letsencrypt
/
boulder
mirror of https://github.com/letsencrypt/boulder.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,591 Commits 89 Branches 416 Tags 101 MiB
Commit Graph

267 Commits

Author SHA1 Message Date
Jeff Hodges 6b0e53b8e0 use ProblemDetails inside of wfe 
This uses ProblemDetails throughout the wfe. This is the last step in
allowing the backend services to pass ProblemDetails from RPCs through
to the user.

Updates #1153.

Fixes #1161.
 2015-12-15 11:44:33 -08:00
Jeff Hodges 1dc5e53c5a add HTTPStatus to ProblemDetails 
For #1161
 2015-11-24 23:14:51 -08:00
Jeff Hodges 2114f5d5cc move ProblemDetails into its own package 
Part of #1161
 2015-11-24 23:14:38 -08:00
Jeff Hodges c0318399df Merge branch 'master' into send_error_use_error 2015-11-23 12:16:31 -08:00
Roland Shoemaker 680c21c1b1 Decimal sentinel 2015-11-23 10:55:59 -08:00
Jeff Hodges 1b9e858681 Merge branch 'master' into send_error_use_error 2015-11-20 16:39:11 -08:00
Jeff Hodges 49978dc289 narrow wfe.sendError's signature 
And statusCodeFromError, as well.

This makes what was an `interface{}` into a `error`.

This change is the first step towards #1161
 2015-11-20 16:28:11 -08:00
Roland Shoemaker 458c7e2b4a Add badNonce error as described in the specification 2015-11-20 15:57:22 -08:00
Richard Barnes 0835ee8db3 Update VA and WFE to use revised nonce mechanisms in go-jose 2015-11-17 13:50:17 -08:00
Jacob Hoffman-Andrews 8b2c50bc65 Return pointer from NewNonceService. 2015-11-11 12:47:38 -08:00
Jacob Hoffman-Andrews 45f1e2958c Move new code to a different file. 2015-11-06 15:18:14 -08:00
Jacob Hoffman-Andrews 3d3b508ad3 Check for correct algorithms in verifyPOST 
Fixes https://github.com/letsencrypt/boulder/issues/259
 2015-11-06 14:17:24 -08:00
Richard Barnes c62d4a0828 Spelling fix 2015-10-22 13:59:18 -04:00
Richard Barnes 2ebba2a466 Re-add descriptive errors 2015-10-21 22:45:54 -04:00
Richard Barnes ded5fa6f20 Back out field name changes 2015-10-21 21:55:45 -04:00
Richard Barnes d61d09bb61 Minor beautification 2015-10-21 09:25:27 -04:00
Richard Barnes dc58017032 Remove repetition by passing logEvent to sendError 2015-10-21 09:23:17 -04:00
Richard Barnes cddf1d27ef RealIP->clientAddr and fix nits 2015-10-21 09:07:35 -04:00
Richard Barnes fdc0e2cce9 Merge branch 'master' to wfe_context 2015-10-21 08:47:07 -04:00
Richard Barnes 0fd89d3048 Use a fake clock for the WFE and mock SA 2015-10-20 17:12:59 -04:00
Richard Barnes bd1dee5bbc StatusGone -> StatusNotFound 2015-10-20 11:01:24 -04:00
Jeff Hodges 7d04ea98cf add context to WFE errors 
This change makes the use of requestEvent more prominent and provides
some nice handler types to make that better.

In order to avoid stomping on Error, requestEvent gains an Errors string
slice.

Fixes #552
 2015-10-16 22:40:51 -07:00
Richard Barnes 8e64139ac2 Merge branch 'master' into shorter-expiry-for-pending 2015-10-13 15:55:38 -07:00
Tom Clegg 22ef139419 Merge branch 'master' into challenge-head 2015-10-09 19:54:45 -07:00
Richard Barnes c3dacf5dae Make expired authz URLs inaccessible. 2015-10-09 17:45:34 -04:00
Jacob Hoffman-Andrews 487d08ec2e Add rate limiting by registration IP. 2015-10-08 15:47:08 -07:00
Tom Clegg 1bf8cfb4fd Handle HEAD correctly in Challenge 2015-10-07 23:37:41 -07:00
Tom Clegg f32c26c1de Merge branch 'master' into log-actual-ip 
Conflicts:
	wfe/web-front-end_test.go
 2015-10-07 11:58:23 -07:00
Tom Clegg 01b40466a4 Log actual remote IP, in addition to X-Forwarded-For header, in request log and csrLog 2015-10-05 23:30:58 -07:00
Richard Barnes f70441113b Fix brokenness introduced from merge of master 2015-10-05 00:18:22 -04:00
bifurcation e7f47d4f09 Merge branch 'master' into golint 2015-10-05 00:14:29 -04:00
Richard Barnes 2616567953 Fix golint in ./wfe 2015-10-04 21:12:14 -04:00
Jacob Hoffman-Andrews 6906e395a4 Pass RateLimitedError properly through RPC layer. 2015-10-03 22:59:28 -07:00
Tom Clegg 87dd8a4c44 Merge branch 'master' into 469-fix-cors-headers 2015-10-02 01:37:59 -07:00
Jacob Hoffman-Andrews 6963811ab5 Merge remote-tracking branch 'le/master' into paranoid-key 
Conflicts:
	core/util.go
 2015-10-01 14:13:05 -07:00
Jacob Hoffman-Andrews a9db85adf2 Merge branch 'master' into paranoid-key 2015-10-01 14:12:38 -07:00
Jeff Hodges c24ced260e Merge branch 'master' into cert-limit 2015-10-01 11:11:55 -07:00
Tom Clegg 72538dcd76 Update comment. A-C-A-Headers is never sent at all any more. 2015-10-01 10:29:08 -07:00
Tom Clegg 41fcec2db5 Remove unneeded Access-Control-Allow-Headers header. 2015-09-30 18:23:02 -07:00
Tom Clegg 05a142c6b7 Fix accidentally sending preflight headers with "actual" responses. 2015-09-30 13:34:36 -07:00
Tom Clegg c56f035cff Merge branch 'master' into 469-fix-cors-headers 
Conflicts:
	wfe/web-front-end.go
	wfe/web-front-end_test.go
 2015-09-30 07:13:12 -07:00
Jacob Hoffman-Andrews 685c6e4206 Use stored key to verify JWS POSTs 
instead of submitted key. This minimizes the chances of unexpected JWK fields in
the submitted key altering its interpretation without altering the lookup in the
registrations table.

In the process, fix handling of NoSuchRegistration responses.

Fixes https://github.com/letsencrypt/boulder/issues/865.
 2015-09-29 23:37:16 -07:00
Tom Clegg fa30debe15 De-duplicate uses of strings.Join() 2015-09-29 00:49:41 -07:00
Tom Clegg a49e54cfc3 Merge branch 'master' into 469-fix-cors-headers 
Conflicts:
	wfe/web-front-end.go
 2015-09-28 20:02:44 -07:00
Jacob Hoffman-Andrews 1fbf2d4990 Fix HEAD to work only for GET resources. 2015-09-27 23:49:59 -07:00
Jacob Hoffman-Andrews ecd08c0798 Allow HEAD for all GET resources. 2015-09-27 12:36:18 -07:00
Roland Shoemaker 96afd94e88 Review fixes 
* Rewrite JSONDuration as ConfigDuration that can handle both JSON and YAML unmarshaling
* Factor out RPC certificate count request struct
* Return 429 to WFE on rate limit exceeded
* Fix wonky RateLimitPolicy comment
 2015-09-25 14:39:53 -07:00
Jeff Hodges a645430a23 Merge branch 'master' into longserial 2015-09-22 15:01:47 -07:00
Roland Shoemaker 4a47aaed51 Merge master 2015-09-22 14:07:07 -07:00
Jacob Hoffman-Andrews 668ccc2d97 Merge github.com:letsencrypt/boulder into longserial 2015-09-22 14:04:19 -07:00