Archives
/
smallstep-certificates
mirror of https://github.com/smallstep/certificates
2
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • a49966f4c9
         try using google oidc for demo purpose beltram 2023-03-28 18:32:39 +0200
  • 3576cc30c8
         forward displayName in CSR with custom OID beltram 2023-03-08 11:05:27 +0100
  • 4172b69816
         remove displayName validation, potentially harmful beltram 2023-03-08 10:05:22 +0100
  • 79501df5a2
         fix: exclude displayName from SAN DNS beltram 2023-03-07 18:44:14 +0100
  • 3f474f77d4
         feat: change from impp prefix to just im beltram 2023-03-06 13:53:26 +0100
  • b6ec4422b4
         feat: adapt to dex and pass the 'keyauth' in payload instead of in id_token. Also have a different mapping for id_token claims name beltram 2023-02-23 19:07:12 +0100
  • af31a167c6
         skip empty entries for uniqueSortedLowerNames Stefan Berthold 2023-02-09 14:55:58 +0100
  • 01ef526d08
         change uri prefix to impp:wireapp= beltram 2023-02-09 11:13:39 +0100
  • cc5fd0a6a5
         fix san validation beltram 2023-02-09 11:07:04 +0100
  • b3dd169190
         cleanup my mess beltram 2023-02-08 15:29:06 +0100
  • 3eb0ff43c0
         fix orderNames size beltram 2023-02-08 10:36:16 +0100
  • c41a99ad75
         (finalize) have both display name & domain in SANs beltram 2023-02-08 10:15:00 +0100
  • 5ba0ab3e44
         fix csr domain validation in finalize beltram 2023-02-07 17:24:49 +0100
  • 73ec6c89d0
         fix csr org validation in finalize beltram 2023-02-07 15:27:18 +0100
  • ca01c74333
         avoid manipulating the key PEM format and take a plain PEM key as input beltram 2023-02-06 15:51:51 +0100
  • 74ddad69dc
         fix: challenge is '.token' and not '.id' beltram 2023-02-03 12:58:55 +0100
  • 83f6be1f58
         print oidc options beltram 2023-02-02 12:58:10 +0100
  • 2208b03744
         avoid panic when OIDC config is not provided Stefan Berthold 2023-02-02 12:05:56 +0100
  • 1fe61bee7b
         better observability beltram 2023-02-02 11:58:23 +0100
  • e6dd211637
         acquire DPoP signing key from provisioner Stefan Berthold 2023-02-02 11:14:29 +0100
  • 227e932624
         use json struct for challenge request payload otherwise it's a hell to craft from client side beltram 2023-02-02 10:27:23 +0100
  • 5ca744567c
         simplify OIDC verification Stefan Berthold 2023-02-01 17:36:20 +0100
  • da1e64aa53
         update wire challenges' status on happy end Stefan Berthold 2023-01-31 17:36:06 +0100
  • 8e0e35532c
         Add Wire authz and challenges (OIDC+DPOP) Stefan Berthold 2022-12-08 18:10:36 +0100
  • 25c109e75d
         Change error message for CSR validation Herman Slatman 2024-01-08 20:05:16 +0100
  • 3c6ba17b99
         Bump github.com/slackhq/nebula from 1.6.1 to 1.8.1 dependabot[bot] 2024-01-08 18:00:40 +0000
  • fc55fba5b5
         Merge pull request #1664 from smallstep/dependabot/go_modules/google.golang.org/api-0.155.0 github-actions[bot] 2024-01-08 18:59:01 +0100
  • 4ba2e22b8d
         Merge pull request #1663 from smallstep/herman/acme-cose-rs1-support Herman Slatman 2024-01-08 17:20:21 +0100
  • a49d1f7dc0
         Bump google.golang.org/api from 0.154.0 to 0.155.0 dependabot[bot] 2024-01-08 15:22:05 +0000
  • e52836f0ab
         Add `RS1` support for ACME `device-attest-01` Herman Slatman 2024-01-07 21:25:36 +0100
  • 508b6e8668
         Check cnf claim with CSR or SSH public key fingerprint Mariano Cano 2023-12-28 17:09:39 -0800
  • 1e72fe19c4
         Merge c3c4287010 into 581db00a00 Herman Slatman 2024-01-03 14:16:45 -0800
  • 581db00a00
         Merge pull request #1661 from smallstep/herman/acme-challenge-client-proxy Herman Slatman 2024-01-03 19:36:48 +0100
  • c3c4287010
         Support `ECDSA P-256` public keys in Nebula token validation herman/fix-nebula-curve-param Herman Slatman 2024-01-03 16:22:24 +0100
  • 26248e8f8e
         Fix Nebula sign operations requiring curve to be specified Herman Slatman 2024-01-03 16:01:38 +0100
  • c59d293d26
         Add support for `HTTP_PROXY` and `HTTPS_PROXY` to ACME solver client Herman Slatman 2024-01-03 15:09:24 +0100
  • 1d096cbcd4
         Add an `Unwrap` to the `Listener` herman/wrapped-listener Herman Slatman 2023-12-28 20:33:29 +0100
  • 82e0984018
         Add `WrappedListener` Herman Slatman 2023-12-28 16:54:22 +0100
  • b75773e193
         Merge pull request #1655 from smallstep/dependabot/go_modules/google.golang.org/protobuf-1.32.0 github-actions[bot] 2023-12-27 13:16:20 +0100
  • 5432316f2c
         Merge pull request #1657 from smallstep/dependabot/go_modules/github.com/go-chi/chi/v5-5.0.11 github-actions[bot] 2023-12-27 13:15:01 +0100
  • a612efff5a
         Bump google.golang.org/protobuf from 1.31.0 to 1.32.0 dependabot[bot] 2023-12-27 12:11:04 +0000
  • 428404870e
         Merge pull request #1654 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.60.1 github-actions[bot] 2023-12-27 13:09:23 +0100
  • f3572b39c6
         Bump github.com/go-chi/chi/v5 from 5.0.10 to 5.0.11 dependabot[bot] 2023-12-25 15:16:36 +0000
  • fc22ecc3af
         Bump github.com/slackhq/nebula from 1.6.1 to 1.8.1 dependabot[bot] 2023-12-25 15:16:27 +0000
  • e45be31055
         Bump google.golang.org/grpc from 1.60.0 to 1.60.1 dependabot[bot] 2023-12-25 15:15:59 +0000
  • 7f1a0b511a
         Bump github.com/slackhq/nebula from 1.6.1 to 1.8.0 dependabot[bot] 2023-12-19 12:22:41 +0000
  • 4a580f59fb
         Merge pull request #1649 from smallstep/dependabot/go_modules/google.golang.org/api-0.154.0 github-actions[bot] 2023-12-19 13:21:03 +0100
  • 56daa26900
         Bump google.golang.org/api from 0.153.0 to 0.154.0 dependabot[bot] 2023-12-19 12:15:39 +0000
  • 9eecd12fc2
         Merge pull request #1651 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.29.0 github-actions[bot] 2023-12-19 13:12:34 +0100
  • 40c58cb1ec
         Merge pull request #1650 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.60.0 github-actions[bot] 2023-12-19 13:11:20 +0100
  • 9780cf7b80
         Merge pull request #1648 from smallstep/dependabot/go_modules/github.com/google/uuid-1.5.0 github-actions[bot] 2023-12-19 11:39:20 +0100
  • 0e3964ee80
         Merge pull request #1652 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.17.0 github-actions[bot] 2023-12-19 10:57:57 +0100
  • 5d446dedd6
         Bump golang.org/x/crypto from 0.16.0 to 0.17.0 dependabot[bot] 2023-12-19 00:07:44 +0000
  • 46237b8638
         Bump github.com/newrelic/go-agent/v3 from 3.28.1 to 3.29.0 dependabot[bot] 2023-12-18 15:23:29 +0000
  • 33e6f2bae2
         Bump google.golang.org/grpc from 1.59.0 to 1.60.0 dependabot[bot] 2023-12-18 15:23:19 +0000
  • 2a5a65161c
         Bump github.com/google/uuid from 1.4.0 to 1.5.0 dependabot[bot] 2023-12-18 15:22:52 +0000
  • 62e09de2c6
         Merge pull request #1647 from smallstep/go-jose Mariano Cano 2023-12-12 16:47:19 -0800
  • b20af51f32
         Upgrade go.step.sm/crypto to use go-jose/v3 Mariano Cano 2023-12-12 16:36:48 -0800
  • 2c42907b4e
         Merge pull request #1645 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.39.0 github-actions[bot] 2023-12-11 18:14:56 +0100
  • ecc47c8e18
         Merge pull request #1646 from smallstep/dependabot/go_modules/google.golang.org/api-0.153.0 github-actions[bot] 2023-12-11 18:14:28 +0100
  • 4d0c684e88
         Merge pull request #1640 from smallstep/carl/debian-bookworm Carl Tashian 2023-12-11 09:02:21 -0800
  • 6fcfb7a737
         Bump google.golang.org/api from 0.152.0 to 0.153.0 dependabot[bot] 2023-12-11 16:01:48 +0000
  • 9aee8fde06
         Bump go.step.sm/crypto from 0.38.0 to 0.39.0 dependabot[bot] 2023-12-11 16:01:34 +0000
  • f515f42aa6
         Add (experimental) `STEP_CA_HTTP_TIMEOUT` for server HTTP timeouts herman/configure-server-http-timeout Herman Slatman 2023-12-11 14:10:52 +0100
  • bd46d94238
         Merge branch 'master' into carl/debian-bookworm Carl Tashian 2023-12-05 07:26:39 -0800
  • c25273d7a7
         Merge pull request #1638 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.28.1 github-actions[bot] 2023-12-05 10:55:11 +0100
  • 38140c5765
         Update Dockerfile.hsm to use Debian bookworm Carl Tashian 2023-12-04 18:10:39 -0800
  • 99277c713d
         Add FIPS build. josh/fips Josh Drake 2023-12-04 10:11:13 -0600
  • 439ace3086
         Bump github.com/newrelic/go-agent/v3 from 3.28.0 to 3.28.1 dependabot[bot] 2023-12-04 15:33:06 +0000
  • f453323ba9
         Merge pull request #1631 from smallstep/herman/fix-apple-acmeclient-invalid-signatures Herman Slatman 2023-12-01 09:48:37 +0100
  • 405aae798c
         Simplify the `copy` logic used when patching JWS signature Herman Slatman 2023-11-30 14:27:32 +0100
  • 7bfe11c687
         Bump go.step.sm/crypto (#1635) v0.25.2 Max 2023-11-28 21:24:48 -0800
  • 13937dbf23
         Bump go.step.sm/crypto max furman 2023-11-28 21:23:30 -0800
  • d34f0f6a97
         Fix linter warnings (#1634) Max 2023-11-28 20:58:58 -0800
  • ac7e7ad567
         Fix linter warnings max furman 2023-11-28 20:35:13 -0800
  • 26a3bb3c11
         Make the Apple JWS fix more robust and catch more cases. Herman Slatman 2023-11-29 02:30:28 +0100
  • 31ba1b33fb
         Merge pull request #1633 from smallstep/update-changelog-20231122 v0.25.1 Herman Slatman 2023-11-29 01:03:48 +0100
  • 528aad86dd
         Set `v0.25.1` release date Herman Slatman 2023-11-28 23:18:57 +0100
  • 3bb469274d
         Merge pull request #1632 from smallstep/update-changelog-20231122 Herman Slatman 2023-11-28 09:54:57 +0100
  • f01b48fdcd
         Update changelog for `v0.25.1` release Herman Slatman 2023-11-27 16:39:09 +0100
  • 9b12867e9d
         Merge branch 'master' into herman/acme-macos-properties herman/acme-macos-properties Herman Slatman 2023-11-27 11:10:49 +0100
  • 113491e7af
         Remove TODO for patching other algorithms for Apple ACME client Herman Slatman 2023-11-24 18:29:22 +0100
  • 06f4cbbcda
         Add (temporary) fix for missing null bytes in Apple JWS signatures Herman Slatman 2023-11-24 18:21:01 +0100
  • cf6e189d7c
         Merge pull request #1629 from smallstep/dependabot/go_modules/github.com/go-jose/go-jose/v3-3.0.1 github-actions[bot] 2023-11-22 11:32:50 +0100
  • 350ad9006c
         Bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1 dependabot[bot] 2023-11-21 22:19:52 +0000
  • 1dacf50776
         Merge pull request #1626 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.37.0 github-actions[bot] 2023-11-21 11:23:20 +0100
  • 66df354f2f
         Bump go.step.sm/crypto from 0.36.1 to 0.37.0 dependabot[bot] 2023-11-21 10:12:12 +0000
  • c6db7673bf
         Merge pull request #1628 from smallstep/dependabot/go_modules/google.golang.org/api-0.151.0 github-actions[bot] 2023-11-21 11:09:06 +0100
  • a36cf81d6a
         Merge pull request #1627 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.28.0 github-actions[bot] 2023-11-21 11:08:28 +0100
  • 5b07ae7f52
         Bump google.golang.org/api from 0.150.0 to 0.151.0 dependabot[bot] 2023-11-20 15:52:17 +0000
  • 74597e6fbb
         Bump github.com/newrelic/go-agent/v3 from 3.27.0 to 3.28.0 dependabot[bot] 2023-11-20 15:52:03 +0000
  • be3b12f39f DO NOT MERGE - FI setup Tomas Dragoun 2023-11-15 09:52:56 +0100
  • 8308e1ac54
         Merge pull request #1619 from smallstep/dependabot/go_modules/golang.org/x/net-0.18.0 github-actions[bot] 2023-11-14 12:25:15 +0100
  • 6826ca9ebb
         Bump golang.org/x/net from 0.17.0 to 0.18.0 dependabot[bot] 2023-11-14 11:17:13 +0000
  • 4f6ca083aa
         Merge pull request #1620 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.15.0 github-actions[bot] 2023-11-14 12:15:42 +0100
  • 2eefd2ce63
         Bump golang.org/x/crypto from 0.14.0 to 0.15.0 dependabot[bot] 2023-11-13 15:41:26 +0000
  • 6ebd5264ec
         Merge pull request #1621 from smallstep/dependabot/go_modules/google.golang.org/api-0.150.0 github-actions[bot] 2023-11-13 16:38:04 +0100
  • 48d9ea188b
         Bump google.golang.org/api from 0.149.0 to 0.150.0 dependabot[bot] 2023-11-13 15:26:27 +0000
  • a4b7bbf2d9
         Merge pull request #1617 from smallstep/herman/scep-webhook-provisioner-name Herman Slatman 2023-11-08 20:16:31 +0100
  • f082cbc421
         Denormalize provisioner name in SCEP webhook Herman Slatman 2023-11-08 20:09:52 +0100