Merge branch 'master' into add-ca-cert-notifications

2020-12-03 12:09:48 -08:00
parent 148dcc7528 101ee7317e
commit 4c2227f23c
26 changed files with 205 additions and 60 deletions
--- a/docs/developer/plugins/index.rst
+++ b/docs/developer/plugins/index.rst
@ -104,7 +104,7 @@ The `IssuerPlugin` exposes four functions functions::

    def create_certificate(self, csr, issuer_options):
        # requests.get('a third party')
-    def revoke_certificate(self, certificate, comments):
+    def revoke_certificate(self, certificate, reason):
        # requests.put('a third party')
    def get_ordered_certificate(self, order_id):
        # requests.get('already existing certificate')
--- a/docs/guide/certificate_extensions.png
+++ b/docs/guide/certificate_extensions.png
--- a/docs/guide/create_authority.png
+++ b/docs/guide/create_authority.png
--- a/docs/guide/create_authority_options.png
+++ b/docs/guide/create_authority_options.png
--- a/docs/guide/create_certificate.png
+++ b/docs/guide/create_certificate.png
--- a/docs/guide/index.rst
+++ b/docs/guide/index.rst
@ -37,18 +37,20 @@ Create a New Certificate

 .. figure:: create_certificate.png

-    Enter an owner, short description and the authority you wish to issue this certificate.
-    Enter a common name into the certificate, if no validity range is selected two years is
-    the default.
+    Enter an owner, common name, short description and certificate authority you wish to issue this certificate.
+    Depending upon the selected CA, the UI displays default validity of the certificate. You can select different
+    validity by entering a custom date, if supported by the CA.
+
+    You can also add `Subject Alternate Names` or SAN for certificates that need to include more than one domains,
+    The first domain is the Common Name and all other domains are added here as DNSName entries.

    You can add notification options and upload the created certificate to a destination, both
    of these are editable features and can be changed after the certificate has been created.

 .. figure:: certificate_extensions.png

-    These options are typically for advanced users, the one exception is the `Subject Alternate Names` or SAN.
-    For certificates that need to include more than one domains, the first domain is the Common Name and all
-    other domains are added here as DNSName entries.
+    These options are typically for advanced users. Lemur creates ECC based certificate (ECCPRIME256V1 in particular)
+    by default. One can change the key type using the dropdown option listed here.


 Import an Existing Certificate
@ -58,7 +60,7 @@ Import an Existing Certificate

    Enter an owner, short description and public certificate. If there are intermediates and private keys
    Lemur will track them just as it does if the certificate were created through Lemur. Lemur generates
-    a certificate name but you can override that by passing a value to the `Custom Name` field.
+    a certificate name but you can override that by passing a value to the `Custom Certificate Name` field.

    You can add notification options and upload the created certificate to a destination, both
    of these are editable features and can be changed after the certificate has been created.
--- a/docs/guide/upload_certificate.png
+++ b/docs/guide/upload_certificate.png
--- a/docs/quickstart/index.rst
+++ b/docs/quickstart/index.rst
@ -323,6 +323,12 @@ unlock
 Decrypts sensitive key material - used to decrypt the secrets stored in source during deployment.


+Automated celery tasks
+~~~~~~~~~~~~~~~~~~~~~~
+
+Please refer to :ref:`Periodic Tasks <PeriodicTasks>` to learn more about task scheduling in Lemur.
+
+
 What's Next?
 ------------