid/blob/master/CHANGELOG.md )
- [Commits](https://github.com/google/uuid/compare/v1.4.0...v1.5.0 )
---
updated-dependencies:
- dependency-name: github.com/google/uuid
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
6 months ago
Mariano Cano
62e09de2c6
Merge pull request #1647 from smallstep/go-jose
...
Upgrade go.step.sm/crypto to use go-jose/v3
7 months ago
Mariano Cano
b20af51f32
Upgrade go.step.sm/crypto to use go-jose/v3
7 months ago
github-actions[bot]
2c42907b4e
Merge pull request #1645 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.39.0
...
Bump go.step.sm/crypto from 0.38.0 to 0.39.0
7 months ago
github-actions[bot]
ecc47c8e18
Merge pull request #1646 from smallstep/dependabot/go_modules/google.golang.org/api-0.153.0
...
Bump google.golang.org/api from 0.152.0 to 0.153.0
7 months ago
Carl Tashian
4d0c684e88
Merge pull request #1640 from smallstep/carl/debian-bookworm
...
Update Dockerfile.hsm to use Debian bookworm
7 months ago
dependabot[bot]
6fcfb7a737
Bump google.golang.org/api from 0.152.0 to 0.153.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.152.0 to 0.153.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.152.0...v0.153.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
dependabot[bot]
9aee8fde06
Bump go.step.sm/crypto from 0.38.0 to 0.39.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.38.0 to 0.39.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.38.0...v0.39.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
Carl Tashian
bd46d94238
Merge branch 'master' into carl/debian-bookworm
7 months ago
github-actions[bot]
c25273d7a7
Merge pull request #1638 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.28.1
...
Bump github.com/newrelic/go-agent/v3 from 3.28.0 to 3.28.1
7 months ago
Carl Tashian
38140c5765
Update Dockerfile.hsm to use Debian bookworm
7 months ago
dependabot[bot]
439ace3086
Bump github.com/newrelic/go-agent/v3 from 3.28.0 to 3.28.1
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.28.0 to 3.28.1.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.28.0...v3.28.1 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
Herman Slatman
f453323ba9
Merge pull request #1631 from smallstep/herman/fix-apple-acmeclient-invalid-signatures
7 months ago
Herman Slatman
405aae798c
Simplify the `copy` logic used when patching JWS signature
7 months ago
Max
7bfe11c687
Bump go.step.sm/crypto ( #1635 )
7 months ago
Max
d34f0f6a97
Fix linter warnings ( #1634 )
7 months ago
Herman Slatman
26a3bb3c11
Make the Apple JWS fix more robust and catch more cases.
7 months ago
Herman Slatman
31ba1b33fb
Merge pull request #1633 from smallstep/update-changelog-20231122
...
Set `v0.25.1` release date
7 months ago
Herman Slatman
528aad86dd
Set `v0.25.1` release date
7 months ago
Herman Slatman
3bb469274d
Merge pull request #1632 from smallstep/update-changelog-20231122
...
Update changelog for `v0.25.1` release
7 months ago
Herman Slatman
f01b48fdcd
Update changelog for `v0.25.1` release
7 months ago
Herman Slatman
113491e7af
Remove TODO for patching other algorithms for Apple ACME client
7 months ago
Herman Slatman
06f4cbbcda
Add (temporary) fix for missing null bytes in Apple JWS signatures
...
Apparently the Apple macOS (and iOS?) ACME client seems to omit
leading null bytes from JWS signatures. The base64-url encoded
bytes decode to a shorter byte slice than what the JOSE library
expects (e.g. 63 bytes instead of 64 bytes for ES256), and then
results in a `jose.ErrCryptoFailure`.
This commit retries verification of the JWS in case the first
verification fails with `jose.ErrCryptoFailure`. The signatures are
checked to be of the correct length, and if not, null bytes are
prepended to the signature. Then verification is retried, which
might fail again, but for other reasons. On success, the payload
is returned.
Apple should fix this in their ACME client, but in the meantime
this commit prevents some "bad request" error cases from happening.
7 months ago
github-actions[bot]
cf6e189d7c
Merge pull request #1629 from smallstep/dependabot/go_modules/github.com/go-jose/go-jose/v3-3.0.1
...
Bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1
7 months ago
dependabot[bot]
350ad9006c
Bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1
...
Bumps [github.com/go-jose/go-jose/v3](https://github.com/go-jose/go-jose ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/go-jose/go-jose/releases )
- [Changelog](https://github.com/go-jose/go-jose/blob/v3/CHANGELOG.md )
- [Commits](https://github.com/go-jose/go-jose/compare/v3.0.0...v3.0.1 )
---
updated-dependencies:
- dependency-name: github.com/go-jose/go-jose/v3
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
github-actions[bot]
1dacf50776
Merge pull request #1626 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.37.0
...
Bump go.step.sm/crypto from 0.36.1 to 0.37.0
7 months ago
dependabot[bot]
66df354f2f
Bump go.step.sm/crypto from 0.36.1 to 0.37.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.36.1 to 0.37.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.36.1...v0.37.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
github-actions[bot]
c6db7673bf
Merge pull request #1628 from smallstep/dependabot/go_modules/google.golang.org/api-0.151.0
...
Bump google.golang.org/api from 0.150.0 to 0.151.0
7 months ago
github-actions[bot]
a36cf81d6a
Merge pull request #1627 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.28.0
...
Bump github.com/newrelic/go-agent/v3 from 3.27.0 to 3.28.0
7 months ago
dependabot[bot]
5b07ae7f52
Bump google.golang.org/api from 0.150.0 to 0.151.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.150.0 to 0.151.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.150.0...v0.151.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
dependabot[bot]
74597e6fbb
Bump github.com/newrelic/go-agent/v3 from 3.27.0 to 3.28.0
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.27.0 to 3.28.0.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.27.0...v3.28.0 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
github-actions[bot]
8308e1ac54
Merge pull request #1619 from smallstep/dependabot/go_modules/golang.org/x/net-0.18.0
...
Bump golang.org/x/net from 0.17.0 to 0.18.0
8 months ago
dependabot[bot]
6826ca9ebb
Bump golang.org/x/net from 0.17.0 to 0.18.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.17.0 to 0.18.0.
- [Commits](https://github.com/golang/net/compare/v0.17.0...v0.18.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
github-actions[bot]
4f6ca083aa
Merge pull request #1620 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.15.0
...
Bump golang.org/x/crypto from 0.14.0 to 0.15.0
8 months ago
dependabot[bot]
2eefd2ce63
Bump golang.org/x/crypto from 0.14.0 to 0.15.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.14.0 to 0.15.0.
- [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.15.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
github-actions[bot]
6ebd5264ec
Merge pull request #1621 from smallstep/dependabot/go_modules/google.golang.org/api-0.150.0
...
Bump google.golang.org/api from 0.149.0 to 0.150.0
8 months ago
dependabot[bot]
48d9ea188b
Bump google.golang.org/api from 0.149.0 to 0.150.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.149.0 to 0.150.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.149.0...v0.150.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
Herman Slatman
a4b7bbf2d9
Merge pull request #1617 from smallstep/herman/scep-webhook-provisioner-name
...
Add `provisionerName` to SCEP webhook request body
8 months ago
Herman Slatman
f082cbc421
Denormalize provisioner name in SCEP webhook
8 months ago
Herman Slatman
9ebc8779f5
Normalize SCEP provisioner name in webhook body
8 months ago
Herman Slatman
e815864ed8
Add verification of `provisionerName` in test
8 months ago
Herman Slatman
de45d66cdb
Add `provisionerName` to webhook request body
8 months ago
Mariano Cano
a7ed79bb21
Merge pull request #1616 from smallstep/fix-1611
...
Use the same version for building and running
8 months ago
Mariano Cano
875512c79e
Use the same version for building and running
...
This commit makes sure to use the same version for building step-ca with
CGO and running it.
Fixes #1611
8 months ago
Mariano Cano
1697dc63a7
Merge pull request #1608 from smallstep/mariano/ra-template
...
Build RA token using SANs from the template
8 months ago
Mariano Cano
690d1c3c50
Merge pull request #1609 from smallstep/mariano/jwk-commonname
...
Change CommonName validator in JWK
8 months ago
github-actions[bot]
111bc1d789
Merge pull request #1613 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.4
...
Bump cloud.google.com/go/longrunning from 0.5.3 to 0.5.4
8 months ago
dependabot[bot]
8c5d26e1c5
Bump cloud.google.com/go/longrunning from 0.5.3 to 0.5.4
...
Bumps [cloud.google.com/go/longrunning](https://github.com/googleapis/google-cloud-go ) from 0.5.3 to 0.5.4.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/longrunning/v0.5.3...longrunning/v0.5.4 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/longrunning
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
github-actions[bot]
444cfe2fcd
Merge pull request #1614 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.15.4
...
Bump cloud.google.com/go/security from 1.15.3 to 1.15.4
8 months ago
dependabot[bot]
8406f75806
Bump cloud.google.com/go/security from 1.15.3 to 1.15.4
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.15.3 to 1.15.4.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/kms/v1.15.3...kms/v1.15.4 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
Herman Slatman
132e888f36
Merge pull request #1610 from abelgvidal/fixcontrib
...
Amend link to Contribution Guide in README
8 months ago
Abel Gonzalez
807c7562f5
Amend wrong link to Contribution Guide in README
8 months ago
Mariano Cano
49045a1150
Change CommonName validator in JWK
...
This commit changes the common name validator in the JWK provisioner to
accept either the token subject or any of the sans in the token.
8 months ago
Mariano Cano
6705b7dde4
Build RA token using SANs from the template
...
This commit updates the RA token to use the SANs coming from the
template instead of the CSR.
Note that this PR might break some admin tokens.
8 months ago
github-actions[bot]
ef2b43d888
Merge pull request #1604 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.15.3
...
Bump cloud.google.com/go/security from 1.15.2 to 1.15.3
8 months ago
dependabot[bot]
3528012614
Bump cloud.google.com/go/security from 1.15.2 to 1.15.3
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.15.2 to 1.15.3.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/kms/v1.15.2...kms/v1.15.3 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
github-actions[bot]
a278e707e8
Merge pull request #1605 from smallstep/dependabot/go_modules/github.com/google/uuid-1.4.0
...
Bump github.com/google/uuid from 1.3.1 to 1.4.0
8 months ago
github-actions[bot]
7043ff1464
Merge pull request #1606 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.3
...
Bump cloud.google.com/go/longrunning from 0.5.2 to 0.5.3
8 months ago
dependabot[bot]
15383bae66
Bump cloud.google.com/go/longrunning from 0.5.2 to 0.5.3
...
Bumps [cloud.google.com/go/longrunning](https://github.com/googleapis/google-cloud-go ) from 0.5.2 to 0.5.3.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/longrunning/v0.5.2...longrunning/v0.5.3 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/longrunning
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
dependabot[bot]
4c51360400
Bump github.com/google/uuid from 1.3.1 to 1.4.0
...
Bumps [github.com/google/uuid](https://github.com/google/uuid ) from 1.3.1 to 1.4.0.
- [Release notes](https://github.com/google/uuid/releases )
- [Changelog](https://github.com/google/uuid/blob/master/CHANGELOG.md )
- [Commits](https://github.com/google/uuid/compare/v1.3.1...v1.4.0 )
---
updated-dependencies:
- dependency-name: github.com/google/uuid
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
Herman Slatman
71a4481e57
Merge pull request #1600 from smallstep/herman/use-smallstep-scep-and-pkcs7
...
Use Smallstep SCEP and PKCS7 libraries
8 months ago
Herman Slatman
af649018a2
Merge branch 'master' into herman/use-smallstep-scep-and-pkcs7
8 months ago
Herman Slatman
1abada69b0
Update import aliases from `microscep` to `smallscep`
8 months ago
Herman Slatman
4c17f25389
Replace MicroMDM and Mozilla libraries with Smallstep forks
8 months ago
github-actions[bot]
5e70d6fc81
Merge pull request #1597 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.27.0
...
Bump github.com/newrelic/go-agent/v3 from 3.26.0 to 3.27.0
8 months ago
github-actions[bot]
27fdfca7c8
Merge pull request #1595 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.59.0
...
Bump google.golang.org/grpc from 1.58.3 to 1.59.0
8 months ago
dependabot[bot]
352979ac23
Bump google.golang.org/grpc from 1.58.3 to 1.59.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.58.3 to 1.59.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.58.3...v1.59.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
github-actions[bot]
0425a0c86c
Merge pull request #1596 from smallstep/dependabot/go_modules/google.golang.org/api-0.148.0
...
Bump google.golang.org/api from 0.147.0 to 0.148.0
8 months ago
dependabot[bot]
756bec0df8
Bump google.golang.org/api from 0.147.0 to 0.148.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.147.0 to 0.148.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.147.0...v0.148.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
dependabot[bot]
16f1606ad4
Bump github.com/newrelic/go-agent/v3 from 3.26.0 to 3.27.0
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.26.0 to 3.27.0.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.26.0...v3.27.0 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
Max
c451546cfb
[action] fix actionlint warnings ( #1598 )
8 months ago
Mariano Cano
96c87bb99e
Merge pull request #1590 from smallstep/mariano/asn1-bool
...
Upgrade go.step.sm/crypto with ASN.1 bool support
8 months ago
Mariano Cano
ad22f149b7
Upgrade go.step.sm/crypto with ASN.1 bool support
...
This commit upgrades go.step.sm/crypto dependency with a version that
adds support of ASN.1 boolean encoding.
8 months ago
Carl Tashian
5d10e54551
Merge pull request #1580 from smallstep/carl/unversioned
...
Wrap unversioned step-ca binary into an unversioned dir
8 months ago
github-actions[bot]
06baf58c9f
Merge pull request #1588 from smallstep/dependabot/github_actions/dependabot/fetch-metadata-1.6.0
...
Bump dependabot/fetch-metadata from 1.1.1 to 1.6.0
8 months ago
github-actions[bot]
d5663ef021
Merge pull request #1589 from smallstep/dependabot/go_modules/google.golang.org/api-0.147.0
...
Bump google.golang.org/api from 0.145.0 to 0.147.0
8 months ago
dependabot[bot]
d5f17908a3
Bump google.golang.org/api from 0.145.0 to 0.147.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.145.0 to 0.147.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.145.0...v0.147.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
dependabot[bot]
f548c13e3e
Bump dependabot/fetch-metadata from 1.1.1 to 1.6.0
...
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata ) from 1.1.1 to 1.6.0.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases )
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.1.1...v1.6.0 )
---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
Max
830f31c6d1
[action] add dependabot updates for github actions ( #1586 )
8 months ago
github-actions[bot]
819a4d7d6b
Merge pull request #1584 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.15.2
...
Bump cloud.google.com/go/security from 1.15.1 to 1.15.2
8 months ago
github-actions[bot]
f8ae8f252e
Merge pull request #1582 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.58.3
...
Bump google.golang.org/grpc from 1.58.2 to 1.58.3
8 months ago
github-actions[bot]
7008feae30
Merge pull request #1583 from smallstep/dependabot/go_modules/github.com/google/go-cmp-0.6.0
...
Bump github.com/google/go-cmp from 0.5.9 to 0.6.0
8 months ago
github-actions[bot]
c70c092557
Merge pull request #1585 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.36.0
...
Bump go.step.sm/crypto from 0.35.1 to 0.36.0
8 months ago
dependabot[bot]
2574555672
Bump cloud.google.com/go/security from 1.15.1 to 1.15.2
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.15.1 to 1.15.2.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/kms/v1.15.1...kms/v1.15.2 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
github-actions[bot]
3a633c1cf6
Merge pull request #1581 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.2
...
Bump cloud.google.com/go/longrunning from 0.5.1 to 0.5.2
8 months ago
dependabot[bot]
d66ddf890c
Bump go.step.sm/crypto from 0.35.1 to 0.36.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.35.1 to 0.36.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.35.1...v0.36.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
dependabot[bot]
7ada4cac91
Bump github.com/google/go-cmp from 0.5.9 to 0.6.0
...
Bumps [github.com/google/go-cmp](https://github.com/google/go-cmp ) from 0.5.9 to 0.6.0.
- [Release notes](https://github.com/google/go-cmp/releases )
- [Commits](https://github.com/google/go-cmp/compare/v0.5.9...v0.6.0 )
---
updated-dependencies:
- dependency-name: github.com/google/go-cmp
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
dependabot[bot]
6d6b8882ad
Bump google.golang.org/grpc from 1.58.2 to 1.58.3
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.58.2 to 1.58.3.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.58.2...v1.58.3 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
dependabot[bot]
c6daca0c2e
Bump cloud.google.com/go/longrunning from 0.5.1 to 0.5.2
...
Bumps [cloud.google.com/go/longrunning](https://github.com/googleapis/google-cloud-go ) from 0.5.1 to 0.5.2.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/dataflow/v0.5.1...longrunning/v0.5.2 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/longrunning
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
Carl Tashian
de1dc6838f
Wrap unversioned step into an unversioned dir
9 months ago
Carl Tashian
63aa894525
Wrap unversioned step into an unversioned dir
9 months ago
Mariano Cano
f7836a0664
Merge pull request #1578 from smallstep/upgrade-x-net-http2
...
Upgrades golang.org/x/net/http2
9 months ago
Mariano Cano
532fc228d3
Upgrades golang.org/x/net/http2
...
Although step-ca doesn't manually configure HTTP/2, the new version
fixes the issue described in https://go.dev/issue/63417 .
9 months ago
github-actions[bot]
95bf3d60ef
Merge pull request #1574 from smallstep/dependabot/go_modules/golang.org/x/net-0.16.0
...
Bump golang.org/x/net from 0.15.0 to 0.16.0
9 months ago
dependabot[bot]
bf7aa211eb
Bump golang.org/x/net from 0.15.0 to 0.16.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.15.0 to 0.16.0.
- [Commits](https://github.com/golang/net/compare/v0.15.0...v0.16.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
9 months ago
github-actions[bot]
06174b9ea7
Merge pull request #1575 from smallstep/dependabot/go_modules/google.golang.org/api-0.145.0
...
Bump google.golang.org/api from 0.143.0 to 0.145.0
9 months ago
dependabot[bot]
51612b6345
Bump google.golang.org/api from 0.143.0 to 0.145.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.143.0 to 0.145.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.143.0...v0.145.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
9 months ago
Max
9f84f7ce35
Allow for identity certificate signing (in sshSign) by skipping validators ( #1572 )
...
- skip urisValidator for identity certificate signing. Implemented
by building the validator with the context in a hacky way.
9 months ago
Herman Slatman
06750b03fe
Merge pull request #1566 from smallstep/herman/fix-init-with-duplicate-provisioner-name
...
Fix `step ca init` with duplicate provisioner name (`--provisioner acme --acme`)
9 months ago
Herman Slatman
d1dd1fa69c
Merge pull request #1570 from smallstep/herman/improve-scep-request-handling
...
Improve SCEP request handling
9 months ago
Herman Slatman
25f4b4014d
Add `base64` to the raw message decoding error
9 months ago
Herman Slatman
965d7aa7f4
Fix linting issues
9 months ago
Herman Slatman
cd78b9fd43
Implement workaround for weird macOS SCEP message in query
...
Apparently the macOS SCEP client sends a SCEP message in the query
that's not fully escaped. Only the base64 padding is escaped, the
'+' and '/' characters aren't.
This is a bit of a special case, because the macOS SCEP client
will default to using HTTP POST for the PKIOperation. But if the
CA is configured without the POSTPKIOperation capability, the
macOS SCEP client will use HTTP GET instead. This behavior might
be the same on iOS.
9 months ago
Herman Slatman
3c12b4f5ad
Improve decoding SCEP requests
9 months ago
github-actions[bot]
829de7cf58
Merge pull request #1568 from smallstep/dependabot/go_modules/google.golang.org/api-0.143.0
...
Bump google.golang.org/api from 0.142.0 to 0.143.0
9 months ago
github-actions[bot]
2e4bb34363
Merge pull request #1567 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.26.0
...
Bump github.com/newrelic/go-agent/v3 from 3.25.1 to 3.26.0
9 months ago
dependabot[bot]
08dcf39cf7
Bump google.golang.org/api from 0.142.0 to 0.143.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.142.0 to 0.143.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.142.0...v0.143.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
9 months ago
dependabot[bot]
9e0abb7c1d
Bump github.com/newrelic/go-agent/v3 from 3.25.1 to 3.26.0
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.25.1 to 3.26.0.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.25.1...v3.26.0 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
9 months ago
Herman Slatman
2e560caf68
Add some basic tests for `GenerateConfig`
...
So far the `GenerateConfig` method wasn't tested. This commit adds
a couple of basic tests for this method. It's not fully covered yet,
nor are all properties being checked, but it provides a starting
point for refactoring the CA (configuration) initialization process.
9 months ago
Herman Slatman
991a9a6223
Merge branch 'master' into herman/fix-init-with-duplicate-provisioner-name
9 months ago
Herman Slatman
3c084822b3
Prevent invalid provisioner name on `step ca init`
...
An unfortunate combination of `--provisioner acme` and the `--acme`
flags on `step ca init` could lead to an invalidat CA configuration.
This commit prevent this case from happening. A similar error could
occur for the `sshpop` provisioner, so a fix was implemented for that
case too.
The fix doesn't catch all cases, e.g. it doesn't check for multiple
provisioners having the same `acme-` or `sshpop-` prefix. The code
that is called is intended to be only called from a `step ca init`
invocation, so should work for these cases, but might not if the
methods are invoked at other times.
9 months ago
Max
454cec7cdc
Remove gitleaks ignore file ( #1565 )
9 months ago
Max
5758657b53
[action] remove gitleaks key from code-scan-cron ( #1564 )
9 months ago
Carl Tashian
88dda9cd37
Merge pull request #1563 from smallstep/carl/fix-cosign-regexp
...
Fix cosign identity regexp
9 months ago
Carl Tashian
13db94721a
Fix cosign identity regexp
9 months ago
Carl Tashian
c1d0a90db5
Merge pull request #1562 from smallstep/carl/winget-pr
...
Small tweaks to Winget & Scoop configs
9 months ago
Carl Tashian
aa6de4059f
Small tweaks to Winget & Scoop configs
9 months ago
Max
4e3b344b00
Update changelog for 0.25.0 release ( #1561 )
9 months ago
Mariano Cano
f9db22d311
Merge pull request #1555 from smallstep/scep-password
...
Change scep password type to string
9 months ago
Mariano Cano
86c029df36
Merge pull request #1559 from smallstep/no-color
...
Allow to disable color in the text formatter
9 months ago
Mariano Cano
00d8d8f995
Allow to disable color in the text formatter
...
This commit adds support for NO_COLOR environment variable, if this is
set, colors will be disabled in the logrus text formatter.
This commit also adds support for the environment variables supported by
logrus, CLICOLOR and CLICOLOR_FORCE
Related to #1549
9 months ago
Mariano Cano
52baf52f84
Change scep password type to string
...
This commit changes the type of the decrypter key password to string to
be consistent with other passwords in the ca.json
9 months ago
Mariano Cano
b66a92ca41
Merge pull request #1414 from smallstep/herman/scep-provisioner-decrypter
...
Add SCEP provisioner decrypter
9 months ago
Mariano Cano
8fdcbd3ad0
Merge pull request #1554 from smallstep/fix-redacted-types
...
Fix redacted types in SCEP provisioner
9 months ago
Mariano Cano
33bdae4a34
Fix redacted tests
9 months ago
Mariano Cano
4d5fbfa439
Fix redacted types in SCEP provisioner
...
This commit uses the same types for the fields in the provisioner.SCEP
type and the "redacted" models.SCEP.
9 months ago
Herman Slatman
f505acbaa3
Merge pull request #1553 from smallstep/herman/change-scep-authority-initialization
...
Change SCEP authority initialization
9 months ago
Herman Slatman
c0fbace882
Address review remarks
9 months ago
Herman Slatman
4dc5a688fd
Set SCEP authority options once
9 months ago
Herman Slatman
15c46ebbaa
Switch logic for SCEP initialization around
9 months ago
Herman Slatman
f1da256ca4
Change SCEP authority initialization
9 months ago
Herman Slatman
0a5ae396c7
Merge branch 'master' into herman/scep-provisioner-decrypter
9 months ago
Herman Slatman
4554f86f16
Make SCEP decrypter properties use `omitempty`
9 months ago
Herman Slatman
aea3f752bd
Upgrade to linkedca v0.20.1
9 months ago
github-actions[bot]
8989dbdb82
Merge pull request #1550 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.25.1
...
Bump github.com/newrelic/go-agent/v3 from 3.24.1 to 3.25.1
9 months ago
github-actions[bot]
eba23216d7
Merge pull request #1552 from smallstep/dependabot/go_modules/google.golang.org/api-0.142.0
...
Bump google.golang.org/api from 0.141.0 to 0.142.0
9 months ago
dependabot[bot]
f1b40a7dfb
Bump google.golang.org/api from 0.141.0 to 0.142.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.141.0 to 0.142.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.141.0...v0.142.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
9 months ago
github-actions[bot]
0d430d4cdf
Merge pull request #1551 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.58.2
...
Bump google.golang.org/grpc from 1.58.1 to 1.58.2
9 months ago
dependabot[bot]
44662c6544
Bump google.golang.org/grpc from 1.58.1 to 1.58.2
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.58.1 to 1.58.2.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.58.1...v1.58.2 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
9 months ago
dependabot[bot]
4df79cc974
Bump github.com/newrelic/go-agent/v3 from 3.24.1 to 3.25.1
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.24.1 to 3.25.1.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.24.1...v3.25.1 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
9 months ago
Herman Slatman
ffe079f31b
Merge branch 'master' into herman/scep-provisioner-decrypter
9 months ago
Herman Slatman
0d66158bf1
Merge pull request #1544 from smallstep/herman/scep-notifying-webhook
...
Add SCEP issuance notification webhook
9 months ago
Mariano Cano
e766ca7a38
Merge pull request #1546 from smallstep/fix-webhook-signature
...
Fix webhooks signature
9 months ago
Mariano Cano
31da66c124
Fix webhooks signature
...
This commit fixes the way webhooks signatures are created. Before this
change, the signature of an empty body was prepended by the body itself.
9 months ago
Herman Slatman
68a1c859b0
Merge pull request #1543 from dnwe/chi
...
chore(deps): upgrade github.com/go-chi/chi to v5
9 months ago
Herman Slatman
3f3b67e05c
Merge branch 'herman/scep-provisioner-decrypter' into herman/scep-notifying-webhook
9 months ago
Herman Slatman
ba72710e2d
Address code review remarks
9 months ago
Herman Slatman
5f8e0de1c3
Fix duplicate import in SCEP provisioner
9 months ago
Herman Slatman
4fd4227b73
Use shorter SCEP decrypter property names from linkedca
9 months ago
Herman Slatman
5fd70af2c8
Make API responses aware of the new SCEP decrypter properties
9 months ago
Herman Slatman
3ade92f8d5
Support both a decrypter key URI as well as PEM
9 months ago
Herman Slatman
6d2d21e989
Fix undefined and unused variables
...
Forgot to save the latest version...
9 months ago
Herman Slatman
b6c95d7be2
Add additional properties to SCEP notify webhook request body
9 months ago
Herman Slatman
63257e0576
Add full certificate DER bytes to success notification webhook
9 months ago
Herman Slatman
52bc96760b
Add SCEP certificate issuance notification webhook
9 months ago
Herman Slatman
a3c9dd796a
Merge branch 'herman/scep-provisioner-decrypter' of github.com:smallstep/certificates into herman/scep-provisioner-decrypter
9 months ago
Herman Slatman
69a53eec33
Merge branch 'master' into herman/scep-provisioner-decrypter
9 months ago
Dominic Evans
231b5d8406
chore(deps): upgrade github.com/go-chi/chi to v5
...
Upgrade chi to the v5 module path to avoid deprecation warning about v4
and earlier on the old module path.
See https://github.com/go-chi/chi/blob/v4.1.3/go.mod#L1-L4
Signed-off-by: Dominic Evans <dominic.evans@uk.ibm.com>
9 months ago
Herman Slatman
09cc834ffa
Merge pull request #1541 from smallstep/herman/fix-go-tpm-0.9.0
...
Upgrade go-tpm to v0.9.0
9 months ago
Herman Slatman
4ef093dc4b
Fix broken tests relying on `Sign` in mocks
9 months ago
Herman Slatman
9e3807eaa3
Use `SignWithContext` in the critical paths
9 months ago
Herman Slatman
4e06bdbc51
Add `SignWithContext` method to authority and mocks
9 months ago
Herman Slatman
b2301ea127
Remove the webhook `Do` method
9 months ago
Herman Slatman
f3229d3e3c
Propagate (original) request ID to webhook requests
...
Technically the webhook request is a new request, so maybe the
`X-Request-ID` should not be set to the value of the original
request? But then the original request ID should be propageted
in the webhook request body, or using a different header.
The way the request ID is used in this functionality is actually
more like a tracing ID, so that may be an option too.
9 months ago
Herman Slatman
ea7c508fbb
Upgrade to `go.step.sm/crypto` v0.35.1
9 months ago
Herman Slatman
c3572281ad
Upgrade `github.com/smallstep/go-attestation` to fix legacy `tpm2`
9 months ago
Herman Slatman
f2993c4c3b
Use the legacy `tpm2` package import
9 months ago
dependabot[bot]
18d1b21a66
Bump github.com/google/go-tpm from 0.3.3 to 0.9.0
...
Bumps [github.com/google/go-tpm](https://github.com/google/go-tpm ) from 0.3.3 to 0.9.0.
- [Release notes](https://github.com/google/go-tpm/releases )
- [Commits](https://github.com/google/go-tpm/compare/v0.3.3...v0.9.0 )
---
updated-dependencies:
- dependency-name: github.com/google/go-tpm
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
9 months ago
github-actions[bot]
70533f55a4
Merge pull request #1538 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/kubernetes-0.5.0
...
Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.4.1 to 0.5.0
9 months ago
github-actions[bot]
b63276cc04
Merge pull request #1539 from smallstep/dependabot/go_modules/google.golang.org/api-0.141.0
...
Bump google.golang.org/api from 0.138.0 to 0.141.0
9 months ago
dependabot[bot]
d05f030452
Bump google.golang.org/api from 0.138.0 to 0.141.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.138.0 to 0.141.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.138.0...v0.141.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
9 months ago
github-actions[bot]
1a6301e977
Merge pull request #1540 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.58.1
...
Bump google.golang.org/grpc from 1.58.0 to 1.58.1
9 months ago
dependabot[bot]
a73617150e
Bump google.golang.org/grpc from 1.58.0 to 1.58.1
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.58.0 to 1.58.1.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.58.0...v1.58.1 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
9 months ago
dependabot[bot]
75132d94f3
Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.4.1 to 0.5.0
...
Bumps [github.com/hashicorp/vault/api/auth/kubernetes](https://github.com/hashicorp/vault ) from 0.4.1 to 0.5.0.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG-v0.md )
- [Commits](https://github.com/hashicorp/vault/compare/v0.4.1...v0.5.0 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api/auth/kubernetes
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
9 months ago
github-actions[bot]
fda0bdb0c7
Merge pull request #1531 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.58.0
...
Bump google.golang.org/grpc from 1.57.0 to 1.58.0
10 months ago
dependabot[bot]
77eeb7e2c5
Bump google.golang.org/grpc from 1.57.0 to 1.58.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.57.0 to 1.58.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.57.0...v1.58.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
10 months ago
github-actions[bot]
828591c61b
Merge pull request #1530 from smallstep/dependabot/go_modules/golang.org/x/net-0.15.0
...
Bump golang.org/x/net from 0.14.0 to 0.15.0
10 months ago
github-actions[bot]
1a4203edc0
Merge pull request #1533 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/approle-0.5.0
...
Bump github.com/hashicorp/vault/api/auth/approle from 0.4.1 to 0.5.0
10 months ago
dependabot[bot]
23cc1c71ee
Bump golang.org/x/net from 0.14.0 to 0.15.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.14.0 to 0.15.0.
- [Commits](https://github.com/golang/net/compare/v0.14.0...v0.15.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
10 months ago
github-actions[bot]
fc1b720f35
Merge pull request #1532 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.13.0
...
Bump golang.org/x/crypto from 0.12.0 to 0.13.0
10 months ago
Max
67a41dca83
Remove db datasource from error msg to prevent leaking of secrets ( #1528 )
10 months ago
dependabot[bot]
ea40de159c
Bump github.com/hashicorp/vault/api/auth/approle from 0.4.1 to 0.5.0
...
Bumps [github.com/hashicorp/vault/api/auth/approle](https://github.com/hashicorp/vault ) from 0.4.1 to 0.5.0.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG-v0.md )
- [Commits](https://github.com/hashicorp/vault/compare/v0.4.1...v0.5.0 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api/auth/approle
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
10 months ago
dependabot[bot]
b330c63df8
Bump golang.org/x/crypto from 0.12.0 to 0.13.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.12.0 to 0.13.0.
- [Commits](https://github.com/golang/crypto/compare/v0.12.0...v0.13.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
10 months ago
Max
b7c4ed26fb
Use provisioner name in error message ( #1524 )
10 months ago
Herman Slatman
4cc4bba7e9
Merge pull request #1523 from smallstep/herman/scep-webhook-csr
...
Add CSR to `SCEPCHALLENGE` webhook request body
10 months ago
Herman Slatman
33e661ce7d
Add a dummy CSR to SCEP request body tests
10 months ago
Carl Tashian
09ccb22c4b
Merge pull request #1521 from smallstep/carl/winget
...
Winget: Only make PRs on releases, not release candidates
10 months ago
Herman Slatman
36f1dd70bf
Add CSR to `SCEPCHALLENGE` webhook request body
10 months ago
Herman Slatman
98d015b5c3
Fix linting issues
10 months ago
Herman Slatman
d9f56cdbdc
Merge branch 'master' into herman/scep-provisioner-decrypter
10 months ago
Herman Slatman
9d3b78ae49
Add `excludeIntermediate` to SCEP provisioner
10 months ago
Carl Tashian
db369ddc23
Only make PRs on releases, not release candidates
10 months ago
Carl Tashian
83e5d4222d
Merge pull request #1519 from smallstep/carl/winget
...
Add Winget release automation
10 months ago
Max
e22166c628
provisionerOptionsToLinkedCA missing template and templateData ( #1520 )
10 months ago
Carl Tashian
73d765d1a9
Add Winget release automation
10 months ago
Max
116ff8ed65
bump go.mod to go1.20 and associated linter fixes ( #1518 )
10 months ago
github-actions[bot]
d727f228ff
Merge pull request #1517 from smallstep/dependabot/go_modules/github.com/google/uuid-1.3.1
...
Bump github.com/google/uuid from 1.3.0 to 1.3.1
10 months ago
dependabot[bot]
8d26a6c832
Bump github.com/google/uuid from 1.3.0 to 1.3.1
...
Bumps [github.com/google/uuid](https://github.com/google/uuid ) from 1.3.0 to 1.3.1.
- [Release notes](https://github.com/google/uuid/releases )
- [Changelog](https://github.com/google/uuid/blob/master/CHANGELOG.md )
- [Commits](https://github.com/google/uuid/compare/v1.3.0...v1.3.1 )
---
updated-dependencies:
- dependency-name: github.com/google/uuid
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
10 months ago
github-actions[bot]
ddabd453bd
Merge pull request #1513 from smallstep/dependabot/go_modules/google.golang.org/api-0.138.0
...
Bump google.golang.org/api from 0.136.0 to 0.138.0
10 months ago
github-actions[bot]
fc0edb4c90
Merge pull request #1514 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.35.0
...
Bump go.step.sm/crypto from 0.34.0 to 0.35.0
10 months ago
dependabot[bot]
dccbe9f845
Bump go.step.sm/crypto from 0.34.0 to 0.35.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.34.0 to 0.35.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.34.0...v0.35.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
10 months ago
dependabot[bot]
1ca2353160
Bump google.golang.org/api from 0.136.0 to 0.138.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.136.0 to 0.138.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.136.0...v0.138.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
10 months ago
Mariano Cano
9ea1e64a0a
Merge pull request #1511 from smallstep/fix-cbor-error
...
Fix error string in tests
10 months ago
Mariano Cano
d739aab345
Define BaseContext before starting the server in tests
...
If the http.Server BaseContext is not define before the start of the
server, it might not be properly set depending on the goroutine
scheduler. This was causing random errors on CI.
10 months ago
Mariano Cano
d8eeebfd51
Fix error string in tests
...
This commit fixes a test checking an error string from an external
dependency.
10 months ago
Mariano Cano
6067560834
Merge pull request #1510 from rvichery/aws-iid-all-certificates
...
Add all AWS identity document certificates
10 months ago
Remi Vichery
82b8e16d7f
Add all AWS identity document certificates
...
* move to use embed instead of a multi-line string
* add test to ensure all certificates are valid
* add test to ensure validity (no expired certificate)
10 months ago
github-actions[bot]
d3a16ab212
Merge pull request #1506 from smallstep/dependabot/go_modules/google.golang.org/api-0.136.0
...
Bump google.golang.org/api from 0.134.0 to 0.136.0
11 months ago
github-actions[bot]
b45127e3d5
Merge pull request #1507 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.24.1
...
Bump github.com/newrelic/go-agent/v3 from 3.24.0 to 3.24.1
11 months ago
github-actions[bot]
645fdfccef
Merge pull request #1508 from smallstep/dependabot/go_modules/github.com/fxamacker/cbor/v2-2.5.0
...
Bump github.com/fxamacker/cbor/v2 from 2.4.0 to 2.5.0
11 months ago
dependabot[bot]
b0b300988d
Bump github.com/fxamacker/cbor/v2 from 2.4.0 to 2.5.0
...
Bumps [github.com/fxamacker/cbor/v2](https://github.com/fxamacker/cbor ) from 2.4.0 to 2.5.0.
- [Release notes](https://github.com/fxamacker/cbor/releases )
- [Commits](https://github.com/fxamacker/cbor/compare/v2.4.0...v2.5.0 )
---
updated-dependencies:
- dependency-name: github.com/fxamacker/cbor/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
11 months ago
dependabot[bot]
3d7ddfdacc
Bump github.com/newrelic/go-agent/v3 from 3.24.0 to 3.24.1
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.24.0 to 3.24.1.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.24.0...v3.24.1 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
11 months ago
dependabot[bot]
e51e82b9f0
Bump google.golang.org/api from 0.134.0 to 0.136.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.134.0 to 0.136.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.134.0...v0.136.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
11 months ago
github-actions[bot]
12bcb64b26
Merge pull request #1505 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.24.0
...
Bump github.com/newrelic/go-agent/v3 from 3.23.1 to 3.24.0
11 months ago
github-actions[bot]
4ded102f81
Merge pull request #1503 from smallstep/dependabot/go_modules/golang.org/x/net-0.14.0
...
Bump golang.org/x/net from 0.13.0 to 0.14.0
11 months ago
dependabot[bot]
91ef511e65
Bump github.com/newrelic/go-agent/v3 from 3.23.1 to 3.24.0
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.23.1 to 3.24.0.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.23.1...v3.24.0 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
11 months ago
dependabot[bot]
e074b77243
Bump golang.org/x/net from 0.13.0 to 0.14.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.13.0 to 0.14.0.
- [Commits](https://github.com/golang/net/compare/v0.13.0...v0.14.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
11 months ago
Herman Slatman
e182c620c8
Merge branch 'master' into herman/scep-provisioner-decrypter
11 months ago
Herman Slatman
645b6ffc18
Ensure no prompt is fired for loading provisioner decrypter
11 months ago
Herman Slatman
6de964f13a
Merge pull request #1495 from smallstep/herman/acme-attestation-errors
...
Return more detailed errors to ACME clients using `device-attest-01`
11 months ago
Mariano Cano
bdc7b1b691
Merge pull request #1501 from smallstep/safe-save
...
Write configuration only if encoding succeeds
11 months ago
Herman Slatman
0d09f3e202
Prevent data races with multiple PKCS7 encryption operations
11 months ago
Herman Slatman
cbc1be310d
Merge branch 'master' into herman/acme-attestation-errors
11 months ago
Herman Slatman
c952e9fc9d
Use `NewDetailedError` instead
11 months ago
Mariano Cano
30ce9e65f7
Write configuration only if encoding succeeds
...
This commit fixes a problem when the ca.json is truncated if the
encoding of the configuration fails. This can happen by adding a new
provisioner with bad template data.
Related to smallstep/cli#994
11 months ago
Herman Slatman
e2e9bf5494
Clarify some SCEP properties
11 months ago
Herman Slatman
70626b157d
Merge branch 'master' into herman/scep-provisioner-decrypter
11 months ago
Mariano Cano
47d820561f
Merge pull request #1500 from smallstep/upgrade-crypto
...
Fix adding certificate templates with ASN.1 functions
11 months ago
Mariano Cano
4667060df8
Upgrade golang.org/x/net
...
This commit fixes the vulnerability GO-2023-1988, improper rendering of
text nodes in golang.org/x/net/html.
More info: https://pkg.go.dev/vuln/GO-2023-1988
11 months ago
Mariano Cano
103b4e1cf1
Fix adding certificate templates with ASN.1 functions
...
This commit upgrades go.step.sm/crypto with a fix to validate the
templates that use custom functions.
11 months ago
Herman Slatman
4186b2c2d0
Change JSON marshaling for SCEP provisioners
...
Instead of the old method that redacted sensitive information
by overriding the value of the property and changing it back
to the original, the API now uses a model specifically meant
for API responses. This prevents potential race conditions.
This may be iterated on a bit so that we don't need to rely
on the [provisioner.Interface] interface, which requires the
API model to implement unnecessary methods.
11 months ago
Herman Slatman
d754000a68
Fix SCEP provisioner API test
11 months ago
Herman Slatman
c0a1837cd9
Verify full decrypter/signer configuration at usage time
...
When changing the SCEP configuration it is possible that one
or both of the decrypter configurations required are not available
or have been provided in a way that's not usable for actual SCEP
requests.
Instead of failing hard when provisioners are loaded,
which could result in the CA not starting properly, this type of
problematic configuration errors will now be handled at usage
time instead.
11 months ago
Herman Slatman
88ed900dc3
Rely on the latest linkedca
11 months ago
Herman Slatman
0f35bb1af5
Defer missing decrypter/signer configuration errors to SCEP authority
11 months ago
Herman Slatman
afdd8d3786
Upgrade `golang.org/x/net` to `v0.13.0`
11 months ago
Herman Slatman
f3c24fe875
Change how multiple identifiers are printed in errors
11 months ago
Herman Slatman
4496830859
Merge branch 'master' into herman/acme-attestation-errors
11 months ago
Herman Slatman
fc1fb51854
Improve SCEP authority initialization and reload
11 months ago
Herman Slatman
7163c4f95f
Add helper for getting the appropriate SCEP response signer
11 months ago
Herman Slatman
59b7419dcf
Rely on latest `linkedca` commit with `SCEPDecrypter` support
11 months ago
Herman Slatman
569a1be12c
Merge branch 'master' into herman/scep-provisioner-decrypter
11 months ago
github-actions[bot]
c07124e374
Merge pull request #1499 from smallstep/dependabot/go_modules/google.golang.org/api-0.134.0
...
Bump google.golang.org/api from 0.132.0 to 0.134.0
11 months ago
dependabot[bot]
74240092e9
Bump google.golang.org/api from 0.132.0 to 0.134.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.132.0 to 0.134.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.132.0...v0.134.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
11 months ago
github-actions[bot]
edd718d89e
Merge pull request #1498 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.57.0
...
Bump google.golang.org/grpc from 1.56.2 to 1.57.0
11 months ago
dependabot[bot]
a8b67cd9e6
Bump google.golang.org/grpc from 1.56.2 to 1.57.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.56.2 to 1.57.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.56.2...v1.57.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
11 months ago
Herman Slatman
a0cdad335d
Add test for `WithAdditionalErrorDetail`
11 months ago
Herman Slatman
9a52675865
Return descriptive error when using unsupported format
11 months ago
Herman Slatman
0d3338ff3a
Return consistent ACME error types for specific cases
11 months ago
Herman Slatman
df22b8a303
Cleanup some leftover TODOs
11 months ago
Mariano Cano
d8a9c69eaa
Merge pull request #1484 from smallstep/fix-620
...
Add support for the disableSmallstepExtensions claim
11 months ago
Herman Slatman
dd9bf1e915
Add error details for the `step` format
11 months ago
Herman Slatman
9cbbd1d575
Add error details to ACME `tpm` format validation errors
11 months ago
Herman Slatman
d5dd8feccd
Prevent internal errors from being returned to ACME clients
11 months ago
Herman Slatman
979e0f8f51
Add error details to select error cases for `apple` format
11 months ago
Mariano Cano
d0fd9ebe42
Update Makefile preparing for a new release
11 months ago
Mariano Cano
cce7d9e839
Address comments from code review
11 months ago
Mariano Cano
c7c7decd5e
Add support for the disableSmallstepExtensions claim
...
This commit adds a new claim to exclude the Smallstep provisioner
extension from the generated certificates.
Fixes #620
11 months ago
Mariano Cano
d7efceadb1
Merge pull request #1493 from smallstep/steppath
...
Remove automatic initialization of the STEPPATH
11 months ago
Mariano Cano
7429008599
Use tagged versions of crypto and cli-utils
11 months ago
Herman Slatman
1ce80cf740
Merge branch 'master' into herman/scep-provisioner-decrypter
11 months ago
Herman Slatman
567fc25404
Use the RSA decryption configuration for signing responses too
11 months ago
Mariano Cano
7061147885
Use step.Abs to load the certificate templates
...
step.Abs has been removed from crypto and they need to be set when those
methods are used
11 months ago
Mariano Cano
40a2f53589
Remove automatic initialization of the STEPPATH
...
This commit upgrades cli-utils and crypto packages that remove the
automatic initialization of the STEPPATH.
11 months ago
Herman Slatman
557672bb4b
Add some notes for SCEP provisioners
11 months ago
Mariano Cano
95887ebf40
Merge pull request #1481 from smallstep/remove-user-regex
...
Remove OIDC user regexp check
11 months ago
Josh Drake
a1350b14fb
Merge pull request #1489 from smallstep/josh/authorization-principal-in-webhook
...
Include authorization principal in provisioner webhooks.
11 months ago
Mariano Cano
c9df65ebae
Merge pull request #1490 from smallstep/dry-run-migration
...
Add option to dry-run the migration
11 months ago
Mariano Cano
d9d7c52997
Add option to dry-run the migration
...
This commit adds an option that runs the migration on a virtual database
that doesn't do anything. This option can be used to see how many rows
there are.
11 months ago
Josh Drake
ff424fa944
Fix tests.
11 months ago
github-actions[bot]
7282245e88
Merge pull request #1488 from smallstep/dependabot/go_modules/go.step.sm/linkedca-0.20.0
...
Bump go.step.sm/linkedca from 0.19.1 to 0.20.0
11 months ago
github-actions[bot]
9a7582d1d3
Merge pull request #1487 from smallstep/dependabot/go_modules/google.golang.org/api-0.132.0
...
Bump google.golang.org/api from 0.131.0 to 0.132.0
11 months ago
dependabot[bot]
7796ad8f90
Bump go.step.sm/linkedca from 0.19.1 to 0.20.0
...
Bumps [go.step.sm/linkedca](https://github.com/smallstep/linkedca ) from 0.19.1 to 0.20.0.
- [Release notes](https://github.com/smallstep/linkedca/releases )
- [Commits](https://github.com/smallstep/linkedca/compare/v0.19.1...v0.20.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/linkedca
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
11 months ago
dependabot[bot]
2d666cfc4f
Bump google.golang.org/api from 0.131.0 to 0.132.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.131.0 to 0.132.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.131.0...v0.132.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
11 months ago
Josh Drake
904f416d20
Include authorization principal in provisioner webhooks.
11 months ago
Mariano Cano
d89c3a942e
Merge pull request #1486 from smallstep/migrate-admindb
...
Add to the migration script the admin tables
11 months ago
Mariano Cano
aa30c2c73c
Add to the migration script the admin tables
11 months ago
Mariano Cano
31533c4a15
Merge pull request #1485 from smallstep/webhooks-x5c
...
Send X5C leaf certificate to webhooks
11 months ago
Mariano Cano
5bfe96d8c7
Send X5C leaf certificate to webhooks
...
This commit adds a new property that will be sent to authorizing and
enriching webhooks when signing certificates using the X5C provisioner.
11 months ago
Mariano Cano
d604a900ed
Merge pull request #1482 from smallstep/fix-reload-tests
...
Wait for Accept in TestBootstrapClientServerRotation
11 months ago
Mariano Cano
0c3a1aea38
Wait for Accept in TestBootstrapClientServerRotation
...
The TestBootstrapClientServerRotation often fails because the reload
returns once the Server loop gets the new listener, but the server
hasn't really started yet. This commit makes the test pass, adding a
small sleep after the reload.
A proper fix might require a wrapper over the listener and an ACK
callback on a sync.Once on a custom Accept.
11 months ago
Mariano Cano
7fa97bedec
Remove OIDC user regexp check
...
This commit removes the regular expression check on OIDC usernames.
Although it is not recommended to use any character in a username,
it is possible to create and use them. The tool useradd has the flag
--badname and adduser has --allow-badname and --allow-all-names to
create new users with any character.
Moreover, it is possible to create any username with the rest of
provisioners.
Fixes #1436
11 months ago
Mariano Cano
cbc46d11e5
Merge pull request #1477 from smallstep/badger-migration
...
Add tool to migrate data from badger to mysql or postgresql
11 months ago
Mariano Cano
1755c8d60f
Fix typo in comment
11 months ago
Mariano Cano
f7da9a6f30
Allow to resume badger migration using a given key
11 months ago
Mariano Cano
f7c33d0878
Fix typos in badger migration script
11 months ago
Mariano Cano
7bca0c2349
Add tool to migrate data from badger to mysql or postgresql
11 months ago
Mariano Cano
90bac46a00
Merge pull request #1476 from smallstep/fix-1463
...
Upgrade go.step.sm/crypto with yubikey fix
11 months ago
Mariano Cano
9edf43b188
Upgrade go.step.sm/crypto with yubikey fix
...
This commit upgrades the go.step.sm/crypto with a version that includes
a mutex on YubiKey sign and decrypt operations.
Fixes #1463
11 months ago
github-actions[bot]
f998b19bb3
Merge pull request #1474 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.32.3
...
Bump go.step.sm/crypto from 0.32.2 to 0.32.3
11 months ago
github-actions[bot]
41ff437a6b
Merge pull request #1475 from smallstep/dependabot/go_modules/google.golang.org/api-0.131.0
...
Bump google.golang.org/api from 0.130.0 to 0.131.0
11 months ago
dependabot[bot]
d1607e460d
Bump google.golang.org/api from 0.130.0 to 0.131.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.130.0 to 0.131.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.130.0...v0.131.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
11 months ago
dependabot[bot]
b9a3031b84
Bump go.step.sm/crypto from 0.32.2 to 0.32.3
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.32.2 to 0.32.3.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.32.2...v0.32.3 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
11 months ago
Carl Tashian
4059184b43
Merge pull request #1446 from smallstep/carl/check-cgo-deps
...
Address Makefile issues around the cgo build
12 months ago
Herman Slatman
0607027412
Merge branch 'master' into carl/check-cgo-deps
12 months ago
Herman Slatman
d39a28535d
Merge pull request #1462 from testwill/ioutil
...
chore: log error
12 months ago
github-actions[bot]
a6c6df9283
Merge pull request #1469 from smallstep/dependabot/go_modules/github.com/googleapis/gax-go/v2-2.12.0
...
Bump github.com/googleapis/gax-go/v2 from 2.11.0 to 2.12.0
12 months ago
dependabot[bot]
a6dd12675c
Bump github.com/googleapis/gax-go/v2 from 2.11.0 to 2.12.0
...
Bumps [github.com/googleapis/gax-go/v2](https://github.com/googleapis/gax-go ) from 2.11.0 to 2.12.0.
- [Release notes](https://github.com/googleapis/gax-go/releases )
- [Commits](https://github.com/googleapis/gax-go/compare/v2.11.0...v2.12.0 )
---
updated-dependencies:
- dependency-name: github.com/googleapis/gax-go/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
12 months ago
github-actions[bot]
e1db416c7d
Merge pull request #1470 from smallstep/dependabot/go_modules/google.golang.org/api-0.130.0
...
Bump google.golang.org/api from 0.129.0 to 0.130.0
12 months ago
dependabot[bot]
2b3bf88001
Bump google.golang.org/api from 0.129.0 to 0.130.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.129.0 to 0.130.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.129.0...v0.130.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
12 months ago
github-actions[bot]
df20d8fcb4
Merge pull request #1468 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.56.2
...
Bump google.golang.org/grpc from 1.56.1 to 1.56.2
12 months ago
dependabot[bot]
49d1ca0a49
Bump google.golang.org/grpc from 1.56.1 to 1.56.2
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.56.1 to 1.56.2.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.56.1...v1.56.2 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
12 months ago
github-actions[bot]
0723987573
Merge pull request #1466 from smallstep/dependabot/go_modules/golang.org/x/net-0.12.0
...
Bump golang.org/x/net from 0.11.0 to 0.12.0
12 months ago
dependabot[bot]
ef0cd093e3
Bump golang.org/x/net from 0.11.0 to 0.12.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.11.0 to 0.12.0.
- [Commits](https://github.com/golang/net/compare/v0.11.0...v0.12.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
12 months ago
Herman Slatman
10b7280e17
Merge pull request #1464 from smallstep/herman/fix-tpm-simulator-tests
...
Fix TPM simulator initialization for tests
12 months ago
Herman Slatman
a5801b3c74
Fix TPM simulator initialization for tests
12 months ago
Carl Tashian
18bc0f333b
Update README.md
...
Co-authored-by: Herman Slatman <hslatman@users.noreply.github.com>
12 months ago
Carl Tashian
44f3b97e61
Update Makefile
...
Co-authored-by: Herman Slatman <hslatman@users.noreply.github.com>
12 months ago
guoguangwu
4c70abcd62
chore: log error
12 months ago
github-actions[bot]
9a60734504
Merge pull request #1458 from smallstep/dependabot/go_modules/google.golang.org/api-0.129.0
...
Bump google.golang.org/api from 0.128.0 to 0.129.0
12 months ago
github-actions[bot]
dc03edbc27
Merge pull request #1460 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.23.1
...
Bump github.com/newrelic/go-agent/v3 from 3.23.0 to 3.23.1
12 months ago
dependabot[bot]
9cb2c4365d
Bump google.golang.org/api from 0.128.0 to 0.129.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.128.0 to 0.129.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.128.0...v0.129.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
12 months ago
github-actions[bot]
03011660a8
Merge pull request #1459 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.32.2
...
Bump go.step.sm/crypto from 0.32.1 to 0.32.2
12 months ago
github-actions[bot]
701a0ea3f4
Merge pull request #1456 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.1
...
Bump cloud.google.com/go/longrunning from 0.5.0 to 0.5.1
12 months ago
github-actions[bot]
62212d23bf
Merge pull request #1457 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.56.1
...
Bump google.golang.org/grpc from 1.56.0 to 1.56.1
12 months ago
dependabot[bot]
eae423ed14
Bump github.com/newrelic/go-agent/v3 from 3.23.0 to 3.23.1
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.23.0 to 3.23.1.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.23.0...v3.23.1 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
12 months ago
dependabot[bot]
d59b16cb2a
Bump go.step.sm/crypto from 0.32.1 to 0.32.2
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.32.1 to 0.32.2.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.32.1...v0.32.2 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
12 months ago
dependabot[bot]
f7f66ad3ed
Bump google.golang.org/grpc from 1.56.0 to 1.56.1
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.56.0 to 1.56.1.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.56.0...v1.56.1 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
12 months ago
dependabot[bot]
898bd6a0f4
Bump cloud.google.com/go/longrunning from 0.5.0 to 0.5.1
...
Bumps [cloud.google.com/go/longrunning](https://github.com/googleapis/google-cloud-go ) from 0.5.0 to 0.5.1.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/v0.5.0...dataflow/v0.5.1 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/longrunning
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
12 months ago
github-actions[bot]
4f21d0c256
Merge pull request #1453 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.23.0
...
Bump github.com/newrelic/go-agent/v3 from 3.22.1 to 3.23.0
1 year ago
dependabot[bot]
e5c46d4264
Bump github.com/newrelic/go-agent/v3 from 3.22.1 to 3.23.0
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.22.1 to 3.23.0.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.22.1...v3.23.0 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
4ce88e579e
Merge pull request #1451 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.32.1
...
Bump go.step.sm/crypto from 0.32.0 to 0.32.1
1 year ago
dependabot[bot]
48855080ff
Bump go.step.sm/crypto from 0.32.0 to 0.32.1
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.32.0 to 0.32.1.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.32.0...v0.32.1 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
b029359e78
Merge pull request #1450 from smallstep/dependabot/go_modules/google.golang.org/protobuf-1.31.0
...
Bump google.golang.org/protobuf from 1.30.0 to 1.31.0
1 year ago
github-actions[bot]
a577ee9699
Merge pull request #1449 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.15.1
...
Bump cloud.google.com/go/security from 1.15.0 to 1.15.1
1 year ago
dependabot[bot]
fb7b299110
Bump google.golang.org/protobuf from 1.30.0 to 1.31.0
...
Bumps google.golang.org/protobuf from 1.30.0 to 1.31.0.
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
ce89c09031
Bump cloud.google.com/go/security from 1.15.0 to 1.15.1
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.15.0 to 1.15.1.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/video/v1.15.0...speech/v1.15.1 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Carl Tashian
e38e632dca
Post-review fixes
1 year ago
Carl Tashian
f8b318bb90
Post-review fixes
1 year ago
Carl Tashian
73cb04318a
Trying a different approach
1 year ago
Carl Tashian
b2b8b48949
Trying a different approach
1 year ago
Carl Tashian
de52aee9b1
Trying a different approach
1 year ago
Carl Tashian
5e68a6d49a
Check for gcc and pkg-config before building with cgo enabled
1 year ago
github-actions[bot]
1df9419212
Merge pull request #1440 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.32.0
...
Bump go.step.sm/crypto from 0.31.2 to 0.32.0
1 year ago
github-actions[bot]
f7d1376327
Merge pull request #1441 from smallstep/dependabot/go_modules/google.golang.org/api-0.128.0
...
Bump google.golang.org/api from 0.126.0 to 0.128.0
1 year ago
dependabot[bot]
6c4825b149
Bump google.golang.org/api from 0.126.0 to 0.128.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.126.0 to 0.128.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.126.0...v0.128.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
648e60ac1a
Merge pull request #1442 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.56.0
...
Bump google.golang.org/grpc from 1.55.0 to 1.56.0
1 year ago
dependabot[bot]
6aa00b3c89
Bump google.golang.org/grpc from 1.55.0 to 1.56.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.55.0 to 1.56.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.55.0...v1.56.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
81228b481f
Bump go.step.sm/crypto from 0.31.2 to 0.32.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.31.2 to 0.32.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.31.2...v0.32.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
f4cee836bf
Merge pull request #1443 from smallstep/dependabot/go_modules/golang.org/x/net-0.11.0
...
Bump golang.org/x/net from 0.10.0 to 0.11.0
1 year ago
github-actions[bot]
83fc176a87
Merge pull request #1444 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.10.0
...
Bump golang.org/x/crypto from 0.9.0 to 0.10.0
1 year ago
dependabot[bot]
c74bab5161
Bump golang.org/x/crypto from 0.9.0 to 0.10.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.9.0 to 0.10.0.
- [Commits](https://github.com/golang/crypto/compare/v0.9.0...v0.10.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
d78c9f831b
Bump golang.org/x/net from 0.10.0 to 0.11.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.10.0 to 0.11.0.
- [Commits](https://github.com/golang/net/compare/v0.10.0...v0.11.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Carl Tashian
05d6f81ee9
Merge pull request #1435 from smallstep/unversioned-releases
...
Add unversioned filenames to GitHub assets
1 year ago
Carl Tashian
eeb912e025
Add unversioned filenames to GitHub assets
1 year ago
Max
67d32685c7
[action] updated goCI workflow API ( #1429 )
1 year ago
github-actions[bot]
56a2a17ff8
Merge pull request #1432 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.22.1
...
Bump github.com/newrelic/go-agent/v3 from 3.21.1 to 3.22.1
1 year ago
github-actions[bot]
a3301bf65b
Merge pull request #1433 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.15.0
...
Bump cloud.google.com/go/security from 1.14.1 to 1.15.0
1 year ago
dependabot[bot]
e400294238
Bump github.com/newrelic/go-agent/v3 from 3.21.1 to 3.22.1
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.21.1 to 3.22.1.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.21.1...v3.22.1 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
c02d4adcca
Merge pull request #1431 from smallstep/dependabot/go_modules/google.golang.org/api-0.126.0
...
Bump google.golang.org/api from 0.125.0 to 0.126.0
1 year ago
github-actions[bot]
02d4657ee6
Merge pull request #1434 from smallstep/dependabot/go_modules/github.com/urfave/cli-1.22.14
...
Bump github.com/urfave/cli from 1.22.13 to 1.22.14
1 year ago
github-actions[bot]
4bd89a8e5f
Merge pull request #1430 from smallstep/dependabot/go_modules/github.com/sirupsen/logrus-1.9.3
...
Bump github.com/sirupsen/logrus from 1.9.2 to 1.9.3
1 year ago
dependabot[bot]
d97b254a1d
Bump github.com/urfave/cli from 1.22.13 to 1.22.14
...
Bumps [github.com/urfave/cli](https://github.com/urfave/cli ) from 1.22.13 to 1.22.14.
- [Release notes](https://github.com/urfave/cli/releases )
- [Changelog](https://github.com/urfave/cli/blob/main/docs/CHANGELOG.md )
- [Commits](https://github.com/urfave/cli/compare/v1.22.13...v1.22.14 )
---
updated-dependencies:
- dependency-name: github.com/urfave/cli
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
f3555ee0e7
Bump cloud.google.com/go/security from 1.14.1 to 1.15.0
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.14.1 to 1.15.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/speech/v1.14.1...video/v1.15.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
3d29316d0b
Bump google.golang.org/api from 0.125.0 to 0.126.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.125.0 to 0.126.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.125.0...v0.126.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
7ac0e4d21d
Bump github.com/sirupsen/logrus from 1.9.2 to 1.9.3
...
Bumps [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus ) from 1.9.2 to 1.9.3.
- [Release notes](https://github.com/sirupsen/logrus/releases )
- [Changelog](https://github.com/sirupsen/logrus/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sirupsen/logrus/compare/v1.9.2...v1.9.3 )
---
updated-dependencies:
- dependency-name: github.com/sirupsen/logrus
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Max
53c7774d3c
[action] use common goreleaser workflow ( #1427 )
1 year ago
Max
825c5dd754
Update changelog for ACME kid / provisioner name change ( #1426 )
1 year ago
Mariano Cano
ccb248394b
Merge pull request #1424 from spieglt/vault-namespaces
...
Add namespace field to VaultCAS JSON config
1 year ago
Theron
9d7dff6995
Add namespace field to VaultCAS JSON config
1 year ago
Max
7731edd816
Store and verify Acme account location ( #1386 )
...
* Store and verify account location on acme requests
Co-authored-by: Herman Slatman <hslatman@users.noreply.github.com>
Co-authored-by: Mariano Cano <mariano@smallstep.com>
1 year ago
github-actions[bot]
cbbc54e980
Merge pull request #1417 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.31.2
...
Bump go.step.sm/crypto from 0.31.0 to 0.31.2
1 year ago
dependabot[bot]
e5bd90918d
Bump go.step.sm/crypto from 0.31.0 to 0.31.2
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.31.0 to 0.31.2.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.31.0...v0.31.2 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
20c05ed592
Merge pull request #1419 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.0
...
Bump cloud.google.com/go/longrunning from 0.4.2 to 0.5.0
1 year ago
github-actions[bot]
1fe8b70190
Merge pull request #1416 from smallstep/dependabot/go_modules/github.com/stretchr/testify-1.8.4
...
Bump github.com/stretchr/testify from 1.8.3 to 1.8.4
1 year ago
dependabot[bot]
561328de05
Bump cloud.google.com/go/longrunning from 0.4.2 to 0.5.0
...
Bumps [cloud.google.com/go/longrunning](https://github.com/googleapis/google-cloud-go ) from 0.4.2 to 0.5.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/longrunning/v0.4.2...v0.5.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/longrunning
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
8e22402190
Bump github.com/stretchr/testify from 1.8.3 to 1.8.4
...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.8.3 to 1.8.4.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.8.3...v1.8.4 )
---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Herman Slatman
b2bf2c330b
Simplify SCEP provisioner context handling
1 year ago
Herman Slatman
8fc3a46387
Refactor the SCEP authority initialization
...
Instead of relying on an intermediate `scep.Service` struct,
initialize the `scep.Authority` directly. This removes one redundant
layer of indirection.
1 year ago
Herman Slatman
6985b4be62
Clean up the SCEP authority and provisioner
1 year ago
Herman Slatman
a1f187e3df
Merge branch 'master' into herman/scep-provisioner-decrypter
1 year ago
Herman Slatman
180162bd6a
Refactor SCEP provisioner and decrypter
1 year ago
github-actions[bot]
ff40459035
Merge pull request #1409 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/kubernetes-0.4.1
...
Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.4.0 to 0.4.1
1 year ago
dependabot[bot]
f38ea204d1
Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.4.0 to 0.4.1
...
Bumps [github.com/hashicorp/vault/api/auth/kubernetes](https://github.com/hashicorp/vault ) from 0.4.0 to 0.4.1.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md )
- [Commits](https://github.com/hashicorp/vault/compare/v0.4.0...v0.4.1 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api/auth/kubernetes
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
5d069f6b94
Merge pull request #1411 from smallstep/dependabot/go_modules/github.com/googleapis/gax-go/v2-2.9.1
...
Bump github.com/googleapis/gax-go/v2 from 2.8.0 to 2.9.1
1 year ago
dependabot[bot]
bee6bf7069
Bump github.com/googleapis/gax-go/v2 from 2.8.0 to 2.9.1
...
Bumps [github.com/googleapis/gax-go/v2](https://github.com/googleapis/gax-go ) from 2.8.0 to 2.9.1.
- [Release notes](https://github.com/googleapis/gax-go/releases )
- [Commits](https://github.com/googleapis/gax-go/compare/v2.8.0...v2.9.1 )
---
updated-dependencies:
- dependency-name: github.com/googleapis/gax-go/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
c1be2761bb
Merge pull request #1410 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/approle-0.4.1
...
Bump github.com/hashicorp/vault/api/auth/approle from 0.4.0 to 0.4.1
1 year ago
dependabot[bot]
b4d532fd1f
Bump github.com/hashicorp/vault/api/auth/approle from 0.4.0 to 0.4.1
...
Bumps [github.com/hashicorp/vault/api/auth/approle](https://github.com/hashicorp/vault ) from 0.4.0 to 0.4.1.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md )
- [Commits](https://github.com/hashicorp/vault/compare/v0.4.0...v0.4.1 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api/auth/approle
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
ef839a5932
Merge pull request #1413 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.31.0
...
Bump go.step.sm/crypto from 0.30.0 to 0.31.0
1 year ago
dependabot[bot]
6a9241fb8e
Bump go.step.sm/crypto from 0.30.0 to 0.31.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.30.0 to 0.31.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.30.0...v0.31.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Herman Slatman
0377fe559b
Add basic version of provisioner specific SCEP decrypter
1 year ago
Mariano Cano
96c8cd812a
Merge pull request #1406 from smallstep/fix-1404
...
Fix linter errors from #1404
1 year ago
Mariano Cano
71fcdf8a0a
Fix linter errors from #1404
1 year ago
Mariano Cano
fffeeec74e
Merge pull request #1404 from rnugmanov/patch-1
...
add AWS public certificates for me-central-1 and ap-southeast-3
1 year ago
Mariano Cano
1f0a2a8443
Merge pull request #1405 from smallstep/helm-spaces
...
Fix tabs instead of spaces in helm chart
1 year ago
Mariano Cano
ce4fd3d514
Fix tabs instead of spaces in helm chart
1 year ago
Ruslan Nugmanov
1031324273
add AWS public certificates for me-central-1 and ap-southeast-3
...
As per https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/verify-signature.html
1 year ago
github-actions[bot]
101120b977
Merge pull request #1398 from smallstep/dependabot/go_modules/google.golang.org/api-0.123.0
...
Bump google.golang.org/api from 0.122.0 to 0.123.0
1 year ago
github-actions[bot]
a477e41915
Merge pull request #1399 from smallstep/dependabot/go_modules/github.com/sirupsen/logrus-1.9.2
...
Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.2
1 year ago
github-actions[bot]
ed9a1275cd
Merge pull request #1396 from smallstep/dependabot/go_modules/github.com/stretchr/testify-1.8.3
...
Bump github.com/stretchr/testify from 1.8.2 to 1.8.3
1 year ago
dependabot[bot]
cdf55a410b
Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.2
...
Bumps [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus ) from 1.9.0 to 1.9.2.
- [Release notes](https://github.com/sirupsen/logrus/releases )
- [Changelog](https://github.com/sirupsen/logrus/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sirupsen/logrus/compare/v1.9.0...v1.9.2 )
---
updated-dependencies:
- dependency-name: github.com/sirupsen/logrus
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
19896dc04b
Bump google.golang.org/api from 0.122.0 to 0.123.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.122.0 to 0.123.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.122.0...v0.123.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
9efc47ae42
Bump github.com/stretchr/testify from 1.8.2 to 1.8.3
...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.8.2 to 1.8.3.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.8.2...v1.8.3 )
---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
4f7cdfbaa2
Merge pull request #1391 from smallstep/dependabot/go_modules/google.golang.org/api-0.122.0
...
Bump google.golang.org/api from 0.121.0 to 0.122.0
1 year ago
dependabot[bot]
ffb6d1c0f2
Bump google.golang.org/api from 0.121.0 to 0.122.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.121.0 to 0.122.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.121.0...v0.122.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
b4d536db57
Merge pull request #1389 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.9.0
...
Bump golang.org/x/crypto from 0.8.0 to 0.9.0
1 year ago
github-actions[bot]
57865b399b
Merge pull request #1388 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.4.2
...
Bump cloud.google.com/go/longrunning from 0.4.1 to 0.4.2
1 year ago
Carl Tashian
96dcab88ac
Merge pull request #1394 from smallstep/carl/update-shortlinks
...
Update download URLs
1 year ago
Carl Tashian
5e05d6ec2e
Update download URLs
1 year ago
dependabot[bot]
ca6b7049e5
Bump cloud.google.com/go/longrunning from 0.4.1 to 0.4.2
...
Bumps [cloud.google.com/go/longrunning](https://github.com/googleapis/google-cloud-go ) from 0.4.1 to 0.4.2.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/batch/v0.4.1...longrunning/v0.4.2 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/longrunning
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
2ef45a204f
Merge pull request #1392 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.14.1
...
Bump cloud.google.com/go/security from 1.14.0 to 1.14.1
1 year ago
dependabot[bot]
36cb5bf1d4
Bump cloud.google.com/go/security from 1.14.0 to 1.14.1
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.14.0 to 1.14.1.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/video/v1.14.0...speech/v1.14.1 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
f06d22a138
Bump golang.org/x/crypto from 0.8.0 to 0.9.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.8.0 to 0.9.0.
- [Commits](https://github.com/golang/crypto/compare/v0.8.0...v0.9.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Herman Slatman
6db3f5f093
Merge pull request #1385 from smallstep/update-changelog-v0.24.2
...
Update changelog for v0.24.2 release
1 year ago
Herman Slatman
40b69ea95c
Merge pull request #1382 from smallstep/herman/update-crypto-v0.29.4
...
Depend on our fork of `go-attestation`
1 year ago
Herman Slatman
e71b62e95c
Merge branch 'master' into herman/update-crypto-v0.29.4
1 year ago
Herman Slatman
a49ee2c03d
Add entry for `DOCKER_STEPCA_INIT_PASSWORD_FILE`
1 year ago
Herman Slatman
b96831ee45
Merge pull request #1384 from francescocapuano/master
...
Add DOCKER_STEPCA_INIT_PASSWORD_FILE variable for Docker secrets
1 year ago
Max
df13351586
Merge pull request #1381 from smallstep/max/go-1.19
...
Bump go.mod golang version to 1.19
1 year ago
Herman Slatman
4a60f8f71f
Add `UNRELEASED` back
1 year ago
francescocapuano
7f54153a1b
Add DOCKER_STEPCA_INIT_PASSWORD_FILE variable for docker secrets
...
Add the management of the DOCKER_STEPCA_INIT_PASSWORD_FILE variable. over DOCKER_STEPCA_INIT_PASSWORD.
If both are used only DOCKER_STEPCA_INIT_PASSWORD_FILE will be used.
1 year ago
Herman Slatman
e52e79f745
Update changelog for v0.24.2 release
1 year ago
Herman Slatman
8abb511f64
Merge branch 'master' into herman/update-crypto-v0.29.4
1 year ago
max furman
8b256f0351
address linter warning for go 1.19
1 year ago
Mariano Cano
0b832e389d
Merge pull request #1383 from smallstep/azidentity
...
Upgrade go.step.sm/crypto
1 year ago
Mariano Cano
2b209b94e8
Upgrade go.step.sm/crypto with new version of azidentity
1 year ago
Herman Slatman
0c2b00f6a1
Depend on our fork of `go-attestation`
1 year ago
Herman Slatman
3c7b247712
Upgrade to `go.step.sm/crypto@v0.29.4`
1 year ago
Herman Slatman
017c3273ef
Merge pull request #1374 from smallstep/herman/log-ssh-certificate
...
Log SSH certificates
1 year ago
github-actions[bot]
f93548df40
Merge pull request #1379 from smallstep/dependabot/go_modules/google.golang.org/api-0.121.0
...
Bump google.golang.org/api from 0.120.0 to 0.121.0
1 year ago
max furman
5735d1d354
Bump go.mod golang version to 1.19
1 year ago
Max
6bf7943a1b
Merge branch 'master' into dependabot/go_modules/google.golang.org/api-0.121.0
1 year ago
github-actions[bot]
f4c6a72967
Merge pull request #1380 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.55.0
...
Bump google.golang.org/grpc from 1.54.0 to 1.55.0
1 year ago
dependabot[bot]
93426d72a9
Bump google.golang.org/grpc from 1.54.0 to 1.55.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.54.0 to 1.55.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.54.0...v1.55.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
570b10b8e8
Bump google.golang.org/api from 0.120.0 to 0.121.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.120.0 to 0.121.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.120.0...v0.121.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Herman Slatman
f17bfdf57d
Reformat the SSH certificate logging output for read- and parsability
1 year ago
Herman Slatman
4c56877d97
Add SSH certificate logging to renew and rekey too
1 year ago
Mariano Cano
1180e33228
Merge pull request #1376 from smallstep/fix-1375
...
Use vaultcas ttl as a duration string
1 year ago
Mariano Cano
afd5d46a90
Use vaultcas ttl as a duration string
...
According to docs at thttps://developer.hashicorp.com/vault/api-docs/secret/pki#ttl
the ttl can be sent as a time.Duration string.
Fixes #1375
1 year ago
Panagiotis Siatras
2139121683
optimized render.JSON ( #929 )
...
* api/render: render JSON directly to the underlying writer
* also consider json.MarshalerError a panic
1 year ago
Herman Slatman
81140f859c
Fix `valid-from` and `valid-to` times
1 year ago
Herman Slatman
39e658b527
Add test for `LogSSHCertificate`
1 year ago
Herman Slatman
922f702da3
Add logging for SSH certificate issuance
1 year ago
Herman Slatman
ef951f2075
Merge pull request #1204 from smallstep/herman/improve-scep-marshaling
...
Improve SCEP provisioner marshaling
1 year ago
Herman Slatman
8c53dc9029
Use `require.NoError` where appropriate in provisioner tests
1 year ago
Herman Slatman
0153ff4377
Remove superfluous `GetChallengePassword`
1 year ago
Herman Slatman
f9ec62f46c
Merge branch 'master' into herman/improve-scep-marshaling
1 year ago
Herman Slatman
eba93da6d6
Merge pull request #1372 from smallstep/herman/crl-on-http
1 year ago
Panagiotis Siatras
d797941137
do not render CRLs in memory ( #1373 )
1 year ago
Herman Slatman
5e35aca29c
Use `CRLConfig.IsEnabled`
1 year ago
Herman Slatman
60a4512abe
Add `/crl` and `/1.0/crl` to the insecure HTTP handler
1 year ago
Herman Slatman
cb1dc8055d
Merge pull request #1366 from smallstep/herman/dynamic-scep-webhook
...
Dynamic SCEP challenge validation using webhooks
1 year ago
Herman Slatman
c73f157ea4
Remove unused error from challenge validation controller creator
1 year ago
Herman Slatman
4f7a4f63f7
Merge branch 'master' into herman/dynamic-scep-webhook
1 year ago
Herman Slatman
4bb88adf63
Move SCEP checks after reload of provisioners in CA initialization
1 year ago
Herman Slatman
e8c1e8719d
Refactor SCEP webhook validation
1 year ago
github-actions[bot]
19d72c9905
Merge pull request #1369 from smallstep/dependabot/go_modules/google.golang.org/api-0.120.0
...
Bump google.golang.org/api from 0.119.0 to 0.120.0
1 year ago
github-actions[bot]
3a2e60a139
Merge pull request #1370 from smallstep/dependabot/go_modules/github.com/urfave/cli-1.22.13
...
Bump github.com/urfave/cli from 1.22.12 to 1.22.13
1 year ago
github-actions[bot]
5ea72a2432
Merge pull request #1368 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.21.1
...
Bump github.com/newrelic/go-agent/v3 from 3.21.0 to 3.21.1
1 year ago
github-actions[bot]
eec7d1ee6a
Merge pull request #1371 from smallstep/dependabot/go_modules/go.step.sm/linkedca-0.19.1
...
Bump go.step.sm/linkedca from 0.19.0 to 0.19.1
1 year ago
dependabot[bot]
047bb6a826
Bump go.step.sm/linkedca from 0.19.0 to 0.19.1
...
Bumps [go.step.sm/linkedca](https://github.com/smallstep/linkedca ) from 0.19.0 to 0.19.1.
- [Release notes](https://github.com/smallstep/linkedca/releases )
- [Commits](https://github.com/smallstep/linkedca/compare/v0.19.0...v0.19.1 )
---
updated-dependencies:
- dependency-name: go.step.sm/linkedca
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
d19c77795e
Bump github.com/urfave/cli from 1.22.12 to 1.22.13
...
Bumps [github.com/urfave/cli](https://github.com/urfave/cli ) from 1.22.12 to 1.22.13.
- [Release notes](https://github.com/urfave/cli/releases )
- [Changelog](https://github.com/urfave/cli/blob/main/docs/CHANGELOG.md )
- [Commits](https://github.com/urfave/cli/compare/v1.22.12...v1.22.13 )
---
updated-dependencies:
- dependency-name: github.com/urfave/cli
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
3a50a2fa28
Bump google.golang.org/api from 0.119.0 to 0.120.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.119.0 to 0.120.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.119.0...v0.120.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
bb33134f8a
Bump github.com/newrelic/go-agent/v3 from 3.21.0 to 3.21.1
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.21.0 to 3.21.1.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.21.0...v3.21.1 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Herman Slatman
668ff9b515
Cleanup some comments and tests
1 year ago
Herman Slatman
5f0f0f4bcc
Add SCEP webhook validation tests
1 year ago
Herman Slatman
ad4d8e6c68
Add `SCEPCHALLENGE` as valid webhook type in admin API
1 year ago
Herman Slatman
419478d1e5
Make SCEP webhook validation look better
1 year ago
Herman Slatman
27cdcaf5ee
Integrate the SCEP webhook with the existing webhook logic
1 year ago
Herman Slatman
05f7ab979f
Create basic webhook for SCEP challenge validation
1 year ago
Mariano Cano
1420c762e0
Merge pull request #1362 from smallstep/fix-1358
...
Upgrades azure-sdk-for-go to the version used in crypto
1 year ago
Mariano Cano
26afd6c932
Upgrades azure-sdk-for-go to the version used in crypto
...
This PR upgrades package sdk/keyvault/azkeys to v0.10.0, the same
version used in crypto.
This package wasn't upgraded in certificates and for some reason it
causes an authentication error if a client-id/client-secret is used for
authenticating with KeyVault. Managed identities or CLI authentication
works as expected.
Fixes #1358
1 year ago
github-actions[bot]
6bc2164ea1
Merge pull request #1361 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.9.1
...
Bump github.com/hashicorp/vault/api from 1.9.0 to 1.9.1
1 year ago
github-actions[bot]
91f51252c5
Merge pull request #1360 from smallstep/dependabot/go_modules/google.golang.org/api-0.119.0
...
Bump google.golang.org/api from 0.118.0 to 0.119.0
1 year ago
dependabot[bot]
a56b112216
Bump github.com/hashicorp/vault/api from 1.9.0 to 1.9.1
...
Bumps [github.com/hashicorp/vault/api](https://github.com/hashicorp/vault ) from 1.9.0 to 1.9.1.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md )
- [Commits](https://github.com/hashicorp/vault/compare/v1.9.0...v1.9.1 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
f2fda93cad
Bump google.golang.org/api from 0.118.0 to 0.119.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.118.0 to 0.119.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.118.0...v0.119.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
4dedbf7678
Merge pull request #1356 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.29.3
...
Bump go.step.sm/crypto from 0.29.1 to 0.29.3
1 year ago
dependabot[bot]
74414e530b
Bump go.step.sm/crypto from 0.29.1 to 0.29.3
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.29.1 to 0.29.3.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.29.1...v0.29.3 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
a784038025
Merge pull request #1355 from smallstep/dependabot/go_modules/go.step.sm/cli-utils-0.7.6
...
Bump go.step.sm/cli-utils from 0.7.5 to 0.7.6
1 year ago
dependabot[bot]
9e198b0e4a
Bump go.step.sm/cli-utils from 0.7.5 to 0.7.6
...
Bumps [go.step.sm/cli-utils](https://github.com/smallstep/cli-utils ) from 0.7.5 to 0.7.6.
- [Release notes](https://github.com/smallstep/cli-utils/releases )
- [Commits](https://github.com/smallstep/cli-utils/compare/v0.7.5...v0.7.6 )
---
updated-dependencies:
- dependency-name: go.step.sm/cli-utils
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
631b773257
Merge pull request #1354 from smallstep/dependabot/go_modules/google.golang.org/api-0.118.0
...
Bump google.golang.org/api from 0.116.0 to 0.118.0
1 year ago
github-actions[bot]
b59a8f0a9f
Merge pull request #1353 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.14.0
...
Bump cloud.google.com/go/security from 1.13.0 to 1.14.0
1 year ago
github-actions[bot]
0099ec7244
Merge pull request #1352 from smallstep/dependabot/go_modules/github.com/rs/xid-1.5.0
...
Bump github.com/rs/xid from 1.4.0 to 1.5.0
1 year ago
dependabot[bot]
0c49d119d5
Bump google.golang.org/api from 0.116.0 to 0.118.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.116.0 to 0.118.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.116.0...v0.118.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
a7480ebe4f
Bump cloud.google.com/go/security from 1.13.0 to 1.14.0
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.13.0 to 1.14.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/asset/v1.13.0...video/v1.14.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
c2f2c7176c
Bump github.com/rs/xid from 1.4.0 to 1.5.0
...
Bumps [github.com/rs/xid](https://github.com/rs/xid ) from 1.4.0 to 1.5.0.
- [Release notes](https://github.com/rs/xid/releases )
- [Commits](https://github.com/rs/xid/compare/v1.4.0...v1.5.0 )
---
updated-dependencies:
- dependency-name: github.com/rs/xid
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Max
7ad81a6c54
Merge pull request #1348 from smallstep/max/release-error
...
[action] Fix docker image name in release workflow
1 year ago
Max
99f9b2fb3e
Update .github/workflows/release.yml
...
Co-authored-by: Mariano Cano <mariano@smallstep.com>
1 year ago
max furman
574351a8f7
[action] Fix docker image name in release workflow
1 year ago
Mariano Cano
ef337f5285
Merge pull request #1347 from smallstep/v0.24.0-changelog
...
Add changelog for v0.24.0
1 year ago
Mariano Cano
b5dbeefcc6
Add changelog for v0.24.0
1 year ago
Max
5ec9e761ca
Merge pull request #1299 from smallstep/docker-hsm-glibc
...
Update Dockerfile.hsm to use debian:bullseye base image
1 year ago
Carl Tashian
3665616015
Deprecate the step-ca-hsm image in favor of step-ca:hsm
1 year ago
Mariano Cano
848e44e5c8
Merge pull request #1345 from smallstep/asn1-functions
...
Upgrade go.step.sm/crypto with new ASN.1 functions
1 year ago
Mariano Cano
b034c06ac8
Upgrade go.step.sm/crypto with new ASN.1 functions
...
This commit upgrades go.step.sm/crypto to v0.29.1. This version adds the
following template functions:
- asn1Enc
- asn1Marshal
- asn1Seq
- asn1Set
1 year ago
github-actions[bot]
38c715ca46
Merge pull request #1342 from smallstep/dependabot/go_modules/google.golang.org/api-0.116.0
...
Bump google.golang.org/api from 0.114.0 to 0.116.0
1 year ago
dependabot[bot]
4133e7d069
Bump google.golang.org/api from 0.114.0 to 0.116.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.114.0 to 0.116.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.114.0...v0.116.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
2e1e529731
Merge pull request #1343 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.8.0
...
Bump golang.org/x/crypto from 0.7.0 to 0.8.0
1 year ago
dependabot[bot]
f3bd1d3dbd
Bump golang.org/x/crypto from 0.7.0 to 0.8.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.7.0 to 0.8.0.
- [Release notes](https://github.com/golang/crypto/releases )
- [Commits](https://github.com/golang/crypto/compare/v0.7.0...v0.8.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
432dd7ce10
Merge pull request #1344 from smallstep/dependabot/go_modules/golang.org/x/net-0.9.0
...
Bump golang.org/x/net from 0.8.0 to 0.9.0
1 year ago
dependabot[bot]
aeb02e280e
Bump golang.org/x/net from 0.8.0 to 0.9.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.8.0 to 0.9.0.
- [Release notes](https://github.com/golang/net/releases )
- [Commits](https://github.com/golang/net/compare/v0.8.0...v0.9.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Herman Slatman
64e39cb0c9
Merge pull request #1063 from smallstep/herman/acme-da-tpm
...
Add ACME DA TPM attestation
1 year ago
Herman Slatman
cfd65484fc
Update to `v0.29.0` of `go.step.sm/crypto`
1 year ago
Herman Slatman
d9aa2c110f
Increase test coverage for AK certificate properties
1 year ago
Carl Tashian
a815039283
Merge pull request #1340 from smallstep/carl/cosign-flags-update
...
Update cosign usage note
1 year ago
Carl Tashian
b5baa55a60
Update cosign usage note
1 year ago
Herman Slatman
ed1a62206e
Add additional verification of AK certificate
1 year ago
Herman Slatman
1c38e252a6
Cast `alg` to a valid `COSEAlgorithmIdentifier`
1 year ago
Herman Slatman
e25acff13c
Simplify `alg` validity check
1 year ago
Herman Slatman
dfc56f21b8
Merge branch 'master' into herman/acme-da-tpm
1 year ago
Herman Slatman
9cd4b362f7
Extract the `ParseSubjectAlternativeNames` function
1 year ago
github-actions[bot]
b4da554aa6
Merge pull request #1337 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.21.0
...
Bump github.com/newrelic/go-agent/v3 from 3.20.4 to 3.21.0
1 year ago
dependabot[bot]
6905979537
Bump github.com/newrelic/go-agent/v3 from 3.20.4 to 3.21.0
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.20.4 to 3.21.0.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.20.4...v3.21.0 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Herman Slatman
827fcb6a06
Fix the `go.mod`
...
- Add comment to why we use fork of `github.com/google/go-attestation`
- Fix require and ordering of imports
1 year ago
Herman Slatman
b6957358fc
Fix PR remarks
...
- Root CA error message improved
- Looping through intermediate certs
- Change checking unhandled extensions to using `if`
1 year ago
Mariano Cano
023491bcf2
Merge pull request #1336 from smallstep/pr-1051
...
Remove unused certificate validators and modifiers
1 year ago
Mariano Cano
ac35f3489c
Remove unused certificate validators and modifiers
...
With the introduction of certificate templates some certificate
validators and modifiers are not used anymore. This commit deletes the
ones that are not used.
1 year ago
Herman Slatman
09bd7705cd
Fix linting issues
1 year ago
Herman Slatman
f88ef6621f
Add `PermanentIdentifier` SAN parsing and tests
1 year ago
Herman Slatman
79cd42527e
Use newer version of forked `github.com/google/go-attestation`
1 year ago
Herman Slatman
52023d6083
Add tests for `doTPMAttestationFormat`
1 year ago
Mariano Cano
390acab7d0
Merge pull request #1335 from smallstep/fix-typo
...
Fix typo in flag usage
1 year ago
Mariano Cano
57a704f008
Fix typo in flag usage
1 year ago
Mariano Cano
21f14e5708
Merge pull request #1309 from rvichery/azure-envs-identity-token
...
Add identity token issuance for all Azure cloud environments
1 year ago
Herman Slatman
ae30f6e96b
Add failing TPM simulator test
1 year ago
Herman Slatman
1cc3ad27a5
Run TPM simulator tests
1 year ago
Herman Slatman
bf53b394a1
Add `tpm` format test with simulated TPM
1 year ago
Herman Slatman
720cafb69c
Merge branch 'master' into herman/acme-da-tpm
1 year ago
github-actions[bot]
a3018d9db5
Merge pull request #1331 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.54.0
...
Bump google.golang.org/grpc from 1.53.0 to 1.54.0
1 year ago
github-actions[bot]
ca108564ff
Merge pull request #1330 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.28.0
...
Bump go.step.sm/crypto from 0.27.0 to 0.28.0
1 year ago
dependabot[bot]
0cb5acd01c
Bump google.golang.org/grpc from 1.53.0 to 1.54.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.53.0 to 1.54.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.53.0...v1.54.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
8ed523ea67
Bump go.step.sm/crypto from 0.27.0 to 0.28.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.27.0 to 0.28.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.27.0...v0.28.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Remi Vichery
09cbe8ba65
fixup! Add identity token for all Azure cloud environments
1 year ago
Herman Slatman
094f0521e2
Remove check for `PermanentIdentifier` from `tpm` format validation
1 year ago
Herman Slatman
f91a31f9b6
Merge branch 'master' into herman/acme-da-tpm
1 year ago
Carl Tashian
df2909e712
Further docker simplifications
1 year ago
Carl Tashian
25e35aa0ad
Small dockerfile refactor
1 year ago
Carl Tashian
f874e31fff
Merge pull request #1329 from smallstep/carl/make-clean
...
Clean up Makefile and fix goreleaser deprecation
1 year ago
Carl Tashian
b92f37a61d
Use cloud tag on step-kms-plugin
1 year ago
Carl Tashian
2b76d11631
Clean up Makefile and fix goreleaser deprecation
1 year ago
github-actions[bot]
897f4711df
Merge pull request #1326 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.13.0
...
Bump cloud.google.com/go/security from 1.12.0 to 1.13.0
1 year ago
github-actions[bot]
1b1df26864
Merge pull request #1327 from smallstep/dependabot/go_modules/google.golang.org/protobuf-1.30.0
...
Bump google.golang.org/protobuf from 1.29.1 to 1.30.0
1 year ago
github-actions[bot]
92e25f0f7f
Merge pull request #1328 from smallstep/dependabot/go_modules/github.com/googleapis/gax-go/v2-2.8.0
...
Bump github.com/googleapis/gax-go/v2 from 2.7.1 to 2.8.0
1 year ago
dependabot[bot]
1859ed2666
Bump cloud.google.com/go/security from 1.12.0 to 1.13.0
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.12.0 to 1.13.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/asset/v1.12.0...video/v1.13.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
1420f441d5
Bump google.golang.org/protobuf from 1.29.1 to 1.30.0
...
Bumps [google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go ) from 1.29.1 to 1.30.0.
- [Release notes](https://github.com/protocolbuffers/protobuf-go/releases )
- [Changelog](https://github.com/protocolbuffers/protobuf-go/blob/master/release.bash )
- [Commits](https://github.com/protocolbuffers/protobuf-go/compare/v1.29.1...v1.30.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
bdd4d0004e
Merge pull request #1325 from smallstep/dependabot/go_modules/google.golang.org/api-0.114.0
...
Bump google.golang.org/api from 0.112.0 to 0.114.0
1 year ago
dependabot[bot]
d8a2839955
Bump github.com/googleapis/gax-go/v2 from 2.7.1 to 2.8.0
...
Bumps [github.com/googleapis/gax-go/v2](https://github.com/googleapis/gax-go ) from 2.7.1 to 2.8.0.
- [Release notes](https://github.com/googleapis/gax-go/releases )
- [Commits](https://github.com/googleapis/gax-go/compare/v2.7.1...v2.8.0 )
---
updated-dependencies:
- dependency-name: github.com/googleapis/gax-go/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
e6339a3761
Bump google.golang.org/api from 0.112.0 to 0.114.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.112.0 to 0.114.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.112.0...v0.114.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Mariano Cano
6e0644beb2
Merge pull request #1323 from smallstep/upgrade-crypto
...
Upgrade go.step.sm/crypto to improved azurekms support
1 year ago
Mariano Cano
334bc81694
Upgrade go.step.sm/crypto to improved azurekms support
...
This commit upgrades go.step.sm/crypto to the latest version which
includes support for sovereign clouds and HSM keys.
Fixes #1276
1 year ago
Carl Tashian
7ad1ecf518
Merge pull request #1322 from smallstep/goreleaser-clean
...
Replace deprecated GoReleaser --rm-dist flag with --clean
1 year ago
Carl Tashian
7a3989e7f2
Replace deprecated GoReleaser --rm-dist flag with --clean
...
See d18adfb57e
1 year ago
github-actions[bot]
7b26ef72a0
Merge pull request #1320 from smallstep/dependabot/go_modules/google.golang.org/protobuf-1.29.1
...
Bump google.golang.org/protobuf from 1.29.0 to 1.29.1
1 year ago
dependabot[bot]
942f8bfc9f
Bump google.golang.org/protobuf from 1.29.0 to 1.29.1
...
Bumps [google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go ) from 1.29.0 to 1.29.1.
- [Release notes](https://github.com/protocolbuffers/protobuf-go/releases )
- [Changelog](https://github.com/protocolbuffers/protobuf-go/blob/master/release.bash )
- [Commits](https://github.com/protocolbuffers/protobuf-go/compare/v1.29.0...v1.29.1 )
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Herman Slatman
589a62df74
Make validation of `tpm` format stricter
1 year ago
Herman Slatman
213b31bc2c
Simplify processing logic for unhandled critical extension
1 year ago
Herman Slatman
e1c7e8f00b
Return the CSR public key fingerprint for `tpm` format
1 year ago
Herman Slatman
6297bace1a
Merge branch 'master' into herman/acme-da-tpm
1 year ago
Herman Slatman
69489480ab
Add more complete `tpm` format validation
1 year ago
github-actions[bot]
b3a0769778
Merge pull request #1316 from smallstep/dependabot/go_modules/google.golang.org/api-0.112.0
...
Bump google.golang.org/api from 0.111.0 to 0.112.0
1 year ago
dependabot[bot]
6588efdb01
Bump google.golang.org/api from 0.111.0 to 0.112.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.111.0 to 0.112.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.111.0...v0.112.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
19a91671a6
Merge pull request #1315 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.20.4
...
Bump github.com/newrelic/go-agent/v3 from 3.20.3 to 3.20.4
1 year ago
github-actions[bot]
745c1cc130
Merge pull request #1318 from smallstep/dependabot/go_modules/github.com/googleapis/gax-go/v2-2.7.1
...
Bump github.com/googleapis/gax-go/v2 from 2.7.0 to 2.7.1
1 year ago
github-actions[bot]
c72826a690
Merge pull request #1317 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.26.0
...
Bump go.step.sm/crypto from 0.25.2 to 0.26.0
1 year ago
github-actions[bot]
124b1e6273
Merge pull request #1319 from smallstep/dependabot/go_modules/google.golang.org/protobuf-1.29.0
...
Bump google.golang.org/protobuf from 1.28.1 to 1.29.0
1 year ago
dependabot[bot]
bb3cddd6f1
Bump google.golang.org/protobuf from 1.28.1 to 1.29.0
...
Bumps [google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go ) from 1.28.1 to 1.29.0.
- [Release notes](https://github.com/protocolbuffers/protobuf-go/releases )
- [Changelog](https://github.com/protocolbuffers/protobuf-go/blob/master/release.bash )
- [Commits](https://github.com/protocolbuffers/protobuf-go/compare/v1.28.1...v1.29.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
5943c3955e
Bump github.com/googleapis/gax-go/v2 from 2.7.0 to 2.7.1
...
Bumps [github.com/googleapis/gax-go/v2](https://github.com/googleapis/gax-go ) from 2.7.0 to 2.7.1.
- [Release notes](https://github.com/googleapis/gax-go/releases )
- [Commits](https://github.com/googleapis/gax-go/compare/v2.7.0...v2.7.1 )
---
updated-dependencies:
- dependency-name: github.com/googleapis/gax-go/v2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
8747156bcc
Bump go.step.sm/crypto from 0.25.2 to 0.26.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.25.2 to 0.26.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.25.2...v0.26.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
442f2fe5f9
Bump github.com/newrelic/go-agent/v3 from 3.20.3 to 3.20.4
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.20.3 to 3.20.4.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.20.3...v3.20.4 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Remi Vichery
b2c2eec76b
Add identity token for all Azure cloud environments
...
* Azure Public Cloud (default)
* Azure China Cloud
* Azure US Gov Cloud
* Azure German Cloud
1 year ago
Carl Tashian
4378300c80
Update cache before installing packages
1 year ago
github-actions[bot]
b8ee206f71
Merge pull request #1305 from smallstep/dependabot/go_modules/google.golang.org/api-0.111.0
...
Bump google.golang.org/api from 0.110.0 to 0.111.0
1 year ago
github-actions[bot]
201be0891f
Merge pull request #1307 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.25.2
...
Bump go.step.sm/crypto from 0.25.0 to 0.25.2
1 year ago
Carl Tashian
79b3924322
Fix docker tags
1 year ago
dependabot[bot]
dd43e9e09f
Bump google.golang.org/api from 0.110.0 to 0.111.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.110.0 to 0.111.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.110.0...v0.111.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
152a0a2f3e
Bump go.step.sm/crypto from 0.25.0 to 0.25.2
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.25.0 to 0.25.2.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.25.0...v0.25.2 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
4fb00940c6
Merge pull request #1308 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.7.0
...
Bump golang.org/x/crypto from 0.6.0 to 0.7.0
1 year ago
dependabot[bot]
6452afc45c
Bump golang.org/x/crypto from 0.6.0 to 0.7.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/golang/crypto/releases )
- [Commits](https://github.com/golang/crypto/compare/v0.6.0...v0.7.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Herman Slatman
7c54154013
Merge pull request #1300 from smallstep/herman/pkcs7-rsa-oaep
1 year ago
Herman Slatman
702f844fa2
Add RSA-OAEP decryption support to changelog
1 year ago
Herman Slatman
4d6ecf9a48
Upgrade to latest `smallstep/pkcs7` to fix RSA OAEP decryption
1 year ago
Carl Tashian
12d8ca526a
Update Dockerfile.hsm to use debian:bullseye base image
1 year ago
Mariano Cano
2eb90bf45e
Merge pull request #1298 from smallstep/badger-gc
...
Add support for compacting the badger db
1 year ago
Mariano Cano
7700bb77da
Remove old call to compact
1 year ago
Mariano Cano
831a1e35ea
Add support for compating the badger db
...
This commit adds a job that will compact the badger db periodically.
In the nosql package, when Compact is called, it will run badger's
RunValueLogGC method.
1 year ago
github-actions[bot]
f8adb0a51c
Merge pull request #1295 from smallstep/dependabot/go_modules/github.com/stretchr/testify-1.8.2
...
Bump github.com/stretchr/testify from 1.8.1 to 1.8.2
1 year ago
dependabot[bot]
fe63f3e832
Bump github.com/stretchr/testify from 1.8.1 to 1.8.2
...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.8.1 to 1.8.2.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.8.1...v1.8.2 )
---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Mariano Cano
060a2f186c
Merge pull request #1294 from smallstep/fix-1292
...
Disable database if WithNoDB() option is passed
1 year ago
Mariano Cano
4fd9a9b92b
Disable database if WithNoDB() option is passed
...
This commit removes the database from the configuration if the ca was
initialized with the "--no-db" flag.
Fixes #1292
1 year ago
Mariano Cano
23423814d3
Merge pull request #1293 from LarsBingBong/patch-1
...
Mark the IDP critical in the generated CRL data.
1 year ago
LarsBingBong
0d5c40e059
Mark the IDP critical in the generated CRL data.
...
Trying to get CRL to work on my environment I've been reading up on [RFC5280](https://www.rfc-editor.org/rfc/rfc5280#section-5.2.5 ) ... and the IDP to be marked as `Critical`. I hope I'm correct and that my understanding on how to mark the IDP is critical.
Looking at e.g. `3470b1ec57/x509util/extensions_test.go (L48)
` makes me think so.
---
Hopefully the above change - if accepted - can get CRL's to work on my environment. If not we're at least one step closer.
1 year ago
Herman Slatman
176cf30a6f
Merge pull request #1290 from smallstep/herman/email-domain-ssh-sign-error
...
Add email address to error message returned for OIDC validation
1 year ago
Herman Slatman
59462e826c
Improve testing errors for OIDC `authorizeToken` function
1 year ago
Herman Slatman
10958a124b
Add email address to error message returned for OIDC validation
1 year ago
github-actions[bot]
b02c43cf8e
Merge pull request #1280 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.12.0
...
Bump cloud.google.com/go/security from 1.11.0 to 1.12.0
1 year ago
github-actions[bot]
81b1d2ede6
Merge pull request #1279 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/approle-0.4.0
...
Bump github.com/hashicorp/vault/api/auth/approle from 0.3.0 to 0.4.0
1 year ago
dependabot[bot]
e0b9f3960c
Bump cloud.google.com/go/security from 1.11.0 to 1.12.0
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.11.0 to 1.12.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/asset/v1.11.0...video/v1.12.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
b4f8100c72
Bump github.com/hashicorp/vault/api/auth/approle from 0.3.0 to 0.4.0
...
Bumps [github.com/hashicorp/vault/api/auth/approle](https://github.com/hashicorp/vault ) from 0.3.0 to 0.4.0.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md )
- [Commits](https://github.com/hashicorp/vault/compare/v0.3.0...v0.4.0 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api/auth/approle
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
ae0be0acbd
Merge pull request #1282 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.4.1
...
Bump cloud.google.com/go/longrunning from 0.4.0 to 0.4.1
1 year ago
dependabot[bot]
5f835dc808
Bump cloud.google.com/go/longrunning from 0.4.0 to 0.4.1
...
Bumps [cloud.google.com/go/longrunning](https://github.com/googleapis/google-cloud-go ) from 0.4.0 to 0.4.1.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/v0.4.0...batch/v0.4.1 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/longrunning
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Max
6915feaae9
Merge pull request #1287 from smallstep/max/linting-errors
...
Fix linting errors
1 year ago
max furman
7c1c32d86b
Fix linting errors
1 year ago
github-actions[bot]
8e47f05dba
Merge pull request #1283 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.6.0
...
Bump golang.org/x/crypto from 0.5.0 to 0.6.0
1 year ago
dependabot[bot]
790139d5a7
Bump golang.org/x/crypto from 0.5.0 to 0.6.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/golang/crypto/releases )
- [Commits](https://github.com/golang/crypto/compare/v0.5.0...v0.6.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Carl Tashian
ca9f8dc576
Merge pull request #1278 from smallstep/policy-help
...
Clarify policy lockout error message
1 year ago
Carl Tashian
cfcc95de93
Update policy test
1 year ago
Carl Tashian
96c6613739
Clarify policy lockout error message
1 year ago
github-actions[bot]
effe729d53
Merge pull request #1267 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.53.0
...
Bump google.golang.org/grpc from 1.52.3 to 1.53.0
1 year ago
dependabot[bot]
bb068f8280
Bump google.golang.org/grpc from 1.52.3 to 1.53.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.52.3 to 1.53.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.52.3...v1.53.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
github-actions[bot]
d59d6c414f
Merge pull request #1268 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/kubernetes-0.4.0
...
Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.3.0 to 0.4.0
1 year ago
Max
25599f8ad5
Merge pull request #1255 from zyzyx03/fix-step-ca-path
...
There is an error during RA installation which shows.
1 year ago
dependabot[bot]
2f2e3dea0f
Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.3.0 to 0.4.0
...
Bumps [github.com/hashicorp/vault/api/auth/kubernetes](https://github.com/hashicorp/vault ) from 0.3.0 to 0.4.0.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md )
- [Commits](https://github.com/hashicorp/vault/compare/v0.3.0...v0.4.0 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api/auth/kubernetes
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Mariano Cano
5fbee3d3ef
Merge pull request #1275 from smallstep/net-update
...
Upgrade golang.org/x/net
1 year ago
Mariano Cano
0d80473157
Upgrade golang.org/x/net
...
When the Go client is configured with an http2.Transport we need to
upgrade x/net due to:
- net/http: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)
1 year ago
github-actions[bot]
12d905be3e
Merge pull request #1270 from smallstep/dependabot/go_modules/golang.org/x/net-0.6.0
...
Bump golang.org/x/net from 0.5.0 to 0.6.0
1 year ago
dependabot[bot]
045ae52452
Bump golang.org/x/net from 0.5.0 to 0.6.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/golang/net/releases )
- [Commits](https://github.com/golang/net/compare/v0.5.0...v0.6.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Mariano Cano
c2c246b062
Merge pull request #1265 from smallstep/check-csr-acme-da
...
Verify CSR key fingerprint with attestation certificate key
1 year ago
Max
ff7b8830fe
Merge pull request #1273 from smallstep/max/dependabot-auto-merge
...
enable auto merge for dependabot PRs
1 year ago
max furman
74e6245e90
enable auto merge for dependabot PRs
1 year ago
Mariano Cano
5ff0dde819
Remove json tag in acme.Authorization fingerprint
1 year ago
Mariano Cano
da95c44943
Fix lint issue with Go 1.20
1 year ago
Mariano Cano
6ba20209c2
Verify CSR key fingerprint with attestation certificate key
...
This commit makes sure that the attestation certificate key matches the
key used on the CSR on an ACME device attestation flow.
1 year ago
Carl Tashian
ec3be2359a
Merge pull request #1262 from micheljung/patch-1
...
Add DOCKER_STEPCA_INIT_ADDRESS
1 year ago
Michel Jung
ebe7e5d019
Add DOCKER_STEPCA_INIT_ADDRESS
...
This allows configuring "--address" instead of using hard-coded :9000
1 year ago
Max
03cb74a449
Merge pull request #1259 from smallstep/dependabot/go_modules/google.golang.org/api-0.109.0
...
Bump google.golang.org/api from 0.108.0 to 0.109.0
1 year ago
dependabot[bot]
c9814be699
Bump google.golang.org/api from 0.108.0 to 0.109.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.108.0 to 0.109.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.108.0...v0.109.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
zyzyx
2c57415657
There is an error during installation which shows.
...
"install: cannot stat 'step-ca_0.23.2/bin/step-ca': No such file or directory"
Upon checking the is no bin directory after step-ca_linux_0.23.2_amd64.tar.gz
is extracted so by simply changing from step-ca_${CA_VERSION:1}/bin/step-ca to step-ca_${CA_VERSION:1}/step-ca the installation succeed.
1 year ago
Mariano Cano
3c76834807
Merge pull request #1254 from smallstep/changelog-v0.23.2
...
Add changelog for v0.23.2
1 year ago
Mariano Cano
6be15819d6
Add new entries to changelog
1 year ago
Herman Slatman
da00046a61
Merge pull request #1235 from smallstep/herman/acme-da-subject-check
...
Improve validation and error messages for Orders with Permanent Identifier
1 year ago
Mariano Cano
2cef8d10ee
Add changelog for v0.23.2
1 year ago
Carl Tashian
067f9c9a5f
Merge pull request #1252 from smallstep/carl/startup-noconfig-msg
...
Helpful message on CA startup when config can't be opened
1 year ago
Herman Slatman
3a6fc5e0b4
Remove dependency on `smallstep/assert` in ACME challenge tests
1 year ago
Herman Slatman
0f1c509e4b
Remove debug utility
1 year ago
Carl Tashian
b76028f3ba
Update commands/app.go
...
Co-authored-by: Mariano Cano <mariano@smallstep.com>
1 year ago
Carl Tashian
1c59b3f132
Fix linting error
1 year ago
Carl Tashian
50b4011b03
Move to commands/app.go
1 year ago
Mariano Cano
40538d8224
Merge pull request #1251 from smallstep/pidfile
...
Add pidfile flag
1 year ago
Carl Tashian
4b7fa2524d
Closes #1248
1 year ago
Mariano Cano
0df942b8f6
Add pidfile flag
...
This commit adds an optional flag --pidfile which allows to pass
a filename where step-ca will write its process id.
Fixes #754
1 year ago
Max
972bfb9689
Merge pull request #1250 from smallstep/max/scoop
...
Add scoop back to goreleaser
1 year ago
max furman
e741c60afb
Add scoop back to goreleaser
1 year ago
Carl Tashian
dd9b97221e
Merge pull request #1246 from smallstep/carl/fix-release-linktitle
...
Fixed the arch of the filename in the windows release artifact
1 year ago
Carl Tashian
ed4af06a56
Fixed the arch of the filename in the windows release artifact
1 year ago
Mariano Cano
197b79bb48
Merge pull request #1243 from smallstep/remove-deprecated-binaries
...
Add step-kms-plugin to docker images and build a CGO based one
1 year ago
Max
0c5e7f1b5c
Merge pull request #1245 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.23.2
...
Bump go.step.sm/crypto from 0.23.1 to 0.23.2
1 year ago
Max
d79e1343ae
Merge pull request #1244 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.52.3
...
Bump google.golang.org/grpc from 1.52.0 to 1.52.3
1 year ago
dependabot[bot]
9a539f22fc
Bump go.step.sm/crypto from 0.23.1 to 0.23.2
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.23.1 to 0.23.2.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.23.1...v0.23.2 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
c32e84b436
Bump google.golang.org/grpc from 1.52.0 to 1.52.3
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.52.0 to 1.52.3.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.52.0...v1.52.3 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Herman Slatman
0f9128c873
Fix linting issue and order of test SUT
1 year ago
Herman Slatman
2ab9beb7ed
Add tests for `deviceAttest01Validate`
1 year ago
Mariano Cano
3b1be62663
Add step-kms-plugin to docker images and build a CGO based one
1 year ago
Herman Slatman
7c632629dd
Merge branch 'master' into herman/acme-da-subject-check
1 year ago
Herman Slatman
ed61c5df5f
Cleanup some leftover debug statements
1 year ago
Herman Slatman
60a9e41c1c
Remove `Identifier` from top level ACME `Errors`
1 year ago
Herman Slatman
edee01c80c
Refactor debug utility
1 year ago
Herman Slatman
1c38113e44
Add ACME `Subproblem` for more detailed ACME client-side errors
...
When validating an ACME challenge (`device-attest-01` in this case,
but it's also true for others), and validation fails, the CA didn't
return a lot of information about why the challenge had failed. By
introducing the ACME `Subproblem` type, an ACME `Error` can include
some additional information about what went wrong when validating
the challenge.
This is a WIP commit. The `Subproblem` isn't created in many code
paths yet, just for the `step` format at the moment. Will probably
follow up with some more improvements to how the ACME error is
handled. Also need to cleanup some debug things (q.Q)
1 year ago
Mariano Cano
4bb25d4a52
Merge pull request #1240 from smallstep/remove-deprecated-binaries
...
Remove deprecated binaries
1 year ago
Mariano Cano
39f46d31b9
Remove deprecated binaries
...
This commit removes the following deprecated binaries:
- step-awskms-init
- step-cloudkms-init
- step-pkcs11-init
- step-yubikey-init
From now on step and step-kms-plugin should be used to initialize the
PKI in AWS KMS, GCP KMS, PKCS#11 modules or YubiKeys.
A future commit will add step-kms-plugin to the docker images of
step-ca.
Fixes #1046
1 year ago
Herman Slatman
f1724ea8c5
Merge branch 'master' into herman/acme-da-tpm
1 year ago
Max
fc452e560c
Merge pull request #1236 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.20.3
...
Bump github.com/newrelic/go-agent/v3 from 3.20.2 to 3.20.3
1 year ago
Max
4621b95f38
Merge pull request #1237 from smallstep/dependabot/go_modules/github.com/urfave/cli-1.22.12
...
Bump github.com/urfave/cli from 1.22.11 to 1.22.12
1 year ago
Max
2d174472e7
Merge pull request #1238 from smallstep/dependabot/go_modules/google.golang.org/api-0.108.0
...
Bump google.golang.org/api from 0.107.0 to 0.108.0
1 year ago
Max
3a6e90498c
Merge pull request #1239 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.8.3
...
Bump github.com/hashicorp/vault/api from 1.8.2 to 1.8.3
1 year ago
dependabot[bot]
cb8a2ee69f
Bump github.com/hashicorp/vault/api from 1.8.2 to 1.8.3
...
Bumps [github.com/hashicorp/vault/api](https://github.com/hashicorp/vault ) from 1.8.2 to 1.8.3.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md )
- [Commits](https://github.com/hashicorp/vault/compare/v1.8.2...v1.8.3 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
626a3a87b4
Bump google.golang.org/api from 0.107.0 to 0.108.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.107.0 to 0.108.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.107.0...v0.108.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
925a228656
Bump github.com/urfave/cli from 1.22.11 to 1.22.12
...
Bumps [github.com/urfave/cli](https://github.com/urfave/cli ) from 1.22.11 to 1.22.12.
- [Release notes](https://github.com/urfave/cli/releases )
- [Changelog](https://github.com/urfave/cli/blob/main/docs/CHANGELOG.md )
- [Commits](https://github.com/urfave/cli/compare/v1.22.11...v1.22.12 )
---
updated-dependencies:
- dependency-name: github.com/urfave/cli
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
07fd03c3f3
Bump github.com/newrelic/go-agent/v3 from 3.20.2 to 3.20.3
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.20.2 to 3.20.3.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.20.2...v3.20.3 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Herman Slatman
64d9ad7b38
Validate Subject Common Name for Orders with Permanent Identifier
1 year ago
Max
5bab65aa49
Merge pull request #1232 from smallstep/dependabot/go_modules/github.com/urfave/cli-1.22.11
...
Bump github.com/urfave/cli from 1.22.10 to 1.22.11
1 year ago
Max
925f32e82f
Merge pull request #1231 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.52.0
...
Bump google.golang.org/grpc from 1.51.0 to 1.52.0
1 year ago
Max
466fe8280e
Merge pull request #1230 from smallstep/dependabot/go_modules/google.golang.org/api-0.107.0
...
Bump google.golang.org/api from 0.106.0 to 0.107.0
1 year ago
dependabot[bot]
fb39fccf6a
Bump github.com/urfave/cli from 1.22.10 to 1.22.11
...
Bumps [github.com/urfave/cli](https://github.com/urfave/cli ) from 1.22.10 to 1.22.11.
- [Release notes](https://github.com/urfave/cli/releases )
- [Changelog](https://github.com/urfave/cli/blob/main/docs/CHANGELOG.md )
- [Commits](https://github.com/urfave/cli/compare/v1.22.10...v1.22.11 )
---
updated-dependencies:
- dependency-name: github.com/urfave/cli
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
29deb4befa
Bump google.golang.org/grpc from 1.51.0 to 1.52.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.51.0 to 1.52.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.51.0...v1.52.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
98cb439b41
Bump google.golang.org/api from 0.106.0 to 0.107.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.106.0 to 0.107.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.106.0...v0.107.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Carl Tashian
cc6b87d1a4
Merge pull request #1228 from smallstep/carl/entrypoint-boolean-fix
...
Only pass --admin-subject if --remote-management is true; fix boolean handling
1 year ago
Carl Tashian
2ab9483952
Only pass --admin-subject if --remote-management is true; fix overall boolean handling
1 year ago
Mariano Cano
e4073270f3
Merge pull request #1225 from smallstep/0.23.1-changelog
...
Upgrade changelog for v0.23.1
1 year ago
Max
627506b519
Merge pull request #1207 from smallstep/max/admin-check
...
Add IsEnabled method in AdminClient for checking admin API availability
1 year ago
max furman
fd921e5b26
successful isEnabled check should not return error
1 year ago
max furman
0b26698e72
Add IsEnabled method in AdminClient for checking admin API availability
1 year ago
Mariano Cano
bab77f257a
Add changelog line for smallstep/certificates#1223
1 year ago
Carl Tashian
a78ddc7cc5
Merge pull request #1223 from smallstep/carl/docker-pwd
...
Docker: Generate and use independent provisioner and private key passwords
1 year ago
Mariano Cano
2e86a392a8
Add proper PR links
1 year ago
Mariano Cano
2cd5708103
Upgrade changelog for v0.23.1
1 year ago
Mariano Cano
ad8a95cc10
Merge pull request #1206 from smallstep/oidc-principals
...
Ignore principals validations with OIDC
1 year ago
Carl Tashian
dc8b196823
Print admin username and pw after init
1 year ago
Carl Tashian
328276eaeb
Shred provisioner password
1 year ago
Carl Tashian
ad5cbd9a0e
Print and delete provisioner password on setup
1 year ago
Carl Tashian
a017238874
No need for PROVISIONER_PWDPATH
1 year ago
Carl Tashian
313bf2354b
Check for existance of pwdpath before copying
1 year ago
Carl Tashian
640bd0b7c7
Tabs to spaces
1 year ago
Carl Tashian
c836c7ab40
Backward compatibility
1 year ago
Carl Tashian
8242895909
Update hsm dockerfile as well
1 year ago
Carl Tashian
844cfd3bad
Generate and use independent provisioner and private key passwords
1 year ago
Max
ac4d5e63ab
Merge pull request #1221 from smallstep/dependabot/go_modules/google.golang.org/api-0.106.0
...
Bump google.golang.org/api from 0.105.0 to 0.106.0
1 year ago
Max
985a0e4858
Merge pull request #1220 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.5.0
...
Bump golang.org/x/crypto from 0.4.0 to 0.5.0
1 year ago
Max
762ce06d84
Merge pull request #1219 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.11.0
...
Bump cloud.google.com/go/security from 1.10.0 to 1.11.0
1 year ago
dependabot[bot]
34dc119cf7
Bump google.golang.org/api from 0.105.0 to 0.106.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.105.0 to 0.106.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.105.0...v0.106.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Max
9cc35d1505
Merge branch 'master' into dependabot/go_modules/golang.org/x/crypto-0.5.0
1 year ago
dependabot[bot]
e7a4a1f43c
Bump cloud.google.com/go/security from 1.10.0 to 1.11.0
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.10.0 to 1.11.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/asset/v1.10.0...asset/v1.11.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Max
8ba1b44cd8
Merge pull request #1218 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.4.0
...
Bump cloud.google.com/go/longrunning from 0.3.0 to 0.4.0
1 year ago
Max
a063961175
Merge pull request #1217 from smallstep/dependabot/go_modules/golang.org/x/net-0.5.0
...
Bump golang.org/x/net from 0.4.0 to 0.5.0
1 year ago
dependabot[bot]
dae0ba9008
Bump golang.org/x/crypto from 0.4.0 to 0.5.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.4.0 to 0.5.0.
- [Release notes](https://github.com/golang/crypto/releases )
- [Commits](https://github.com/golang/crypto/compare/v0.4.0...v0.5.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
32f4908310
Bump cloud.google.com/go/longrunning from 0.3.0 to 0.4.0
...
Bumps [cloud.google.com/go/longrunning](https://github.com/googleapis/google-cloud-go ) from 0.3.0 to 0.4.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/v0.3.0...v0.4.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/longrunning
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
dependabot[bot]
c5c07be298
Bump golang.org/x/net from 0.4.0 to 0.5.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.4.0 to 0.5.0.
- [Release notes](https://github.com/golang/net/releases )
- [Commits](https://github.com/golang/net/compare/v0.4.0...v0.5.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
Herman Slatman
b13b527d18
Merge pull request #1211 from smallstep/herman/ca-client-context-methods
...
Add `WithContext` methods to the CA client
2 years ago
Herman Slatman
b5961beba9
Fix and/or ignore linting issues
2 years ago
Herman Slatman
319333f936
Add `WithContext` methods to the CA client
2 years ago
Max
85f6554c5e
Merge pull request #1210 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.4.0
...
Bump golang.org/x/crypto from 0.3.0 to 0.4.0
2 years ago
Max
001c156b28
Merge pull request #1208 from smallstep/dependabot/go_modules/google.golang.org/api-0.105.0
...
Bump google.golang.org/api from 0.104.0 to 0.105.0
2 years ago
Max
407496234f
Merge pull request #1209 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.20.2
...
Bump github.com/newrelic/go-agent/v3 from 3.20.1 to 3.20.2
2 years ago
dependabot[bot]
27a50d50d3
Bump golang.org/x/crypto from 0.3.0 to 0.4.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.3.0 to 0.4.0.
- [Release notes](https://github.com/golang/crypto/releases )
- [Commits](https://github.com/golang/crypto/compare/v0.3.0...v0.4.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
75ffbae5a7
Bump github.com/newrelic/go-agent/v3 from 3.20.1 to 3.20.2
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.20.1 to 3.20.2.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.20.1...v3.20.2 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
a4e64665da
Bump google.golang.org/api from 0.104.0 to 0.105.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.104.0 to 0.105.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.104.0...v0.105.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Mariano Cano
5d87201abc
Ignore principals validations with OIDC
...
This commit will ignore principals validation when an OIDC provisioner
is used. When the principals in the server does not match the principals
given the validation was failing, even if the proper principals were set
by templates or webhooks. With this change OIDC will not validate the
principals and just set the default ones (name, name@example.org ) plus
the ones in the templates.
This commit also includes a change in the templates to allow to pass
a provisioner to the $(step path)/ssh/config template
Related to #807
2 years ago
Herman Slatman
9007e2ef75
Merge pull request #1201 from smallstep/herman/docker-remote-management
...
Add env vars for enabling Remote Management and ACME provisioner
2 years ago
Max
3fb38a3c14
Merge pull request #1203 from smallstep/dependabot/go_modules/google.golang.org/api-0.104.0
...
Bump google.golang.org/api from 0.103.0 to 0.104.0
2 years ago
Max
c2d441fbfd
Merge pull request #1198 from smallstep/dependabot/go_modules/github.com/Masterminds/sprig/v3-3.2.3
...
Bump github.com/Masterminds/sprig/v3 from 3.2.2 to 3.2.3
2 years ago
dependabot[bot]
e07734d90d
Bump google.golang.org/api from 0.103.0 to 0.104.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.103.0 to 0.104.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.103.0...v0.104.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
260f40c6bc
Bump github.com/Masterminds/sprig/v3 from 3.2.2 to 3.2.3
...
Bumps [github.com/Masterminds/sprig/v3](https://github.com/Masterminds/sprig ) from 3.2.2 to 3.2.3.
- [Release notes](https://github.com/Masterminds/sprig/releases )
- [Changelog](https://github.com/Masterminds/sprig/blob/master/CHANGELOG.md )
- [Commits](https://github.com/Masterminds/sprig/compare/v3.2.2...v3.2.3 )
---
updated-dependencies:
- dependency-name: github.com/Masterminds/sprig/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Max
f26e70cc16
Merge pull request #1202 from smallstep/dependabot/go_modules/golang.org/x/net-0.4.0
...
Bump golang.org/x/net from 0.2.0 to 0.4.0
2 years ago
Herman Slatman
c365d8580e
Move provisioner marshaling logic to api package
2 years ago
Herman Slatman
f2e1c56c6c
Improve SCEP provisioner marshaling
2 years ago
dependabot[bot]
47dad19bbc
Bump golang.org/x/net from 0.2.0 to 0.4.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.2.0 to 0.4.0.
- [Release notes](https://github.com/golang/net/releases )
- [Commits](https://github.com/golang/net/compare/v0.2.0...v0.4.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Herman Slatman
4e3a6e67f1
Add env vars for enabling Remote Management and ACME provisioner.
...
A `step-ca` instance created in a container can now be initialized
with Remote Management by setting `DOCKER_STEPCA_INIT_REMOTE_MANAGEMENT`.
An ACME provisioner with default settings can be created at initialization
by setting `DOCKER_STEPCA_INIT_ACME`.
2 years ago
Mariano Cano
a0423a4539
Merge pull request #1193 from smallstep/changelog
...
Update changelog
2 years ago
Mariano Cano
c6e34f7b84
Update changelog
...
This commit updates the changelog with a comment about .crl.idpURL
configuration property.
2 years ago
Mariano Cano
5cce76672d
Merge pull request #1178 from foleyjohnm/adding-CRL-IDP-config
...
Adding crl idp config
2 years ago
Mariano Cano
002a058807
Use idpURL in json
2 years ago
Mariano Cano
be4cd17b40
Add omit empty to IDPurl
2 years ago
Max
262814ac43
Merge pull request #1191 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.51.0
...
Bump google.golang.org/grpc from 1.50.1 to 1.51.0
2 years ago
Max
b655fcda21
Merge pull request #1190 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.20.1
...
Bump github.com/newrelic/go-agent/v3 from 3.20.0 to 3.20.1
2 years ago
dependabot[bot]
596be4bec7
Bump google.golang.org/grpc from 1.50.1 to 1.51.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.50.1 to 1.51.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.50.1...v1.51.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
afc81d96d8
Bump github.com/newrelic/go-agent/v3 from 3.20.0 to 3.20.1
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.20.0 to 3.20.1.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.20.0...v3.20.1 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Herman Slatman
27a1ab640d
Merge pull request #1187 from smallstep/herman/fix-stack-trace-error-logging
...
Fix `StackTracedError` logging
2 years ago
Herman Slatman
b8c306ebfa
Refactor tests stylistically
2 years ago
Herman Slatman
36da484604
Merge pull request #1188 from smallstep/herman/fix-stack-trace-error-logging-panos
...
Merge log.Error tests
2 years ago
Panagiotis Siatras
9197de3e96
api/log: removed dependency to certificates/logging
2 years ago
Panagiotis Siatras
b7f4881972
merged log tests
2 years ago
Herman Slatman
27bbc3682b
Improve error log test readability
2 years ago
Herman Slatman
362be72120
Fix `StackTracedError` logging
...
When running with `STEPDEBUG=1`, a response with a `StackTracedError`
would result in a nil pointer error. This commit fixes the check and
adds a test case.
2 years ago
Max
8a2e49a1e3
Merge pull request #1182 from smallstep/dependabot/go_modules/google.golang.org/api-0.103.0
...
Bump google.golang.org/api from 0.102.0 to 0.103.0
2 years ago
dependabot[bot]
51503dabac
Bump google.golang.org/api from 0.102.0 to 0.103.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.102.0 to 0.103.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.102.0...v0.103.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Max
b9b60d50fe
Merge pull request #1183 from smallstep/dependabot/go_modules/golang.org/x/net-0.2.0
...
Bump golang.org/x/net from 0.1.0 to 0.2.0
2 years ago
dependabot[bot]
f63a01a4de
Bump golang.org/x/net from 0.1.0 to 0.2.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.1.0 to 0.2.0.
- [Release notes](https://github.com/golang/net/releases )
- [Commits](https://github.com/golang/net/compare/v0.1.0...v0.2.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Mariano Cano
7a8c6c0abe
Merge pull request #1179 from smallstep/changelog
...
Prepare changelog for v0.23.0 release
2 years ago
Mariano Cano
6d9c184e5a
Prepare changelog for v0.23.0 release
2 years ago
foleyjohnm
d6f9b3336d
Update config.go
2 years ago
foleyjohnm
c79d4e9316
adding CRLIDP config
2 years ago
Mariano Cano
adad7ef970
Merge pull request #1177 from smallstep/fix-cli-738
...
Return an appropriate error when requests fail
2 years ago
Mariano Cano
fcfd2b9bdc
Return an appropriate error when requests fail
...
If an http client Do method fails, it always returns an *url.URL error,
this change generalizes all those errors in one common method instead of
returning an fake HTTP error.
Fixes smallstep/cli#738
2 years ago
Herman Slatman
1f19b8ec5e
Merge pull request #1172 from smallstep/herman/remove-acme-cert-charset
...
Remove `charset=utf-8` from ACME certificate requests
2 years ago
Mariano Cano
ffc30f49b1
Merge pull request #1174 from smallstep/fix-cli-730
...
Set dialer local address with STEP_CLIENT_ADDR
2 years ago
Mariano Cano
a800ffe447
Merge pull request #1173 from smallstep/fix-1047
...
Create context for automatic RAs
2 years ago
Mariano Cano
47bd5a80d9
Set dialer local address with STEP_CLIENT_ADDR
...
The environment variable STEP_CLIENT_ADDR can be used to set the local
address to use when dialing an address. This can be useful when step
is behind an CIDR-based ACL.
Fixes smallstep/cli#730
2 years ago
Mariano Cano
fa8d0a68c4
Merge pull request #1169 from smallstep/root-bundle
...
Allow root and federated root bundles
2 years ago
Mariano Cano
893147d23a
Create context for automatic RAs
...
It creates a new context with the given name if the flags --token
and --context are passed, and the context does not exist.
Fixes #1047
2 years ago
Herman Slatman
817edcbba5
Remove `charset=utf-8` from ACME certificate requests
2 years ago
Mariano Cano
ddd5057f63
Allow root and federated root bundles
...
This commit changes the parsing of root and federated roots to support
a bundle of certificates, this makes easier to configure a root rotation
when using helm charts, just appending the old root.
2 years ago
Mariano Cano
e0215e7243
Merge pull request #1167 from smallstep/linked-ra-renewal
...
Add support for linked RA renewals
2 years ago
Max
ca6f4514fd
Merge pull request #1166 from smallstep/max/remove-docs
...
Remove deprecated docs directory
2 years ago
Mariano Cano
07c56f577a
Add support for linked RA renewals
2 years ago
Mariano Cano
3a89428b0f
Merge pull request #1165 from smallstep/upgrade-crypto
...
Upgrade go.step.sm/crypto
2 years ago
Mariano Cano
b31cf1fc18
Fix merge and use last version of linkedca
2 years ago
Mariano Cano
2b928b1afd
Merge branch 'master' into upgrade-crypto
2 years ago
Herman Slatman
85cd9a1277
Fix some ACME DA doc strings (slightly)
2 years ago
Herman Slatman
4cf25ede24
Merge branch 'master' into herman/acme-da-tpm
2 years ago
Herman Slatman
c169defc73
Merge pull request #1136 from smallstep/herman/ignore-empty-acme-meta
2 years ago
max furman
dde9330244
Remove deprecated docs directory
2 years ago
Mariano Cano
75ac5d3889
Add ra renewal to the changelog
2 years ago
Mariano Cano
3ef73fa66b
Upgrade go.step.sm/crypto
2 years ago
Max
80cbcb652b
Merge pull request #1164 from smallstep/max/bad-comment
...
Correct bad comment on NotImplementedError.Error()
2 years ago
max furman
57c1c2071d
Correct bad comment on NotImplementedError.Error()
2 years ago
Mariano Cano
e8726d24fa
Merge pull request #1156 from smallstep/ra-renew
...
Add support for renew when using stepcas
2 years ago
Max
202b17c3f2
Merge pull request #1159 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.10.0
...
Bump cloud.google.com/go/security from 1.9.0 to 1.10.0
2 years ago
dependabot[bot]
ae684a557a
Bump cloud.google.com/go/security from 1.9.0 to 1.10.0
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.9.0 to 1.10.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/asset/v1.9.0...asset/v1.10.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Max
7354e6e905
Merge pull request #1163 from smallstep/max/longrunning
...
Updates for deprecated google cloud security APIs
2 years ago
Herman Slatman
920c4f02c5
Add additional properties to provisioner converters
2 years ago
max furman
e351bd90dc
Run make generate with mockgen@v1.6.0
2 years ago
Herman Slatman
a7b2f5f27d
Upgrade `linkedca` to `v0.19.0-rc.4`
2 years ago
max furman
8f7fae585c
Add mockgen commands for cloudcas_test
2 years ago
Herman Slatman
1c4aa6ad79
Merge branch 'master' into herman/ignore-empty-acme-meta
2 years ago
max furman
d4e81723ee
Updates for deprecated google cloud security APIs
2 years ago
Max
55a684fe5a
Merge pull request #1162 from smallstep/dependabot/go_modules/google.golang.org/api-0.102.0
...
Bump google.golang.org/api from 0.101.0 to 0.102.0
2 years ago
Max
4fcfc9481b
Merge pull request #1160 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.20.0
...
Bump github.com/newrelic/go-agent/v3 from 3.19.2 to 3.20.0
2 years ago
dependabot[bot]
656b9ab217
Bump google.golang.org/api from 0.101.0 to 0.102.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.101.0 to 0.102.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.101.0...v0.102.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Herman Slatman
9cbee4da33
Merge pull request #1158 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.23.0
...
Bump go.step.sm/crypto from 0.22.0 to 0.23.0
2 years ago
dependabot[bot]
88febefbcf
Bump github.com/newrelic/go-agent/v3 from 3.19.2 to 3.20.0
...
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent ) from 3.19.2 to 3.20.0.
- [Release notes](https://github.com/newrelic/go-agent/releases )
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md )
- [Commits](https://github.com/newrelic/go-agent/compare/v3.19.2...v3.20.0 )
---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
2891f6b397
Bump go.step.sm/crypto from 0.22.0 to 0.23.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.22.0 to 0.23.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.22.0...v0.23.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Herman Slatman
3eae04928f
Add tests for ACME Meta object
2 years ago
Herman Slatman
02d679e160
Merge branch 'master' into herman/ignore-empty-acme-meta
2 years ago
Mariano Cano
c7f226bcec
Add support for renew when using stepcas
...
It supports renewing X.509 certificates when an RA is configured with stepcas.
This will only work when the renewal uses a token, and it won't work with mTLS.
The audience cannot be properly verified when an RA is used, to avoid this we
will get from the database if an RA was used to issue the initial certificate
and we will accept the renew token.
Fixes #1021 for stepcas
2 years ago
Mariano Cano
068a2dae8e
Merge pull request #1155 from smallstep/acme-port-flags
...
Use the same style of flags
2 years ago
Mariano Cano
e00781873e
Update commands/app.go
...
Co-authored-by: Max <mx.furman@gmail.com>
2 years ago
Mariano Cano
bae9a0c152
Use the same style of flags
...
It changes the new step-ca flags to use a standard style.
2 years ago
Mariano Cano
6c0cb23125
Merge pull request #1153 from smallstep/acme-port
...
Add support for custom acme ports
2 years ago
Mariano Cano
e27c6c529b
Add support for custom acme ports
...
This change adds the flags --acme-http-port, --acme-tls-port, that
combined with --insecure can be used to set custom ports for ACME
http-01 and tls-alpn-01 challenges. These flags should only be used
for testing purposes.
Fixes #1015
2 years ago
Max
9d90d0cef3
Merge pull request #1152 from smallstep/max/cosign-experimental
...
[action] Add COSIGN_EXPERIMENTAL env var to cosign release docs
2 years ago
max furman
3728cee02a
[action] Add COSIGN_EXPERIMENTAL env var to cosign release docs
2 years ago
Max
be8c0b4531
Merge pull request #1151 from smallstep/max/gomod
...
go.mod syntax
2 years ago
max furman
4ccc9a0c32
go.mod syntax
2 years ago
Max
6136dbb196
Merge pull request #1147 from smallstep/dependabot/go_modules/cloud.google.com/go-0.105.0
...
Bump cloud.google.com/go from 0.104.0 to 0.105.0
2 years ago
dependabot[bot]
bd577e7531
Bump cloud.google.com/go from 0.104.0 to 0.105.0
...
Bumps [cloud.google.com/go](https://github.com/googleapis/google-cloud-go ) from 0.104.0 to 0.105.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/v0.104.0...v0.105.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Max
e53a4b2ed5
Merge pull request #1149 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.22.0
...
Bump go.step.sm/crypto from 0.21.0 to 0.22.0
2 years ago
dependabot[bot]
917d8dc103
Bump go.step.sm/crypto from 0.21.0 to 0.22.0
...
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto ) from 0.21.0 to 0.22.0.
- [Release notes](https://github.com/smallstep/crypto/releases )
- [Commits](https://github.com/smallstep/crypto/compare/v0.21.0...v0.22.0 )
---
updated-dependencies:
- dependency-name: go.step.sm/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Max
b85b52d7b5
Merge pull request #1148 from smallstep/dependabot/go_modules/google.golang.org/api-0.101.0
...
Bump google.golang.org/api from 0.100.0 to 0.101.0
2 years ago
Max
ea3f2fee7b
Merge pull request #1150 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.8.2
...
Bump github.com/hashicorp/vault/api from 1.8.1 to 1.8.2
2 years ago
Max
9d9236c985
Merge pull request #1146 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.9.0
...
Bump cloud.google.com/go/security from 1.8.0 to 1.9.0
2 years ago
dependabot[bot]
d26414a864
Bump github.com/hashicorp/vault/api from 1.8.1 to 1.8.2
...
Bumps [github.com/hashicorp/vault/api](https://github.com/hashicorp/vault ) from 1.8.1 to 1.8.2.
- [Release notes](https://github.com/hashicorp/vault/releases )
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md )
- [Commits](https://github.com/hashicorp/vault/compare/v1.8.1...v1.8.2 )
---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
22d2c1c31f
Bump google.golang.org/api from 0.100.0 to 0.101.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.100.0 to 0.101.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.100.0...v0.101.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
4e077f997e
Bump cloud.google.com/go/security from 1.8.0 to 1.9.0
...
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go ) from 1.8.0 to 1.9.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/asset/v1.8.0...asset/v1.9.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
Max
995b6d1b6c
Merge pull request #1142 from smallstep/max/keyless-cosign
...
[action] keyless cosign for all release artifacts
2 years ago
max furman
c36b36f070
[action] cosign over docker image digest
2 years ago
Mariano Cano
3e0b603eb4
Merge pull request #731 from unreality/crl-support
...
Support for CRL
2 years ago
Mariano Cano
2d582e5694
Remove use of time.Duration.Abs
...
time.Duration.Abs() was added in Go 1.19
2 years ago
Mariano Cano
89c8c6d0a0
Fix package name in tls test
2 years ago
Mariano Cano
f066ac3d40
Remove buggy logic on GetRevokedCertificates()
2 years ago
Mariano Cano
51c7f56030
Truncate time to the second
2 years ago
Mariano Cano
6d4fd7d016
Update changelog with CRL support
2 years ago
Mariano Cano
812fee7630
Start crl generator before setting initOnce
2 years ago
Mariano Cano
59775fff0c
Merge branch 'master' into crl-support
2 years ago
Mariano Cano
8200d19894
Improve CRL implementation
...
This commit adds some changes to PR #731 , some of them are:
- Add distribution point to the CRL
- Properly stop the goroutine that generates the CRLs
- CRL config validation
- Remove expired certificates from the CRL
- Require enable set to true to generate a CRL
This last point is the principal change in behaviour from the previous
implementation. The CRL will not be generated if it's not enabled, and
if it is enabled it will always be regenerated at some point, not only
if there is a revocation.
2 years ago
max furman
c43d59a69a
[action] keyless cosign for all release artifacts
2 years ago
Herman Slatman
b9f238ad4d
Add additional ACME `meta` properties to provisioner configuration
2 years ago
Herman Slatman
c9793561ff
Make `meta` object optional in ACME directory response
...
Harware appliances from Kemp seem to validate the contents of the
`meta` object, even if none of the properties in the `meta` object
is set. According to the RFC, the `meta` object, as well as its
properties are optional, so technically this should be fixed by
the manufacturer.
This commit is to see if we validation of the `meta` object is
skipped if it's not available in the response.
2 years ago
Raal Goff
f7df865687
refactor crl config, add some tests
2 years ago
Raal Goff
d0e81af524
Merge branch 'master' into crl-support
2 years ago
Herman Slatman
a8125846dd
Add TPM attestation
2 years ago
Raal Goff
40baf73dff
remove incorrect check on revoked certificate dates, add mutex lock for generating CRLs,
2 years ago
Mariano Cano
4e19aa4c52
Add cache duration if crl is set
2 years ago
Mariano Cano
221e756f40
Use render.Error on crl endpoint
2 years ago
Mariano Cano
0829f37fe8
Define a default crl cache duration
2 years ago
Mariano Cano
4a4f7ca9ba
Fix panic if cacheDuration is not set
2 years ago
Raal Goff
924082bb49
fix linter errors
2 years ago
Raal Goff
d2483f3a70
Merge branch 'master' into crl-support
...
# Conflicts:
# authority/config/config.go
2 years ago
Raal Goff
9fa5f46213
add minor doco, Test_CRLGeneration(), fix some issues from merge
2 years ago
Raal Goff
60671b07d7
Merge branch 'master' into crl-support
...
# Conflicts:
# api/api.go
# authority/config/config.go
# cas/softcas/softcas.go
# db/db.go
2 years ago
Raal Goff
c8b38c0e13
implemented requested changes
2 years ago
Raal Goff
773741eda8
Merge remote-tracking branch 'origin/crl-support' into crl-support
...
# Conflicts:
# api/api_test.go
# authority/tls.go
2 years ago
Raal Goff
49c41636cc
implemented some requested changes
2 years ago
Raal Goff
53dbe2309b
implemented some requested changes
2 years ago
Raal Goff
a607ab189a
requested changes
2 years ago
Raal Goff
d417ce3232
implement changes from review
2 years ago
Raal Goff
668cb6f39c
missed some mentions of PEM when changing the returned format to DER regarding CRL generation
2 years ago
Raal Goff
7d024cc4cb
change GenerateCertificateRevocationList to return DER, store DER in db instead of PEM, nicer PEM encoding of CRL, add Mock stubs
2 years ago
Raal Goff
e8fdb703c9
initial support for CRL
2 years ago
Raal Goff
8520c861d5
implemented some requested changes
2 years ago
Raal Goff
45975b061c
requested changes
2 years ago
Raal Goff
222b52db13
implement changes from review
3 years ago
Raal Goff
26cb52a573
missed some mentions of PEM when changing the returned format to DER regarding CRL generation
3 years ago
Raal Goff
8545adea92
change GenerateCertificateRevocationList to return DER, store DER in db instead of PEM, nicer PEM encoding of CRL, add Mock stubs
3 years ago
Raal Goff
56926b9012
initial support for CRL
3 years ago