luxolus
/
open-vault
2
0
Fork 0
Code Issues 1 Pull Requests Releases Activity
open-vault/builtin
History
Jeff Mitchell 0d832de65d Initial PKI backend implementation. 
Complete:
* Up-to-date API documents
* Backend configuration (root certificate and private key)
* Highly granular role configuration
* Certificate generation
* CN checking against role
* IP and DNS subject alternative names
* Server, client, and code signing usage types
* Later certificate (but not private key) retrieval
* CRL creation and update
* CRL/CA bare endpoints (for cert extensions)
* Revocation (both Vault-native and by serial number)
* CRL force-rotation endpoint

Missing:
* OCSP support (can't implement without changes in Vault)
* Unit tests

Commit contents (C)2015 Akamai Technologies, Inc. <opensource@akamai.com>
 		2015-06-08 00:06:09 -04:00
..
audit audit/file: Create file if it does not exist. Fixes #148 2015-05-06 11:33:06 -07:00
credential Allow dot in LDAP login username 2015-05-20 11:54:15 -07:00
logical Initial PKI backend implementation. 2015-06-08 00:06:09 -04:00
token/disk token/disk: write token with 0600 2015-05-02 13:34:01 -07:00