Terin Stock
1ea75a5d2d
fix(certificates): import re module ( #428 )
2016-09-21 22:54:46 -07:00
Terin Stock
39645a1a84
feat(certificates): add support for restricted domains ( #424 )
...
Lemur's documentation already mentions LEMUR_RESTRICTED_DOMAINS, a list
of regular expressions matching domains only administrators can issue
certificates for. An option to mark domains as sensitive existed in the
API, however the configuration option was not implemented.
Now both ways of sensitivity are checked in the same place.
2016-09-12 16:59:14 -07:00
kevgliss
a60e372c5a
Ensuring that password hashes are compared correctly under python3
2016-09-07 13:25:51 -07:00
kevgliss
76cece7b90
Ensuring that private keys are retrieved correctly under python3. ( #422 )
2016-09-07 12:34:50 -07:00
kevgliss
ca2944d566
Ensuring the inactive certificates are not alerted on. ( #418 )
2016-08-29 15:46:35 -07:00
kevgliss
53d0636574
Python3 ( #417 )
...
* Fixing tests.
* Fixing issue where decrypted credentials were not returning valid strings.
* Fixing issues with python3 authentication.
2016-08-29 08:58:53 -07:00
kevgliss
7e6278684c
Python3 ( #416 )
...
* Fixing issue where decrypted credentials were not returning valid strings.
2016-08-26 16:02:23 -07:00
kevgliss
2d7a6ccf3c
Owner email ( #414 )
...
* Ensuring python2 works with unicode strings.
* adding in owner DN
* fixing tests
* Upgrading requests.
* Fixing tests.
2016-08-25 10:09:46 -07:00
kevgliss
18b99c0de4
Fixing an issue where openssl can't find the certificates to create PKCS12 files ( #408 )
2016-08-17 10:33:59 -07:00
kevgliss
29a330b1f4
Orphaned certificates ( #406 )
...
* Fixing whitespace.
* Fixing syncing.
* Fixing tests
2016-07-28 13:08:24 -07:00
kevgliss
a644f45625
Adding some simplified reporting. ( #403 )
...
* Adding issuance report.
* Fixing whitespace.
2016-07-27 12:41:32 -07:00
kevgliss
3db669b24d
Ensuring that the temporary certificate is created correctly ( #400 )
2016-07-12 18:07:11 -07:00
kevgliss
f38868a97f
Fixing various problems with the syncing of endpoints, throttling sta… ( #398 )
...
* Fixing various problems with the syncing of endpoints, throttling stale endpoints etc.
2016-07-12 08:40:49 -07:00
kevgliss
4f3dc5422c
Allowing the role-user associated to be updated. ( #396 )
...
* Allowing the role-user associated to be updated.
* Fixing tests
* Fixing tests, for real.
2016-07-07 13:03:10 -07:00
kevgliss
1ba7181067
Fixed an issue were default notifications were added even when updati… ( #395 )
...
* Fixed an issue were default notifications were added even when updating a certificate, resulting in duplicate notifications.
* Ensuring imported certificates get the same treatment.
2016-07-07 11:44:11 -07:00
kevgliss
74bf54cb8f
Slack spruce up ( #394 )
...
* Formatting slack message.
* Tweaking tests.
2016-07-06 10:27:13 -07:00
kevgliss
d4732d3ab0
Closes #335 . ( #392 )
2016-07-04 16:08:16 -07:00
kevgliss
cb9631b122
Closes #356 . ( #391 )
2016-07-04 15:38:51 -07:00
kevgliss
4077893d08
Ensuring that destinations require private keys by default. ( #390 )
...
* Ensuring that destinations require private keys by default.
2016-07-04 15:30:20 -07:00
kevgliss
4ee1c21144
Closes #372 ( #389 )
...
* Closes #372
2016-07-04 14:32:46 -07:00
kevgliss
c8eca56690
Closes #366 ( #387 )
2016-07-04 13:03:46 -07:00
kevgliss
300e2d0b7d
Adding plugin tests. ( #385 )
...
* Adding plugin tests.
* Fixing some python 2/3 incompatibilities.
2016-07-01 11:32:19 -07:00
kevgliss
e34de921b6
Target Individuals for Certificates ( #384 )
...
* Allowing individual users to be targeted for a role.
* Ensuring that even new users get a per user-role
2016-07-01 09:04:39 -07:00
kevgliss
9aec899bfd
Fixing a few errors.
...
* Fixing organizational_unit and common name
* FIxing organization name and allow creaters to view CA.
2016-06-29 16:16:37 -07:00
kevgliss
54b888bb08
Adding a toy certificate authority. ( #378 )
2016-06-29 09:05:39 -07:00
kevgliss
eefff8497a
Adding a new default issuer.
2016-06-28 17:46:26 -07:00
kevgliss
ecbab64c35
Adding endpoint migration script. ( #376 )
2016-06-28 16:12:56 -07:00
kevgliss
c8447dea3d
Fixing a few issues with startup. ( #374 )
2016-06-28 14:28:05 -07:00
kevgliss
5021e8ba91
Adding ACME Support ( #178 )
2016-06-27 15:57:53 -07:00
kevgliss
f846d78778
S3 destination ( #371 )
2016-06-27 15:11:46 -07:00
kevgliss
fe9703dd94
Closes #284 ( #336 )
2016-06-27 14:40:46 -07:00
mik373
b44a7c73d8
Kubernetes desination plugin ( #357 )
...
* Kubernetes desination plugin
* fixing build warnings
* fixing build warnings
2016-06-27 14:40:01 -07:00
kevgliss
19b928d663
Fixes #367
2016-06-23 13:29:59 -07:00
kevgliss
daea8f6ae4
Bug fixes ( #355 )
...
* we should not require password to update users
* Fixing an issue were roles would not be added.
2016-06-13 17:22:45 -07:00
Roi Martin
41d1fe9191
Using UTC time in JWT token creation ( #354 )
...
As stated in PyJWT's documentation [1] and JWT specification [2][3], UTC
times must be used. This commit fixes JWT decoding in servers not using
UTC time.
[1] https://pypi.python.org/pypi/PyJWT/1.4.0
[2] https://tools.ietf.org/html/rfc7519#section-4.1.6
[3] https://tools.ietf.org/html/rfc7519#section-2
2016-06-13 11:18:07 -07:00
Mike Grima
9a653403ae
Fix for Issue #352 .
2016-06-08 16:41:31 -07:00
kevgliss
77f13c9edb
Fixing issue were, after a user changes their mind validity years wil… ( #349 )
2016-06-06 12:11:40 -07:00
kevgliss
d9cc4980e8
Fixing destination upload. ( #347 )
...
* Fixing an issue where uploaded certificates would have a name of 'None'
* Clarifying comment.
* Improving order.
2016-06-03 18:45:58 -07:00
kevgliss
5e987fa8b6
Adding additional data migrations. ( #346 )
2016-06-03 17:56:32 -07:00
kevgliss
42001be9ec
Fixing the way filters were toggled. ( #345 )
2016-06-03 09:24:17 -07:00
kevgliss
dc198fec8c
Docs ( #344 )
...
* Adding release info.
* adding some fields
* Adding Source Plugin change.
* Updating docs
2016-06-03 08:28:09 -07:00
kevgliss
acd47d5ec9
Fixing an issue were authorities were not related to their roles ( #342 )
2016-06-02 09:07:17 -07:00
kevgliss
72e3fb5bfe
Fixing several small issues. ( #341 )
...
* Fixing several small issues.
* Fixing tests.
2016-06-01 11:18:00 -07:00
kevgliss
b2539b843b
Fixing and error causing duplicate roles to be created. ( #339 )
...
* Fixing and error causing duplicate roles to be created.
* Fixing python3
* Fixing python2 and python3
2016-05-31 15:44:54 -07:00
kevgliss
be5dff8472
Adding a visualization for authorities. ( #338 )
...
* Adding a visualization for authorities.
* Fixing some lint.
* Fixing some lint.
2016-05-30 21:52:34 -07:00
kevgliss
76037e8b3a
Fixing certificate names. ( #337 )
2016-05-27 12:00:10 -07:00
kevgliss
11f4bd503b
Fixes ( #332 )
...
* Ensuring domains are returned correctly.
* Ensuring certificates receive owner role
2016-05-24 17:10:19 -07:00
kevgliss
6688b279e7
Fixing some bad renaming. ( #331 )
2016-05-24 10:43:40 -07:00
kevgliss
1ca38015bc
Fixes ( #329 )
...
* Modifying the way roles are assigned.
* Adding migration scripts.
* Adding endpoints field for future use.
* Fixing dropdowns.
2016-05-23 18:38:04 -07:00
kevgliss
656269ff17
Closes #147 ( #328 )
...
* Closes #147
* Fixing tests
* Ensuring we can validate max dates.
2016-05-23 11:28:25 -07:00
