Commit Graph

3863 Commits

Author SHA1 Message Date
Hossein Shafagh f4bcd1cf30 lack of an empty config file was resulting into this error
```
Traceback (most recent call last):
  File "/home/travis/build/Netflix/lemur/lemur/plugins/lemur_acme/tests/test_acme.py", line 159, in test_request_certificate
    self.acme.request_certificate(mock_acme, [], mock_order)
  File "/home/travis/build/Netflix/lemur/lemur/plugins/lemur_acme/plugin.py", line 211, in request_certificate
    current_app.config.get("IDENTRUST_CROSS_SIGNED_LE_ICA_EXPIRATION_DATE", "17/03/21"), '%d/%m/%y'):
TypeError: strptime() argument 1 must be str, not MagicMock
```
2020-08-27 14:15:14 -07:00
Hossein Shafagh 5a6e4e5b43 Let's Encrypt has been using a cross-signed intermediate CA by DST Root CA X3, which is included in any older devices' TrustStore.
https://letsencrypt.org/certificates/

Let's Encrypt is transitioning to use the intermediate CA issued by their own root (ISRG X1) starting from September 29th 2020. This is in preparation of concluding the initial bootstrapping of their CA, by having it cross-signed by an older CA.
https://letsencrypt.org/2019/04/15/transitioning-to-isrg-root.html

This PR allows Lemur to pin to the cross-signed ICA (same public/private key pair as the ICA signed by ISRG X1). This will prolong support for incompatible systems.
2020-08-27 14:15:14 -07:00
Hossein Shafagh c169ad291e adding the correct signing algorithm, and a missing key Type 2020-08-27 13:29:56 -07:00
sayali 3242fc1e13 Validity with radio buttons 2020-08-26 19:30:12 -07:00
Chad S 9af8d63f11
Merge pull request #3106 from Netflix/dev_branch
fixing setup-git so build continues if ./git/hooks does not exist.
2020-08-26 10:47:04 -07:00
csine-nflx 27c5539178 fixing Makefile build issue with @echo 2020-08-26 01:47:17 -07:00
csine-nflx be21d357cb fixing setup-git so build continues if ./git/hooks does not exist. 2020-08-26 01:38:17 -07:00
sayali 6aedd3b0d8 Datepicker enhancements 2020-08-25 18:40:36 -07:00
Hossein Shafagh 2b64959953
Merge pull request #3105 from charhate/validity
Remove 397 days validation as it causes error in API calls
2020-08-25 16:33:54 -07:00
sayali 3efe14c43f Remove 397 days validation as it causes error in API calls
More to come in future
2020-08-25 16:26:20 -07:00
dependabot-preview[bot] 85b47bed05
Merge pull request #3103 from Netflix/dependabot/pip/boto3-1.14.48 2020-08-25 19:50:14 +00:00
dependabot-preview[bot] 0f463d5f13
Bump boto3 from 1.14.33 to 1.14.48
Bumps [boto3](https://github.com/boto/boto3) from 1.14.33 to 1.14.48.
- [Release notes](https://github.com/boto/boto3/releases)
- [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst)
- [Commits](https://github.com/boto/boto3/compare/1.14.33...1.14.48)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-08-25 19:17:13 +00:00
dependabot-preview[bot] 367c6f0b03
Merge pull request #3096 from Netflix/dependabot/pip/arrow-0.16.0 2020-08-25 19:14:46 +00:00
dependabot-preview[bot] 939c41a70e
Bump arrow from 0.15.8 to 0.16.0
Bumps [arrow](https://github.com/arrow-py/arrow) from 0.15.8 to 0.16.0.
- [Release notes](https://github.com/arrow-py/arrow/releases)
- [Changelog](https://github.com/arrow-py/arrow/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/arrow-py/arrow/compare/0.15.8...0.16.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-08-25 19:04:47 +00:00
dependabot-preview[bot] 8855e60db7
Merge pull request #3087 from Netflix/dependabot/pip/cloudflare-2.8.13 2020-08-25 19:02:33 +00:00
dependabot-preview[bot] a4a83dda72
Bump cloudflare from 2.8.9 to 2.8.13
Bumps [cloudflare](https://github.com/cloudflare/python-cloudflare) from 2.8.9 to 2.8.13.
- [Release notes](https://github.com/cloudflare/python-cloudflare/releases)
- [Changelog](https://github.com/cloudflare/python-cloudflare/blob/master/CHANGELOG.md)
- [Commits](https://github.com/cloudflare/python-cloudflare/compare/2.8.9...2.8.13)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-08-25 18:55:27 +00:00
dependabot-preview[bot] d229ccf654
Merge pull request #3098 from Netflix/dependabot/pip/pytest-mock-3.3.0 2020-08-25 18:53:19 +00:00
dependabot-preview[bot] ad5416e441
Bump pytest-mock from 3.2.0 to 3.3.0
Bumps [pytest-mock](https://github.com/pytest-dev/pytest-mock) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/pytest-dev/pytest-mock/releases)
- [Changelog](https://github.com/pytest-dev/pytest-mock/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/pytest-dev/pytest-mock/compare/v3.2.0...v3.3.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-08-25 18:42:38 +00:00
dependabot-preview[bot] 41f853afd6
Merge pull request #3100 from Netflix/dependabot/pip/inflection-0.5.1 2020-08-25 18:40:07 +00:00
dependabot-preview[bot] 88a043cfec
Bump inflection from 0.5.0 to 0.5.1
Bumps [inflection](https://github.com/jpvanhal/inflection) from 0.5.0 to 0.5.1.
- [Release notes](https://github.com/jpvanhal/inflection/releases)
- [Commits](https://github.com/jpvanhal/inflection/compare/0.5.0...0.5.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-08-25 18:28:42 +00:00
dependabot-preview[bot] 605d218385
Merge pull request #3084 from Netflix/dependabot/pip/sphinx-3.2.1 2020-08-25 18:26:21 +00:00
dependabot-preview[bot] 1a8e96ed32
Bump sphinx from 3.2.0 to 3.2.1
Bumps [sphinx](https://github.com/sphinx-doc/sphinx) from 3.2.0 to 3.2.1.
- [Release notes](https://github.com/sphinx-doc/sphinx/releases)
- [Changelog](https://github.com/sphinx-doc/sphinx/blob/3.x/CHANGES)
- [Commits](https://github.com/sphinx-doc/sphinx/compare/v3.2.0...v3.2.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-08-25 18:12:28 +00:00
dependabot-preview[bot] dc4df9b279
Merge pull request #3094 from Netflix/dependabot/pip/faker-4.1.2 2020-08-25 18:10:24 +00:00
dependabot-preview[bot] 61eac2aada
Bump faker from 4.1.1 to 4.1.2
Bumps [faker](https://github.com/joke2k/faker) from 4.1.1 to 4.1.2.
- [Release notes](https://github.com/joke2k/faker/releases)
- [Changelog](https://github.com/joke2k/faker/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/joke2k/faker/compare/v4.1.1...v4.1.2)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-08-25 18:03:20 +00:00
dependabot-preview[bot] 1cc3051aa2
Merge pull request #3095 from Netflix/dependabot/pip/nodeenv-1.5.0 2020-08-25 18:01:33 +00:00
dependabot-preview[bot] ad0e469e92
Bump nodeenv from 1.4.0 to 1.5.0
Bumps [nodeenv](https://github.com/ekalinin/nodeenv) from 1.4.0 to 1.5.0.
- [Release notes](https://github.com/ekalinin/nodeenv/releases)
- [Changelog](https://github.com/ekalinin/nodeenv/blob/master/CHANGES)
- [Commits](https://github.com/ekalinin/nodeenv/compare/1.4.0...1.5.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-08-25 17:54:14 +00:00
dependabot-preview[bot] 9cb430f92c
Merge pull request #3101 from Netflix/dependabot/pip/pre-commit-2.7.1 2020-08-25 17:52:30 +00:00
dependabot-preview[bot] 660a09e4c9
Bump pre-commit from 2.6.0 to 2.7.1
Bumps [pre-commit](https://github.com/pre-commit/pre-commit) from 2.6.0 to 2.7.1.
- [Release notes](https://github.com/pre-commit/pre-commit/releases)
- [Changelog](https://github.com/pre-commit/pre-commit/blob/master/CHANGELOG.md)
- [Commits](https://github.com/pre-commit/pre-commit/compare/v2.6.0...v2.7.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-08-25 17:41:18 +00:00
dependabot-preview[bot] 08762d3bbb
Merge pull request #3086 from Netflix/dependabot/pip/factory-boy-3.0.1 2020-08-25 17:39:23 +00:00
dependabot-preview[bot] 553b7fab8d
Bump factory-boy from 2.12.0 to 3.0.1
Bumps [factory-boy](https://github.com/FactoryBoy/factory_boy) from 2.12.0 to 3.0.1.
- [Release notes](https://github.com/FactoryBoy/factory_boy/releases)
- [Changelog](https://github.com/FactoryBoy/factory_boy/blob/master/docs/changelog.rst)
- [Commits](https://github.com/FactoryBoy/factory_boy/compare/2.12.0...3.0.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-08-25 17:28:39 +00:00
dependabot-preview[bot] 3d160a459c
Merge pull request #3099 from Netflix/dependabot/pip/fakeredis-1.4.3 2020-08-25 17:25:59 +00:00
dependabot-preview[bot] 7b2b3911bc
Bump fakeredis from 1.4.1 to 1.4.3
Bumps [fakeredis](https://github.com/jamesls/fakeredis) from 1.4.1 to 1.4.3.
- [Release notes](https://github.com/jamesls/fakeredis/releases)
- [Commits](https://github.com/jamesls/fakeredis/compare/1.4.1...1.4.3)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-08-25 17:19:48 +00:00
dependabot-preview[bot] c899173dc9
Merge pull request #3080 from Netflix/dependabot/pip/acme-1.7.0 2020-08-25 17:17:51 +00:00
dependabot-preview[bot] 3e8ca982a1
Bump acme from 1.6.0 to 1.7.0
Bumps [acme](https://github.com/letsencrypt/letsencrypt) from 1.6.0 to 1.7.0.
- [Release notes](https://github.com/letsencrypt/letsencrypt/releases)
- [Commits](https://github.com/letsencrypt/letsencrypt/compare/v1.6.0...v1.7.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-08-25 16:41:17 +00:00
Hossein Shafagh 136b8e67d4
Merge pull request #3092 from sirferl/master
Extended  ADCS_TEMPLATE_ Variable
2020-08-25 09:39:12 -07:00
Mathias Petermann 301f099622 Fix link for WES-entropy-client 2020-08-21 09:56:46 +02:00
sirferl 4f148f3bc3
Merge branch 'master' into master 2020-08-20 11:33:18 +02:00
charhate 41b35fb13d
Merge pull request #3091 from charhate/pub_issuer
empty OU and date changes on UI
2020-08-19 11:31:46 -07:00
sirferl 1b73b1d080
Merge branch 'master' into master 2020-08-19 12:29:02 +02:00
sirferl c2116df652
Extended ADCS_TEMPLATE_ Variable
If there is a config variable ADCS_TEMPLATE_<upper(authority.name)> take the value as Cert template else default to ADCS_TEMPLATE to be compatible with former versions
2020-08-19 12:25:52 +02:00
sayali 5b96b3a032 Lint error fix 2020-08-18 20:03:15 -07:00
sayali d41227327e doc update DEFAULT_MAX_VALIDITY_DAYS 2020-08-18 19:47:38 -07:00
sayali 240f0b99c8 Max end date as per start date + default validity 3 years 2020-08-18 19:34:59 -07:00
sayali cab1216cb7 Updating LEMUR_DEFAULT_ORGANIZATIONAL_UNIT to empty string 2020-08-18 15:14:34 -07:00
sayali bc5579e9bf max date on UI as per max validity configs 2020-08-18 14:50:42 -07:00
sayali 5b3f40467b Make Organizational Unit optional 2020-08-18 14:50:42 -07:00
charhate 14b73b73cf
Merge pull request #3081 from charhate/pub_issuer
Cert validity should not exceed 397 days for publicly trusted issuers
2020-08-17 17:41:25 -07:00
charhate d86d599d61
Merge branch 'master' into pub_issuer 2020-08-11 19:28:36 -07:00
sayali 6ff8910f87 mention 397 for digicert plugin 2020-08-11 18:53:19 -07:00
sayali acb0463844 Add new configs to the doc 2020-08-11 18:51:41 -07:00