Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fix test | Harald Musum | 2019-06-10 | 2 | -6/+3 |
| | |||||
* | Change schema for athenz-provider-service so that it will be generated per zone | Harald Musum | 2019-06-10 | 5 | -29/+15 |
| | |||||
* | Remove unused method | Bjørn Christian Seime | 2019-06-03 | 1 | -4/+0 |
| | |||||
* | Disable TLSv1.3 in manually configured https endpoint | Bjørn Christian Seime | 2019-05-22 | 1 | -0/+4 |
| | |||||
* | Java isn't math | Jon Bratseth | 2019-05-06 | 1 | -0/+1 |
| | |||||
* | Follow API change | Jon Bratseth | 2019-05-06 | 1 | -1/+1 |
| | |||||
* | mockito-all => mockito-core | Henning Baldersheim | 2019-04-29 | 1 | -1/+1 |
| | |||||
* | Revert "Upgrade Jetty to 9.4.16" | Bjørn Christian Seime | 2019-04-15 | 1 | -1/+1 |
| | |||||
* | Upgrade Jetty to 9.4.16 | Bjørn Christian Seime | 2019-04-15 | 1 | -1/+1 |
| | | | | | Use Server subclass as default constructor of SslContextFactory and some methods are marked as deprecated. | ||||
* | Install jar and symlink from config server app | Harald Musum | 2019-03-26 | 1 | -0/+2 |
| | |||||
* | Add model name when provisioned (#8692) | olaaun | 2019-03-07 | 2 | -1/+2 |
| | |||||
* | Add readme to athenz-identity-provider-service | Bjørn Christian Seime | 2019-02-25 | 1 | -0/+4 |
| | |||||
* | Disable hostname verification of client certs in hosted configserver/controller | Bjørn Christian Seime | 2019-02-20 | 1 | -0/+1 |
| | |||||
* | Remove Node.Builder | Håkon Hallingstad | 2019-02-14 | 1 | -1/+1 |
| | |||||
* | Fix method name typo | Valerij Fredriksen | 2019-01-30 | 1 | -1/+1 |
| | |||||
* | Make node builder | Håkon Hallingstad | 2019-01-28 | 1 | -1/+1 |
| | | | | | | | | | While trying to add another field to Node I came upon the multitude of places the constructor is called. This is simplified by using a builder. The builder is internal to Node for now. If wanted/needed, it can be made public (especially tests may be interested - I have touched as few as possible). | ||||
* | Do not provide apache httpclient and httpcore. | gjoranv | 2019-01-21 | 1 | -0/+2 |
| | |||||
* | 6-SNAPSHOT -> 7-SNAPSHOT | Arnstein Ressem | 2019-01-21 | 1 | -1/+1 |
| | |||||
* | Disable TLS RSA ciphers that do not support forward secrecy | Bjørn Christian Seime | 2019-01-21 | 1 | -7/+0 |
| | | | | | | This will essentially remove the temporary workaround introduced with the Jetty 9.4.12 upgrade that was done recently. JDisc will with this change only enable certificates marked as grade A by ssllabs.com | ||||
* | Rename field openStackId -> id | Martin Polden | 2019-01-02 | 2 | -3/+2 |
| | |||||
* | Cleanup | Harald Musum | 2018-11-20 | 1 | -2/+1 |
| | |||||
* | Log existing application infos if one is not found | Harald Musum | 2018-11-08 | 1 | -3/+5 |
| | |||||
* | Use simpler map for models | Harald Musum | 2018-11-05 | 1 | -7/+6 |
| | | | | | Need to keep old constructor and make a temporary one with an ignored argument to make this work (since arguments will be equal due to type erasure) | ||||
* | Fix Jetty NPE | Bjørn Christian Seime | 2018-09-13 | 1 | -0/+1 |
| | |||||
* | Merge pull request #6908 from vespa-engine/bjorncs/ec-pem-support | Bjørn Christian Seime | 2018-09-12 | 1 | -7/+4 |
|\ | | | | | Bjorncs/ec pem support | ||||
| * | Use KeyUtils | Bjørn Christian Seime | 2018-09-11 | 1 | -7/+4 |
| | | |||||
* | | Configure https connector using SslContextFactoryProvider | Bjørn Christian Seime | 2018-09-11 | 4 | -279/+206 |
|/ | |||||
* | Replace use of com.yahoo.vespa.athenz.tls with com.yahoo.security | Bjørn Christian Seime | 2018-09-05 | 3 | -8/+8 |
| | | | | - Use replace RSA with EC in unit tests where possible | ||||
* | Merge pull request #6600 from vespa-engine/bjorncs/remove-self-signed-cert | Bjørn Christian Seime | 2018-08-28 | 8 | -483/+7 |
|\ | | | | | Bjorncs/remove self signed cert | ||||
| * | Remove old uri workaround | Bjørn Christian Seime | 2018-08-16 | 1 | -1/+1 |
| | | |||||
| * | Remove self-signed certificate from configserver truststore | Bjørn Christian Seime | 2018-08-16 | 1 | -46/+6 |
| | | |||||
| * | Remove api for issuing self-signed certificates | Bjørn Christian Seime | 2018-08-16 | 6 | -436/+0 |
| | | |||||
* | | Validate provider unique id in register | Morten Tokle | 2018-08-21 | 2 | -26/+87 |
| | | |||||
* | | Validate refresh requests | Morten Tokle | 2018-08-17 | 3 | -19/+182 |
|/ | |||||
* | Remove 'dnsSuffix' and 'ztsEndpoint' from identity document | Bjørn Christian Seime | 2018-08-15 | 2 | -5/+0 |
| | |||||
* | Remove wrapped document structure from SignedIdentityDocument | Bjørn Christian Seime | 2018-08-15 | 2 | -82/+23 |
| | |||||
* | Revert "Bjorncs/remove wrapped identity document" | Morten Tokle | 2018-08-07 | 3 | -23/+87 |
| | |||||
* | Remove 'dnsSuffix' and 'ztsEndpoint' from identity document | Bjørn Christian Seime | 2018-07-26 | 2 | -5/+0 |
| | |||||
* | Remove wrapped document structure from SignedIdentityDocument | Bjørn Christian Seime | 2018-07-26 | 2 | -82/+23 |
| | |||||
* | Add debug logging of the instance confirmation object | Bjørn Christian Seime | 2018-07-10 | 2 | -0/+2 |
| | |||||
* | Split registration and refresh | Bjørn Christian Seime | 2018-07-10 | 3 | -1/+55 |
| | | | | | | | Validation for instance register cannot be reused as the identity document is not part of the refresh request. Refresh is split into a separate validation step that is currently a no-op. This is neccessary to allow certificates to be refreshed correctly. | ||||
* | Remove CA certificate from keystore | Bjørn Christian Seime | 2018-06-21 | 1 | -38/+13 |
| | |||||
* | Store CA certificates to disk | Bjørn Christian Seime | 2018-06-15 | 1 | -14/+35 |
| | |||||
* | Add temporary workaround for missing path in zts uri | Bjørn Christian Seime | 2018-06-15 | 1 | -1/+1 |
| | |||||
* | Replace use of AthenzCertificateClient with DefaultZtsClient | Bjørn Christian Seime | 2018-06-15 | 3 | -83/+28 |
| | |||||
* | Set password when creating key entry | Bjørn Christian Seime | 2018-06-14 | 1 | -2/+3 |
| | |||||
* | Store configserver certificate to VESPA_HOME/var/vespa/sia | Bjørn Christian Seime | 2018-06-13 | 1 | -58/+39 |
| | |||||
* | Separate generating and validating signature to separate class | Bjørn Christian Seime | 2018-06-12 | 4 | -69/+17 |
| | | | | | - Move signature logic to IdentityDocumentSigner - Stop using fields from deprecated IdentityDocument to generate signature | ||||
* | Deprecate identityDocument field | Bjørn Christian Seime | 2018-06-12 | 1 | -2/+2 |
| | |||||
* | Remove temporary access control from '/athenz/v1/identity-document' | Bjørn Christian Seime | 2018-06-12 | 2 | -47/+3 |
| |