aboutsummaryrefslogtreecommitdiffstats
path: root/vespa-athenz
Commit message (Collapse)AuthorAgeFilesLines
...
* | Add contants for default key version and document version to ↵Bjørn Christian Seime2018-05-161-0/+3
|/ | | | SignedIdentityDocument
* Add methods to ZtsClient for retrieving role token and certificateBjørn Christian Seime2018-05-115-2/+257
|
* Allow lambda passed to withClient() to throw IOExceptionBjørn Christian Seime2018-05-111-7/+9
|
* Add overloaded method taking Path instead of FileBjørn Christian Seime2018-05-111-2/+7
|
* Remove checked exception type from ZtsClient.close()Bjørn Christian Seime2018-05-111-2/+2
|
* Add new binding types which name does not conflict with model typesBjørn Christian Seime2018-05-118-0/+325
| | | | | | - Deprecate old types - Add utility class to map between the types - Temporarily allow deprecation warnings in vespa-athenz + athenz-identity-provider-service.
* Refactor entity parsing from getInstanceIdentityBjørn Christian Seime2018-05-111-4/+7
|
* Add trailing slash to uri to ensure that URI.resolve behave as expectedBjørn Christian Seime2018-05-111-2/+9
|
* Add missing call to lock()Bjørn Christian Seime2018-05-111-0/+2
|
* Use ConcurrentCopyOnWriteArraySet -- could alternatively provide a ComparatorJon Marius Venstad2018-05-081-2/+2
|
* Add InstanceCsrGeneratorBjørn Christian Seime2018-05-071-0/+50
|
* Add convenience method to add subject alternative name to csr builderBjørn Christian Seime2018-05-071-0/+5
|
* Add helper method to return domain nameBjørn Christian Seime2018-05-071-0/+1
|
* Don't use api deprecated in apache http 4.5 + set user agentBjørn Christian Seime2018-05-043-9/+9
|
* Add identity document client + domain types for signed identity documentBjørn Christian Seime2018-05-045-0/+276
|
* Rename IdentityDocumentService -> IdentityDocumentClientBjørn Christian Seime2018-05-044-10/+10
|
* Enable creation of ZtsClient using ServiceIdentityProviderBjørn Christian Seime2018-05-031-19/+78
|
* Add new ZtsClient implementationBjørn Christian Seime2018-05-038-0/+347
|
* Add support for registration of listeners on ServiceIdentityProviderBjørn Christian Seime2018-05-034-12/+74
|
* Use new identity document api pathBjørn Christian Seime2018-04-301-2/+1
|
* Add initial implementation for retrieving role token/certBjørn Christian Seime2018-04-302-1/+98
|
* Rename AthenzService -> ZtsClientBjørn Christian Seime2018-04-274-30/+31
|
* Reuse SSLContext when communicating with ZTSBjørn Christian Seime2018-04-274-36/+7
|
* Only create SSLContext once for each updateBjørn Christian Seime2018-04-264-20/+50
|
* Rename getDomain() -> domain() + getService() -> service()Bjørn Christian Seime2018-04-261-2/+2
|
* Use separate types for tenant and vespa identity providersBjørn Christian Seime2018-04-263-17/+32
| | | | | | | | - Add ServiceIdentityProvider - Remove AthenzSslContextProvider - Change SiaIdentityProvider to implement ServiceIdentityProvider - Change AthenzIdentityProviderImpl to implement both ServiceIdentityProvider and AthenzIdentityProvider - Stop using AthenzIdentityProvider for internal use
* Include ipaddress SAN in CSRMorten Tokle2018-04-264-14/+72
|
* Allow SiaIdentityProvider to notify listeners after reloadBjørn Christian Seime2018-04-241-2/+17
|
* Add simplifed constructor to SiaIdentityProviderBjørn Christian Seime2018-04-241-5/+20
|
* Set name for threads launched by SiaIdentityProviderBjørn Christian Seime2018-04-201-9/+6
|
* Ensure that failing to updating SSLContext does not halt schedulerBjørn Christian Seime2018-04-201-1/+10
| | | | - Add logging during SSLContext updating
* Make alternative SiaIdentityProvider constructor publicBjørn Christian Seime2018-04-201-5/+5
|
* Remove method withIdentityCertificateBjørn Christian Seime2018-04-202-7/+1
|
* Add builder method for PEM encoded cert and keyBjørn Christian Seime2018-04-202-15/+18
|
* Rename AthenzSslContextBuilder -> SslContextBuilderBjørn Christian Seime2018-04-204-20/+20
|
* Remove duplicate type for signed identity documentBjørn Christian Seime2018-04-193-33/+3
|
* Change type of 'zts-endpoint' to URIBjørn Christian Seime2018-04-191-2/+3
|
* Move identity document api types to vespa-athenzBjørn Christian Seime2018-04-195-0/+281
|
* Add type for provider unique instance idBjørn Christian Seime2018-04-183-0/+140
|
* Move identity provider client to new Java packageBjørn Christian Seime2018-04-1811-11/+11
|
* Add helper method for extracting issuer common nameBjørn Christian Seime2018-04-171-3/+4
|
* Rename getCommonNames -> getSubjectCommonNamesBjørn Christian Seime2018-04-173-3/+2
|
* Add helper for extracting SANs from certificateBjørn Christian Seime2018-04-177-29/+188
| | | | | - Model SAN as type SubjectAlternativeName - Add SubjectAlternativeName to csr and certificate builders
* Replace BouncyCastle use with vespa-athenz helpersBjørn Christian Seime2018-04-091-31/+9
|
* Rewrite SiaIdentityProvider to be easily testable, add unit testBjørn Christian Seime2018-03-222-23/+132
| | | | Contains fix for parsing bug as well.
* Add method for serializing private key to PEMBjørn Christian Seime2018-03-222-1/+54
| | | | | Rewrite pem deserialization to use BouncyCastle directly instead of using third-party wrapper.
* A csr can only contain a single 'extension request' attributeBjørn Christian Seime2018-03-221-13/+13
|
* Change return type of getBasicContraints() to Optional<Boolean>Bjørn Christian Seime2018-03-222-5/+6
|
* Add getters for basic constraints and subject alternative namesBjørn Christian Seime2018-03-227-17/+175
|
* Add helper method for extracting common nameBjørn Christian Seime2018-03-222-11/+25
|