Terin Stock
39645a1a84
feat(certificates): add support for restricted domains ( #424 )
...
Lemur's documentation already mentions LEMUR_RESTRICTED_DOMAINS, a list
of regular expressions matching domains only administrators can issue
certificates for. An option to mark domains as sensitive existed in the
API, however the configuration option was not implemented.
Now both ways of sensitivity are checked in the same place.
2016-09-12 16:59:14 -07:00
kevgliss
a60e372c5a
Ensuring that password hashes are compared correctly under python3
2016-09-07 13:25:51 -07:00
kevgliss
76cece7b90
Ensuring that private keys are retrieved correctly under python3. ( #422 )
2016-09-07 12:34:50 -07:00
kevgliss
ca2944d566
Ensuring the inactive certificates are not alerted on. ( #418 )
2016-08-29 15:46:35 -07:00
kevgliss
53d0636574
Python3 ( #417 )
...
* Fixing tests.
* Fixing issue where decrypted credentials were not returning valid strings.
* Fixing issues with python3 authentication.
2016-08-29 08:58:53 -07:00
kevgliss
7e6278684c
Python3 ( #416 )
...
* Fixing issue where decrypted credentials were not returning valid strings.
2016-08-26 16:02:23 -07:00
kevgliss
2d7a6ccf3c
Owner email ( #414 )
...
* Ensuring python2 works with unicode strings.
* adding in owner DN
* fixing tests
* Upgrading requests.
* Fixing tests.
2016-08-25 10:09:46 -07:00
kevgliss
18b99c0de4
Fixing an issue where openssl can't find the certificates to create PKCS12 files ( #408 )
2016-08-17 10:33:59 -07:00
Evan J Johnson
96674571a5
Fix a typo. UI -> API ( #407 )
2016-07-29 18:29:44 -07:00
kevgliss
29a330b1f4
Orphaned certificates ( #406 )
...
* Fixing whitespace.
* Fixing syncing.
* Fixing tests
2016-07-28 13:08:24 -07:00
kevgliss
a644f45625
Adding some simplified reporting. ( #403 )
...
* Adding issuance report.
* Fixing whitespace.
2016-07-27 12:41:32 -07:00
kevgliss
3db669b24d
Ensuring that the temporary certificate is created correctly ( #400 )
2016-07-12 18:07:11 -07:00
kevgliss
f38868a97f
Fixing various problems with the syncing of endpoints, throttling sta… ( #398 )
...
* Fixing various problems with the syncing of endpoints, throttling stale endpoints etc.
2016-07-12 08:40:49 -07:00
kevgliss
4f3dc5422c
Allowing the role-user associated to be updated. ( #396 )
...
* Allowing the role-user associated to be updated.
* Fixing tests
* Fixing tests, for real.
2016-07-07 13:03:10 -07:00
kevgliss
1ba7181067
Fixed an issue were default notifications were added even when updati… ( #395 )
...
* Fixed an issue were default notifications were added even when updating a certificate, resulting in duplicate notifications.
* Ensuring imported certificates get the same treatment.
2016-07-07 11:44:11 -07:00
kevgliss
74bf54cb8f
Slack spruce up ( #394 )
...
* Formatting slack message.
* Tweaking tests.
2016-07-06 10:27:13 -07:00
kevgliss
d4732d3ab0
Closes #335 . ( #392 )
2016-07-04 16:08:16 -07:00
kevgliss
cb9631b122
Closes #356 . ( #391 )
2016-07-04 15:38:51 -07:00
kevgliss
4077893d08
Ensuring that destinations require private keys by default. ( #390 )
...
* Ensuring that destinations require private keys by default.
2016-07-04 15:30:20 -07:00
kevgliss
4ee1c21144
Closes #372 ( #389 )
...
* Closes #372
2016-07-04 14:32:46 -07:00
kevgliss
c8eca56690
Closes #366 ( #387 )
2016-07-04 13:03:46 -07:00
kevgliss
300e2d0b7d
Adding plugin tests. ( #385 )
...
* Adding plugin tests.
* Fixing some python 2/3 incompatibilities.
2016-07-01 11:32:19 -07:00
kevgliss
a8040777b3
Upgrading plugin docs with better example. ( #386 )
2016-07-01 10:50:18 -07:00
kevgliss
e34de921b6
Target Individuals for Certificates ( #384 )
...
* Allowing individual users to be targeted for a role.
* Ensuring that even new users get a per user-role
2016-07-01 09:04:39 -07:00
kevgliss
a04f707f63
Fixing readme badges ( #382 )
2016-06-30 09:06:14 -07:00
kevgliss
9aec899bfd
Fixing a few errors.
...
* Fixing organizational_unit and common name
* FIxing organization name and allow creaters to view CA.
2016-06-29 16:16:37 -07:00
kevgliss
afb66df1a4
Adding plugin information to docs. ( #379 )
...
* Adding documentation about the installed plugins.
* Adding new default option.
2016-06-29 10:08:54 -07:00
kevgliss
54b888bb08
Adding a toy certificate authority. ( #378 )
2016-06-29 09:05:39 -07:00
kevgliss
eefff8497a
Adding a new default issuer.
2016-06-28 17:46:26 -07:00
kevgliss
ecbab64c35
Adding endpoint migration script. ( #376 )
2016-06-28 16:12:56 -07:00
kevgliss
c8447dea3d
Fixing a few issues with startup. ( #374 )
2016-06-28 14:28:05 -07:00
kevgliss
5021e8ba91
Adding ACME Support ( #178 )
2016-06-27 15:57:53 -07:00
kevgliss
f846d78778
S3 destination ( #371 )
2016-06-27 15:11:46 -07:00
kevgliss
fe9703dd94
Closes #284 ( #336 )
2016-06-27 14:40:46 -07:00
mik373
b44a7c73d8
Kubernetes desination plugin ( #357 )
...
* Kubernetes desination plugin
* fixing build warnings
* fixing build warnings
2016-06-27 14:40:01 -07:00
kevgliss
9ae27f1415
Merge pull request #368 from kevgliss/367-role-permission
...
Fixes #367
2016-06-23 13:44:46 -07:00
kevgliss
19b928d663
Fixes #367
2016-06-23 13:29:59 -07:00
kevgliss
5193342b3a
Merge pull request #365 from kevgliss/docs
...
Updating flake8 ignore
2016-06-23 09:59:08 -07:00
kevgliss
109fb4bb45
Updating flake8 ignore
2016-06-23 09:40:55 -07:00
kevgliss
d6ccd812c2
Merge pull request #364 from kevgliss/docs
...
Updating requirements.txt
2016-06-23 09:20:56 -07:00
kevgliss
81a6228028
Updating requirements.txt
2016-06-23 09:20:35 -07:00
kevgliss
eeb216b75e
Merge pull request #362 from kevgliss/docs
...
Fixing documentation requirement.
2016-06-22 14:05:13 -07:00
kevgliss
6714595fee
Fixing documentation requirement.
2016-06-22 14:04:41 -07:00
kevgliss
025924c4f7
Merge pull request #361 from kevgliss/docs
...
Aadding an httpdomain version
2016-06-22 14:02:50 -07:00
kevgliss
7c10c8dac7
adding an httpdomain version
2016-06-22 13:59:32 -07:00
kevgliss
daea8f6ae4
Bug fixes ( #355 )
...
* we should not require password to update users
* Fixing an issue were roles would not be added.
2016-06-13 17:22:45 -07:00
Roi Martin
41d1fe9191
Using UTC time in JWT token creation ( #354 )
...
As stated in PyJWT's documentation [1] and JWT specification [2][3], UTC
times must be used. This commit fixes JWT decoding in servers not using
UTC time.
[1] https://pypi.python.org/pypi/PyJWT/1.4.0
[2] https://tools.ietf.org/html/rfc7519#section-4.1.6
[3] https://tools.ietf.org/html/rfc7519#section-2
2016-06-13 11:18:07 -07:00
Mike Grima
7d50e4d65f
Merge pull request #353 from mikegrima/issue352
...
Fix for Issue #352 .
2016-06-09 15:13:37 -07:00
Mike Grima
9a653403ae
Fix for Issue #352 .
2016-06-08 16:41:31 -07:00
kevgliss
77f13c9edb
Fixing issue were, after a user changes their mind validity years wil… ( #349 )
2016-06-06 12:11:40 -07:00