Go to file
Neil Schelly f13a3505f3 X509 extensions issue#646 (#666)
* Allowing that create_csr can be called with an additional flag in the csr_config to adjust the BasicConstraints for a CA.

* If there are no SANs, skip adding a blank list of SANs.

* Adding handling for all the extended key usage, key usage, and subject key identifier extensions.

* Fixing lint checks. I was overly verbose.

* This implements marshalling of the certificate extensions into x509 ExtensionType objects in the schema validation code.

* Will create x509 ExtensionType objects in the schema validation stage
* Allows errors parsing incoming options to bubble up to the requestor as ValidationErrors.
* Cleans up create_csr a lot in the certificates/service.py
* Makes BasicConstraints _just another extension_, rather than a hard-coded one
* Adds BasicConstraints option for path_length to the UI for creating an authority
* Removes SAN types which cannot be handled from the UI for authorities and certificates.
* Fixes Certificate() object model so that it doesn't just hard-code only SAN records in the extensions property and actually returns the extensions how you expect to see them. Since Lemur is focused on using these data in the "CSR" phase of things, extensions that don't get populated until signing will be in dict() form.* Trying out schema validation of extensions
2017-01-27 12:31:29 -08:00
docs Updating hooks. (#660) 2017-01-18 14:16:31 -08:00
gulp ensuring our index gets created (#591) 2016-12-13 11:13:44 -08:00
lemur X509 extensions issue#646 (#666) 2017-01-27 12:31:29 -08:00
trustores initial commit 2015-06-22 13:47:27 -07:00
.bowerrc Fixing the paths related to javascript dependecies 2015-08-14 10:05:30 -07:00
.coveragerc Initial work on #74. (#514) 2016-11-21 09:19:14 -08:00
.gitattributes adding automatic versioning 2015-11-30 10:43:41 -08:00
.gitignore Closes #278 and #199, Starting transition to marshmallow (#299) 2016-05-05 12:52:08 -07:00
.jshintignore Pleasing the JSHint gods 2015-07-21 13:36:03 -07:00
.jshintrc Adding a visualization for authorities. (#338) 2016-05-30 21:52:34 -07:00
.pre-commit-config.yaml Re-working the way audit logs work. 2016-11-21 11:28:11 -08:00
.travis.yml Attempting to upgrade to node LTS (#585) 2016-12-13 08:50:12 -08:00
AUTHORS Version bump and needed documentation. 2015-10-24 11:18:27 -07:00
bower.json Rotation ui (#633) 2016-12-26 15:55:11 -08:00
CHANGELOG.rst Adding release notes. (#459) 2016-11-15 16:44:40 -08:00
config-default.py initial commit 2015-06-22 13:47:27 -07:00
gulpfile.js Pleasing the PEP8 gods 2015-07-21 13:06:13 -07:00
LICENSE Improving documentation layout 2015-12-31 11:12:56 -08:00
Makefile Allowing tar to be installed without git or other development tools (#552) 2016-12-01 16:20:46 -08:00
MANIFEST.in adding automatic versioning 2015-11-30 10:43:41 -08:00
OSSMETADATA adding OSSMETADATA for NetflixOSS tracking 2015-12-11 15:57:28 -08:00
package.json Attempting to upgrade to node LTS (#585) 2016-12-13 08:50:12 -08:00
README.rst Updating readme with supported python verisions (#524) 2016-11-22 17:09:21 -08:00
setup.cfg Ensuring that acme and cryptography respect different key types (#554) 2016-12-02 10:54:18 -08:00
setup.py [Doppins] Upgrade dependency marshmallow to ==2.12.1 (#672) 2017-01-24 13:46:37 -08:00
tox.ini Initial work on #74. (#514) 2016-11-21 09:19:14 -08:00

Lemur
=====

.. image:: https://badges.gitter.im/Join%20Chat.svg
   :alt: Join the chat at https://gitter.im/Netflix/lemur
   :target: https://gitter.im/Netflix/lemur?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge

.. image:: https://readthedocs.org/projects/lemur/badge/?version=latest
    :target: https://lemur.readthedocs.org
    :alt: Latest Docs

.. image:: https://img.shields.io/badge/NetflixOSS-active-brightgreen.svg

.. image:: https://travis-ci.org/Netflix/lemur.svg
    :target: https://travis-ci.org/Netflix/lemur


Lemur manages TLS certificate creation. While not able to issue certificates itself, Lemur acts as a broker between CAs
and environments providing a central portal for developers to issue TLS certificates with 'sane' defaults.

It works on CPython 3.5. We deploy on Ubuntu and develop on OS X.


Project resources
=================

- `Lemur Blog Post <http://techblog.netflix.com/2015/09/introducing-lemur.html>`_
- `Documentation <http://lemur.readthedocs.org/>`_
- `Source code <https://github.com/netflix/lemur>`_
- `Issue tracker <https://github.com/netflix/lemur/issues>`_
- `Docker <https://github.com/Netflix/lemur-docker>`_