Go to file
Wesley Hartford bc621c1468 Improve the Kubernetes Destination plugin
The plugin now supports loading details from local files rather than requiring them to be entered through the UI. This is especially relaent when Lemur is deployed on Kubernetes as the certificate, token, and current namespace will be injected into the pod. The location these details are injected are the defaults if no configuration details are supplied.

The plugin now supports deploying the secret in three different formats:
* Full - matches the formate used by the plugin prior to these changes.
* TLS - creates a secret of type kubernetes.io/tls and includes the certificate chain and private key, this format is used by many kubernetes features.
* Certificate - creates a secret containing only the certificate chain, suitable for use as trust authority where private keys should _NOT_ be deployed.

The deployed secret can now have a name set through the configuration options; the setting allows the insertion of the placeholder '{common_name}' which will be replaced by the certificate's common name value.

Debug level logging has been added.
2018-12-12 13:25:36 -08:00
docs Add documentation for the LDAP_IS_ACTIVE_DIRECTORY setting 2018-11-20 10:51:14 +01:00
gulp Revert "Precommit - Fix linty things" 2018-08-22 13:21:35 -07:00
lemur Improve the Kubernetes Destination plugin 2018-12-12 13:25:36 -08:00
trustores initial commit 2015-06-22 13:47:27 -07:00
.bowerrc Revert "Precommit - Fix linty things" 2018-08-22 13:21:35 -07:00
.coveragerc Removing tests folder from coverage report. (#788) 2017-05-11 19:42:53 -07:00
.gitattributes adding automatic versioning 2015-11-30 10:43:41 -08:00
.gitignore Allow LetsEncrypt renewals and requesting certificates without specifying DNS provider 2018-08-13 14:22:59 -07:00
.jshintignore Pleasing the JSHint gods 2015-07-21 13:36:03 -07:00
.jshintrc Revert "Precommit - Fix linty things" 2018-08-22 13:21:35 -07:00
.pre-commit-config.yaml Revert "Precommit - Fix linty things" 2018-08-22 13:21:35 -07:00
.travis.yml Updat email on travisci 2018-11-05 13:19:22 -08:00
AUTHORS Version bump and needed documentation. 2015-10-24 11:18:27 -07:00
bower.json Revert "Precommit - Fix linty things" 2018-08-22 13:21:35 -07:00
CHANGELOG.rst Fix issue with automatically renewing acme certificates 2018-05-08 14:54:10 -07:00
config-default.py initial commit 2015-06-22 13:47:27 -07:00
docker-compose.yml deps 2018-10-22 14:51:13 -07:00
Dockerfile basic ldap support (#842) 2017-09-03 20:41:43 -07:00
gulpfile.js Pleasing the PEP8 gods 2015-07-21 13:06:13 -07:00
LICENSE Addressing comments. Updating copyrights. Added function to determine authorative name server 2018-05-29 10:23:01 -07:00
Makefile Unpin most dependencies, and fix moto 2018-11-05 14:37:52 -08:00
MANIFEST.in add missing requirements files for setup 2018-08-31 13:02:53 -05:00
OSSMETADATA adding OSSMETADATA for NetflixOSS tracking 2015-12-11 15:57:28 -08:00
package.json Revert "Precommit - Fix linty things" 2018-08-22 13:21:35 -07:00
README.rst Merge branch 'master' into bugfix-1228 2018-04-27 08:54:08 -07:00
requirements-dev.in downgrade flake8 2018-11-05 11:20:11 -08:00
requirements-dev.txt update reqs 2018-12-06 12:29:16 -08:00
requirements-docs.in Celery task for sync job 2018-10-29 09:10:43 -07:00
requirements-docs.txt update reqs 2018-12-06 12:29:16 -08:00
requirements-tests.in Unpin most dependencies, and fix moto 2018-11-05 14:37:52 -08:00
requirements-tests.txt update reqs 2018-12-06 12:29:16 -08:00
requirements.in Add async call to create pending cert when needed 2018-11-28 11:32:52 -08:00
requirements.txt update reqs 2018-12-06 12:29:16 -08:00
setup.cfg Ensuring that acme and cryptography respect different key types (#554) 2016-12-02 10:54:18 -08:00
setup.py Revert "Precommit - Fix linty things" 2018-08-22 13:21:35 -07:00
tox.ini Initial work on #74. (#514) 2016-11-21 09:19:14 -08:00

Lemur
=====

.. image:: https://badges.gitter.im/Join%20Chat.svg
   :alt: Join the chat at https://gitter.im/Netflix/lemur
   :target: https://gitter.im/Netflix/lemur?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge

.. image:: https://readthedocs.org/projects/lemur/badge/?version=latest
    :target: https://lemur.readthedocs.io
    :alt: Latest Docs

.. image:: https://img.shields.io/badge/NetflixOSS-active-brightgreen.svg

.. image:: https://travis-ci.org/Netflix/lemur.svg
    :target: https://travis-ci.org/Netflix/lemur

.. image:: https://coveralls.io/repos/github/Netflix/lemur/badge.svg?branch=master
    :target: https://coveralls.io/github/Netflix/lemur?branch=master



Lemur manages TLS certificate creation. While not able to issue certificates itself, Lemur acts as a broker between CAs
and environments providing a central portal for developers to issue TLS certificates with 'sane' defaults.

It works on CPython 3.5. We deploy on Ubuntu and develop on OS X.


Project resources
=================

- `Lemur Blog Post <http://techblog.netflix.com/2015/09/introducing-lemur.html>`_
- `Documentation <http://lemur.readthedocs.io/>`_
- `Source code <https://github.com/netflix/lemur>`_
- `Issue tracker <https://github.com/netflix/lemur/issues>`_
- `Docker <https://github.com/Netflix/lemur-docker>`_