Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Include ipaddress SAN in CSR | Morten Tokle | 2018-04-26 | 2 | -5/+8 | |
| | ||||||
* | Deprecate legacy SecretStore interface | Morten Tokle | 2018-04-24 | 1 | -1/+1 | |
| | ||||||
* | Rename Ckms -> SecretStore | Morten Tokle | 2018-04-23 | 1 | -5/+5 | |
| | ||||||
* | Change type of 'zts-endpoint' to URI | Bjørn Christian Seime | 2018-04-19 | 2 | -2/+4 | |
| | ||||||
* | Move identity document api types to vespa-athenz | Bjørn Christian Seime | 2018-04-19 | 9 | -246/+27 | |
| | ||||||
* | Add configserver hostname in identity document | Bjørn Christian Seime | 2018-04-19 | 1 | -1/+2 | |
| | ||||||
* | Retrieve host identity through client certificate | Bjørn Christian Seime | 2018-04-19 | 2 | -6/+17 | |
| | ||||||
* | Add separate method for generating identity document for tenant and node | Bjørn Christian Seime | 2018-04-19 | 1 | -1/+26 | |
| | ||||||
* | Add type for provider unique instance id | Bjørn Christian Seime | 2018-04-18 | 3 | -4/+5 | |
| | ||||||
* | Change format of provider unique instance id | Bjørn Christian Seime | 2018-04-18 | 1 | -1/+1 | |
| | ||||||
* | add access control to identity document resource | Morten Tokle | 2018-04-13 | 2 | -2/+35 | |
| | ||||||
* | Use Pkcs10Csr and related types in CertificateSigner | Bjørn Christian Seime | 2018-03-22 | 5 | -148/+64 | |
| | ||||||
* | Remove direct use of Crypto | Bjørn Christian Seime | 2018-03-22 | 1 | -4/+3 | |
| | ||||||
* | Use X509CertificateUtils | Bjørn Christian Seime | 2018-03-22 | 1 | -2/+2 | |
| | ||||||
* | Use certificate builder in AthenzSslTrustStoreConfigurator | Bjørn Christian Seime | 2018-03-22 | 1 | -40/+16 | |
| | ||||||
* | Revert "Bjorncs/certificate builder" | Harald Musum | 2018-03-21 | 8 | -85/+194 | |
| | ||||||
* | Use Pkcs10Csr and related types in CertificateSigner | Bjørn Christian Seime | 2018-03-20 | 5 | -148/+64 | |
| | ||||||
* | Remove direct use of Crypto | Bjørn Christian Seime | 2018-03-19 | 1 | -4/+3 | |
| | ||||||
* | Use X509CertificateUtils | Bjørn Christian Seime | 2018-03-19 | 1 | -2/+2 | |
| | ||||||
* | Use certificate builder in AthenzSslTrustStoreConfigurator | Bjørn Christian Seime | 2018-03-19 | 1 | -40/+16 | |
| | ||||||
* | Use KeyStoreBuilder in AthenzSslTrustStoreConfigurator and ↵ | Bjørn Christian Seime | 2018-03-12 | 2 | -41/+30 | |
| | | | | AthenzSslKeyStoreConfigurator | |||||
* | Merge pull request #5257 from ↵ | Valerij Fredriksen | 2018-03-08 | 2 | -4/+5 | |
|\ | | | | | | | | | vespa-engine/hakonhall/tune-hostname-commonname-mismatch-message Tune hostname-commonname mismatch message | |||||
| * | Tune hostname-commonname mismatch message | Håkon Hallingstad | 2018-03-08 | 2 | -4/+5 | |
| | | ||||||
* | | Merge pull request #5242 from vespa-engine/bjorncs/bouncycastle-preinstall | gjoranv | 2018-03-08 | 1 | -11/+9 | |
|\ \ | |/ |/| | bjorncs+gv/bouncycastle preinstall | |||||
| * | Use bouncycastle from container-dev. | gjoranv | 2018-03-07 | 1 | -11/+9 | |
| | | ||||||
| * | Don't bundle in BouncyCastle artifacts in athenz-identity-provider-service | Bjørn Christian Seime | 2018-03-07 | 1 | -2/+2 | |
| | | ||||||
* | | Merge pull request #5239 from vespa-engine/bjorncs/configserver-tls-on-aws | Harald Musum | 2018-03-08 | 5 | -56/+25 | |
|\ \ | | | | | | | Bjorncs/configserver tls on aws | |||||
| * | | Don't unwrap parameters as separate fields | Bjørn Christian Seime | 2018-03-07 | 1 | -15/+6 | |
| | | | ||||||
| * | | ZTS server endpoint is zone specific | Bjørn Christian Seime | 2018-03-07 | 5 | -8/+5 | |
| | | | ||||||
| * | | Rewrite server TLS init to use bootstrap identity and allow AWS | Bjørn Christian Seime | 2018-03-07 | 5 | -38/+19 | |
| |/ | ||||||
* / | Respond with HTTP-400 when source IP does not match common name | Valerij Fredriksen | 2018-03-07 | 1 | -0/+4 | |
|/ | ||||||
* | Revert "Rewrite server TLS init to use bootstrap identity and allow AWS" | Håkon Hallingstad | 2018-03-03 | 5 | -19/+38 | |
| | ||||||
* | Rewrite server TLS init to use bootstrap identity and allow AWS | Bjørn Christian Seime | 2018-03-02 | 5 | -38/+19 | |
| | ||||||
* | Don't fail on keystore on disk read/write | Bjørn Christian Seime | 2018-03-01 | 2 | -9/+10 | |
| | | | | Also rename getKeystoreExpiry to getCertificateExpiry | |||||
* | Cache Athenz certificate to disk. Prefer disk on load. | Bjørn Christian Seime | 2018-03-01 | 3 | -32/+83 | |
| | | | | | Do not include expiry to Athenz request as they are default 30 days anyways. | |||||
* | Revert "Rewrite server TLS init to use bootstrap identity and allow AWS" | Harald Musum | 2018-02-28 | 5 | -32/+52 | |
| | ||||||
* | Rewrite server TLS init to use bootstrap identity and allow AWS | Bjørn Christian Seime | 2018-02-28 | 5 | -52/+32 | |
| | ||||||
* | Use Ckms instead of SecretStore in athenz-identity-provider-service | Bjørn Christian Seime | 2018-02-22 | 1 | -9/+10 | |
| | ||||||
* | move identityprovider package to vespa-athenz | Morten Tokle | 2018-02-22 | 13 | -1077/+0 | |
| | ||||||
* | Add zts client dep | Morten Tokle | 2018-02-22 | 1 | -0/+24 | |
| | ||||||
* | Add bouncycastle compile scope dep | Morten Tokle | 2018-02-21 | 1 | -0/+10 | |
| | ||||||
* | Revert "Merge pull request #5072 from vespa-engine/revert-4984-mortent/ckms" | Morten Tokle | 2018-02-21 | 14 | -73/+1091 | |
| | | | | | This reverts commit 6d7b65adfcd1e918da8173dab25bf701074f3cdc, reversing changes made to 2ecdfefd5616743f62691f64a517ab787d6f0c10. | |||||
* | Revert "Refactor identityprovider. Add SiaIdentityProvider" | Morten Tokle | 2018-02-20 | 14 | -1101/+73 | |
| | ||||||
* | Add bouncycastle compile scope dep | Morten Tokle | 2018-02-20 | 1 | -0/+10 | |
| | ||||||
* | Revert "Merge pull request #5072 from vespa-engine/revert-4984-mortent/ckms" | Morten Tokle | 2018-02-20 | 14 | -73/+1091 | |
| | | | | | This reverts commit 6d7b65adfcd1e918da8173dab25bf701074f3cdc, reversing changes made to 2ecdfefd5616743f62691f64a517ab787d6f0c10. | |||||
* | Revert "Refactor identityprovider. Add SiaIdentityProvider" | Morten Tokle | 2018-02-20 | 14 | -1091/+73 | |
| | ||||||
* | Merge branch 'master' into mortent/ckms | Morten Tokle | 2018-02-20 | 1 | -1/+2 | |
|\ | ||||||
* | | Move identity provider to athenz-identity-provider-service module | Morten Tokle | 2018-02-16 | 14 | -73/+1090 | |
|/ | ||||||
* | Report config server cert expiry metrics | Valerij Fredriksen | 2018-02-06 | 3 | -9/+99 | |
| | ||||||
* | Implement /refresh endpoint for indetity provider | Valerij Fredriksen | 2018-01-31 | 1 | -1/+1 | |
| |