Tim Ramlot
|
899d55ae57
|
remove webhook conversion logic
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-02-02 11:19:08 +01:00 |
|
Tim Ramlot
|
5b8c1213b6
|
redact the body of failed authentication requests
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-31 10:05:00 +01:00 |
|
jetstack-bot
|
0b33337f1d
|
Merge pull request #6679 from wallrj/remove-DisableInstanceDiscovery-field
Remove unnecessary Azure workload identity setting: DisableInstanceDiscovery: true
|
2024-01-30 19:45:27 +00:00 |
|
Richard Wall
|
67e06fce78
|
A hack to DisableInstanceDiscovery during tests
Signed-off-by: Richard Wall <richard.wall@venafi.com>
|
2024-01-30 18:03:05 +00:00 |
|
Tim Ramlot
|
b9dd4903ad
|
improve error message logging
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-30 16:55:37 +01:00 |
|
Richard Wall
|
420d3114df
|
Remove unnecessary Azure workload identity setting: DisableInstanceDiscovery: true
Signed-off-by: Richard Wall <richard.wall@venafi.com>
|
2024-01-30 15:50:05 +00:00 |
|
Tim Ramlot
|
90cbbc9d87
|
replace the azcore.ResponseError error message to make it stable across retries
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-30 16:20:52 +01:00 |
|
Tim Ramlot
|
5ac022ad70
|
remove versionchecker, because it was moved to cert-manager/cmctl
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-29 11:50:09 +01:00 |
|
Richard Wall
|
ee5cba487a
|
Stop using the deprecated SingleInflight field of miekg/dns
Signed-off-by: Richard Wall <richard.wall@venafi.com>
|
2024-01-26 17:53:50 +00:00 |
|
Tim Ramlot
|
67f8a03cae
|
update AzureDNS auth API comments
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-12 12:07:02 +01:00 |
|
Tim Ramlot
|
9a049532d0
|
Update Azure SDK and remove deprecated autorest dependency
Co-authored-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
Signed-off-by: Philip Laine <philip.laine@gmail.com>
|
2024-01-12 12:06:34 +01:00 |
|
jetstack-bot
|
a1c134e78c
|
Merge pull request #6574 from ThatsMrTalbot/tls-metrics-endpoint
feat: add tls to metrics endpoint
|
2024-01-10 14:48:17 +00:00 |
|
SpectralHiss
|
892e6eef01
|
Fix OtherName Value UniversalValue .Type() detection
Signed-off-by: SpectralHiss <houssem.elfekih@jetstack.io>
|
2024-01-10 10:35:43 +00:00 |
|
SpectralHiss
|
0b83f78fff
|
Remove redundant otherName match tests
* We do not need to include otherName in fuzzy certificate detection
checks
Signed-off-by: SpectralHiss <houssem.elfekih@jetstack.io>
|
2024-01-09 17:02:24 +00:00 |
|
Tim Ramlot
|
3dad3f320b
|
don't check OtherNames when fuzzy matching
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-09 16:41:13 +01:00 |
|
Tim Ramlot
|
736896d264
|
introduce UniversalValue 'Type()'
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-09 16:40:32 +01:00 |
|
SpectralHiss
|
38c2b33a71
|
Add otherName detection to TestSecretDataAltNamesMatchSpec
Signed-off-by: SpectralHiss <houssem.elfekih@jetstack.io>
|
2024-01-09 14:01:09 +00:00 |
|
SpectralHiss
|
b6fdcede90
|
Add test for different order OtherName value
* Simplify sorting implementation for OtherName slice equality
Signed-off-by: SpectralHiss <houssem.elfekih@jetstack.io>
|
2024-01-09 11:39:17 +00:00 |
|
SpectralHiss
|
7b13c72fed
|
Detect otherName changes to CR trigger reissuance
Signed-off-by: SpectralHiss <houssem.elfekih@jetstack.io>
|
2024-01-09 09:58:43 +00:00 |
|
jetstack-bot
|
c3304feec5
|
Merge pull request #6618 from SpectralHiss/hef/missed-otherName-changes
Hef/missed other name changes
|
2024-01-09 09:44:29 +00:00 |
|
jetstack-bot
|
4edb4b0ad0
|
Merge pull request #6619 from ThatsMrTalbot/feat/http-max-body-size
feat: limit the size of the body read back from http requests
|
2024-01-08 20:41:08 +00:00 |
|
Adam Talbot
|
d0ec66237c
|
feat: limit the size of the body read back from http requests
Signed-off-by: Adam Talbot <adam.talbot@venafi.com>
|
2024-01-08 20:28:01 +00:00 |
|
SpectralHiss
|
d186b61414
|
Add attribution to pkg/util/pki/asn1_util.go
Signed-off-by: SpectralHiss <houssem.elfekih@jetstack.io>
|
2024-01-08 13:34:09 +00:00 |
|
SpectralHiss
|
d07dd3de5f
|
Fix OtherName feature flag validation logic
* Improve test comments for UniversalValue
Signed-off-by: SpectralHiss <houssem.elfekih@jetstack.io>
|
2024-01-08 13:34:09 +00:00 |
|
jetstack-bot
|
e0189a6a30
|
Merge pull request #6607 from inteon/deprecate_util_function
Deprecate URLsFromStrings which is only used in other deprecated functions
|
2024-01-05 15:23:16 +00:00 |
|
Tim Ramlot
|
c584ee6dfb
|
use generics for mustAllSync variants
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-05 11:58:14 +01:00 |
|
Tim Ramlot
|
a49bc65b03
|
deprecate URLsFromStrings which is only used in other deprecated functions
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-05 11:50:13 +01:00 |
|
Adam Talbot
|
d27fcc2762
|
refactor: refactored metrics server code into internal package
Signed-off-by: Adam Talbot <adam.talbot@venafi.com>
|
2024-01-04 15:49:25 +00:00 |
|
Richard Wall
|
7bda41c282
|
Use io instead of deprecated ioutil
Signed-off-by: Richard Wall <richard.wall@venafi.com>
|
2024-01-04 15:05:24 +00:00 |
|
Tim Ramlot
|
8ca617a8ea
|
replace custom util function with k8s.io/apimachinery/util/sets
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-04 14:38:30 +01:00 |
|
jetstack-bot
|
24d0fddec5
|
Merge pull request #6593 from inteon/use_slices
Use slices go library
|
2024-01-04 13:36:02 +00:00 |
|
jetstack-bot
|
d2f3f12f47
|
Merge pull request #6592 from inteon/add_long_cert_chain_test
Add tests for the improvements made in #6561
|
2024-01-04 13:18:02 +00:00 |
|
Tim Ramlot
|
e157729991
|
fix typo in name and add comment explaining genericEqualUnsorted
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-04 14:02:36 +01:00 |
|
Tim Ramlot
|
950948e465
|
start using the new 'slices' library and deprecate old util functions
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-04 09:32:17 +01:00 |
|
Tim Ramlot
|
90dc8ccde0
|
disable APIPriorityAndFairness using config instead of feature flag
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-03 17:40:46 +01:00 |
|
Tim Ramlot
|
9547fbdf94
|
add tests for the improvements made in #6561
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-03 17:25:15 +01:00 |
|
Tim Ramlot
|
a0f2849425
|
run 'make update-codegen'
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-03 16:18:35 +01:00 |
|
Tim Ramlot
|
6458aaf518
|
stop using deprecated klog functions
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-03 16:18:35 +01:00 |
|
jetstack-bot
|
e9a4793ba4
|
Merge pull request #6589 from inteon/rename_feature_gates
Rename UseCertificateRequestNameConstraints to NameConstraints
|
2024-01-03 15:04:22 +00:00 |
|
Tim Ramlot
|
41404a7fd7
|
rename UseCertificateRequestNameConstraints to NameConstraints
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-03 15:49:18 +01:00 |
|
jetstack-bot
|
9d5ed5752f
|
Merge pull request #6120 from inteon/cleanup_test_context_builder
add comments explaining the Sync function & small test bugfix
|
2024-01-03 14:33:22 +00:00 |
|
jetstack-bot
|
cc8925ae9f
|
Merge pull request #6404 from SpectralHiss/hef/otherNameSANs
Other name sans support in Certificates
|
2024-01-03 14:16:23 +00:00 |
|
Houssem El Fekih
|
ddc1dffe87
|
Update pkg/util/pki/asn1_util.go
Co-authored-by: Ashley Davis <SgtCoDFish@users.noreply.github.com>
Signed-off-by: Houssem El Fekih <hassoum92@hotmail.com>
|
2024-01-03 13:30:42 +00:00 |
|
jetstack-bot
|
4af78fe98a
|
Merge pull request #6548 from snorwin/modern-pkcs12
New option to specify encryption and MAC algorithms for PKCS#12 keystores.
|
2024-01-03 12:54:22 +00:00 |
|
Tim Ramlot
|
8223df9e91
|
rename Algorithms to Profile
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-03 13:45:02 +01:00 |
|
Tim Ramlot
|
914c2dd169
|
add comments explaining the Sync function & small bugfixes
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
|
2024-01-03 11:15:27 +01:00 |
|
Richard Wall
|
036e3a8e74
|
Replace all uses of sets.String with the generic sets.Set
Signed-off-by: Richard Wall <richard.wall@venafi.com>
|
2024-01-02 17:24:38 +00:00 |
|
Richard Wall
|
19ade4b79e
|
Replace all calls to RandStringBytes and RandStringRunes
With k8s.io/apimachinery/pkg/util/rand#String instead
Signed-off-by: Richard Wall <richard.wall@venafi.com>
|
2024-01-02 15:41:07 +00:00 |
|
Richard Wall
|
4aa373b733
|
Deprecate RandStringBytes and RandStringRunes
Signed-off-by: Richard Wall <richard.wall@venafi.com>
|
2024-01-02 15:02:14 +00:00 |
|
Richard Wall
|
d468830b23
|
Fix gosec G404
Signed-off-by: Richard Wall <richard.wall@venafi.com>
|
2024-01-02 12:33:46 +00:00 |
|