Commit Graph

2138 Commits

Author SHA1 Message Date
Curtis
f9a7b97839
Merge branch 'master' into unittests-use-valid-certs 2018-08-07 07:45:45 -07:00
Cyril Dangerville
2869042f38 Fixed invalid JSON payloads (making API requests fail in particular) (#1522) 2018-08-03 15:26:48 -07:00
Marti Raudsepp
82158aece6 Fill in missing cert rotation_policy; don't ignore validation errors when re-issuing certs
CertificateInputSchema requires the rotation_policy field, but
certificates created before the field existed have set to NULL. Thus
saving such certificates failed and probably caused other errors.

Made cert re-issuing (get_certificate_primitives) more strict so such
errors are harder to miss in the future.
2018-08-03 20:06:21 +03:00
Marti Raudsepp
1f0f432327 Fix unit tests certificates to have correct chains and private keys
In preparation for certificate integrity-checking: invalid certificate
chains and mismatching private keys will no longer be allowed anywhere
in Lemur code.

The test vector certs were generated using the Lemur "cryptography"
authority plugin.

* Certificates are now more similar to real-world usage: long serial
  numbers, etc.
* Private key is included for all certs, so it's easy to re-generate
  anything if needed.
2018-08-03 19:45:13 +03:00
Marti Raudsepp
acd2701fa2 Delete dead code in unit tests (#1510) 2018-08-03 08:21:55 -07:00
Marti Raudsepp
bb0c229d7e Add .pytest_cache dir to .gitignore (#1512) 2018-08-03 08:12:04 -07:00
Curtis
3f9d66bd51
Merge pull request #1497 from castrapel/letsencrypt_account_support
Letsencrypt account support
2018-07-30 15:37:35 -07:00
Curtis
025d177565
Merge branch 'master' into letsencrypt_account_support 2018-07-30 15:28:29 -07:00
Curtis Castrapel
44192d4494 remove debug print 2018-07-30 15:27:23 -07:00
Curtis
4b5e93cd3c
Merge pull request #1491 from mikegrima/booleans
Proper flask_restful boolean parsing
2018-07-30 15:25:52 -07:00
Curtis Castrapel
0889076d3b Support LetsEncrypt accounts 2018-07-30 15:25:02 -07:00
Mike Grima
d6b482755b Proper flask_restful boolean parsing.
This is documented here: https://github.com/flask-restful/flask-restful/issues/488
2018-07-30 13:49:41 -07:00
Curtis
b70885595f
Merge pull request #1488 from castrapel/fix_delete
fix deletion
2018-07-27 16:44:23 -07:00
Curtis Castrapel
caf99d36d6 fix deletion 2018-07-27 15:52:22 -07:00
Curtis
35341a6828
Merge pull request #1487 from castrapel/cancel_pending_cert_failures
Cancel pending cert failures
2018-07-27 14:26:52 -07:00
Curtis Castrapel
2bb00bc666 requirements 2018-07-27 14:20:22 -07:00
Curtis Castrapel
e16c1de001 Error logging 2018-07-27 14:17:50 -07:00
Curtis Castrapel
2a6dda07eb Show and send error for pending certs 2018-07-27 14:15:14 -07:00
Curtis
4fa8f9ecc0
Merge pull request #1468 from castrapel/fix_db
http://docs.sqlalchemy.org/en/latest/core/pooling.html#disconnect-handling-pessimistic
2018-07-23 11:07:45 -07:00
Curtis Castrapel
9b29f9f819 Adding pessimistic sqlalchemy disconnection handling 2018-07-23 10:57:22 -07:00
Curtis Castrapel
faa1779204 Merge remote-tracking branch 'upstream/master' 2018-07-23 10:29:52 -07:00
Curtis Castrapel
2f51fea743 no bare except 2018-07-20 13:43:47 -07:00
Curtis Castrapel
c78077d8d6 Explicit capture exception during create failure 2018-07-20 13:43:47 -07:00
Curtis Castrapel
0bb7a6e125 Unpinning requests 2018-07-20 13:43:47 -07:00
Steven Reiling
bd9203fcbc Adds an optional interval variable to notification service's
create_default_expiration_notifications and introduces a new optional
configuration variable, LEMUR_SECURITY_TEAM_EMAIL_INTERVALS, to allow admins
control over the centralized email notification defaults.
2018-07-20 13:43:47 -07:00
Curtis Castrapel
af8cf2d550 updated requirements 2018-07-20 13:43:47 -07:00
Marti Raudsepp
d071d85486 Clean up module imports
Example:
* import lemur.common.utils -> from lemur.common import utils
* import sqlalchemy.types as types -> from sqlalchemy import types
2018-07-20 13:43:47 -07:00
Marti Raudsepp
04ee1656ee Cache parsed certificate instead of re-parsing for each field
Use @cached_property decorator to cache the results of parse_certificate().

This significantly cuts down on the number of times certs need to be
parsed for a list view.
2018-07-20 13:43:47 -07:00
root
56372c55b4 initial commit 2018-07-20 13:43:47 -07:00
Justin P
7146c4cb71 Sinful Use of $
Using the `$` sign within any block of text already marked as a code block is a grievous sin due to the fact that it makes it 100% pointless for you to have USED THE CODE BLOCK IN THE FIRST PLACE!

The `$` becomes included in the text we're trying to highlight for us to be able to actually use in our own projects. 

Why post the info if you don't want us to use it. 

Thank you.
2018-07-20 13:43:47 -07:00
Curtis
b0847e2fa1
Merge pull request #1457 from castrapel/better_sentry
Better sentry
2018-07-20 11:16:49 -07:00
Curtis Castrapel
f93e938cda no bare except 2018-07-20 10:53:47 -07:00
Curtis Castrapel
5a01840784 Explicit capture exception during create failure 2018-07-20 10:47:19 -07:00
Curtis Castrapel
0a0992fffe Merge remote-tracking branch 'upstream/master' 2018-07-20 10:08:40 -07:00
root
2a5f713f97 initial commit 2018-07-20 10:07:32 -07:00
Justin P
3ac440b6b5 Sinful Use of $
Using the `$` sign within any block of text already marked as a code block is a grievous sin due to the fact that it makes it 100% pointless for you to have USED THE CODE BLOCK IN THE FIRST PLACE!

The `$` becomes included in the text we're trying to highlight for us to be able to actually use in our own projects. 

Why post the info if you don't want us to use it. 

Thank you.
2018-07-20 10:07:32 -07:00
Curtis
db9891d8cf
Merge pull request #1433 from castrapel/update-requests
Unpinning requests
2018-07-17 19:24:57 -07:00
Curtis Castrapel
be9be6d3cd Unpinning requests 2018-07-17 18:38:15 -07:00
Curtis
b02c00bbf1
Merge pull request #1431 from Netflix/security_notifications_config
Adds an optional interval variable to notification service's
2018-07-13 15:51:26 -07:00
Steven Reiling
7f3454128d Adds an optional interval variable to notification service's
create_default_expiration_notifications and introduces a new optional
configuration variable, LEMUR_SECURITY_TEAM_EMAIL_INTERVALS, to allow admins
control over the centralized email notification defaults.
2018-07-13 14:08:31 -07:00
Curtis
4922f4dd40
Merge pull request #1426 from jpartain89/patch-1
Sinful Use of `$`
2018-07-12 21:53:17 -07:00
Curtis
e3de9baaeb
Merge branch 'master' into patch-1 2018-07-12 21:37:33 -07:00
Curtis
5df280e94d
Merge pull request #1429 from Brett-Wood/master
Missing file lemur/dns_providers/__init__.py
2018-07-12 21:37:12 -07:00
Curtis
5afc9ba739
Merge branch 'master' into master 2018-07-12 15:37:44 -07:00
Curtis
983636c502
Merge pull request #1430 from castrapel/upreqs71218
Update requirements
2018-07-12 15:37:31 -07:00
Curtis Castrapel
a19a47dba1 updated requirements 2018-07-12 13:24:44 -07:00
Marti Raudsepp
ead374db5f Clean up module imports
Example:
* import lemur.common.utils -> from lemur.common import utils
* import sqlalchemy.types as types -> from sqlalchemy import types
2018-07-12 13:23:38 -07:00
Marti Raudsepp
2f32014c75 Cache parsed certificate instead of re-parsing for each field
Use @cached_property decorator to cache the results of parse_certificate().

This significantly cuts down on the number of times certs need to be
parsed for a list view.
2018-07-12 13:23:38 -07:00
Curtis Castrapel
4f4be51ac8 Merge remote-tracking branch 'upstream/master' 2018-07-12 11:21:31 -07:00
Marti Raudsepp
149caa5602 Clean up module imports
Example:
* import lemur.common.utils -> from lemur.common import utils
* import sqlalchemy.types as types -> from sqlalchemy import types
2018-07-12 11:21:18 -07:00