github-personal/labca
1
0
Fork 0
mirror of https://github.com/outbackdingo/labca.git synced 2026-01-27 10:19:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
540 Commits 1 Branch 0 Tags
master
Commit Graph

190 Commits

Author SHA1 Message Date
Arjan H
5c3380bf0f Generate and store crl files regularly; set crl URL in certs 
Tweak the new crl-storer to save the crl files locally instead of in S3,
with some housekeeping to keep only the last five versions.
 2022-08-17 20:36:39 +02:00
Arjan H
616da91583 Bump boulder version to release-2022-08-15 2022-08-16 19:35:01 +02:00
Arjan H
5d36f6ce80 Use random serial number for root/issuer certs (#54) 2022-08-15 22:03:54 +02:00
Arjan H
d7dee9ca1b Refactor some deprecated code 2022-08-15 19:32:30 +02:00
Arjan H
f767264f57 Fix setting connMaxIdleTime in all db configs 2022-08-15 19:23:01 +02:00
Arjan H
888ef8556d Refactor some deprecated code 2022-08-08 20:01:18 +02:00
Arjan H
3fed65af17 Keep setting the cookie so the expiration / max-age keeps renewing 
Until now the session would expire 1 hour after the first action even
when you keep using the gui in between
 2022-08-06 16:42:28 +02:00
Arjan H
09d2fcaf72 Set connMaxIdleTime in all db configs to prevent warnings in audit log 
Should no longer see these messages from now on:
[mysql] closing bad idle connection: connection reset by peer
[mysql] driver: bad connection
 2022-08-06 16:41:11 +02:00
Arjan H
9935b056c3 Update stats display on dashboard to docker-only situation 2022-08-06 15:15:54 +02:00
Arjan H
03c26b1479 Cosmetic: force refresh after updating config and making manual backup 2022-07-31 17:54:59 +02:00
Arjan H
28553dac91 Determine issuer NameID value so we can set the correct AIA URL (#35) 2022-07-31 16:42:47 +02:00
Arjan H
eb892ba54a Cleanup any failed cert creation so it will be retried 2022-07-31 11:16:52 +02:00
Arjan H
c8ba8e7b9d Bump boulder version to release-2022-07-25 2022-07-29 19:32:22 +02:00
Arjan H
9c1e3f2600 Make title/name on web pages configurable (#52) 2022-07-28 19:00:21 +02:00
Arjan H
8f739fdfe1 Suppress some long attributes from audit log on main dashboard 2022-06-04 17:09:54 +02:00
Arjan H
b004ec5466 Bump boulder version to release-2022-05-31 2022-06-04 16:40:56 +02:00
Arjan H
f000abb97d Issuer cert can now also be ECDSA 
Apparently the cfssl issue was resolved at some time
 2022-06-03 10:08:57 +02:00
Arjan H
cfac480241 Retain new certificatesPerFQDNSetFast in rate-limit-policies.yml 2022-05-11 18:46:58 +02:00
Arjan H
3ef8777b63 Fix rate-limit-policies.yml generation with multiple domains (#45) 2022-05-11 18:24:23 +02:00
Arjan H
de64d833ef Fix rate-limit-policies.yml generation with multiple domains (#45) 2022-05-11 18:10:18 +02:00
Arjan H
578c63afac Bump boulder version to release-2022-05-02 2022-05-03 20:08:10 +02:00
Arjan H
6a67044372 Option to import backup instead of setting up from scratch on new install (#44) 2022-04-29 19:24:34 +02:00
Arjan H
286a7667a1 Fix cron log icon; improve troubleshooting info 2022-04-29 19:24:34 +02:00
Arjan H
960bd72567 Update troubleshooting log locations (#43) 2022-04-23 11:26:15 +02:00
Arjan H
b9a35633d9 Make backup files downloadable (#44) 2022-04-23 11:19:30 +02:00
Arjan H
9e411e03b5 Improve cronjob logging; expose cron log in web gui 2022-04-23 11:11:30 +02:00
Arjan H
e64c5e4c1f More docker-only refactoring and fixes (#37) 2022-04-19 19:08:30 +02:00
Arjan H
091e532308 Move commander service from host to docker container (#37 #38) 2022-04-17 19:36:46 +02:00
Arjan H
99d8bbe6be Generate new cert when changing fqdn 2022-04-16 19:14:10 +02:00
Arjan H
169b147078 Extract code patching to separate script 2022-04-15 11:12:12 +02:00
Arjan H
69fc88c689 Make update from gui more robust 2022-04-14 20:43:13 +02:00
Arjan H
1d2eea47c7 Update go.mod to go 1.17 2022-04-13 19:06:43 +02:00
Arjan H
cf0531e82b Fix handling of special characters in organization name (#40) 
E.g. a-umlaut
 2022-04-12 21:26:10 +02:00
Arjan H
954d9bb014 Run nginx as docker container instead of on the host system (#36) 2022-04-02 13:01:52 +02:00
Arjan H
669c107c89 Remove changes to obsolete wfe.json and v1_integration.py (#32) 2022-02-16 20:56:13 +01:00
Arjan H
7773183208 Cosmetic: update year 2022-02-01 21:21:37 +01:00
Arjan H
d80cd3958c Remove CRLF from uploaded PEM certificate (#31) 2022-02-01 20:20:11 +01:00
Andrea Spagnolo
388b0de650 fixed the creation of the hostname-policy.yaml file when use Whitelist option 2022-01-31 06:58:28 +01:00
Arjan H
dda8ecd4ba Downgrade some errors to warnings on dashboard 2021-12-05 10:12:29 +01:00
Arjan H
b5cdcbb414 Fix cert-checker for whitelist/lockdown domains 2021-12-05 10:02:15 +01:00
Arjan H
d7c1cbe118 Make initial setup process a bit more clear 2021-12-04 19:08:52 +01:00
Arjan H
fcab9f6b2d Add comment to hostname-policy.yaml for whitelist/lockdown section 2021-12-04 13:40:49 +01:00
Arjan H
503d1e51ef Enable more than one local domain to issue certificates for (#24) 2021-12-03 20:34:01 +01:00
Arjan H
af69bd5ff4 Encode freshly generated keys to base64 (#27) 
On the very first run, the authorization and encryption keys are generated as []byte but they should be
stored base64 encoded so they match the value as loaded in consecutive runs
 2021-11-29 19:51:06 +01:00
Arjan H
5b90b99955 Remove explicit maxConnectionAge from CA grpc config (#26) 
Both grpc sections in ca-a.json and ca-b.json are the only places with a maxConnectionAge configured, and these seem to be the cause of the many "failed to complete security handshake" / "operation was canceled" audit error messsages.
 2021-11-07 10:15:50 +01:00
Arjan H
d045cd4639 Bump boulder version to release-2021-11-02 2021-11-06 09:26:29 +01:00
Arjan H
7b91eba163 Stop sharing admin session with ALL users (#27) 
Decode the authorization and encryption keys fetched from the config file ase they are base64 but need to be a []byte. Fixes #27
 2021-11-03 07:43:35 +01:00
Arjan H
9bb689143d Make initial setup phase more robust 2021-08-29 17:19:24 +02:00
Arjan H
1cc796999a Make initial setup phase more robust 2021-08-24 19:26:56 +02:00
Arjan H
64f7f23ec5 Show more information on page to diagnose initial problems 2021-08-22 17:22:06 +02:00