Commit graph

2222 commits

Author SHA1 Message Date
Andrew Stuart a3b096e3fe Add pkcs8 flag setting in ParsePEMBundle 2015-12-09 15:33:25 -07:00
Andrew Stuart 7d274cbb0b Update tests and finish implementation of PKCS8 handling 2015-12-09 15:33:25 -07:00
Andrew Stuart db48b7fccf Update ParsePEMBundle to properly handle pkcs#8
Implementation based on be16001187/src/crypto/tls/tls.go (L273-L290)
2015-12-09 15:29:13 -07:00
Jeff Mitchell 9d574dd5d5 Merge pull request #666 from hashicorp/pki-csrs
Enhance functionality to the PKI backend
2015-12-09 17:13:51 -05:00
Jeff Mitchell 28efb119ae Make the timeout for 'make test' 60s to accommodate larger numbers of generated keys in tests 2015-12-09 17:07:29 -05:00
Jeff Mitchell d332200495 Merge branch 'master' into pki-csrs 2015-12-09 16:48:07 -05:00
Jeff Mitchell 934b6076db Merge pull request #826 from hashicorp/issue-825
Return 400 instead of 500 if generic backend is written to without data.
2015-12-09 10:40:06 -05:00
Jeff Mitchell 900b3d8882 Return 400 instead of 500 if generic backend is written to without data.
Fixes #825
2015-12-09 10:39:22 -05:00
Jeff Mitchell 8699adbbb0 Merge pull request #822 from hashicorp/sethvargo-patch-1
Use template instead of filename (fix deprecation)
2015-12-08 13:28:24 -05:00
Seth Vargo 399f752c73 Read the file contents 2015-12-08 12:13:24 -05:00
Seth Vargo d1603460ef Use template instead of filename (fix deprecation) 2015-12-08 12:10:19 -05:00
Jeff Mitchell 448efd56fa Merge branch 'master' into pki-csrs 2015-12-08 10:57:53 -05:00
Jeff Mitchell 902b7b0589 Add a warning about consistency of IAM credentials as a stop-gap.
Ping #687
2015-12-08 10:56:34 -05:00
Jeff Mitchell 9976d86cc6 Merge pull request #818 from vicki-c/master
fixing etcd missing key error
2015-12-07 15:29:15 -05:00
Jeff Mitchell 244d7e9ac7 Update version to prepare for 0.4.0 2015-12-07 14:51:44 -05:00
Jeff Mitchell dab0049d0e Changelogify 2015-12-07 13:22:24 -05:00
Vicki Cheung 5c334293cd fixing etcd missing key error 2015-12-07 02:29:20 -05:00
Jeff Mitchell eee8386ea9 Add info about cert backend not checking CRL revocation. 2015-12-05 15:12:43 -05:00
Jeff Mitchell bf0909a892 Tab -> space doc fix 2015-12-05 15:04:54 -05:00
Jeff Mitchell 1dbfcc3b45 Merge branch 'master' into pki-csrs 2015-12-03 15:23:08 -05:00
Jeff Mitchell 04b04bf2bd Merge pull request #816 from hashicorp/issue-816
Remove datacenter from Consul configuration
2015-12-03 15:22:05 -05:00
Jeff Mitchell 3bdbd66f7d Remove datacenter from Consul configuration, as it cannot actually do
anything

Fixes #816
2015-12-03 15:16:37 -05:00
Jeff Mitchell d8acd9262c
Cut version 0.4.0-rc2 2015-12-01 13:18:11 -05:00
Jeff Mitchell 83fc154c98 Sync dist script from pki-csrs 2015-12-01 13:12:58 -05:00
Jeff Mitchell 32b8a5ddc9 Have dist script publish and purge 2015-12-01 13:09:38 -05:00
Jeff Mitchell d642a16a4b Support relbranch in dist script 2015-12-01 12:53:18 -05:00
Jeff Mitchell b0708b9f9b Fix bashism in dist script 2015-12-01 12:33:59 -05:00
Jeff Mitchell 6ad1b75caf Merge branch 'master' into pki-csrs 2015-12-01 00:09:23 -05:00
Jeff Mitchell 564969acfd Merge pull request #809 from hashicorp/add-monitor-retries
Add new Consul API client MonitorRetries option
2015-12-01 00:08:53 -05:00
Jeff Mitchell 69b522f3ea Add new Consul API client MonitorRetries option 2015-12-01 00:08:14 -05:00
Jeff Mitchell 64cd58463b Fix AWS tests 2015-12-01 00:05:04 -05:00
Jeff Mitchell 2c012c2830 Update godeps, most notably to get Consul client updates 2015-11-30 23:58:03 -05:00
Jeff Mitchell 4eec9d69e8 Change allowed_base_domain to allowed_domains and allow_base_domain to
allow_bare_domains, for comma-separated multi-domain support.
2015-11-30 23:49:11 -05:00
Jeff Mitchell b6c49ddf01 Remove token display names from input options as there isn't a viable
use-case for it at the moment
2015-11-30 18:07:42 -05:00
Jeff Mitchell cf366bda9c Greatly simplify and fix the name validation function, as well as fully
comment it.
2015-11-23 14:15:32 -05:00
Jeff Mitchell 4e4340ee57
Cut version 0.4.0-rc1 2015-11-20 13:40:40 -05:00
Jeff Mitchell 84e6701f36 Update dist script for hc-releases 2015-11-20 13:39:05 -05:00
Jeff Mitchell aad13f202a Bump version to 0.4.0-rc1 2015-11-20 13:18:29 -05:00
Jeff Mitchell ee8e143555 Add PKI enhancements to Changelog 2015-11-20 13:18:07 -05:00
Jeff Mitchell d461929c1d Documentation update 2015-11-20 13:13:57 -05:00
Jeff Mitchell 22a6d6fa22 Merge branch 'master' into pki-csrs 2015-11-20 12:48:38 -05:00
Jeff Mitchell fcd749af75 Merge pull request #786 from hashicorp/issue-784
Reintroduce the ability to look up obfuscated values in the audit log
2015-11-20 12:39:54 -05:00
Jeff Mitchell 25e359084c Update documentation, some comments, make code cleaner, and make generated roots be revoked when their TTL is up 2015-11-19 17:14:22 -05:00
Jeff Mitchell 0dbe15cb87 Mostly revert changes to certutil as the embedded struct stuff was being
problematic.
2015-11-19 14:18:39 -05:00
Jeff Mitchell af3d6ced8e Update validator function for URIs. Change example of entering a CA to a
root cert generation. Other minor documentation updates. Fix private key
output in issue/sign.
2015-11-19 11:35:17 -05:00
Jeff Mitchell f41a2e562a fix tests 2015-11-19 10:13:28 -05:00
Jeff Mitchell 71f9ea8561 Make it clear that generating/setting a CA cert will overwrite what's
there.
2015-11-19 09:51:18 -05:00
Jeff Mitchell a95228e4ee Split root and intermediate functionality into their own sections in the API. Update documentation. Add sign-verbatim endpoint. 2015-11-19 09:51:18 -05:00
Jeff Mitchell 26c8cf874d Move public key comparison logic to its own function 2015-11-19 09:51:18 -05:00
Jeff Mitchell 4681d027c0 Move serial number generation and key validation into certutil; centralize format and key verification 2015-11-19 09:51:18 -05:00