36c33e6732
Update integration test to exclude yubikeys from importing/exporting non-root
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-02-16 17:10:28 -08:00
27c8737bdc
refactor ImportRoleKey, simplify integration test code, update constants
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-02-08 13:40:02 -08:00
0fdb2d1891
update positive tests
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-02-08 13:40:02 -08:00
caa9581bcc
add tests, consts and fixup
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-02-08 13:38:42 -08:00
3b3026c121
Merge pull request #542 from docker/passwd-nonroot
...
add non-root passwd functionality
2016-02-08 10:21:38 -08:00
77cc1a0028
Add tests for the TLS command line flags in notary.
...
Signed-off-by: Ying Li <ying.li@docker.com>
2016-02-04 17:24:26 -08:00
1c4d02455b
add non-root passwd functionality
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-02-04 11:20:11 -08:00
f654216b06
sort paths, more tests with all paths
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-02-03 16:46:08 -08:00
7d2b174098
adding more complex paths to test
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-02-03 16:30:39 -08:00
bac2d78b9d
Adds --all-paths flag (requires new TUF delegation key for removes), also print <all paths> in addition to "" on CLI
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-02-03 15:46:03 -08:00
6ffde51d89
Ensure empty string path is properly handled, make default for adding delegation
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-02-03 15:31:26 -08:00
d67a7e128c
Refactor the notary command line to not use global mutable state, and to not exit on error.
...
This way we can test the command more easily (we want to test the error, as opposed to
just killing the test).
Signed-off-by: Ying Li <ying.li@docker.com>
2016-02-03 12:01:16 -08:00
3eac9a8185
Merge pull request #516 from docker/canonical-key-id
...
use only canonical IDs for display on delegation CLI commands,
2016-01-29 16:43:25 -08:00
564f8d06d3
Merge pull request #515 from docker/roles-for-targets
...
Roles for targets via notary CLI
2016-01-29 16:08:29 -08:00
a16e6b58b5
use only canonical IDs for display on delegation CLI commands, translate to TUF key IDs for metadata usage under the hood
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-01-29 16:00:42 -08:00
cd7274f1b9
Add additional tests with different delegation key format using role PEM header
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-01-28 15:49:09 -08:00
9c59af1397
passwd command and tests
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-01-28 10:36:05 -08:00
2964e8c6f4
add integration test for adding/listing/removing targets from roles
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-01-28 10:20:27 -08:00
bb9ef929de
Add --roles flags to targets commands
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-01-28 09:59:04 -08:00
7eb86f7a64
Merge pull request #493 from docker/delegation-cli-text
...
delegations CLI UX improvements
2016-01-26 15:32:20 -08:00
774b66c9fe
delegations CLI UX improvements
...
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-01-25 16:14:02 -08:00
12d3eb49ae
Change default log level to fatal, change verbose to error level and add
...
debug flag for debug level
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-01-25 16:13:42 -08:00
b51d1e8cf8
Root is always on disk unless restored from backup.
...
(In which case if Yubikey is available, it will only be on the Yubikey and not on disk.)
Signed-off-by: Ying Li <ying.li@docker.com>
2016-01-25 13:37:39 -08:00
cf0bb5a9be
Merge pull request #440 from docker/diogo-cli-adding-delegations
...
delegation command for notary-cli
2016-01-19 13:54:56 -08:00
ca67f1e71a
client library deletion functionality, and integration into remove cert
...
CLI
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-01-19 11:18:33 -08:00
138d6cea09
Add, remove, and list delegation command. TUF changelist action change
...
for deletions (force vs. individual items)
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
2016-01-18 16:24:45 -08:00
4dc8299de5
Fix bug where the yubikey store was not prioritized over the filestore
...
in a client repo.
Also, fix a test with exporting/importing all keys - because a key
that is imported into the yubikey is also backed up on disk, when exporting
all keys, it also gets exported.
Signed-off-by: Ying Li <ying.li@docker.com>
2016-01-13 18:19:48 -08:00
f2ec72b5b6
aliases removed from file names
...
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
2015-12-23 09:41:03 -08:00
6d5b8ff54a
add role into PEM headers
...
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
2015-12-23 09:41:03 -08:00
1670b69a18
Pretty-print certificates from the notary CLI command `notary cert list`
...
Signed-off-by: Ying Li <ying.li@docker.com>
2015-11-30 16:35:53 -08:00
53626b6fe6
Merge pull request #284 from docker/key-command-renaming
...
Rename command line options from export/import key to backup/restore.
2015-11-14 13:49:53 +01:00
cb6fd71848
Rename command line options from export/import key to backup/restore.
...
import-root/export-root have been renamed to import/export.
Signed-off-by: Ying Li <ying.li@docker.com>
2015-11-14 02:33:36 -08:00
eb9de9f0e8
Print out a different message for list keys if no keys are found.
...
Signed-off-by: Ying Li <ying.li@docker.com>
2015-11-13 15:44:56 -08:00
39c682327e
Pretty-print the key list in a deterministic sorted order.
...
Signed-off-by: Ying Li <ying.li@docker.com>
2015-11-13 01:41:00 -08:00
0344dfc038
Making tests pass
...
Signed-off-by: Diogo Monica <diogo@docker.com>
Signed-off-by: David Lawrence <david.lawrence@docker.com>
Signed-off-by: Diogo Monica <diogo@docker.com> (github: endophage)
2015-11-12 01:12:31 -08:00
5b7480f599
Adding default to notary key generate and configurable trust dir from
...
config
Signed-off-by: Diogo Monica <diogo.monica@gmail.com>
Signed-off-by: David Lawrence <david.lawrence@docker.com>
Signed-off-by: Diogo Monica <diogo.monica@gmail.com> (github: endophage)
2015-11-12 01:12:26 -08:00
ee270b6a2b
fixing integrations tests for new list keys layout
...
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
2015-11-12 01:12:21 -08:00
0280a82ae0
Do not back up a root key that is imported into Yubikey.
...
Signed-off-by: Ying Li <ying.li@docker.com>
Signed-off-by: David Lawrence <david.lawrence@docker.com>
Signed-off-by: Ying Li <ying.li@docker.com> (github: endophage)
2015-11-12 01:11:43 -08:00
9a01cf091d
Add "notary lookup" to the integration tests.
...
Signed-off-by: Ying Li <ying.li@docker.com>
Signed-off-by: David Lawrence <david.lawrence@docker.com>
Signed-off-by: Ying Li <ying.li@docker.com> (github: endophage)
2015-11-12 01:11:17 -08:00
1f1868d3ee
Adding integration tests for notary client.
...
This runs through the basic notary init/add/publish/etc. workflow,
and some basic key workflows.
Note that this does work with the Yubikey, in that created keys while
testing do not require touch.
Signed-off-by: Ying Li <ying.li@docker.com>
Signed-off-by: David Lawrence <david.lawrence@docker.com>
Signed-off-by: Ying Li <ying.li@docker.com> (github: endophage)
2015-11-12 01:09:40 -08:00
Riyaz Faizullabhoy
Diogo Mónica
Ying Li
Ying Li
David Lawrence
Diogo Monica