aboutsummaryrefslogtreecommitdiffstats
path: root/security-utils
Commit message (Expand)AuthorAgeFilesLines
* - Bring some libraries up to date.Henning Baldersheim2023-08-291-1/+1
* Enable TLSv1.3 for Vespa mTLSBjørn Christian Seime2023-07-201-10/+7
* Defer side channel-safe array checks to existing BC utilsTor Brede Vekterli2023-07-193-24/+13
* Short-cut re-acquiring ordered locksjonmv2023-06-271-10/+4
* Simplify token API by using fixed context for fingerprintsTor Brede Vekterli2023-06-153-40/+51
* Add factory methods accepting hex stringBjørn Christian Seime2023-06-143-0/+24
* Remove trailing commagjoranv2023-06-121-1/+1
* Manually add X-JDisc-Non-PublicApi-Export-Package headergjoranv2023-06-091-0/+1
* Also include domain when printing tokenTor Brede Vekterli2023-06-063-3/+12
* Emit fingerprints with delimiters by defaultTor Brede Vekterli2023-06-063-3/+18
* Fix some silly typosTor Brede Vekterli2023-06-061-3/+3
* Add a simple token primitive to security utilsTor Brede Vekterli2023-06-066-0/+398
* Build with jdk20Jon Bratseth2023-04-172-4/+4
* Revert "Enable TLSv1.3 for Vespa mTLS"Henning Baldersheim2023-03-251-7/+10
* Enable TLSv1.3 for Vespa mTLSBjørn Christian Seime2023-03-241-10/+7
* Implement RFC 9180 HPKE sender asymmetric key authentication modeTor Brede Vekterli2023-03-234-13/+195
* Merge pull request #26168 from vespa-engine/revert-26152-revert-26139-vekterl...Tor Brede Vekterli2023-02-242-2/+4
|\
| * Revert "Revert "Add `vespa.content.state_api` capability" MERGEOK"Tor Brede Vekterli2023-02-232-2/+4
* | Revert "Revert "Store original capability (set) names from JSON config in Pee...Bjørn Christian Seime2023-02-236-25/+72
|/
* Merge pull request #26153 from vespa-engine/revert-26145-bjorncs/capabilitiesBjørn Christian Seime2023-02-236-72/+25
|\
| * Revert "Store original capability (set) names from JSON config in PeerPolicy"Bjørn Christian Seime2023-02-236-72/+25
* | Revert "Add `vespa.content.state_api` capability"Bjørn Christian Seime2023-02-232-4/+2
|/
* Merge pull request #26139 from vespa-engine/vekterli/add-content-state-api-ca...Tor Brede Vekterli2023-02-222-2/+4
|\
| * Add `vespa.content.state_api` capability to JavaTor Brede Vekterli2023-02-222-2/+4
* | Store original capability (set) names from JSON config in PeerPolicyBjørn Christian Seime2023-02-226-25/+72
|/
* Grant container nodes access to container document apiBjørn Christian Seime2023-02-201-1/+2
* Specify that '/logs' requires logserver capabilityBjørn Christian Seime2023-02-171-1/+2
* Warn instead of fail for unknown capability (set)Bjørn Christian Seime2023-02-172-9/+10
* Improve metric names, fix wiringBjørn Christian Seime2023-02-161-9/+9
* Add capability 'vespa.sentinel.inspect_services'Bjørn Christian Seime2023-02-161-0/+1
* Add metrics for capability checksBjørn Christian Seime2023-02-162-0/+39
* Add capability 'vespa.content.proton_admin_api'Bjørn Christian Seime2023-02-151-0/+1
* Add slobrok capability to all application nodesBjørn Christian Seime2023-02-151-2/+2
* Add new capabilities to existing capability setsBjørn Christian Seime2023-02-151-6/+10
* Use explicit `equals` and `hashCode` to use contents of arrays, not just refsTor Brede Vekterli2023-02-142-0/+55
* Require capabilities for built-in request handlersBjørn Christian Seime2023-02-141-0/+4
* Revert "Revert "Bjorncs/capabilities""Henning Baldersheim2023-02-145-21/+34
* Revert "Bjorncs/capabilities"Henning Baldersheim2023-02-145-34/+21
* Add new capabilities in node specific capability setsBjørn Christian Seime2023-02-133-11/+24
* Rename 'from()' to 'of()'Bjørn Christian Seime2023-02-135-10/+10
* Define required capabilities for existing JRT RPC methodsBjørn Christian Seime2023-02-091-0/+12
* Introduce capbilities for unclassified APIsBjørn Christian Seime2023-02-091-0/+3
* Move definition of predefined capability set to parent classBjørn Christian Seime2023-02-094-30/+46
* Add 'vespa.none' capabilityBjørn Christian Seime2023-02-061-0/+1
* Add an "interactive" token resealing protocol and basic tooling supportTor Brede Vekterli2023-01-314-10/+197
* Add y64 encoderBjørn Christian Seime2023-01-302-0/+65
* Unify on Streams.toListHenning Baldersheim2023-01-175-10/+5
* Ensure that HTTPS clients only use allowed ciphers and protocol versionsBjørn Christian Seime2023-01-092-2/+25
* Revert "Ensure that HTTPS clients only use allowed ciphers and protocol versi...Andreas Eriksen2023-01-062-25/+2
* Ensure that HTTPS clients only use allowed ciphers and protocol versionsBjørn Christian Seime2023-01-062-2/+25