github-personal/labca
1
0
Fork 0
mirror of https://github.com/outbackdingo/labca.git synced 2026-01-27 10:19:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
540 Commits 1 Branch 0 Tags
master
Commit Graph

540 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Arjan H
3ec866d1ea Add golangci-lint for GUI 2025-03-23 10:21:49 +01:00
Arjan H
4339cdd0c3 Fix cleanup of now obsolete bpkilint container 2025-03-21 20:58:34 +01:00
Arjan H
82f4cf9721 Prevent huge MySQL slow queries log file (#168) 
No longer write slow queries to the log file, plus cleanup existing
log files from the install script.
 2025-03-21 20:55:14 +01:00
Arjan H
c077f642d0 Use latest tag for nginx docker image 2025-03-20 20:02:44 +01:00
Arjan H
7d518d7ea4 Bump boulder version to release-2025-03-18 2025-03-20 19:57:14 +01:00
Arjan H
5c1055319f GUI: update some mod versions (dependabot) 2025-03-16 15:18:07 +01:00
Arjan H.
3ebbb6a7ec Remove obsolete instruction about update button (#165) 2025-03-15 09:45:05 +01:00
Arjan H
407a08a1a3 Bump boulder version to release-2025-03-10 2025-03-13 21:20:26 +01:00
Arjan H
18b7ffe1fe Update GitHub actions to use GITHUB_TOKEN 2025-03-11 21:12:25 +01:00
Arjan H
bdcdbef34d Fix root certificate link on setup page (#166) 2025-03-11 20:39:07 +01:00
Arjan H
adeb9d97da Fix restart policy on bredis and bpkilint containers (#162) 2025-03-06 20:10:35 +01:00
Arjan H
5904cebaa5 Fix issue where ceremony tool is not compiled in time 2025-03-05 21:04:01 +01:00
Arjan H
8b7f5145a8 Fix CRL shard detection when revoking certs (#158) 
Also fix admin.boulder ipki cert for older installations that only still
have admin-revoker.boulder ipki cert
 2025-03-04 21:45:47 +01:00
Arjan H
99bba73978 Fix certificate revoke command (#158) 2025-02-25 21:05:58 +01:00
Arjan H
9f69c497c7 Create home dir for edge case where it was removed (#157) 2025-02-25 20:59:59 +01:00
Arjan H
eb244166c6 Allow big uploads to /admin/ for restoring backups (#156) 2025-02-25 20:40:18 +01:00
Arjan H.
4aa9383d57 Clearify in README that offline root CA key is no longer supported 2025-02-23 12:13:00 +01:00
Arjan H
57a2da41b9 Bump boulder version to release-2025-02-14 2025-02-22 09:50:37 +01:00
Arjan H
6f66bc73ac Fix issuer and CRL URLs in certificates 2025-02-16 17:08:44 +01:00
Arjan H
9bad889fab Use redis for OCSP as well, in different database number 2025-02-16 16:25:27 +01:00
Arjan H
580fb4407e Undo breaking attempt to set deb architecture... 2025-02-14 08:35:52 +01:00
Arjan H
0550fc287f Remove version from debian/control 2025-02-13 21:28:54 +01:00
Arjan H
de0b49606c Use modern ubuntu for standalone containers (#154) 
Abandon attempts to build really static binaries both for amd64 and
arm64, this was taking way too much time. Just use a more modern base
container that has a correct libc version.
 2025-02-13 20:41:11 +01:00
Arjan H
a95028c45d Exclude hsm.go from all standalone builds (#154) 
For standalone builds the HSM code is not used, so we can exclude it.
The resulting binary now no longer requires libc of a certain version to
be present.
 2025-02-11 19:11:21 +01:00
hakwerk
4aa903e22f [skip ci] Commit changes from build-dockers action 2025-02-10 18:46:20 +00:00
Arjan H
f14a2636c5 Bump boulder version to release-2025-02-04; add redis container 
Let's Encrypt has changed the rate limiter to require redis, so we can
no longer remove it from the docker compose filei completely. But at
least we can run it once instead of four instances.
 2025-02-10 19:38:38 +01:00
Arjan H
2769ebb17f Update go dependencies for GUI 2025-02-03 19:07:48 +01:00
Arjan H
41ddb87e38 Remove button that doesn't work anymore 2025-02-02 20:25:38 +01:00
Arjan H
dc33d983ff Workaround for building standalone GUI for arm64 2025-02-02 19:56:37 +01:00
Arjan H
0d985d6b3f Several fixes and tweaks 2025-02-01 17:45:19 +01:00
Arjan H
de026c3086 Mount nginx data in consistent location; fix dependencies 2025-02-01 09:14:57 +01:00
Arjan H
6d72d32398 Use ceremony tool for generating keys and certs; store keys on SoftHSM 
Replace openssl certificate / CRL generation with the tool as used by
Let's Encrypt, storing the keys on SoftHSMv2, a simulated HSM (Hardware
Security Module).
Include migration of old setups where key files were also stored on
disk.
 2025-01-31 20:44:48 +01:00
Arjan H
8852d49425 Remove unnecessary make that causes an issue (#138) 2025-01-19 21:31:42 +01:00
Arjan H
131b8d3505 Fix new(ish) db migration and add check 2025-01-18 19:49:20 +01:00
Arjan H
3116c85c2c Bump boulder version to release-2025-01-06 2025-01-12 11:43:41 +01:00
Arjan H
2cb4d797ec Temporarily issue both ECDSA and RSA from same issuer (#138 #144 #150) 
The official Let's Encrypt boulder code only issues RSA certificates
from RSA issuer certificates and only ECDSA certificates from an ECDSA
issuer CA. Many people are having issues with this in LabCA.

Until we have the option for multiple issuers per root CA and/or
multiple CA chains in the GUI of LabCA, use the single issuer CA for
both key types.
 2025-01-12 10:30:36 +01:00
Arjan H
6c40fc1940 Cosmetic: bump year 2025-01-12 10:17:33 +01:00
Arjan H
7613b753d7 Revert "Add explicit labels to Dockerfile-standalone (#124)" 
This reverts commit d74ec31070.
 2024-12-21 15:46:17 +01:00
Arjan H
6f475fc542 Use same key type for GUI cert as Issuing CA cert (#138) 
When creating the domain key for the GUI certificate, use the same key
type (RSA or ECDSA) as the Issuing CA.
 2024-12-21 13:53:11 +01:00
Arjan H
d74ec31070 Add explicit labels to Dockerfile-standalone (#124) 2024-12-20 18:05:22 +01:00
Arjan H
0de59d8d6b Add action to build standalone docker images [#124] 
Builds the standalone binary for both amd64 and arm64, and then builds a
multi-arch docker image and pushes it to the GitHub Container Registry.
 2024-12-15 18:07:54 +01:00
Arjan H
4508468a6a Also build arm64 standalone package when releasing 2024-12-14 14:43:04 +01:00
Arjan H
e36101b3aa Fix detection of all containers being up 2024-12-14 10:22:51 +01:00
Arjan H
2898694cb2 Bump nginx from 1.27.1 to 1.27.3 2024-12-14 09:39:28 +01:00
Arjan H
735b9c2f31 Dashboard: improve message parsing of JSON audit lines 2024-12-13 20:09:14 +01:00
Arjan H
4e1c361414 Bump golang.org/x/crypto from 0.21.0 to 0.31.0 2024-12-13 19:56:25 +01:00
Arjan H
120048ff30 Bump boulder version to release-2024-12-10 2024-12-13 18:00:40 +01:00
Arjan H
7de126698f Add minica binary to control image 2024-11-03 14:49:59 +01:00
Arjan H
4c842e8977 Bump boulder version to release-2024-10-28 2024-11-01 19:09:54 +01:00
Arjan H
eed437d341 Add PRINTABLESTRING/UTF8STRING import issue to common errors section (#141) 2024-09-29 20:26:15 +02:00