kevgliss
c2b2ce1f11
Allowing the export of CAs that don't have a chain. ( #1000 )
2017-11-21 11:42:23 -08:00
kevgliss
cecfe47540
Adding the ability to revoke enmasse ( #999 )
2017-11-21 09:36:10 -08:00
James Chuong
4b544ae207
CSR Export Plugin ( #988 )
...
This plugin allows a certificate to be exported as a CSR via OpenSSL
x509. The workflow will be:
* Create self-signed cert via Cryptography authority
* Export CSR via this plugin
* Sign your own cert outside of Lemur
* Import new cert with private key
Change-Id: Id3f7db2506bd959236cd3a6df622841058abda5a
2017-11-14 10:11:06 -08:00
kevgliss
e30e17038b
Removing unused import. ( #989 )
2017-11-14 09:24:26 -08:00
Daniel Pramann
7e2c16ee38
Fixes for using ACME with Route53 ( #986 )
...
* Changes required for functional Route53 operations
* Changes required for functional ACME operations with Route53
* Changes required for functional ACME operations with Route53, need external ID
2017-11-13 10:19:54 -08:00
Johannes Langer
041f3a22fa
Added ability to set custom roles for users logging in via oauth provider ( #985 )
2017-11-10 08:38:33 -08:00
kevgliss
f990ef27cf
Adding sentry tracking to issued with certificate deployment. ( #978 )
2017-10-26 15:21:13 -07:00
Doppins
bef762e0d6
Upgrade dependency acme to ==0.19.0 ( #957 )
2017-10-25 13:44:01 -07:00
Doppins
0d001b358e
[Doppins] Upgrade dependency tabulate to ==0.8.1 ( #953 )
...
* Upgrade dependency tabulate to ==0.8.0
* Upgrade dependency tabulate to ==0.8.1
2017-10-25 11:19:25 -07:00
Doppins
c1cd5c71e0
[Doppins] Upgrade dependency moto to ==1.1.19 ( #946 )
...
* Upgrade dependency moto to ==1.1.18
* Upgrade dependency moto to ==1.1.19
2017-10-25 11:06:36 -07:00
kevgliss
d4209510c2
Adding some additional exception capturing during certificate parsing. ( #976 )
2017-10-25 08:19:07 -07:00
kevgliss
620e279453
Caa ( #975 )
...
* Adding verisign error code for a CAA failure.
* Tweaking error msg.
2017-10-24 14:46:33 -07:00
kevgliss
bbf73c48a3
Adding health exception tracking. ( #977 )
2017-10-24 14:04:51 -07:00
Johannes Langer
9319dda0ec
Added ability to ignore cert for oauth2 provider ( #971 )
...
* Added ability to ignore cert for oauth2 provider
This is useful for development environments where the OAuth provider
doesn't have a valid cert!
* Setting default for OAUTH2_VERIFY_CERT to true
2017-10-20 16:36:14 -07:00
kevgliss
14f5340802
During higher loads, retrying the connection attempt is often required for the CIS api. ( #972 )
2017-10-12 10:37:58 -07:00
kevgliss
0152985e64
Adding serial numbers when certificates with the same name are encoun… ( #970 )
...
* Adding serial numbers when certificates with the same name are encountered.
2017-10-11 13:20:19 -07:00
kevgliss
e43268f585
Source plugin ( #965 )
...
* Ensure that None values aren't passed.
2017-10-09 10:37:44 -07:00
kevgliss
7ef788752e
Source plugin ( #964 )
...
* Another minor fix.
2017-10-06 17:39:31 -07:00
kevgliss
b66d7ce1fd
Source plugin ( #963 )
...
* Ensuring that we have default options for source plugins.
* Handle duplicate serials. Serials are not unique across issuers.
* Minor fix.
2017-10-06 13:22:03 -07:00
kevgliss
dc34652efd
Source plugin ( #962 )
...
* Ensuring that we have default options for source plugins.
* Handle duplicate serials. Serials are not unique across issuers.
2017-10-06 08:49:05 -07:00
kevgliss
e0d2fb0de1
Ensuring that we have default options for source plugins. ( #961 )
2017-10-05 17:27:45 -07:00
kevgliss
e0d9443141
Ensuring existing users are also given the default role. ( #960 )
2017-10-05 16:47:52 -07:00
kevgliss
a6305a5cae
Adding Digicert CIS Sourceplugin ( #959 )
...
* Adding necessary features to complete backfill
* Fixing pagination logic.
2017-10-04 16:56:01 -07:00
kevgliss
9e2578be1e
Adding necessary features to complete backfill ( #958 )
2017-10-04 14:57:57 -07:00
kevgliss
09b8f532a7
Adding cli to mass revoke certificates. ( #955 )
2017-10-03 10:51:53 -07:00
kevgliss
e0939a2856
Adding some default data to put. ( #950 )
2017-09-29 14:49:07 -07:00
kevgliss
90f4b458e3
Adding the lemur identity to be able to re-issue certificates. ( #949 )
2017-09-29 14:07:40 -07:00
kevgliss
f5213deb67
Removing revocation comments for now. ( #947 )
2017-09-29 10:53:15 -07:00
kevgliss
bb08b1e637
Initial work allowing certificates to be revoked. ( #941 )
...
* Initial work allowing for certificates to be revoked.
2017-09-28 18:27:56 -07:00
ClontarfX
ea6f5c920b
Update index.rst ( #942 )
...
Fixed typo for libsasl3-dev (was libsas13-dev).
2017-09-27 09:44:03 -07:00
Marti Raudsepp
54ff4cddbf
Disallow issuing certificates from inactive authority ( #936 )
2017-09-25 15:34:49 -07:00
Marti Raudsepp
645641f4bd
Avoid redundant key_view log entries ( #937 )
...
Don't re-request private key when it's already loaded in frontend.
2017-09-25 15:34:07 -07:00
Marti Raudsepp
97d83890e0
Various minor cleanups and fixes ( #938 )
...
* Documentation fixes
* Various docstring and help string fixes
* Minor code cleanups
* Removed redundant .gitignore entry, ignored package-lock.json.
* 'return' statement in certificates.service.render was redundant
* Split up too long line
* Non-matching tags in templates
2017-09-25 15:33:42 -07:00
Marti Raudsepp
ec5dec4a16
Add option to disable owner email address in CSR subject ( #939 )
2017-09-25 15:32:08 -07:00
Doppins
4cfb621423
Upgrade dependency moto to ==1.1.14 ( #940 )
2017-09-25 15:31:39 -07:00
Doppins
c381331c10
Upgrade dependency pyjwt to ==1.5.3 ( #901 )
2017-09-25 09:19:54 -07:00
Doppins
a7923f2a06
Upgrade dependency six to ==1.11.0 ( #926 )
2017-09-25 09:19:40 -07:00
Doppins
e5f7172c97
[Doppins] Upgrade dependency paramiko to ==2.3.1 ( #927 )
...
* Upgrade dependency paramiko to ==2.3.0
* Upgrade dependency paramiko to ==2.3.1
2017-09-25 09:19:24 -07:00
Doppins
43fff0450b
Upgrade dependency acme to ==0.18.2 ( #928 )
2017-09-25 09:19:08 -07:00
Doppins
107fd3fce1
[Doppins] Upgrade dependency raven to ==6.2.1 ( #933 )
...
* Upgrade dependency raven to ==6.2.0
* Upgrade dependency raven to ==6.2.1
2017-09-25 09:18:57 -07:00
Doppins
1a9b6dec26
[Doppins] Upgrade dependency moto to ==1.1.13 ( #931 )
...
* Upgrade dependency moto to ==1.1.12
* Upgrade dependency moto to ==1.1.13
2017-09-25 09:18:40 -07:00
Aaron Mell
444be5bb7f
Updated Quikstart ( #934 )
...
Got some failures doing a clean install on Ubuntu 17.04 Zesty Zapus (Final) from virtualboxes.org
2017-09-22 12:35:25 -07:00
Doppins
5ebfa018ee
[Doppins] Upgrade dependency moto to ==1.1.11 ( #922 )
...
* Upgrade dependency moto to ==1.1.7
* Upgrade dependency moto to ==1.1.8
* Upgrade dependency moto to ==1.1.9
* Upgrade dependency moto to ==1.1.10
* Upgrade dependency moto to ==1.1.11
2017-09-21 10:31:45 -07:00
Ian Stahnke
a6dab5e1ee
a bit more ldap documentaion ( #930 )
2017-09-21 06:00:26 -07:00
Horatiu Eugen Vlad
f766871824
Create default rotation policy with name ( #924 )
2017-09-18 09:09:59 -07:00
Doppins
ba29bbe3be
Upgrade dependency pyOpenSSL to ==17.2.0 ( #918 )
2017-09-13 20:54:54 -07:00
Doppins
d711031ce9
Upgrade dependency moto to ==1.1.6 ( #919 )
2017-09-13 20:54:43 -07:00
Kevin Glisson
af5c19cc52
Solving conflicts
2017-09-13 09:41:19 -07:00
Kevin Glisson
359fbd2d73
Pinning version of PyOpenSSL #873
2017-09-13 09:39:52 -07:00
Caige Nichols
e8b9853367
Fixes 873 by explicitly declaring pyopenssl version. ( #917 )
2017-09-13 09:30:20 -07:00