luxolus/open-vault
2
0
Fork 0
Code Issues 1 Pull requests Releases Activity
open-vault/builtin/credential/cert
History
Michael Ansel 30b71cbbac Add constraints on the Common Name for certificate-based authentication (#2595) 
* Refactor to consolidate constraints on the matching chain

* Add CN prefix/suffix constraint

* Maintain backwards compatibility (pick a random cert if multiple match)

* Vendor go-glob

* Replace cn_prefix/suffix with required_name/globbing

Move all the new tests to acceptance-capable tests instead of embedding in the CRL test

* Allow authenticating against a single cert

* Add new params to documentation

* Add CLI support for new param

* Refactor for style

* Support multiple (ORed) name patterns

* Rename required_names to allowed_names

* Update docs for parameter rename

* Use the new TypeCommaStringSlice
2017-04-30 11:37:10 -04:00
..
test-fixtures Change default TTL from 30 to 32 to accommodate monthly operations (#1942) 2016-09-28 18:32:49 -04:00
backend.go More porting from rep (#2388) 2017-02-16 16:29:30 -05:00
backend_test.go Add constraints on the Common Name for certificate-based authentication (#2595) 2017-04-30 11:37:10 -04:00
cli.go Add constraints on the Common Name for certificate-based authentication (#2595) 2017-04-30 11:37:10 -04:00
path_certs.go Add constraints on the Common Name for certificate-based authentication (#2595) 2017-04-30 11:37:10 -04:00
path_config.go
path_crls.go More porting from rep (#2388) 2017-02-16 16:29:30 -05:00
path_login.go Add constraints on the Common Name for certificate-based authentication (#2595) 2017-04-30 11:37:10 -04:00