aboutsummaryrefslogtreecommitdiffstats
path: root/vespa-athenz
Commit message (Collapse)AuthorAgeFilesLines
* Use ZTS getAccess instead of ZMSMorten Tokle2023-02-202-0/+26
|
* Re-register if identity document is outdatedBjørn Christian Seime2023-02-151-0/+2
|
* Handle unknown attributes in identity documentBjørn Christian Seime2023-02-074-20/+118
|
* Ignore cluster type in identity document signatureBjørn Christian Seime2023-02-072-13/+15
|
* Handle missing cluster typeBjørn Christian Seime2023-02-061-1/+1
|
* Add test case with missing cluster typeBjørn Christian Seime2023-02-061-10/+25
|
* Add 'asCertificateSanUri()'Bjørn Christian Seime2023-02-062-2/+6
|
* Remove dependency on config-provisioningBjørn Christian Seime2023-02-038-24/+52
| | | | Bundle is available in configured container
* Add SAN URI with cluster type in instance certificatesBjørn Christian Seime2023-02-037-14/+37
|
* Add cluster type as SAN URI in Athenz instance certificates for VespaBjørn Christian Seime2023-02-039-23/+43
|
* Depend on lessBjørn Christian Seime2023-02-031-7/+53
|
* Convert to Java recordBjørn Christian Seime2023-02-034-291/+26
|
* Support updating athenz domain metaMorten Tokle2023-01-243-0/+47
|
* Merge pull request #25511 from vespa-engine/olaa/vathenz-enclave-resourcesOla Aunrønning2023-01-204-4/+19
|\ | | | | Adds Athenz resource helper functions
| * Include attributes when creating Athenz subdomainOla Aunronning2023-01-192-4/+10
| |
| * Adds Athenz resource helper functionsOla Aunronning2023-01-112-0/+9
| |
* | Merge pull request #25651 from ↵Kristian Aune2023-01-201-1/+2
|\ \ | | | | | | | | | | | | vespa-engine/yngveaasheim/Use-ContainerMetrics-enum-more-places Use container metrics enum more places
| * | Use ContainerMetrics enumYngve Aasheim2023-01-201-1/+2
| | |
* | | Add JNA in lib/jars + export as packages from jdisc_coreBjørn Christian Seime2023-01-201-0/+9
|/ / | | | | | | Jdisc-core will embed JNA. The JNA in lib/jars is used by fatjars only.
* / Unify on Streams.toList()Henning Baldersheim2023-01-175-13/+8
|/
* Ensure that HTTPS clients only use allowed ciphers and protocol versionsBjørn Christian Seime2023-01-092-2/+8
|
* Revert "Ensure that HTTPS clients only use allowed ciphers and protocol ↵Andreas Eriksen2023-01-062-8/+2
| | | | versions" (#25436)
* Ensure that HTTPS clients only use allowed ciphers and protocol versionsBjørn Christian Seime2023-01-062-2/+8
|
* Include spiffe uriMorten Tokle2023-01-051-0/+4
|
* Revert "Revert collect(Collectors.toList())"Henning Baldersheim2022-12-045-6/+6
|
* Revert collect(Collectors.toList())Henning Baldersheim2022-12-045-6/+6
|
* collect(Collectors.toList()) -> toList()Henning Baldersheim2022-12-025-6/+6
|
* Let controller be strict only with known cloud accountsjonmv2022-11-142-4/+3
|
* Manage version of commons-codec.gjoranv2022-10-241-2/+0
|
* Add method for fetching domains based on aws account idEirik Nygaard2022-10-132-0/+14
|
* Upgrade BouncyCastle to 1.72Bjørn Christian Seime2022-10-121-2/+2
| | | | Migrate to artifact names used by 1.71+
* SIA identity SSLContext with custom trust storeHåkon Hallingstad2022-10-111-0/+4
|
* ha parameter store client WIPAndreas Eriksen2022-10-031-1/+1
|
* Delete ZMS policyOla Aunrønning2022-08-122-0/+9
|
* Clean up roles of deleted tenantsOla Aunrønning2022-08-102-0/+9
|
* Read approved attributeMorten Tokle2022-08-052-11/+13
|
* Convert vespa-athenz to junit5Bjørn Christian Seime2022-07-2713-86/+115
|
* Use getSubjectCommonName()Bjørn Christian Seime2022-07-211-1/+1
|
* Simplify type definition for subject alternative namesBjørn Christian Seime2022-07-203-17/+15
|
* Move generic crypto helpers from 'c.y.s.tls' to 'c.y.s'Bjørn Christian Seime2022-07-202-2/+2
|
* Add proxy principal spiffe urisMorten Tokle2022-06-303-7/+27
|
* Merge pull request #23262 from ↵Håkon Hallingstad2022-06-284-30/+1
|\ | | | | | | | | vespa-engine/hakonhall/remove-trust-store-paths-from-siaidentityprovider Remove trust store paths from SiaIdentityProvider
| * Remove trust store paths from SiaIdentityProviderHåkon Hallingstad2022-06-284-30/+1
| |
* | Request tokens with max expiry timeMorten Tokle2022-06-281-5/+6
| |
* | Reduce role token expiry to 10 minutesMorten Tokle2022-06-282-5/+28
| |
* | Expose role certificateMorten Tokle2022-06-281-1/+14
|/
* Allow empty authz headerMorten Tokle2022-06-201-4/+4
|
* Refer to correct secret version from signed docHåkon Hallingstad2022-06-092-3/+2
|
* Set project version to 8-SNAPSHOTgjoranv2022-06-081-2/+2
|
* Don't provide Jetty bundles from 'container' artifactBjørn Christian Seime2022-06-081-3/+3
| | | | Add dependency on 'jetty-http' with scope test instead of adding false dependencies with 'container-test'.