Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fix Jetty NPE | Bjørn Christian Seime | 2018-09-13 | 1 | -0/+1 |
| | |||||
* | Merge pull request #6908 from vespa-engine/bjorncs/ec-pem-support | Bjørn Christian Seime | 2018-09-12 | 1 | -7/+4 |
|\ | | | | | Bjorncs/ec pem support | ||||
| * | Use KeyUtils | Bjørn Christian Seime | 2018-09-11 | 1 | -7/+4 |
| | | |||||
* | | Configure https connector using SslContextFactoryProvider | Bjørn Christian Seime | 2018-09-11 | 4 | -279/+206 |
|/ | |||||
* | Replace use of com.yahoo.vespa.athenz.tls with com.yahoo.security | Bjørn Christian Seime | 2018-09-05 | 3 | -8/+8 |
| | | | | - Use replace RSA with EC in unit tests where possible | ||||
* | Merge pull request #6600 from vespa-engine/bjorncs/remove-self-signed-cert | Bjørn Christian Seime | 2018-08-28 | 8 | -483/+7 |
|\ | | | | | Bjorncs/remove self signed cert | ||||
| * | Remove old uri workaround | Bjørn Christian Seime | 2018-08-16 | 1 | -1/+1 |
| | | |||||
| * | Remove self-signed certificate from configserver truststore | Bjørn Christian Seime | 2018-08-16 | 1 | -46/+6 |
| | | |||||
| * | Remove api for issuing self-signed certificates | Bjørn Christian Seime | 2018-08-16 | 6 | -436/+0 |
| | | |||||
* | | Validate provider unique id in register | Morten Tokle | 2018-08-21 | 2 | -26/+87 |
| | | |||||
* | | Validate refresh requests | Morten Tokle | 2018-08-17 | 3 | -19/+182 |
|/ | |||||
* | Remove 'dnsSuffix' and 'ztsEndpoint' from identity document | Bjørn Christian Seime | 2018-08-15 | 2 | -5/+0 |
| | |||||
* | Remove wrapped document structure from SignedIdentityDocument | Bjørn Christian Seime | 2018-08-15 | 2 | -82/+23 |
| | |||||
* | Revert "Bjorncs/remove wrapped identity document" | Morten Tokle | 2018-08-07 | 3 | -23/+87 |
| | |||||
* | Remove 'dnsSuffix' and 'ztsEndpoint' from identity document | Bjørn Christian Seime | 2018-07-26 | 2 | -5/+0 |
| | |||||
* | Remove wrapped document structure from SignedIdentityDocument | Bjørn Christian Seime | 2018-07-26 | 2 | -82/+23 |
| | |||||
* | Add debug logging of the instance confirmation object | Bjørn Christian Seime | 2018-07-10 | 2 | -0/+2 |
| | |||||
* | Split registration and refresh | Bjørn Christian Seime | 2018-07-10 | 3 | -1/+55 |
| | | | | | | | Validation for instance register cannot be reused as the identity document is not part of the refresh request. Refresh is split into a separate validation step that is currently a no-op. This is neccessary to allow certificates to be refreshed correctly. | ||||
* | Remove CA certificate from keystore | Bjørn Christian Seime | 2018-06-21 | 1 | -38/+13 |
| | |||||
* | Store CA certificates to disk | Bjørn Christian Seime | 2018-06-15 | 1 | -14/+35 |
| | |||||
* | Add temporary workaround for missing path in zts uri | Bjørn Christian Seime | 2018-06-15 | 1 | -1/+1 |
| | |||||
* | Replace use of AthenzCertificateClient with DefaultZtsClient | Bjørn Christian Seime | 2018-06-15 | 3 | -83/+28 |
| | |||||
* | Set password when creating key entry | Bjørn Christian Seime | 2018-06-14 | 1 | -2/+3 |
| | |||||
* | Store configserver certificate to VESPA_HOME/var/vespa/sia | Bjørn Christian Seime | 2018-06-13 | 1 | -58/+39 |
| | |||||
* | Separate generating and validating signature to separate class | Bjørn Christian Seime | 2018-06-12 | 4 | -69/+17 |
| | | | | | - Move signature logic to IdentityDocumentSigner - Stop using fields from deprecated IdentityDocument to generate signature | ||||
* | Deprecate identityDocument field | Bjørn Christian Seime | 2018-06-12 | 1 | -2/+2 |
| | |||||
* | Remove temporary access control from '/athenz/v1/identity-document' | Bjørn Christian Seime | 2018-06-12 | 2 | -47/+3 |
| | |||||
* | Use UUID to generate random, crypto secure secret | Bjørn Christian Seime | 2018-06-07 | 1 | -8/+2 |
| | |||||
* | Use identity type to generate identity document | Bjørn Christian Seime | 2018-06-07 | 4 | -20/+18 |
| | |||||
* | Add identity type to unique instance id and signed identity document | Bjørn Christian Seime | 2018-06-07 | 2 | -2/+4 |
| | |||||
* | Prepare for inlining of 'IdentityDocument' into 'SignedIdentityDocument' | Bjørn Christian Seime | 2018-06-07 | 3 | -2/+19 |
| | |||||
* | Remove parent hostname from identity document | Bjørn Christian Seime | 2018-06-07 | 2 | -10/+2 |
| | |||||
* | Stop using a fixed keystore password | Bjørn Christian Seime | 2018-06-05 | 1 | -31/+67 |
| | |||||
* | Revert "Remove parent hostname from identity document" | Jon Marius Venstad | 2018-06-03 | 2 | -2/+10 |
| | | | | This reverts commit 0150ceec2523c02853a14d0ddf483a73b1640dd5. | ||||
* | Revert "Prepare for inlining of 'IdentityDocument' into ↵ | Jon Marius Venstad | 2018-06-03 | 3 | -19/+2 |
| | | | | | | 'SignedIdentityDocument'" This reverts commit 48ea96e26f4cc037f0cf81a303b4617ea8e2441d. | ||||
* | Revert "Add identity type to unique instance id and signed identity document" | Jon Marius Venstad | 2018-06-03 | 2 | -4/+2 |
| | | | | This reverts commit cfa6d7bb63402b83c84a16411a207e946de33246. | ||||
* | Revert "Use identity type to generate identity document" | Jon Marius Venstad | 2018-06-03 | 4 | -18/+20 |
| | | | | This reverts commit 78da30192dad43d338b9e3f04263dd7c83094b90. | ||||
* | Merge pull request #6037 from vespa-engine/bjorncs/new-unique-instance-id | Morten Tokle | 2018-06-01 | 6 | -31/+40 |
|\ | | | | | Bjorncs/new unique instance | ||||
| * | Use identity type to generate identity document | Bjørn Christian Seime | 2018-05-31 | 4 | -20/+18 |
| | | |||||
| * | Add identity type to unique instance id and signed identity document | Bjørn Christian Seime | 2018-05-31 | 2 | -2/+4 |
| | | |||||
| * | Prepare for inlining of 'IdentityDocument' into 'SignedIdentityDocument' | Bjørn Christian Seime | 2018-05-31 | 3 | -2/+19 |
| | | |||||
| * | Remove parent hostname from identity document | Bjørn Christian Seime | 2018-05-31 | 2 | -10/+2 |
| | | |||||
* | | Move athenz-provider-service.def to configdefinitions | Håkon Hallingstad | 2018-05-31 | 1 | -26/+0 |
|/ | |||||
* | Accept identity documents for tenant Docker containers | Bjørn Christian Seime | 2018-05-28 | 1 | -0/+7 |
| | |||||
* | Remove use of deprecated entity types | Bjørn Christian Seime | 2018-05-16 | 7 | -62/+66 |
| | |||||
* | Append parent ips to identity document | Morten Tokle | 2018-05-15 | 2 | -16/+41 |
| | |||||
* | Add new binding types which name does not conflict with model types | Bjørn Christian Seime | 2018-05-11 | 1 | -0/+6 |
| | | | | | | - Deprecate old types - Add utility class to map between the types - Temporarily allow deprecation warnings in vespa-athenz + athenz-identity-provider-service. | ||||
* | Revert "Skip sending ipaddresses in CSR" | Morten Tokle | 2018-04-30 | 2 | -26/+1 |
| | |||||
* | Skip sending ipaddresses in CSR | Morten Tokle | 2018-04-27 | 2 | -1/+26 |
| | |||||
* | Use separate types for tenant and vespa identity providers | Bjørn Christian Seime | 2018-04-26 | 2 | -5/+5 |
| | | | | | | | | - Add ServiceIdentityProvider - Remove AthenzSslContextProvider - Change SiaIdentityProvider to implement ServiceIdentityProvider - Change AthenzIdentityProviderImpl to implement both ServiceIdentityProvider and AthenzIdentityProvider - Stop using AthenzIdentityProvider for internal use |