Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Test | Jon Marius Venstad | 2019-01-11 | 1 | -0/+3 |
| | |||||
* | Remove deprecated types from vespa-athenz | Bjørn Christian Seime | 2018-10-17 | 5 | -166/+1 |
| | |||||
* | Rename InstanceCsrGenerator -> CsrGenerator | Morten Tokle | 2018-10-05 | 1 | -2/+2 |
| | |||||
* | Add OU field to csr | Morten Tokle | 2018-10-04 | 1 | -0/+37 |
| | |||||
* | Add copyright header | Jon Bratseth | 2018-10-01 | 7 | -7/+14 |
| | |||||
* | Revert "Replace RSA with EC in unit test" | Bjørn Christian Seime | 2018-09-12 | 1 | -2/+2 |
| | | | | This reverts commit bdb057ecfac68acaaeecc2fe54ae989e0fba2c75. | ||||
* | Remove most deprecated types from com.yahoo.vespa.athenz.tls | Bjørn Christian Seime | 2018-09-11 | 9 | -303/+17 |
| | | | | Pkcs10Csr and related classes are not removed as they are currently in use. | ||||
* | Replace RSA with EC in unit test | Bjørn Christian Seime | 2018-09-11 | 1 | -2/+2 |
| | |||||
* | Replace use of com.yahoo.vespa.athenz.tls with com.yahoo.security | Bjørn Christian Seime | 2018-09-07 | 1 | -2/+2 |
| | |||||
* | Replace use of com.yahoo.vespa.athenz.tls with com.yahoo.security | Bjørn Christian Seime | 2018-09-05 | 3 | -28/+23 |
| | | | | - Use replace RSA with EC in unit tests where possible | ||||
* | Remove workaround for missing identity type | Bjørn Christian Seime | 2018-08-16 | 1 | -12/+0 |
| | |||||
* | Remove 'dnsSuffix' and 'ztsEndpoint' from identity document | Bjørn Christian Seime | 2018-08-15 | 1 | -3/+2 |
| | |||||
* | Remove wrapped document structure from SignedIdentityDocument | Bjørn Christian Seime | 2018-08-15 | 1 | -1/+1 |
| | |||||
* | Revert "Bjorncs/remove wrapped identity document" | Morten Tokle | 2018-08-07 | 1 | -2/+3 |
| | |||||
* | Merge pull request #6482 from ↵ | Bjørn Christian Seime | 2018-08-06 | 1 | -3/+2 |
|\ | | | | | | | | | vespa-engine/bjorncs/remove-wrapped-identity-document Bjorncs/remove wrapped identity document | ||||
| * | Remove 'dnsSuffix' and 'ztsEndpoint' from identity document | Bjørn Christian Seime | 2018-07-26 | 1 | -3/+2 |
| | | |||||
| * | Remove wrapped document structure from SignedIdentityDocument | Bjørn Christian Seime | 2018-07-26 | 1 | -1/+1 |
| | | |||||
* | | Add utility method to find all services from sia directory | Bjørn Christian Seime | 2018-07-26 | 1 | -0/+40 |
|/ | |||||
* | Handle zms keys in addition to zts keys | Bjørn Christian Seime | 2018-07-25 | 1 | -1/+13 |
| | |||||
* | Move NTokenValidator to vespa-athenz + load pub keys from file | Bjørn Christian Seime | 2018-07-25 | 1 | -0/+87 |
| | | | | | | | - Move NTokenValidator from controller-server to vespa-athenz - Remodel ZmsKeystore as AthenzTruststore - Use file-backed truststore on controller (replaces download of public keys) - Remove ZmsClient.getPublicKey/getPublicKeys | ||||
* | Write private keys in PKCS#1 | Morten Tokle | 2018-07-25 | 1 | -2/+2 |
| | |||||
* | Revert "Move NTokenValidator to vespa-athenz + load pub keys from file" | Harald Musum | 2018-07-09 | 1 | -87/+0 |
| | |||||
* | Move NTokenValidator to vespa-athenz + load pub keys from file | Bjørn Christian Seime | 2018-07-09 | 1 | -0/+87 |
| | | | | | | | - Move NTokenValidator from controller-server to vespa-athenz - Remodel ZmsKeystore as AthenzTruststore - Use file-backed truststore on controller (replaces download of public keys) - Remove ZmsClient.getPublicKey/getPublicKeys | ||||
* | Add data type for resource name | Bjørn Christian Seime | 2018-06-20 | 1 | -0/+21 |
| | |||||
* | Add method to ZtsClient to retrieve identity certificate | Bjørn Christian Seime | 2018-06-15 | 2 | -10/+20 |
| | |||||
* | Remove support for ntokens | Bjørn Christian Seime | 2018-06-13 | 1 | -2/+2 |
| | |||||
* | Separate generating and validating signature to separate class | Bjørn Christian Seime | 2018-06-12 | 1 | -0/+50 |
| | | | | | - Move signature logic to IdentityDocumentSigner - Stop using fields from deprecated IdentityDocument to generate signature | ||||
* | Use mutual TLS auth when communicating with ZTS | Bjørn Christian Seime | 2018-06-11 | 1 | -57/+10 |
| | | | | | - Remove instance register/refresh from ad-hoc ZtsClient implementation - Deprecate ad-hoc ZtsClient | ||||
* | Use mutual TLS auth when retrieving identity document | Bjørn Christian Seime | 2018-06-11 | 1 | -12/+12 |
| | |||||
* | Add identity type to unique instance id and signed identity document | Bjørn Christian Seime | 2018-06-07 | 2 | -2/+17 |
| | |||||
* | Prepare for inlining of 'IdentityDocument' into 'SignedIdentityDocument' | Bjørn Christian Seime | 2018-06-07 | 1 | -1/+5 |
| | |||||
* | Revert "Prepare for inlining of 'IdentityDocument' into ↵ | Jon Marius Venstad | 2018-06-03 | 1 | -5/+1 |
| | | | | | | 'SignedIdentityDocument'" This reverts commit 48ea96e26f4cc037f0cf81a303b4617ea8e2441d. | ||||
* | Revert "Add identity type to unique instance id and signed identity document" | Jon Marius Venstad | 2018-06-03 | 2 | -17/+2 |
| | | | | This reverts commit cfa6d7bb63402b83c84a16411a207e946de33246. | ||||
* | Add identity type to unique instance id and signed identity document | Bjørn Christian Seime | 2018-05-31 | 2 | -2/+17 |
| | |||||
* | Prepare for inlining of 'IdentityDocument' into 'SignedIdentityDocument' | Bjørn Christian Seime | 2018-05-31 | 1 | -1/+5 |
| | |||||
* | Remove deprecated identity-document entity types | Bjørn Christian Seime | 2018-05-28 | 2 | -46/+24 |
| | |||||
* | Add athenzDnsSuffix and ztsUrl to identity config | Bjørn Christian Seime | 2018-05-15 | 1 | -1/+1 |
| | |||||
* | Rename IdentityDocumentService -> IdentityDocumentClient | Bjørn Christian Seime | 2018-05-04 | 1 | -3/+3 |
| | |||||
* | Rename AthenzService -> ZtsClient | Bjørn Christian Seime | 2018-04-27 | 1 | -4/+4 |
| | |||||
* | Reuse SSLContext when communicating with ZTS | Bjørn Christian Seime | 2018-04-27 | 1 | -2/+1 |
| | |||||
* | Only create SSLContext once for each update | Bjørn Christian Seime | 2018-04-26 | 1 | -2/+20 |
| | |||||
* | Include ipaddress SAN in CSR | Morten Tokle | 2018-04-26 | 1 | -0/+34 |
| | |||||
* | Rename AthenzSslContextBuilder -> SslContextBuilder | Bjørn Christian Seime | 2018-04-20 | 1 | -7/+7 |
| | |||||
* | Add type for provider unique instance id | Bjørn Christian Seime | 2018-04-18 | 1 | -0/+23 |
| | |||||
* | Move identity provider client to new Java package | Bjørn Christian Seime | 2018-04-18 | 1 | -1/+1 |
| | |||||
* | Rename getCommonNames -> getSubjectCommonNames | Bjørn Christian Seime | 2018-04-17 | 1 | -1/+0 |
| | |||||
* | Add helper for extracting SANs from certificate | Bjørn Christian Seime | 2018-04-17 | 2 | -2/+28 |
| | | | | | - Model SAN as type SubjectAlternativeName - Add SubjectAlternativeName to csr and certificate builders | ||||
* | Replace BouncyCastle use with vespa-athenz helpers | Bjørn Christian Seime | 2018-04-09 | 1 | -31/+9 |
| | |||||
* | Rewrite SiaIdentityProvider to be easily testable, add unit test | Bjørn Christian Seime | 2018-03-22 | 1 | -0/+93 |
| | | | | Contains fix for parsing bug as well. | ||||
* | Add method for serializing private key to PEM | Bjørn Christian Seime | 2018-03-22 | 1 | -0/+14 |
| | | | | | Rewrite pem deserialization to use BouncyCastle directly instead of using third-party wrapper. |