Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Move NTokenValidator to vespa-athenz + load pub keys from file | Bjørn Christian Seime | 2018-07-25 | 1 | -0/+87 | |
| | | | | | | | - Move NTokenValidator from controller-server to vespa-athenz - Remodel ZmsKeystore as AthenzTruststore - Use file-backed truststore on controller (replaces download of public keys) - Remove ZmsClient.getPublicKey/getPublicKeys | |||||
* | Write private keys in PKCS#1 | Morten Tokle | 2018-07-25 | 1 | -2/+2 | |
| | ||||||
* | Revert "Move NTokenValidator to vespa-athenz + load pub keys from file" | Harald Musum | 2018-07-09 | 1 | -87/+0 | |
| | ||||||
* | Move NTokenValidator to vespa-athenz + load pub keys from file | Bjørn Christian Seime | 2018-07-09 | 1 | -0/+87 | |
| | | | | | | | - Move NTokenValidator from controller-server to vespa-athenz - Remodel ZmsKeystore as AthenzTruststore - Use file-backed truststore on controller (replaces download of public keys) - Remove ZmsClient.getPublicKey/getPublicKeys | |||||
* | Add data type for resource name | Bjørn Christian Seime | 2018-06-20 | 1 | -0/+21 | |
| | ||||||
* | Add method to ZtsClient to retrieve identity certificate | Bjørn Christian Seime | 2018-06-15 | 2 | -10/+20 | |
| | ||||||
* | Remove support for ntokens | Bjørn Christian Seime | 2018-06-13 | 1 | -2/+2 | |
| | ||||||
* | Separate generating and validating signature to separate class | Bjørn Christian Seime | 2018-06-12 | 1 | -0/+50 | |
| | | | | | - Move signature logic to IdentityDocumentSigner - Stop using fields from deprecated IdentityDocument to generate signature | |||||
* | Use mutual TLS auth when communicating with ZTS | Bjørn Christian Seime | 2018-06-11 | 1 | -57/+10 | |
| | | | | | - Remove instance register/refresh from ad-hoc ZtsClient implementation - Deprecate ad-hoc ZtsClient | |||||
* | Use mutual TLS auth when retrieving identity document | Bjørn Christian Seime | 2018-06-11 | 1 | -12/+12 | |
| | ||||||
* | Add identity type to unique instance id and signed identity document | Bjørn Christian Seime | 2018-06-07 | 2 | -2/+17 | |
| | ||||||
* | Prepare for inlining of 'IdentityDocument' into 'SignedIdentityDocument' | Bjørn Christian Seime | 2018-06-07 | 1 | -1/+5 | |
| | ||||||
* | Revert "Prepare for inlining of 'IdentityDocument' into ↵ | Jon Marius Venstad | 2018-06-03 | 1 | -5/+1 | |
| | | | | | | 'SignedIdentityDocument'" This reverts commit 48ea96e26f4cc037f0cf81a303b4617ea8e2441d. | |||||
* | Revert "Add identity type to unique instance id and signed identity document" | Jon Marius Venstad | 2018-06-03 | 2 | -17/+2 | |
| | | | | This reverts commit cfa6d7bb63402b83c84a16411a207e946de33246. | |||||
* | Add identity type to unique instance id and signed identity document | Bjørn Christian Seime | 2018-05-31 | 2 | -2/+17 | |
| | ||||||
* | Prepare for inlining of 'IdentityDocument' into 'SignedIdentityDocument' | Bjørn Christian Seime | 2018-05-31 | 1 | -1/+5 | |
| | ||||||
* | Remove deprecated identity-document entity types | Bjørn Christian Seime | 2018-05-28 | 2 | -46/+24 | |
| | ||||||
* | Add athenzDnsSuffix and ztsUrl to identity config | Bjørn Christian Seime | 2018-05-15 | 1 | -1/+1 | |
| | ||||||
* | Rename IdentityDocumentService -> IdentityDocumentClient | Bjørn Christian Seime | 2018-05-04 | 1 | -3/+3 | |
| | ||||||
* | Rename AthenzService -> ZtsClient | Bjørn Christian Seime | 2018-04-27 | 1 | -4/+4 | |
| | ||||||
* | Reuse SSLContext when communicating with ZTS | Bjørn Christian Seime | 2018-04-27 | 1 | -2/+1 | |
| | ||||||
* | Only create SSLContext once for each update | Bjørn Christian Seime | 2018-04-26 | 1 | -2/+20 | |
| | ||||||
* | Include ipaddress SAN in CSR | Morten Tokle | 2018-04-26 | 1 | -0/+34 | |
| | ||||||
* | Rename AthenzSslContextBuilder -> SslContextBuilder | Bjørn Christian Seime | 2018-04-20 | 1 | -7/+7 | |
| | ||||||
* | Add type for provider unique instance id | Bjørn Christian Seime | 2018-04-18 | 1 | -0/+23 | |
| | ||||||
* | Move identity provider client to new Java package | Bjørn Christian Seime | 2018-04-18 | 1 | -1/+1 | |
| | ||||||
* | Rename getCommonNames -> getSubjectCommonNames | Bjørn Christian Seime | 2018-04-17 | 1 | -1/+0 | |
| | ||||||
* | Add helper for extracting SANs from certificate | Bjørn Christian Seime | 2018-04-17 | 2 | -2/+28 | |
| | | | | | - Model SAN as type SubjectAlternativeName - Add SubjectAlternativeName to csr and certificate builders | |||||
* | Replace BouncyCastle use with vespa-athenz helpers | Bjørn Christian Seime | 2018-04-09 | 1 | -31/+9 | |
| | ||||||
* | Rewrite SiaIdentityProvider to be easily testable, add unit test | Bjørn Christian Seime | 2018-03-22 | 1 | -0/+93 | |
| | | | | Contains fix for parsing bug as well. | |||||
* | Add method for serializing private key to PEM | Bjørn Christian Seime | 2018-03-22 | 1 | -0/+14 | |
| | | | | | Rewrite pem deserialization to use BouncyCastle directly instead of using third-party wrapper. | |||||
* | Change return type of getBasicContraints() to Optional<Boolean> | Bjørn Christian Seime | 2018-03-22 | 1 | -1/+2 | |
| | ||||||
* | Add getters for basic constraints and subject alternative names | Bjørn Christian Seime | 2018-03-22 | 1 | -0/+54 | |
| | ||||||
* | Remove direct use of Crypto | Bjørn Christian Seime | 2018-03-22 | 1 | -0/+22 | |
| | ||||||
* | Remove CryptoUtils | Bjørn Christian Seime | 2018-03-22 | 2 | -30/+7 | |
| | ||||||
* | Use new builders in TestUtils | Bjørn Christian Seime | 2018-03-22 | 4 | -41/+18 | |
| | ||||||
* | Add builders and helpers for x509 certificate and csr | Bjørn Christian Seime | 2018-03-22 | 4 | -0/+151 | |
| | ||||||
* | Revert "Bjorncs/certificate builder" | Harald Musum | 2018-03-21 | 10 | -244/+67 | |
| | ||||||
* | Change return type of getBasicContraints() to Optional<Boolean> | Bjørn Christian Seime | 2018-03-21 | 1 | -1/+2 | |
| | ||||||
* | Add getters for basic constraints and subject alternative names | Bjørn Christian Seime | 2018-03-20 | 1 | -0/+54 | |
| | ||||||
* | Remove direct use of Crypto | Bjørn Christian Seime | 2018-03-19 | 1 | -0/+22 | |
| | ||||||
* | Remove CryptoUtils | Bjørn Christian Seime | 2018-03-19 | 2 | -30/+7 | |
| | ||||||
* | Use new builders in TestUtils | Bjørn Christian Seime | 2018-03-19 | 4 | -41/+18 | |
| | ||||||
* | Add builders and helpers for x509 certificate and csr | Bjørn Christian Seime | 2018-03-19 | 4 | -0/+146 | |
| | ||||||
* | Add helper method to serialize keystores to file | Bjørn Christian Seime | 2018-03-12 | 1 | -4/+3 | |
| | ||||||
* | Add fluent api for building KeyStore | Bjørn Christian Seime | 2018-03-12 | 3 | -47/+125 | |
| | ||||||
* | Use BouncyCastle to read PKCS12 keystores | Bjørn Christian Seime | 2018-03-08 | 1 | -6/+49 | |
| | | | | Introduce enum for the supported keystore types | |||||
* | Remove scheduler wrapper | Morten Tokle | 2018-03-01 | 1 | -4/+3 | |
| | ||||||
* | Simplify certificate refresh | Morten Tokle | 2018-03-01 | 1 | -134/+55 | |
| | ||||||
* | move identityprovider package to vespa-athenz | Morten Tokle | 2018-02-22 | 2 | -0/+228 | |
| |