summaryrefslogtreecommitdiffstats
path: root/vespa-athenz/src/test
Commit message (Collapse)AuthorAgeFilesLines
...
* Move NTokenValidator to vespa-athenz + load pub keys from fileBjørn Christian Seime2018-07-251-0/+87
| | | | | | | - Move NTokenValidator from controller-server to vespa-athenz - Remodel ZmsKeystore as AthenzTruststore - Use file-backed truststore on controller (replaces download of public keys) - Remove ZmsClient.getPublicKey/getPublicKeys
* Write private keys in PKCS#1Morten Tokle2018-07-251-2/+2
|
* Revert "Move NTokenValidator to vespa-athenz + load pub keys from file"Harald Musum2018-07-091-87/+0
|
* Move NTokenValidator to vespa-athenz + load pub keys from fileBjørn Christian Seime2018-07-091-0/+87
| | | | | | | - Move NTokenValidator from controller-server to vespa-athenz - Remodel ZmsKeystore as AthenzTruststore - Use file-backed truststore on controller (replaces download of public keys) - Remove ZmsClient.getPublicKey/getPublicKeys
* Add data type for resource nameBjørn Christian Seime2018-06-201-0/+21
|
* Add method to ZtsClient to retrieve identity certificateBjørn Christian Seime2018-06-152-10/+20
|
* Remove support for ntokensBjørn Christian Seime2018-06-131-2/+2
|
* Separate generating and validating signature to separate classBjørn Christian Seime2018-06-121-0/+50
| | | | | - Move signature logic to IdentityDocumentSigner - Stop using fields from deprecated IdentityDocument to generate signature
* Use mutual TLS auth when communicating with ZTSBjørn Christian Seime2018-06-111-57/+10
| | | | | - Remove instance register/refresh from ad-hoc ZtsClient implementation - Deprecate ad-hoc ZtsClient
* Use mutual TLS auth when retrieving identity documentBjørn Christian Seime2018-06-111-12/+12
|
* Add identity type to unique instance id and signed identity documentBjørn Christian Seime2018-06-072-2/+17
|
* Prepare for inlining of 'IdentityDocument' into 'SignedIdentityDocument'Bjørn Christian Seime2018-06-071-1/+5
|
* Revert "Prepare for inlining of 'IdentityDocument' into ↵Jon Marius Venstad2018-06-031-5/+1
| | | | | | 'SignedIdentityDocument'" This reverts commit 48ea96e26f4cc037f0cf81a303b4617ea8e2441d.
* Revert "Add identity type to unique instance id and signed identity document"Jon Marius Venstad2018-06-032-17/+2
| | | | This reverts commit cfa6d7bb63402b83c84a16411a207e946de33246.
* Add identity type to unique instance id and signed identity documentBjørn Christian Seime2018-05-312-2/+17
|
* Prepare for inlining of 'IdentityDocument' into 'SignedIdentityDocument'Bjørn Christian Seime2018-05-311-1/+5
|
* Remove deprecated identity-document entity typesBjørn Christian Seime2018-05-282-46/+24
|
* Add athenzDnsSuffix and ztsUrl to identity configBjørn Christian Seime2018-05-151-1/+1
|
* Rename IdentityDocumentService -> IdentityDocumentClientBjørn Christian Seime2018-05-041-3/+3
|
* Rename AthenzService -> ZtsClientBjørn Christian Seime2018-04-271-4/+4
|
* Reuse SSLContext when communicating with ZTSBjørn Christian Seime2018-04-271-2/+1
|
* Only create SSLContext once for each updateBjørn Christian Seime2018-04-261-2/+20
|
* Include ipaddress SAN in CSRMorten Tokle2018-04-261-0/+34
|
* Rename AthenzSslContextBuilder -> SslContextBuilderBjørn Christian Seime2018-04-201-7/+7
|
* Add type for provider unique instance idBjørn Christian Seime2018-04-181-0/+23
|
* Move identity provider client to new Java packageBjørn Christian Seime2018-04-181-1/+1
|
* Rename getCommonNames -> getSubjectCommonNamesBjørn Christian Seime2018-04-171-1/+0
|
* Add helper for extracting SANs from certificateBjørn Christian Seime2018-04-172-2/+28
| | | | | - Model SAN as type SubjectAlternativeName - Add SubjectAlternativeName to csr and certificate builders
* Replace BouncyCastle use with vespa-athenz helpersBjørn Christian Seime2018-04-091-31/+9
|
* Rewrite SiaIdentityProvider to be easily testable, add unit testBjørn Christian Seime2018-03-221-0/+93
| | | | Contains fix for parsing bug as well.
* Add method for serializing private key to PEMBjørn Christian Seime2018-03-221-0/+14
| | | | | Rewrite pem deserialization to use BouncyCastle directly instead of using third-party wrapper.
* Change return type of getBasicContraints() to Optional<Boolean>Bjørn Christian Seime2018-03-221-1/+2
|
* Add getters for basic constraints and subject alternative namesBjørn Christian Seime2018-03-221-0/+54
|
* Remove direct use of CryptoBjørn Christian Seime2018-03-221-0/+22
|
* Remove CryptoUtilsBjørn Christian Seime2018-03-222-30/+7
|
* Use new builders in TestUtilsBjørn Christian Seime2018-03-224-41/+18
|
* Add builders and helpers for x509 certificate and csrBjørn Christian Seime2018-03-224-0/+151
|
* Revert "Bjorncs/certificate builder"Harald Musum2018-03-2110-244/+67
|
* Change return type of getBasicContraints() to Optional<Boolean>Bjørn Christian Seime2018-03-211-1/+2
|
* Add getters for basic constraints and subject alternative namesBjørn Christian Seime2018-03-201-0/+54
|
* Remove direct use of CryptoBjørn Christian Seime2018-03-191-0/+22
|
* Remove CryptoUtilsBjørn Christian Seime2018-03-192-30/+7
|
* Use new builders in TestUtilsBjørn Christian Seime2018-03-194-41/+18
|
* Add builders and helpers for x509 certificate and csrBjørn Christian Seime2018-03-194-0/+146
|
* Add helper method to serialize keystores to fileBjørn Christian Seime2018-03-121-4/+3
|
* Add fluent api for building KeyStoreBjørn Christian Seime2018-03-123-47/+125
|
* Use BouncyCastle to read PKCS12 keystoresBjørn Christian Seime2018-03-081-6/+49
| | | | Introduce enum for the supported keystore types
* Remove scheduler wrapperMorten Tokle2018-03-011-4/+3
|
* Simplify certificate refreshMorten Tokle2018-03-011-134/+55
|
* move identityprovider package to vespa-athenzMorten Tokle2018-02-222-0/+228
|