Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Merge pull request #12009 from ↵ | Bjørn Christian Seime | 2020-02-10 | 1 | -12/+0 |
|\ | | | | | | | | | vespa-engine/bjorncs/support-access-token-in-athenz-filter Bjorncs/support access token in athenz filter | ||||
| * | Improve naming of string conversion methods for AthenzRole | Bjørn Christian Seime | 2020-01-31 | 2 | -10/+15 |
| | | |||||
| * | Remove unused methods | Bjørn Christian Seime | 2020-01-30 | 1 | -12/+0 |
| | | | | | | | | Methods were unused and relied on hardcoded issuer names (ouch!). | ||||
| * | Add methods to convert AthenzRole to and from single string | Bjørn Christian Seime | 2020-01-30 | 2 | -4/+15 |
| | | |||||
| * | Access tokens should not be an empty string | Bjørn Christian Seime | 2020-01-29 | 1 | -2/+6 |
| | | |||||
* | | Add getter returning access token with bearer prefix | Bjørn Christian Seime | 2020-02-07 | 1 | -0/+1 |
| | | |||||
* | | Support Athenz access tokens | Morten Tokle | 2020-02-03 | 1 | -0/+27 |
| | | |||||
* | | Implement zts client getAccessToken | Morten Tokle | 2020-02-03 | 3 | -0/+97 |
| | | |||||
* | | Improve naming of string conversion methods for AthenzRole | Bjørn Christian Seime | 2020-02-03 | 2 | -10/+15 |
| | | |||||
* | | Add methods to convert AthenzRole to and from single string | Bjørn Christian Seime | 2020-02-03 | 2 | -4/+15 |
| | | |||||
* | | Access tokens should not be an empty string | Bjørn Christian Seime | 2020-02-03 | 1 | -2/+6 |
|/ | |||||
* | Add checkAccessAllowed method that consumes access token + certificate | Bjørn Christian Seime | 2020-01-24 | 2 | -0/+13 |
| | |||||
* | Return the matched role in checkAccessAllowed methods | Bjørn Christian Seime | 2020-01-24 | 2 | -31/+92 |
| | | | | | | Rewrite AuthorizationResult to specify result type as a inner Type enum. Add matched role to AuthorizationResult. Propagate matched role to request object in AthenzAuthorizationFilter. | ||||
* | Add AthenzAccessToken | Bjørn Christian Seime | 2020-01-24 | 1 | -0/+46 |
| | |||||
* | Revert "Bjorncs/update zpe" | Harald Musum | 2020-01-24 | 4 | -151/+31 |
| | |||||
* | Add checkAccessAllowed method that consumes access token + certificate | Bjørn Christian Seime | 2020-01-24 | 2 | -0/+13 |
| | |||||
* | Return the matched role in checkAccessAllowed methods | Bjørn Christian Seime | 2020-01-24 | 2 | -31/+92 |
| | | | | | | Rewrite AuthorizationResult to specify result type as a inner Type enum. Add matched role to AuthorizationResult. Propagate matched role to request object in AthenzAuthorizationFilter. | ||||
* | Add AthenzAccessToken | Bjørn Christian Seime | 2020-01-24 | 1 | -0/+46 |
| | |||||
* | Upgrade Apache httpclient+httpcore to newest version | Bjørn Christian Seime | 2020-01-10 | 1 | -1/+1 |
| | | | | | Use deprecated setSslcontext() in code that may run outside JDisc. | ||||
* | Revert "Bjorncs/java deps cleanup" | Harald Musum | 2020-01-10 | 1 | -1/+1 |
| | |||||
* | Upgrade Apache httpclient and httpcore to newest version | Bjørn Christian Seime | 2020-01-09 | 1 | -1/+1 |
| | |||||
* | Remove dead code | Harald Musum | 2019-12-10 | 5 | -251/+0 |
| | |||||
* | Implement ZmsClient add/delete role member methods | Valerij Fredriksen | 2019-12-02 | 2 | -0/+11 |
| | |||||
* | Include changes from #11407 | Valerij Fredriksen | 2019-12-02 | 2 | -0/+7 |
| | |||||
* | Use filesystem when resolving paths | Morten Tokle | 2019-11-22 | 1 | -4/+3 |
| | |||||
* | Revert "Revert "Reapply #11146 Validate register and refresh"" | Morten Tokle | 2019-11-12 | 1 | -0/+39 |
| | |||||
* | Revert "Reapply #11146 Validate register and refresh" | Morten Tokle | 2019-11-12 | 1 | -39/+0 |
| | |||||
* | Reapply #11146 Validate register and refresh | Morten Tokle | 2019-11-11 | 1 | -0/+39 |
| | |||||
* | Revert "Reapply "Validate register and refresh"" | Morten Tokle | 2019-10-31 | 1 | -23/+0 |
| | |||||
* | Revert "Revert "Validate register and refresh"" | Morten Tokle | 2019-10-30 | 1 | -0/+23 |
| | |||||
* | Revert "Validate register and refresh" | Morten Tokle | 2019-10-30 | 1 | -23/+0 |
| | |||||
* | Merge pull request #11146 from vespa-engine/mortent/validate-csr | Morten Tokle | 2019-10-30 | 1 | -0/+23 |
|\ | | | | | Validate register and refresh | ||||
| * | Validate register and refresh | Morten Tokle | 2019-10-29 | 1 | -0/+23 |
| | | |||||
* | | Pass Okta identity token to Athenz tenancy operations | Bjørn Christian Seime | 2019-10-29 | 3 | -16/+63 |
|/ | |||||
* | Make SiaIdentityProvider trust store type configurable | Martin Polden | 2019-10-21 | 3 | -11/+53 |
| | |||||
* | Use mockito-core 3.1.0 | Håkon Hallingstad | 2019-10-18 | 1 | -2/+2 |
| | |||||
* | Depend on interface instead of subclass | Håkon Hallingstad | 2019-10-09 | 1 | -6/+0 |
| | |||||
* | Refresh certs using hostnameVerifier | Morten Tokle | 2019-10-08 | 1 | -1/+5 |
| | |||||
* | Propagate hostnameverifier correctly | Morten Tokle | 2019-10-04 | 1 | -1/+1 |
| | |||||
* | Support internal zts | Morten Tokle | 2019-10-03 | 3 | -10/+15 |
| | |||||
* | Read signature algorithm from key | Morten Tokle | 2019-10-03 | 1 | -8/+3 |
| | |||||
* | Use trust store path that corresponds to data in RPM package ↵ | Harald Musum | 2019-10-01 | 1 | -6/+2 |
| | | | | yahoo_certificate_bundle | ||||
* | Expose path to CA certificates in SiaUtils | Håkon Hallingstad | 2019-09-27 | 1 | -0/+7 |
| | |||||
* | Remove unused field in DefaultZtsClient | Martin Polden | 2019-09-20 | 3 | -8/+6 |
| | |||||
* | Fix equals in SignedIdentityDocumentEntity | Martin Polden | 2019-09-20 | 1 | -1/+1 |
| | |||||
* | Remove unused credentials provider | Morten Tokle | 2019-09-09 | 3 | -116/+0 |
| | |||||
* | Revert "Include instance hostname in Athenz node certificates" | Bjørn Christian Seime | 2019-08-28 | 7 | -24/+4 |
| | | | | This reverts commit aca45ba95c5fb0b7d9c1fe89ee3a866ff65c76ac. | ||||
* | Revert "Reorder parameters to match parent interface" | Bjørn Christian Seime | 2019-08-28 | 1 | -1/+1 |
| | | | | This reverts commit 9c1f63369bac3012f78a45f90c46a3ad42f5cc54. | ||||
* | Reorder parameters to match parent interface | Bjørn Christian Seime | 2019-08-28 | 1 | -1/+1 |
| | |||||
* | Include instance hostname in Athenz node certificates | Bjørn Christian Seime | 2019-08-26 | 7 | -4/+24 |
| |