Commit Graph

3108 Commits

Author SHA1 Message Date
Curtis Castrapel
0320c04be2 nosec comment 2019-05-16 08:14:46 -07:00
Curtis Castrapel
c5ec5fa41f Add bandit to test and pre-commit 2019-05-16 08:13:42 -07:00
Curtis Castrapel
68fd1556b2 Black lint all the things 2019-05-16 07:57:02 -07:00
Curtis
3680d523d4
Merge pull request #2791 from castrapel/digicert_expose_error
Expose exact response from digicert as error
2019-05-15 13:43:44 -07:00
Curtis Castrapel
e3c5490d25 Expose exact response from digicert as error 2019-05-15 13:36:40 -07:00
Curtis
8c73851708
Merge pull request #2790 from castrapel/resolved_cert
Set resolved cert ID before resolving cert
2019-05-15 11:57:03 -07:00
Curtis Castrapel
26d10e8b98 change ordering in more places 2019-05-15 11:47:53 -07:00
Curtis Castrapel
7e92edc70a Set resolved cert ID before resolving cert; Ignore sentry exceptions when no records on deletion 2019-05-15 11:43:59 -07:00
Hossein Shafagh
ed39e30824
Merge pull request #2788 from hosseinsh/fast-valid-cert-lookup
adding a new API for faster certificate lookup
2019-05-15 10:25:50 -07:00
Curtis
6eb3836abc
Merge branch 'master' into fast-valid-cert-lookup 2019-05-15 10:20:17 -07:00
Curtis
302219325b
Merge pull request #2789 from castrapel/celery-timeouts-LE-validation
Add soft timeouts to celery jobs; Check for PEM in LE order
2019-05-14 14:09:02 -07:00
Curtis Castrapel
5d8f71c3e4 nt 2019-05-14 13:02:24 -07:00
Curtis Castrapel
565142f985 Add soft timeouts to celery jobs; Check for PEM in LE order 2019-05-14 12:52:30 -07:00
Hossein Shafagh
f452a7ce68 adding a new API for faster certificate lookup.
The new API api/1/certificates/valid returns only non-expired (not_after >= today) certs which have auto-rotate enabled:

cn is a required parameter:

http://localhost:8000/api/1/certificates/valid?filter=cn;example.com
cn can also be a database string wildcard ('%'):

http://localhost:8000/api/1/certificates/valid?filter=cn;%
owner is the additional parameter, and must be the email address of the owner:

http://localhost:8000/api/1/certificates/valid?filter=cn;example.com&owner=hossein@example.com
given owner  and a database string wildcard ('%') one can retrieve all certs for that owner, which are still valid, and have auto-rotate enabled:

http://localhost:8000/api/1/certificates/valid?filter=cn;%&owner=hossein@example.com
2019-05-11 18:06:51 -07:00
Curtis
0f2773c986
Merge pull request #2787 from castrapel/search_by_name
Allow searching for certificates by name via API
2019-05-09 15:08:34 -07:00
Curtis Castrapel
3f10b43254 Ignore bandit error 2019-05-09 15:00:09 -07:00
Curtis Castrapel
ed18df22db remove permalink change 2019-05-09 14:54:44 -07:00
Curtis Castrapel
e33a103ca1 Allow searching for certificates by name via API 2019-05-09 14:36:56 -07:00
Curtis
02554b427a
Merge pull request #2784 from castrapel/add_metrics_reissue_rotate
Gather more metrics on certificate reissue/rotate jobs
2019-05-08 07:57:51 -07:00
Curtis
c9c782684d
Merge branch 'master' into add_metrics_reissue_rotate 2019-05-08 07:48:44 -07:00
Curtis Castrapel
87470602fd Gather more metrics on certificate reissue/rotate jobs 2019-05-08 07:48:08 -07:00
Hossein Shafagh
9cfdf55d9e
Merge pull request #2773 from jplana/jwks_validation_error_control
Better error management in jwks token validation
2019-05-08 07:42:35 -07:00
Hossein Shafagh
1de85dbcf4
Merge branch 'master' into jwks_validation_error_control 2019-05-08 07:29:37 -07:00
Curtis
6a83da2292
Merge pull request #2775 from jplana/re-enable-gulp-backend-proxy
Enable gulp server to proxy backend
2019-05-08 07:22:58 -07:00
Curtis
34640e009b
Merge branch 'master' into re-enable-gulp-backend-proxy 2019-05-08 07:19:51 -07:00
Curtis
317c84800c
Merge branch 'master' into jwks_validation_error_control 2019-05-08 06:50:56 -07:00
Curtis
3500be39aa
Merge pull request #2783 from alwaysjolley/vault_docs
Adding documentation for Vault and CFSSL Plugin changes
2019-05-08 06:50:38 -07:00
alwaysjolley
029efeb03a fixing syntax 2019-05-08 09:45:13 -04:00
alwaysjolley
15eb7689ed Adding documentation for Vault and CFSSL Plugin changes 2019-05-08 09:32:46 -04:00
Hossein Shafagh
6c66370142
Merge pull request #2782 from castrapel/fix_bearer_token
Converting userinfo authorization to a config var
2019-05-07 15:38:05 -07:00
Curtis Castrapel
0eacbd42d7 Converting userinfo authorization to a config var 2019-05-07 15:31:42 -07:00
Jose Plana
4e6e7edf27 Rename return variable for better readability 2019-05-07 22:53:01 +02:00
Hossein Shafagh
b7ce9ab901
Merge branch 'master' into jwks_validation_error_control 2019-05-07 13:09:02 -07:00
Hossein Shafagh
1492890ac7
Merge branch 'master' into re-enable-gulp-backend-proxy 2019-05-07 09:18:01 -07:00
Hossein Shafagh
65f594fc29
Merge pull request #2774 from jplana/aid_openid_roles_provider_integration
Don't fail if googleGroups is not found in user profile
2019-05-07 09:17:26 -07:00
Hossein Shafagh
0de42fdf0f
Merge branch 'master' into re-enable-gulp-backend-proxy 2019-05-07 09:06:24 -07:00
Hossein Shafagh
ff583981b1
Merge branch 'master' into aid_openid_roles_provider_integration 2019-05-07 09:06:02 -07:00
Hossein Shafagh
e58ff476c9
Merge branch 'master' into jwks_validation_error_control 2019-05-07 09:05:41 -07:00
Curtis
06ccafeb24
Merge pull request #2772 from jplana/fix_userinfo_authorization
Fixes userinfo using Bearer token
2019-05-07 08:46:18 -07:00
Curtis
22caaa0c95
Merge branch 'master' into fix_userinfo_authorization 2019-05-07 07:48:47 -07:00
Curtis
44d4c98a99
Merge pull request #2779 from dciancu/develop
Fix Cloudflare DNS
2019-05-07 07:45:48 -07:00
Curtis
e65154b48e
Merge branch 'master' into develop 2019-05-07 07:36:51 -07:00
Curtis
adec451613
Merge pull request #2781 from alwaysjolley/lemur_vault_source
adding Vault Source plugin
2019-05-07 07:36:37 -07:00
alwaysjolley
ef7a8587fe Merge branch 'lemur_vault_source' of github.com:/alwaysjolley/lemur into lemur_vault_source 2019-05-07 10:06:09 -04:00
alwaysjolley
b0c8901b0a lint cleanup 2019-05-07 10:05:01 -04:00
alwaysjolley
36ce1cc7ef
Merge branch 'master' into lemur_vault_source 2019-05-07 09:41:50 -04:00
alwaysjolley
fb3f0bd72a adding Vault Source plugin 2019-05-07 09:37:30 -04:00
Hossein Shafagh
da237c9c84
Merge branch 'master' into develop 2019-05-06 17:10:15 -07:00
Daniel Iancu
a7af3cf8d2 Fix Cloudflare DNS 2019-05-07 03:05:24 +03:00
Hossein Shafagh
298d172536
Merge branch 'master' into jwks_validation_error_control 2019-05-06 16:57:03 -07:00