Commit Graph

2804 Commits

Author SHA1 Message Date
Hossein Shafagh 40fac02d8b the check_cert_signature() method was attempting to compare RSA and ECC signatures.
If a ec public-key certificate is signed with an RSA key, then it can't be a self-signed certificate, in which case we just raise InvalidSignature.
2019-02-25 19:05:54 -08:00
alwaysjolley cd65a36437 - support multiple bundle configuration, nginx, apache, cert only
- update vault destination to support multi cert under one object
- added san list as key value
- read and update object with new keys, keeping other keys, allowing
us to keep an iterable list of keys in an object for deploying multiple
certs to a single node
2019-02-25 09:42:07 -05:00
Hossein Shafagh 14d8596b8a updating requirements 2019-02-21 20:19:14 -08:00
Ronald Moesbergen ef0c08dfd9 Fix: when no alias is entered when exporting a certificate, the alias is set to 'blah'.
This fix sets it to the common name instead.
2019-02-21 16:33:43 +01:00
alwaysjolley a0ca486f0f adding hvac and updating requrements 2019-02-19 15:22:11 -05:00
alwaysjolley eaa73998a0 adding lemur_vault destination plugin 2019-02-19 15:03:15 -05:00
Ronald Moesbergen 29bda6c00d Fix typo's 2019-02-14 11:58:29 +01:00
Ronald Moesbergen 8abf95063c Implement a ALLOW_CERT_DELETION option (boolean, default False). When enabled, the certificate delete API call will work and the UI
will no longer display deleted certificates. When disabled (the default), the delete API call will not work (405 method not allowed)
 and the UI will show all certificates, regardless of the 'deleted' flag.
2019-02-14 11:57:27 +01:00
Hossein Shafagh c79d9c7051
Merge pull request #2262 from intgr/special-issuer-for-selfsigned-certs
Use special issuer values <selfsigned> and <unknown> in special cases
2019-02-11 16:37:27 -08:00
Hossein Shafagh a390c59e27
Merge branch 'master' into special-issuer-for-selfsigned-certs 2019-02-11 14:09:00 -08:00
Hossein Shafagh e1d13ef965
Merge pull request #2505 from hosseinsh/update-reqs-021119
updating requirements
2019-02-11 14:08:43 -08:00
Hossein Shafagh 7c3815e7b5
Merge branch 'master' into update-reqs-021119 2019-02-11 12:05:03 -08:00
Hossein Shafagh e034771e36
Merge branch 'master' into special-issuer-for-selfsigned-certs 2019-02-11 12:04:33 -08:00
Hossein Shafagh f43e3588a2
Merge pull request #1865 from explody/get_by_attributes
Added get_by_attributes to the certificates service, for fetching cer…
2019-02-11 12:04:05 -08:00
Hossein Shafagh 793242d3a7
Merge branch 'master' into update-reqs-021119 2019-02-11 10:53:19 -08:00
Hossein Shafagh 427025e8f3
Merge branch 'master' into special-issuer-for-selfsigned-certs 2019-02-11 10:27:11 -08:00
Hossein Shafagh ad18ea4bf7
Merge branch 'master' into get_by_attributes 2019-02-11 10:27:02 -08:00
Hossein Shafagh 42af082d3a updating requirements 2019-02-11 10:22:59 -08:00
Hossein Shafagh 7ea6e2059a
Merge pull request #2493 from hosseinsh/update-reqs-020819
pinning pyyaml to ensure only using the patched version
2019-02-08 08:41:31 -08:00
Hossein Shafagh 20402ddd2f
Merge branch 'master' into update-reqs-020819 2019-02-08 08:28:47 -08:00
Hossein Shafagh 73a474bd35 pinning pyyaml to ensure only using the patched version 2019-02-08 08:23:42 -08:00
Hossein Shafagh bd1d29f0a1
Merge pull request #2485 from hosseinsh/update-reqs-020719
updating requirements, pinning pyyaml to patched version.
2019-02-08 08:11:54 -08:00
Hossein Shafagh fd60b16342 updating requirements, pinning pyyaml to patched version. 2019-02-07 17:13:53 -08:00
Hossein Shafagh f29c99bde9
Merge pull request #2482 from hosseinsh/update-reqs-020719
updating requirements
2019-02-07 17:07:51 -08:00
Hossein Shafagh a43c6cf954
Update requirements-docs.txt 2019-02-07 09:57:42 -08:00
Hossein Shafagh 198826dd66
Merge branch 'master' into update-reqs-020719 2019-02-07 09:57:12 -08:00
Hossein Shafagh 70a70663a2 updating requirements 2019-02-07 09:51:34 -08:00
Hossein Shafagh 605663704b
Merge branch 'master' into hosseinsh-celeryjob-sync-src-dst 2019-02-05 12:41:33 -08:00
Hossein Shafagh e139b92b24
Merge branch 'master' into hshafagh-src-dst-register 2019-02-05 12:41:26 -08:00
Hossein Shafagh 6d1ef933c4 creating a new celery task to sync sources with destinations. This is as a measure to make sure important new destinations are also present as sources. 2019-02-05 10:48:52 -08:00
Hossein Shafagh 2107d58050
Merge branch 'master' into get_by_attributes 2019-02-05 10:31:35 -08:00
Hossein Shafagh 8d261b4120
Merge branch 'master' into special-issuer-for-selfsigned-certs 2019-02-05 10:29:20 -08:00
Hossein Shafagh eebee9e523
Merge pull request #2467 from castrapel/update-reqs-020519
Updating requirements
2019-02-05 10:21:43 -08:00
Curtis d9d12c7603
Merge branch 'master' into update-reqs-020519 2019-02-05 09:48:11 -08:00
Curtis 35158ed933
Merge pull request #2255 from sirferl/ADCS-plugin
ADCS (MS AD-PKI) plugin
2019-02-05 09:48:02 -08:00
Curtis Castrapel 176f9bfea6 Updating requirements 2019-02-05 09:37:04 -08:00
Marti Raudsepp 51248c1938 Use special issuer values <selfsigned> and <unknown> in special cases
This way it's easy to find/distinguish selfsigned certificates stored in
Lemur.
2019-02-05 16:56:09 +02:00
Hossein Shafagh 1d2771b014
Merge branch 'master' into get_by_attributes 2019-02-04 21:07:09 -08:00
Hossein Shafagh f249a82d71 renaming destination to source. 2019-02-04 16:10:48 -08:00
Hossein Shafagh 44a060b159 adding support for creating a source while creating a new dst, while the destination is from AWS 2019-02-04 15:36:39 -08:00
sirferl c1cf8d7a92
Merge branch 'master' into ADCS-plugin 2019-02-02 19:21:22 +01:00
Hossein Shafagh 1a2712cdf1
Merge pull request #2388 from rmoesbergen/master
Implement certificates 'delete' API call
2019-02-01 17:23:04 -08:00
Hossein Shafagh 6c5c9fac01 Merge branch 'master' of https://github.com/rmoesbergen/lemur into rmoesbergen-master 2019-02-01 17:13:59 -08:00
Hossein Shafagh 45fbaf159a
Merge branch 'master' into master 2019-02-01 16:50:09 -08:00
Hossein Shafagh 8e93d007be
Merge branch 'master' into get_by_attributes 2019-02-01 16:48:50 -08:00
Hossein Shafagh 6705a0e030
Merge branch 'master' into ADCS-plugin 2019-02-01 16:38:39 -08:00
Hossein Shafagh 73ac1591e0
Merge pull request #2337 from intgr/enforce-certs-pkeys-are-str
Enforce that PEM strings (certs, keys, CSR) are internally passed as str, not bytes
2019-02-01 16:30:25 -08:00
sirferl 36ab1c0bec
Merge branch 'master' into ADCS-plugin 2019-02-01 19:10:46 +01:00
Marti Raudsepp e24a94d798 Enforce that PEM strings (certs, keys, CSR) are internally passed as str, not bytes
This was already true in most places but not 100%, leading to lots of redundant checks and conversions.
2019-01-30 18:11:24 +02:00
Curtis e475d90e2e
Merge branch 'master' into master 2019-01-30 07:20:44 -08:00