Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Minor unification of tests. | Henning Baldersheim | 2020-08-12 | 2 | -12/+7 |
| | |||||
* | Fix invalid ordering of constructor arguments | Bjørn Christian Seime | 2020-06-02 | 2 | -5/+5 |
| | |||||
* | Revert "Revert "Expose underlying certificate and private key from ↵ | Bjørn Christian Seime | 2020-06-02 | 6 | -63/+122 |
| | | | | SiaIdentityProvider "" | ||||
* | Skip cert offset check | Morten Tokle | 2020-06-02 | 1 | -0/+3 |
| | |||||
* | Revert "Expose underlying certificate and private key from SiaIdentityProvider " | Harald Musum | 2020-05-28 | 6 | -122/+63 |
| | |||||
* | Merge pull request #13257 from ↵ | Bjørn Christian Seime | 2020-05-28 | 6 | -63/+122 |
|\ | | | | | | | | | vespa-engine/bjorncs/service-identity-provider-improvements Expose underlying certificate and private key from SiaIdentityProvider | ||||
| * | Provide path to trust stores from ServiceIdentityProvider | Bjørn Christian Seime | 2020-05-18 | 5 | -47/+78 |
| | | | | | | | | | | Model distinction between the Athenz and client trust store. Cleanup constructors and config for SiaIdentityProvider. | ||||
| * | Implement new certificate/privateKeyPath in AthenzIdentityProviderImpl | Bjørn Christian Seime | 2020-05-18 | 2 | -3/+6 |
| | | |||||
| * | Expose underlying certificate and private key from SiaIdentityProvider | Bjørn Christian Seime | 2020-05-18 | 4 | -23/+48 |
| | | | | | | | | | | | | Extend ServiceIdentityProvider interface with new methods. Add class that bundles certificate with private key. Use Path instead of File for better compatibility with mocked file system in unit tests. | ||||
* | | Implement getAccessToken | Morten Tokle | 2020-05-27 | 1 | -3/+15 |
|/ | |||||
* | Add config parameter for path to Athenz truststore | Bjørn Christian Seime | 2020-05-18 | 1 | -0/+1 |
| | |||||
* | LogLevel.WARNING -> Level.WARNING | gjoranv | 2020-04-25 | 1 | -2/+2 |
| | |||||
* | Import java.util.logging.Level instead of com.yahoo.log.LogLevel | gjoranv | 2020-04-25 | 1 | -1/+1 |
| | |||||
* | Add CSR generator for role certificates | Bjørn Christian Seime | 2020-04-15 | 1 | -0/+39 |
| | |||||
* | Expose truststore path | Morten Tokle | 2020-04-14 | 1 | -0/+5 |
| | |||||
* | Only decode access token when needed | Bjørn Christian Seime | 2020-03-06 | 1 | -3/+11 |
| | |||||
* | Add expiry time | Morten Tokle | 2020-03-06 | 2 | -1/+20 |
| | |||||
* | Log errors | Morten Tokle | 2020-03-05 | 1 | -3/+16 |
| | |||||
* | Revert "Add access token expiry time" | Bjørn Christian Seime | 2020-03-02 | 2 | -20/+1 |
| | |||||
* | Merge pull request #12374 from vespa-engine/mortent/accesstoken-expiry-time | Morten Tokle | 2020-03-02 | 2 | -1/+20 |
|\ | | | | | Add access token expiry time | ||||
| * | Add expiry time | Morten Tokle | 2020-02-28 | 2 | -1/+20 |
| | | |||||
* | | Support new ZPE error code introduced in 1.8.49 | Bjørn Christian Seime | 2020-03-02 | 1 | -1/+2 |
|/ | |||||
* | Increase max number of connections per route for ZMS and ZTS client | Bjørn Christian Seime | 2020-02-26 | 1 | -0/+1 |
| | | | | This should improve performance in situations where a client instance is shared among several threads. | ||||
* | Merge pull request #12009 from ↵ | Bjørn Christian Seime | 2020-02-10 | 1 | -12/+0 |
|\ | | | | | | | | | vespa-engine/bjorncs/support-access-token-in-athenz-filter Bjorncs/support access token in athenz filter | ||||
| * | Improve naming of string conversion methods for AthenzRole | Bjørn Christian Seime | 2020-01-31 | 2 | -10/+15 |
| | | |||||
| * | Remove unused methods | Bjørn Christian Seime | 2020-01-30 | 1 | -12/+0 |
| | | | | | | | | Methods were unused and relied on hardcoded issuer names (ouch!). | ||||
| * | Add methods to convert AthenzRole to and from single string | Bjørn Christian Seime | 2020-01-30 | 2 | -4/+15 |
| | | |||||
| * | Access tokens should not be an empty string | Bjørn Christian Seime | 2020-01-29 | 1 | -2/+6 |
| | | |||||
* | | Add getter returning access token with bearer prefix | Bjørn Christian Seime | 2020-02-07 | 1 | -0/+1 |
| | | |||||
* | | Support Athenz access tokens | Morten Tokle | 2020-02-03 | 1 | -0/+27 |
| | | |||||
* | | Implement zts client getAccessToken | Morten Tokle | 2020-02-03 | 3 | -0/+97 |
| | | |||||
* | | Improve naming of string conversion methods for AthenzRole | Bjørn Christian Seime | 2020-02-03 | 2 | -10/+15 |
| | | |||||
* | | Add methods to convert AthenzRole to and from single string | Bjørn Christian Seime | 2020-02-03 | 2 | -4/+15 |
| | | |||||
* | | Access tokens should not be an empty string | Bjørn Christian Seime | 2020-02-03 | 1 | -2/+6 |
|/ | |||||
* | Add checkAccessAllowed method that consumes access token + certificate | Bjørn Christian Seime | 2020-01-24 | 2 | -0/+13 |
| | |||||
* | Return the matched role in checkAccessAllowed methods | Bjørn Christian Seime | 2020-01-24 | 2 | -31/+92 |
| | | | | | | Rewrite AuthorizationResult to specify result type as a inner Type enum. Add matched role to AuthorizationResult. Propagate matched role to request object in AthenzAuthorizationFilter. | ||||
* | Add AthenzAccessToken | Bjørn Christian Seime | 2020-01-24 | 1 | -0/+46 |
| | |||||
* | Revert "Bjorncs/update zpe" | Harald Musum | 2020-01-24 | 4 | -151/+31 |
| | |||||
* | Add checkAccessAllowed method that consumes access token + certificate | Bjørn Christian Seime | 2020-01-24 | 2 | -0/+13 |
| | |||||
* | Return the matched role in checkAccessAllowed methods | Bjørn Christian Seime | 2020-01-24 | 2 | -31/+92 |
| | | | | | | Rewrite AuthorizationResult to specify result type as a inner Type enum. Add matched role to AuthorizationResult. Propagate matched role to request object in AthenzAuthorizationFilter. | ||||
* | Add AthenzAccessToken | Bjørn Christian Seime | 2020-01-24 | 1 | -0/+46 |
| | |||||
* | Upgrade Apache httpclient+httpcore to newest version | Bjørn Christian Seime | 2020-01-10 | 1 | -1/+1 |
| | | | | | Use deprecated setSslcontext() in code that may run outside JDisc. | ||||
* | Revert "Bjorncs/java deps cleanup" | Harald Musum | 2020-01-10 | 1 | -1/+1 |
| | |||||
* | Upgrade Apache httpclient and httpcore to newest version | Bjørn Christian Seime | 2020-01-09 | 1 | -1/+1 |
| | |||||
* | Remove dead code | Harald Musum | 2019-12-10 | 5 | -251/+0 |
| | |||||
* | Implement ZmsClient add/delete role member methods | Valerij Fredriksen | 2019-12-02 | 2 | -0/+11 |
| | |||||
* | Include changes from #11407 | Valerij Fredriksen | 2019-12-02 | 2 | -0/+7 |
| | |||||
* | Use filesystem when resolving paths | Morten Tokle | 2019-11-22 | 1 | -4/+3 |
| | |||||
* | Revert "Revert "Reapply #11146 Validate register and refresh"" | Morten Tokle | 2019-11-12 | 1 | -0/+39 |
| | |||||
* | Revert "Reapply #11146 Validate register and refresh" | Morten Tokle | 2019-11-12 | 1 | -39/+0 |
| |