Infra
/
lemur
5
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
4,066 Commits 4 Branches 45 Tags 7.5 MiB
Commit Graph

195 Commits

Author SHA1 Message Date
Hossein Shafagh 31b20e0a30 ensuring a resolved job doesn't get resolved twice 2021-01-29 15:46:22 -08:00
Hossein Shafagh c3e0597ef1 introducing ACME_ADDITIONAL_ATTEMPTS 2021-01-28 16:53:15 -08:00
Jasmine Schladen 512b1acfdd PR feedback: use days threshold instead of interval set, etc. 2020-12-08 18:29:48 -08:00
Jasmine Schladen eab5532397 Add expiration summary email for security team 2020-12-08 11:41:41 -08:00
Jasmine Schladen 42957cffc7 PR feedback: add config option to enable rotation emails, add cert count and type to email 2020-12-03 16:10:36 -08:00
charhate dbf8819034
Merge branch 'master' into add-ca-cert-notifications 2020-12-02 11:44:36 -08:00
Jasmine Schladen 85d99ded73 Add email notifications for CA cert expiry 2020-12-02 09:20:09 -08:00
sirferl 439e888d9e lint errors 2020-11-24 12:59:42 +01:00
sirferl 0f3357ab46 moved base64encode to common.utils 2020-11-24 12:29:25 +01:00
Hossein Shafagh c40ecd12cb improved naming 2020-10-22 10:58:16 -07:00
Hossein Shafagh 2cc03088cd creating a celery task 2020-10-21 19:53:08 -07:00
sayali 43483cb1c7 Check if present - Organization, State, Country 2020-10-21 15:44:53 -07:00
sayali 757e190b60 Check if OU and L is present in subject 
fixing index out of range
 2020-10-21 12:11:41 -07:00
Hossein Shafagh 5db1d31668
Merge branch 'master' into removing-outdated-language 2020-10-12 10:22:53 -07:00
Hossein Shafagh 770339f94c cleaning up outdated phrases 2020-10-09 18:04:16 -07:00
Hossein Shafagh 4f696abb5d adding util method to convert PKCS7 to pem 2020-10-07 20:03:46 -07:00
sayali 8de9842092 Backfill the key_type column: DB Upgrade 2020-09-22 18:22:45 -07:00
Hossein Shafagh 60fd2134ca removing duplicate curves, and marking them in existing mapping 2020-09-09 19:53:35 -07:00
Hossein Shafagh de0c38e9ba mapping of curve name to key_type 2020-09-09 19:47:51 -07:00
sayali 3efe14c43f Remove 397 days validation as it causes error in API calls 
More to come in future
 2020-08-25 16:26:20 -07:00
sayali 18a3514974 Renaming PUBLIC_CA to PUBLIC_CA_AUTHORITY_NAMES 2020-08-10 18:06:45 -07:00
sayali 7a83799bcd Cert validity should not exceed 397 days for publicly trusted issuers 2020-08-10 17:30:34 -07:00
Javier Ramos 7a5a5531cc
Raise ValidationError if CSR contains invalid CN 
If we supply a CSR that contains an empty field in the Subject, Lemur will crash with an error 500 as the ValueError exception is not captured. This change captures the exception and raises a ValidationError which in this case is a 400 sent back to client. Example to reproduce:

    Subject: C=ZZ, ST=Something, L=, O=My_Org, OU=My_Dept, CN=www.booking.com

The empty L= causes a ValueError which needs to be captured.
 2020-07-01 15:44:06 +02:00
Hossein Shafagh 1b6907a404 Certificate rotation region by region 
example scheudule:
CELERYBEAT_SCHEDULE = {
    'certificate_rotate': {
        'task': 'lemur.common.celery.certificate_rotate',
        'options': {
            'expires': 180
        },
        'schedule': crontab(minute="*"),
        'kwargs': {'region': 'us-east-1'}
    }
}
 2020-05-07 16:28:01 -07:00
Curtis Castrapel 7e97d885df Address comments 2020-04-28 13:16:27 -07:00
Curtis Castrapel 863af7a3e5 Making CLI command ; Running black 2020-04-28 12:16:46 -07:00
Curtis Castrapel 273c3e2793 Celery task to enable autorotate for all certificates attached to endpoints without it enabled 2020-04-28 11:52:43 -07:00
Curtis 2c8dc24fda
Merge branch 'master' into enhanced_error_loggin 2020-04-08 14:51:06 -04:00
Curtis Castrapel 1360d846fd Improve error logging for a couple of use cases 2020-04-08 11:50:42 -07:00
Curtis Castrapel 11b15e7e23 Clean up docstrings 2020-04-08 08:41:48 -07:00
Curtis Castrapel eb138fc960 Add default celery metrics and logging using celery signals 2020-04-08 08:38:40 -07:00
Curtis e25f97fce7
Bump time limit for clean_source Celery job 
For larger accounts, I've hit SoftTimeLimit exceptions before completion of this celery job. Bumping up the time limit on this job.
 2020-04-01 10:50:24 -07:00
Ilya Labun 189e8b2725 Eliminate subqueries when showing certificates list 2019-12-20 10:37:47 +01:00
Hossein Shafagh 8c9a1df2cf
Merge branch 'master' into up-dependencies-20Sep2019 2019-09-20 15:19:25 -07:00
Hossein Shafagh a13c45e9cc updating dependencies, and fixing the deprecated arrow.replaces to shift 2019-09-20 13:49:38 -07:00
Hossein Shafagh 296a315a3e
Merge branch 'master' into soft_time_outs 2019-08-13 19:42:22 -07:00
Hossein Shafagh 2de3f287ab standardizing the timeouts to easier monitor any timeouts 2019-08-13 12:21:27 -07:00
Hossein Shafagh 6e17d36d76 typos 2019-08-13 12:16:23 -07:00
Hossein Shafagh 22c60fedad cosmetics 2019-08-13 12:11:04 -07:00
Hossein Shafagh a3dfc3ef0a consistency 2019-08-13 11:58:58 -07:00
Hossein Shafagh c29f282560 improved the flow for checking if the task is active 2019-08-13 11:52:56 -07:00
Hossein Shafagh 4d728738ee handling celery tasks without any arguments 2019-08-13 11:42:43 -07:00
Hossein Shafagh 07a9c56fb8 making lint happy 2019-08-13 09:35:57 -07:00
Hossein Shafagh bf47f87c21 preventing celery duplicate tasks 2019-08-12 13:52:01 -07:00
Hossein Shafagh da9c91afb4 fixing metric bug 2019-08-08 17:56:22 -07:00
Hossein Shafagh 3b9b94623f cleaning up 2019-08-07 18:06:59 -07:00
Hossein Shafagh 9a02230d63 adding soft time outs for celery 2019-08-07 17:48:06 -07:00
Hossein Shafagh e8e4f826ea updating logging format 2019-07-31 13:09:31 -07:00
Hossein Shafagh 0f591e9a3d
Merge branch 'master' into moving-cronjobs-to-celery-v2 2019-07-30 14:13:59 -07:00
Hossein Shafagh a89cbe9332 moving all cron jobs to become celery jobs 2019-07-30 09:57:15 -07:00