lauri
/
certidude
mirror of https://github.com/laurivosandi/certidude
1
0
Fork 0
Code Issues Activity
427 Commits 2 Branches 0 Tags 18 MiB
Commit Graph

132 Commits

Author SHA1 Message Date
Lauri Võsandi d7df17dc2c Install 'attr' for authority and disable interactive dialogs for apt 2018-04-13 12:42:54 +00:00
Lauri Võsandi dbbcec6d64 tests: Fix several issues with signature profiles 2018-04-10 09:29:05 +00:00
Lauri Võsandi 577962e09b Several improvements 
* Add EC support
* Make token form toggleable
* Make client certificates compatible with iOS native IKEv2
* Fix OU for self-enroll
* Improved sample scripts in web UI
 2018-04-09 16:25:03 +03:00
Lauri Võsandi 9c6872a949 cli: Add $HOSTNAME option for common name config option of client 2018-03-22 11:15:11 +02:00
Lauri Võsandi 1c49626f50 Sevral bugfixes 2018-03-03 13:54:31 +00:00
Lauri Võsandi 5cb7f89c1b Bugfixes, OU support and image builder fixes 2018-01-26 14:03:13 +02:00
Priit Laes 9d142dee36 Update dependency list so certidude client actually works 2018-01-05 21:55:15 +02:00
Lauri Võsandi 67dcf4a156 cli: Fix image builder command order 2018-01-03 22:34:52 +00:00
Lauri Võsandi fba8f5d776 Integrate LEDE image builder 2018-01-03 22:17:35 +00:00
Lauri Võsandi 15f3e19da7 cli: Atomic write of /etc/systemd/system/openvpn-reconnect.service 2017-12-30 18:56:12 +00:00
Lauri Võsandi 59bedc1f16 Major refactor 
* Migrate to Python 3
* Update token generator mechanism
* Switch to Bootstrap 4
* Switch from Iconmonstr to Font Awesome icons
* Rename default CA common name to "Certidude at ca.example.lan"
* Add self-enroll for the TLS server certificates
* TLS client auth for lease updating
* Compile assets from npm packages to /var/lib/certidude/ca.example.lan/assets
 2017-12-30 14:00:19 +00:00
Lauri Võsandi c45a5df773 Remove unused setproctitle import 2017-08-16 23:30:42 +03:00
Lauri Võsandi 509f7bfaa8 Migrate from cryptography.io to oscrypto 2017-08-16 20:25:16 +00:00
Lauri Võsandi bce906db36 Migrate authority setup to certbuilder 2017-07-29 20:55:46 +00:00
Lauri Võsandi 03b9778170 Better starttup/shutdown notification 2017-07-11 18:57:19 +00:00
Lauri Võsandi 9008744c48 api: Make logger use unicode literals 2017-07-08 08:56:01 +00:00
Lauri Võsandi 39363a57c7 tests: More coverage 2017-07-06 09:29:02 +00:00
Lauri Võsandi e25c774fa3 Bugfixes and test for SCEP 2017-07-05 21:22:02 +00:00
Lauri Võsandi 9b5511212e Several changes 
* OCSP workaround for StrongSwan
* Machine attributes framework
* Scripting support
* Default to nginx frontend
 2017-07-05 18:22:03 +03:00
Lauri Võsandi d08a3f9f92 cli: Fix `certidude request` dependency handling 2017-06-04 14:48:28 +00:00
Lauri Võsandi 0a98b3f82e Add tests for OCSP, several bugfixes 2017-06-04 14:19:29 +00:00
Lauri Võsandi 61aa54695e cli: Migrate client side to oscrypto 2017-05-27 21:17:21 +03:00
Lauri Võsandi 5d48abe973 api: Preliminary OCSP support 2017-05-25 22:20:45 +03:00
Lauri Võsandi a5ad9238a1 cli: Lazier import for pwd 2017-05-12 20:52:25 +00:00
Lauri Võsandi eecfbee384 tests: Fix signer shutdown and add tests for event source 2017-05-09 09:48:24 +00:00
Lauri Võsandi 09f5b11505 tests: Add tests for machine keytab auth 2017-05-08 16:25:59 +00:00
Lauri Võsandi 17c4e157e7 tests: Attempt to build for trusty and xenial both 2017-05-08 10:27:02 +00:00
Lauri Võsandi 71e77154d7 tests: Preliminary tests for Kerberos/LDAP auth 2017-05-07 19:11:24 +00:00
Lauri Võsandi 60a0f2ba7c tests: Set up nchan as part of certidude setup authority 2017-05-06 21:35:02 +00:00
Lauri Võsandi b19e163a82 tests: Attempt to set up nchan as part of unittests 2017-05-06 21:07:41 +00:00
Lauri Võsandi de1d182320 Add API call for rendering scripts, bugfixes 2017-05-04 17:56:53 +00:00
Lauri Võsandi 94944e37f1 tests: Better coverage for tagging tests 2017-05-04 09:14:47 +00:00
Lauri Võsandi 68f6b9f6f6 tests: Attempt to install NetworkManager 2017-05-04 06:55:26 +00:00
Lauri Võsandi 505fa9d557 tests: Fix NetworkManager setup tests 2017-05-04 06:40:47 +00:00
Lauri Võsandi aeb5d81aa6 tests: Generate DH params file in single location 2017-05-03 21:12:51 +00:00
Lauri Võsandi 189c604832 tests: Better code coverage 2017-05-03 21:04:34 +00:00
Lauri Võsandi 47aded48d5 tests: Add e-mailing and more cli commands 2017-05-03 14:42:37 +00:00
Lauri Võsandi 649863a77e tests: Handle forking 2017-05-03 07:04:52 +00:00
Lauri Võsandi 9a7b806ff6 tests: Fix /run/certidude permissions 2017-05-01 23:06:45 +00:00
Lauri Võsandi 58491e7933 tests: Cleanups 2017-05-01 22:32:55 +00:00
Lauri Võsandi 986953f10f tests: Prevent nginx setup on Travis 2017-05-01 18:45:15 +00:00
Lauri Võsandi f7a27c6044 tests: More verbose output while setting up CA 2017-05-01 18:06:47 +00:00
Lauri Võsandi e0eb3ee471 tests: Create certidude user in advance 2017-05-01 17:56:10 +00:00
Lauri Võsandi b0683b268d Attempt to run client as part of unittests 2017-05-01 16:20:50 +00:00
Lauri Võsandi cc4f13086e Improve init/openvpn handler 
* Create systemd service for signaling OpenVPN client after suspend
* Use tun instead of tap
* Update DNS server/domain upon (dis)connect
* Include necessary templates
 2017-04-29 22:09:31 +03:00
Lauri Võsandi 5ddbf87ed2 Add test for fetching logs 2017-04-26 00:10:12 +03:00
Lauri Võsandi b867eee67e Add more API tests for lease, attribs etc 2017-04-25 23:32:21 +03:00
Lauri Võsandi d5edbe50c5 Token mechanism fixes 2017-04-24 20:33:55 +03:00
Lauri Võsandi 029ee357fb Token mechanism fixes: 
* Save token secret to config
* OpenVPN profile fixes for Ubuntu 16.04
* Raise correct exceptions for invalid tokens
* Display token expiration time in local time
 2017-04-22 14:10:54 +03:00
Lauri Võsandi 9a793088c6 Use local MTA for sending e-mail 2017-04-21 16:58:01 +00:00