Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Revert "Prepare for inlining of 'IdentityDocument' into ↵ | Jon Marius Venstad | 2018-06-03 | 3 | -19/+2 | |
| | | | | | | 'SignedIdentityDocument'" This reverts commit 48ea96e26f4cc037f0cf81a303b4617ea8e2441d. | |||||
* | Revert "Add identity type to unique instance id and signed identity document" | Jon Marius Venstad | 2018-06-03 | 2 | -4/+2 | |
| | | | | This reverts commit cfa6d7bb63402b83c84a16411a207e946de33246. | |||||
* | Revert "Use identity type to generate identity document" | Jon Marius Venstad | 2018-06-03 | 4 | -18/+20 | |
| | | | | This reverts commit 78da30192dad43d338b9e3f04263dd7c83094b90. | |||||
* | Merge pull request #6037 from vespa-engine/bjorncs/new-unique-instance-id | Morten Tokle | 2018-06-01 | 6 | -31/+40 | |
|\ | | | | | Bjorncs/new unique instance | |||||
| * | Use identity type to generate identity document | Bjørn Christian Seime | 2018-05-31 | 4 | -20/+18 | |
| | | ||||||
| * | Add identity type to unique instance id and signed identity document | Bjørn Christian Seime | 2018-05-31 | 2 | -2/+4 | |
| | | ||||||
| * | Prepare for inlining of 'IdentityDocument' into 'SignedIdentityDocument' | Bjørn Christian Seime | 2018-05-31 | 3 | -2/+19 | |
| | | ||||||
| * | Remove parent hostname from identity document | Bjørn Christian Seime | 2018-05-31 | 2 | -10/+2 | |
| | | ||||||
* | | Move athenz-provider-service.def to configdefinitions | Håkon Hallingstad | 2018-05-31 | 1 | -26/+0 | |
|/ | ||||||
* | Accept identity documents for tenant Docker containers | Bjørn Christian Seime | 2018-05-28 | 1 | -0/+7 | |
| | ||||||
* | Remove use of deprecated entity types | Bjørn Christian Seime | 2018-05-16 | 7 | -62/+66 | |
| | ||||||
* | Append parent ips to identity document | Morten Tokle | 2018-05-15 | 2 | -16/+41 | |
| | ||||||
* | Add new binding types which name does not conflict with model types | Bjørn Christian Seime | 2018-05-11 | 1 | -0/+6 | |
| | | | | | | - Deprecate old types - Add utility class to map between the types - Temporarily allow deprecation warnings in vespa-athenz + athenz-identity-provider-service. | |||||
* | Revert "Skip sending ipaddresses in CSR" | Morten Tokle | 2018-04-30 | 2 | -26/+1 | |
| | ||||||
* | Skip sending ipaddresses in CSR | Morten Tokle | 2018-04-27 | 2 | -1/+26 | |
| | ||||||
* | Use separate types for tenant and vespa identity providers | Bjørn Christian Seime | 2018-04-26 | 2 | -5/+5 | |
| | | | | | | | | - Add ServiceIdentityProvider - Remove AthenzSslContextProvider - Change SiaIdentityProvider to implement ServiceIdentityProvider - Change AthenzIdentityProviderImpl to implement both ServiceIdentityProvider and AthenzIdentityProvider - Stop using AthenzIdentityProvider for internal use | |||||
* | Include ipaddress SAN in CSR | Morten Tokle | 2018-04-26 | 2 | -5/+8 | |
| | ||||||
* | Deprecate legacy SecretStore interface | Morten Tokle | 2018-04-24 | 1 | -1/+1 | |
| | ||||||
* | Rename Ckms -> SecretStore | Morten Tokle | 2018-04-23 | 1 | -5/+5 | |
| | ||||||
* | Change type of 'zts-endpoint' to URI | Bjørn Christian Seime | 2018-04-19 | 2 | -2/+4 | |
| | ||||||
* | Move identity document api types to vespa-athenz | Bjørn Christian Seime | 2018-04-19 | 9 | -246/+27 | |
| | ||||||
* | Add configserver hostname in identity document | Bjørn Christian Seime | 2018-04-19 | 1 | -1/+2 | |
| | ||||||
* | Retrieve host identity through client certificate | Bjørn Christian Seime | 2018-04-19 | 2 | -6/+17 | |
| | ||||||
* | Add separate method for generating identity document for tenant and node | Bjørn Christian Seime | 2018-04-19 | 1 | -1/+26 | |
| | ||||||
* | Add type for provider unique instance id | Bjørn Christian Seime | 2018-04-18 | 3 | -4/+5 | |
| | ||||||
* | Change format of provider unique instance id | Bjørn Christian Seime | 2018-04-18 | 1 | -1/+1 | |
| | ||||||
* | add access control to identity document resource | Morten Tokle | 2018-04-13 | 2 | -2/+35 | |
| | ||||||
* | Use Pkcs10Csr and related types in CertificateSigner | Bjørn Christian Seime | 2018-03-22 | 5 | -148/+64 | |
| | ||||||
* | Remove direct use of Crypto | Bjørn Christian Seime | 2018-03-22 | 1 | -4/+3 | |
| | ||||||
* | Use X509CertificateUtils | Bjørn Christian Seime | 2018-03-22 | 1 | -2/+2 | |
| | ||||||
* | Use certificate builder in AthenzSslTrustStoreConfigurator | Bjørn Christian Seime | 2018-03-22 | 1 | -40/+16 | |
| | ||||||
* | Revert "Bjorncs/certificate builder" | Harald Musum | 2018-03-21 | 8 | -85/+194 | |
| | ||||||
* | Use Pkcs10Csr and related types in CertificateSigner | Bjørn Christian Seime | 2018-03-20 | 5 | -148/+64 | |
| | ||||||
* | Remove direct use of Crypto | Bjørn Christian Seime | 2018-03-19 | 1 | -4/+3 | |
| | ||||||
* | Use X509CertificateUtils | Bjørn Christian Seime | 2018-03-19 | 1 | -2/+2 | |
| | ||||||
* | Use certificate builder in AthenzSslTrustStoreConfigurator | Bjørn Christian Seime | 2018-03-19 | 1 | -40/+16 | |
| | ||||||
* | Use KeyStoreBuilder in AthenzSslTrustStoreConfigurator and ↵ | Bjørn Christian Seime | 2018-03-12 | 2 | -41/+30 | |
| | | | | AthenzSslKeyStoreConfigurator | |||||
* | Merge pull request #5257 from ↵ | Valerij Fredriksen | 2018-03-08 | 2 | -4/+5 | |
|\ | | | | | | | | | vespa-engine/hakonhall/tune-hostname-commonname-mismatch-message Tune hostname-commonname mismatch message | |||||
| * | Tune hostname-commonname mismatch message | Håkon Hallingstad | 2018-03-08 | 2 | -4/+5 | |
| | | ||||||
* | | Merge pull request #5242 from vespa-engine/bjorncs/bouncycastle-preinstall | gjoranv | 2018-03-08 | 1 | -11/+9 | |
|\ \ | |/ |/| | bjorncs+gv/bouncycastle preinstall | |||||
| * | Use bouncycastle from container-dev. | gjoranv | 2018-03-07 | 1 | -11/+9 | |
| | | ||||||
| * | Don't bundle in BouncyCastle artifacts in athenz-identity-provider-service | Bjørn Christian Seime | 2018-03-07 | 1 | -2/+2 | |
| | | ||||||
* | | Merge pull request #5239 from vespa-engine/bjorncs/configserver-tls-on-aws | Harald Musum | 2018-03-08 | 5 | -56/+25 | |
|\ \ | | | | | | | Bjorncs/configserver tls on aws | |||||
| * | | Don't unwrap parameters as separate fields | Bjørn Christian Seime | 2018-03-07 | 1 | -15/+6 | |
| | | | ||||||
| * | | ZTS server endpoint is zone specific | Bjørn Christian Seime | 2018-03-07 | 5 | -8/+5 | |
| | | | ||||||
| * | | Rewrite server TLS init to use bootstrap identity and allow AWS | Bjørn Christian Seime | 2018-03-07 | 5 | -38/+19 | |
| |/ | ||||||
* / | Respond with HTTP-400 when source IP does not match common name | Valerij Fredriksen | 2018-03-07 | 1 | -0/+4 | |
|/ | ||||||
* | Revert "Rewrite server TLS init to use bootstrap identity and allow AWS" | Håkon Hallingstad | 2018-03-03 | 5 | -19/+38 | |
| | ||||||
* | Rewrite server TLS init to use bootstrap identity and allow AWS | Bjørn Christian Seime | 2018-03-02 | 5 | -38/+19 | |
| | ||||||
* | Don't fail on keystore on disk read/write | Bjørn Christian Seime | 2018-03-01 | 2 | -9/+10 | |
| | | | | Also rename getKeystoreExpiry to getCertificateExpiry |