Commit Graph

2349 Commits

Author SHA1 Message Date
Hossein Shafagh
b28b4f9a28 adding to new cli commands for cleaning certificates from source:
a) either about to expire in X days and not attached to an endpoint
a) or issued since X days but still not attached to an endpoint
2020-03-14 20:19:26 -07:00
Hossein Shafagh
c96695c966 refactor 2020-03-14 20:18:07 -07:00
Hossein Shafagh
593c35776c adding new methods for getting pending clean 2020-03-14 20:17:05 -07:00
csine-nflx
cd7adacca3
Merge pull request #2929 from Netflix/powerdnsplugin_01
fixing formatting of POWER_DNS_VERIFY documentation
2020-03-05 17:01:52 -08:00
csine-nflx
df596be5cf
Merge branch 'master' into powerdnsplugin_01 2020-03-05 16:54:57 -08:00
csine-nflx
027580cade Merge branch 'powerdnsplugin_01' of github.com:Netflix/lemur into powerdnsplugin_01 2020-03-05 16:52:38 -08:00
csine-nflx
6227e4aa89 fixing formatting of ACME_POWERDNS_VERIFY options 2020-03-05 16:51:21 -08:00
csine-nflx
5fc62aff7e
Merge pull request #2928 from Netflix/powerdnsplugin_01
Add Support for ACME_POWERDNS_VERIFY Option
2020-03-05 15:46:44 -08:00
csine-nflx
e1e7efc96e
Merge branch 'master' into powerdnsplugin_01 2020-03-05 15:25:40 -08:00
csine-nflx
771e72187a updates based on feedback 2020-03-05 15:24:56 -08:00
csine-nflx
b85fe2f2b5 updated documentation language 2020-03-05 15:03:43 -08:00
csine-nflx
5dfb6acb17 adding support for ACME_POWERDNS_VERIFY option to support CA Bundles and disabling Server validation 2020-03-05 14:59:21 -08:00
csine-nflx
3c24c22890
Merge pull request #2927 from Netflix/validity_gui_update_01
removing 2 year option from Lemur certificate request form
2020-03-04 15:21:47 -08:00
csine-nflx
c0004e506e removing 2 year option from Lemur certificate request form 2020-03-04 14:50:44 -08:00
csine-nflx
509523b9ee
Merge pull request #2926 from Netflix/powerdns_doc_update_01
adding documentation for DIGICERT_MAX_VALIDITY
2020-03-04 11:53:48 -08:00
csine-nflx
9ef538305d updating default language for digicert max validity option 2020-03-04 11:46:23 -08:00
csine-nflx
72a0552073
Merge branch 'master' into powerdns_doc_update_01 2020-03-04 11:11:32 -08:00
csine-nflx
a873d69859 adding documentation for DIGICERT_MAX_VALIDITY 2020-03-03 18:24:48 -08:00
csine-nflx
38a7f3d43e
Merge pull request #2925 from Netflix/renewal_validity_01
adding default/max DigiCert validity dates
2020-03-03 17:36:46 -08:00
csine-nflx
1e81d47793 Merge branch 'renewal_validity_01' of github.com:Netflix/lemur into renewal_validity_01 2020-03-03 17:28:58 -08:00
csine-nflx
fdc1e20c23 updating config_mock defaults 2020-03-03 17:27:15 -08:00
csine-nflx
38b7d6e5e3
Merge branch 'master' into renewal_validity_01 2020-03-03 14:44:33 -08:00
csine-nflx
6c46481ffd simplifying return statement for validity years 2020-03-03 14:40:50 -08:00
csine-nflx
318292704d fixing default/max DigiCert validity values 2020-03-03 14:29:17 -08:00
Hossein Shafagh
4df64a87e5
Merge pull request #2920 from Netflix/dependabot/pip/bleach-3.1.1
Bump bleach from 3.1.0 to 3.1.1
2020-02-24 13:15:11 -08:00
dependabot[bot]
64a7faffd9
Bump bleach from 3.1.0 to 3.1.1
Bumps [bleach](https://github.com/mozilla/bleach) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/mozilla/bleach/releases)
- [Changelog](https://github.com/mozilla/bleach/blob/master/CHANGES)
- [Commits](https://github.com/mozilla/bleach/compare/v3.1.0...v3.1.1)

Signed-off-by: dependabot[bot] <support@github.com>
2020-02-24 18:30:10 +00:00
csine-nflx
9c56d603ce
Merge pull request #2916 from Netflix/le_Log_orderurl
Log certificate issuance success and metrics.
2020-02-17 12:57:00 -08:00
Hossein Shafagh
2ee60bcdb6
Merge branch 'master' into le_Log_orderurl 2020-02-17 10:30:58 -08:00
Hossein Shafagh
0c95ec3bdf
Merge pull request #2918 from sirferl/master
Added VERISIGN_INTERMEDIATE_<authority> parameter
2020-02-17 10:30:43 -08:00
sirferl
e75df1ddc9
Update plugin.py 2020-02-17 19:04:20 +01:00
Hossein Shafagh
d29edabefe
Merge branch 'master' into le_Log_orderurl 2020-02-17 09:24:51 -08:00
sirferl
ed3472d029
Update plugin.py 2020-02-17 15:21:29 +01:00
sirferl
aa5200b85f
Merge branch 'master' into master 2020-02-17 15:04:04 +01:00
sirferl
3fd0d3e141
Added VERISIGN_INTERMEDIATE_<authority> parameter
When using the VERISIGN_PRODUCT_<authority> Parameter one also has to add this parameter:
VERISIGN_INTERMEDIATE_<authority> = """ <PEM-String of Issuing CA for this certificate Type>""" 
While doing this, I also added code, so the external_id field is filled with data from CA-Answer
2020-02-17 12:40:36 +01:00
Hossein Shafagh
0d76690091
Merge pull request #2917 from sirferl/master
New variable VERISIGN_PRODUCT_(authority.name)
2020-02-16 15:38:42 -08:00
sirferl
1815c89970
Made the change more elegant
As suggested by @hosseinsh. This is of course more elegant.
2020-02-16 09:28:52 +01:00
sirferl
a70a49e4e9
Update plugin.py 2020-02-15 16:11:58 +01:00
sirferl
3693bc2d8b
removed whitespaces inserted by online editor 2020-02-15 16:09:25 +01:00
sirferl
bfa953270d
Fixed whitespace error 2020-02-15 16:04:44 +01:00
sirferl
ac95f1cc33
Merge branch 'master' into master 2020-02-15 15:55:28 +01:00
sirferl
fabcad1e46
New variable VERISIGN_PRODUCT_(authority.name)
If there is a config variable with VERISIGN_PRODUCT_<upper(authority.name)> take the value as Cert product-type
else default to "Server", to be compatoible with former versions.
This enables the use of different Verisign authorities for differnt cert-products eg. EV or Standard Certs
2020-02-15 15:52:24 +01:00
csine-nflx
a8e8924e2a
Merge branch 'master' into le_Log_orderurl 2020-02-14 17:10:38 -08:00
Hossein Shafagh
bde3d1ac66
Merge pull request #2914 from sirferl/master
Fixing kubernetes and verisign plugin
2020-02-14 09:34:34 -08:00
sirferl
8e3cc93d6a
Whitespaces in empty line 113 removed 2020-02-14 07:50:18 +01:00
csine-nflx
b521aaf579
Merge branch 'master' into le_Log_orderurl 2020-02-13 16:41:14 -08:00
csine-nflx
af21225918 adding logging on sucess and metric submission of URL for certificate issuance 2020-02-13 16:38:33 -08:00
Hossein Shafagh
2b849a6520
Update plugin.py
making lint happy
2020-02-13 15:58:07 -08:00
Hossein Shafagh
9db1ea3307
Merge branch 'master' into master 2020-02-13 12:47:06 -08:00
Hossein Shafagh
5c4b36fd5f
Merge pull request #2915 from Netflix/powerdnsplugin_01
fixed get_domains() to remove duplicate entries, updated usage and tests
2020-02-13 12:45:53 -08:00
sirferl
571c8bf42d
Error when validity_end date is empty #2905
this lines of code (114ff) in threw an error, when the validity_end date was empty:

if options.get("validity_end") > arrow.utcnow().shift(years=2):
raise Exception(
"Verisign issued certificates cannot exceed two years in validity"
)

Actually, they are not needed, because immidiately following is a check for an empty validity_end and for the length of the entered period.
When I commented it out for testing, the error was gone and everything worked as expected.
2020-02-13 07:38:04 +01:00