lauri
/
certidude
mirror of https://github.com/laurivosandi/certidude
1
0
Fork 0
Code Issues Activity
186 Commits 2 Branches 0 Tags 18 MiB
Commit Graph

186 Commits

Author SHA1 Message Date
Lauri Võsandi 79aa1e18c0 Add explicit renewal flag for `certiude request` 2017-03-13 19:47:58 +02:00
Lauri Võsandi 7b1dae0901 Renew certificate only when 25% of certificate lifetime remains 2017-03-13 19:42:21 +02:00
Lauri Võsandi b3185bbbf4 Attempt to increase test code coverage 2017-03-13 17:54:33 +02:00
Lauri Võsandi 4fc8fbb287 Run test only once 2017-03-13 17:31:32 +02:00
Lauri Võsandi 2f666d5943 Add missing dependency python-dateutil 2017-03-13 17:24:59 +02:00
Lauri Võsandi 7eb8378562 Attempt to fix tests 2017-03-13 17:20:41 +02:00
Lauri Võsandi 06010ceaf3 Refactor 
* Remove PyOpenSSL based wrapper classes
* Remove unused API calls
* Add certificate renewal via X-Renewal-Signature header
* Remove (extended) key usage handling
* Clean up OpenVPN and nginx server setup code
* Use UDP port 51900 for OpenVPN by default
* Add basic auth fallback for iOS in addition to Android
* Reduce complexity
 2017-03-13 11:42:58 +00:00
Lauri Võsandi d1aa2f2073 Merge branch 'master' of github.com:laurivosandi/certidude 2017-02-09 17:03:18 +00:00
Lauri Võsandi 4eed940a66 Clean up PKCS#12 generation 2017-02-09 17:02:33 +00:00
Lauri Võsandi dae282973e Passphraseless PKCS#12 doesn't play well with Firefox 2017-02-09 16:59:01 +00:00
Lauri Võsandi 94757cf25c Conform to RFC 5280, remove unused variable and a comment 2017-02-09 14:16:01 +00:00
Lauri Võsandi bef97eddab Update requirements.txt 2017-02-08 23:22:41 +02:00
Lauri Võsandi b0e7ad9540 Fix mailbox configuration in the web interface 2017-02-08 20:22:26 +00:00
Lauri Võsandi 2a8109704a Refactor 
* Remove given name and surname attributes because of issues with OpenVPN Connect
* Remove e-mail attribute because of no reliable method of deriving usable address
* Remove organizational unit attribute
* Don't overwrite Kerberos cronjob during certidude setup authority
* Enforce path_length=0 for disabling intermediate CA-s
* Remove SAN attributes
* Add configuration options for outbox sender name and address
* Use common name attribute to derive signature flags
* Use distinct pub/sub URL-s for long poll and event source
 2017-02-07 22:07:21 +00:00
Lauri Võsandi 703970c1d3 Add Mac device identifier string for bundles 2017-02-02 09:44:58 +00:00
Lauri Võsandi 9d29ff74be Add timeago plugin for fuzzy timestamps 2017-01-30 22:59:43 +00:00
Lauri Võsandi 6c1d0bfae9 More fixes to make client work on Mac OS X 2017-01-30 18:12:27 +00:00
Lauri Võsandi 34e8fb9c8c Make Kerberos keytab handling more universal 2017-01-30 17:48:30 +00:00
Lauri Võsandi 9c80c7c2c3 Add OpenVPN client template 2017-01-30 16:36:22 +00:00
Lauri Võsandi 0bca61e61f Add preliminary LDAP fallback support for Kerberos protected API calls 2017-01-30 07:04:05 +00:00
Lauri Võsandi 4ae40c5d45 Add long poll support for CRL API call 2017-01-30 06:29:01 +00:00
Lauri Võsandi c979d73bec Fix typos for local time conversion 2017-01-30 06:27:12 +00:00
Lauri Võsandi 4c1e72709c Use local time for connected_since 2017-01-26 22:31:06 +00:00
Lauri Võsandi 108c2bc017 Clean up server.conf template 2017-01-26 22:14:56 +00:00
Lauri Võsandi 089d6b36b9 Hide tagging UI elements if tagging is disabled 2017-01-26 22:14:30 +00:00
Lauri Võsandi 5d5a24096c Merge branch 'master' of github.com:laurivosandi/certidude 2017-01-26 21:59:37 +00:00
Lauri Võsandi 1ec5ad3b7c Add openvpn-status.log support 2017-01-26 21:59:12 +00:00
Lauri Võsandi 6221fe9c00 Prompt for password when invalid password is entered 2017-01-26 15:22:02 +02:00
Lauri Võsandi ef72cb70cd Fixes for testing server as regular user 2017-01-26 15:11:04 +02:00
Lauri Võsandi dc9e01b4ad Merge branch 'master' of github.com:laurivosandi/certidude 2017-01-26 13:00:21 +02:00
Lauri Võsandi 93abceb9bd Update README 2017-01-26 12:57:41 +02:00
Lauri Võsandi 372e71c175 Use TUN for network-manager/openvpn service 2017-01-26 12:55:26 +02:00
Lauri Võsandi 1925207a6d Add OpenVPN bundle generation 2017-01-25 11:34:08 +00:00
Lauri Võsandi cca9d2ab2d Refactor LDAP authentication 
* ldap uri can be specified in /etc/certidude/server.conf now
* /etc/ldap/ldap.conf is ignored
 2017-01-25 09:43:19 +00:00
Lauri Võsandi 175f7f5d53 Fixes for LDAP access using machine credentials 2017-01-20 10:56:46 +00:00
Lauri Võsandi 4c69efbf87 Rely on nunjucks files provided by npm 2017-01-20 10:51:45 +00:00
Lauri Võsandi e2f7c8d1d6 Trigger `nmcli con reload` after config file creation 2017-01-10 15:09:52 +02:00
Lauri Võsandi b3a45cf2ab Expose insecure flag for turning off HTTPS 2017-01-10 15:01:16 +02:00
Lauri Võsandi 86244d294b Reorder and reformat usecases 2016-09-18 19:06:10 +03:00
Lauri Võsandi ece565c451 Attempt to fix Codecov 2016-09-18 18:52:51 +03:00
Lauri Võsandi d68a9acac2 Work around Travis' long hostnames in const.py instead 2016-09-18 18:46:11 +03:00
Lauri Võsandi 00c0bdfb52 Fix indent/nesting in .travis.yml 2016-09-18 18:39:22 +03:00
Lauri Võsandi 934b67c94f Set shorter hostname for Travis 2016-09-18 18:36:08 +03:00
Lauri Võsandi e86f9d4e3b Remove disallowed packages 2016-09-18 18:32:34 +03:00
Lauri Võsandi f19cf4652e Clean up tests 2016-09-18 18:30:31 +03:00
Lauri Võsandi 65b401538e Move to container based Travis 2016-09-18 17:47:11 +03:00
Lauri Võsandi 6f99c32c38 Describe usecases 2016-09-18 17:27:34 +03:00
Lauri Võsandi fab52dca76 Add request submission from web interface 2016-09-18 16:25:52 +03:00
Lauri Võsandi 2590340355 Remove generated templates.js, add graceful fallback when not generated 2016-09-18 16:21:07 +03:00
Lauri Võsandi e56b1b3f2b Upgrade to nunjucks v2.5.2 2016-09-18 15:11:23 +03:00