open-vault/sdk/helper
Alexander Scheel 33a9218115
Add full CA Chain to /pki/cert/ca_chain response (#13935)
* Include full chain in /cert/ca_chain response

This allows callers to get the full chain (including issuing
certificates) from a call to /cert/ca_chain. Previously, most endpoints
(including during issuance) do not include the root authority, requiring
an explicit call to /cert/ca to fetch. This allows full chains to be
constructed without without needing multiple calls to the API.

Resolves: #13489

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add test case for full CA issuance

We test three main scenarios:

 1. A root-only CA's `/cert/ca_chain`'s `.data.ca_chain` field should
    contain only the root,
 2. An intermediate CA (with root provide) should contain both the root
    and the intermediate.
 3. An external (e.g., `/config/ca`-provided) CA with both root and
    intermediate should contain both certs.

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add documentation for new ca_chain field

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add changelog entry

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add note about where to find the entire chain

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
2022-02-07 14:37:01 -05:00
..
authmetadata Migrate to sdk/internalshared libs in go-secure-stdlib (#12090) 2021-07-15 20:17:31 -04:00
base62 Swap out sdk/helper libs with implementations in go-secure-stdlib (#12088) 2021-07-15 01:56:37 -04:00
certutil Add full CA Chain to /pki/cert/ca_chain response (#13935) 2022-02-07 14:37:01 -05:00
cidrutil Migrate to sdk/internalshared libs in go-secure-stdlib (#12090) 2021-07-15 20:17:31 -04:00
compressutil reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
consts backport error changes from ent PR (#12926) 2021-10-26 10:11:24 -06:00
cryptoutil Create sdk/ and api/ submodules (#6583) 2019-04-12 17:54:35 -04:00
dbtxn Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
errutil Create sdk/ and api/ submodules (#6583) 2019-04-12 17:54:35 -04:00
hclutil Create sdk/ and api/ submodules (#6583) 2019-04-12 17:54:35 -04:00
identitytpl Add Custom metadata field to alias (#12502) 2021-09-17 11:03:47 -07:00
jsonutil Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
kdf reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
keysutil reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
ldaputil EscapeLDAPValue - catch trailing escape character (#13452) 2021-12-15 13:17:07 -08:00
license Create sdk/ and api/ submodules (#6583) 2019-04-12 17:54:35 -04:00
locksutil Create sdk/ and api/ submodules (#6583) 2019-04-12 17:54:35 -04:00
logging Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
mlock Swap out sdk/helper libs with implementations in go-secure-stdlib (#12088) 2021-07-15 01:56:37 -04:00
parseutil Swap out sdk/helper libs with implementations in go-secure-stdlib (#12088) 2021-07-15 01:56:37 -04:00
password Swap out sdk/helper libs with implementations in go-secure-stdlib (#12088) 2021-07-15 01:56:37 -04:00
pathmanager oss port (#12755) 2021-10-07 11:25:16 -06:00
pluginutil Remove deprecated call to BuildNameToCertificate (#13811) 2022-01-27 14:56:21 -05:00
pointerutil Add int64 pointerutil (#7973) 2019-12-05 14:02:36 -08:00
policyutil Migrate to sdk/internalshared libs in go-secure-stdlib (#12090) 2021-07-15 20:17:31 -04:00
roottoken Add helper for encoding/decoding root tokens and OTP generation in SDK module (#10504) (#10505) 2021-12-01 08:05:49 -05:00
salt Send a test message before committing a new audit device. (#10520) 2020-12-16 16:00:32 -06:00
strutil Swap out sdk/helper libs with implementations in go-secure-stdlib (#12088) 2021-07-15 01:56:37 -04:00
template Migrate to sdk/internalshared libs in go-secure-stdlib (#12090) 2021-07-15 20:17:31 -04:00
tlsutil Swap out sdk/helper libs with implementations in go-secure-stdlib (#12088) 2021-07-15 01:56:37 -04:00
tokenutil Migrate to sdk/internalshared libs in go-secure-stdlib (#12090) 2021-07-15 20:17:31 -04:00
useragent Move useragent to sdk 2019-04-12 18:17:49 -04:00
wrapping Expose secret_id_accessor as WrappedAccessor when wrapping secret-id creation. (#12425) 2021-09-16 10:47:49 -07:00
xor Add helper for encoding/decoding root tokens and OTP generation in SDK module (#10504) (#10505) 2021-12-01 08:05:49 -05:00