github-personal/estserver
1
0
Fork 0
mirror of https://github.com/outbackdingo/estserver.git synced 2026-01-28 10:18:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
43 Commits 1 Branch 0 Tags
main
Commit Graph

7 Commits

Author SHA1 Message Date
Volodymyr Khoroz
1cf5a72794 Feature: support multiple root CA certificates 
This is needed to support the root CA renewal feature.
During the initial phase of that renewal, a server needs to send clients:
- A new root CA,
- A cross-signed copy of that new CA, so that clients can validate the chain of trust using a previous root CA,
- And a previous root CA, so that clients can still trust the existing server TLS certificates during interregnum.

Signed-off-by: Volodymyr Khoroz <volodymyr.khoroz@foundries.io>
 2024-06-17 19:26:56 +03:00
Andy Doan
b176faa28e Make cert duration configurable with 3 year default 
1 year was too short for what most people want in large fleets

Signed-off-by: Andy Doan <andy@foundries.io>
 2023-12-07 13:24:21 -06:00
Andy Doan
a7f1d3c9c6 Clean up linter warning about error naming 
Signed-off-by: Andy Doan <andy@foundries.io>
 2023-12-06 15:53:51 -06:00
Andy Doan
0cb50fabfe EST 4.2.2: Simple Re-enrollment of Clients 
Signed-off-by: Andy Doan <andy@foundries.io>
 2022-10-10 14:25:18 -05:00
Andy Doan
19f8bf713e EST 4.2.1: Simple Enrollment of Clients 
Signed-off-by: Andy Doan <andy@foundries.io>
 2022-10-10 14:20:46 -05:00
Andy Doan
53814b5600 EST 4.1.2: CA Certificate Request 
This resource returns the factory's root CA

Signed-off-by: Andy Doan <andy@foundries.io>
 2022-10-10 14:11:59 -05:00
Andy Doan
968775e9a7 Introduce the EST Service interface 
This interface will be used by our HTTP handlers to fulfill incoming
EST requests.

Signed-off-by: Andy Doan <andy@foundries.io>
 2022-10-10 13:25:46 -05:00