00b617b59a
Switch to upstream square/go-jose + pull latest
2016-03-15 13:54:22 -07:00
bc28bfe906
Implement reloadable JSON blacklist.
...
This eliminates the need the a database to store the hostname policy,
simplifying deployment. We keep the database for now, as part of our
deployability guidelines: we'll deploy, then switch config to the new style.
This also disables the obsolete whitelist checking code, but doesn't yet change
the function signature for policy.New(), to avoid bloating the pull request.
I'll fully remove the whitelist checking code in a future change when I also
remove the policy database code.
2016-03-13 20:00:51 -07:00
7955e268c7
go lint fixes
...
Signed-off-by: Jessica Frazelle <acidburn@docker.com>
2016-02-17 11:36:06 -08:00
a3aac300b9
Merge branch 'master' into ChallengesFor_remove_error_type_return
2016-02-17 09:24:44 +01:00
3df2e942be
go fmt fixes
...
Signed-off-by: Jessica Frazelle <acidburn@docker.com>
2016-02-16 12:19:15 -08:00
01cee65079
Changed return type for "ChallengesFor".
2016-02-13 23:01:28 +01:00
cecb4d08e9
Reject final "-" in DNS label.
2016-01-28 11:08:10 -08:00
c9010744b4
delete old challenge code
...
Specifically, delete the simpleHttp and dvsni.
Hooray!
Fixes #894
2015-12-10 15:41:40 -08:00
ea95bcf78c
Fix test.
2015-11-20 17:02:39 -08:00
662ed0730f
Fix return types of errors.
2015-11-19 15:43:39 -08:00
eb8134f0cc
Return more specific errors from WillingToIssue.
...
Fixes #1066
2015-11-19 12:00:49 -08:00
d2b6cc0e98
randomize output of PolicyAuthority.ChallengesFor
...
This shuffles both the challenges and the combinations returned while
keeping them in sync.
Fixes #1069 .
2015-11-18 11:14:11 -08:00
f61183e144
Use a map and set defaults
2015-11-07 12:39:57 -05:00
fe047a1da8
Change config to flags from strings
2015-11-03 23:17:26 +09:00
36225bdf4f
Fix go fmt errors
2015-11-01 22:35:29 +09:00
f67405bfbc
Fix unit test failures and a copy/paste error
2015-11-01 08:28:15 -05:00
39dcb9f285
Further unit test fixes
2015-10-31 18:11:08 +09:00
d8c67285cf
Enable configuration of supported challenges
2015-10-31 16:55:59 +09:00
3ce50c106b
Add test/vars package
...
Signed-off-by: Jessica Frazelle <acidburn@docker.com>
2015-10-20 22:29:34 -07:00
dd05ace030
Set up databases with restrictive user permissions.
...
Fixes https://github.com/letsencrypt/boulder/issues/898
Also removes currently-unused 'development' DB, and do initial migrations in
parallel, which shortens create_db.sh from 20 seconds to 10 seconds.
Changes ResetTestDatabase into two functions, one each for SA and Policy DBs,
which take care of setting up the DB connection using a special higher-privileged
user called test_setup.
2015-10-16 15:50:57 -07:00
310343a061
Fix error name and tests.
2015-10-12 17:45:47 -07:00
a95c300d8b
Switch to using publicsuffix package.
...
This has two advantages:
- Fixes #901
- Reduces number of allocations and copies for methods that used the previous
public suffix code.
2015-10-12 16:32:35 -07:00
0df44e5d90
clean up CSRs with capitalized letters
...
This change lowercases domains before they are stored in the database
and makes policy.WillingToIssue reject any domains with uppercase
letters.
Fixes #927 .
2015-10-08 17:04:07 -07:00
f064c6d5c7
Merge branch 'master' to 'sig-reuse'
2015-10-05 23:16:16 -04:00
5217af94b0
allow whitelisting by a specific reg id
...
Currently, the whitelisted registration ID is one that is impossible for the
database to return. Once the partner's registration is in place, we can
deploy a change to it.
Fixes #810
2015-10-05 14:11:38 -07:00
367973122e
Change 'TO DELETE' comments to something more useful
2015-10-01 18:48:15 -07:00
ea50be6c50
Change 00 to 01, and drop the underscore
2015-09-29 08:57:43 -04:00
c1c3d1e871
Changes to core, sa, policy
2015-09-28 10:51:55 -04:00
1a9fd9b455
Update to latest ACME spec
2015-09-28 10:10:06 -04:00
f33b103a01
Merge pull request #601 from letsencrypt/blacklist
...
Use DNS blacklist/whitelist DB
2015-09-02 11:04:31 -07:00
0ec76a525a
Review fixes
2015-09-01 22:05:04 -07:00
97c93cd6fa
Temporarily disable DNS challenge.
...
We're not planning to offer this one at launch (hopefully not long after,
though).
2015-08-31 21:26:12 -04:00
273b38e459
Review fixes pt. 1
2015-08-31 14:47:05 -07:00
0e1e38011a
Review fixes pt. 2
2015-08-26 12:09:15 -07:00
3cf1ea8e38
Cleaner/quicker rule list search & properly cleanup database
2015-08-24 15:46:37 -07:00
7151c3cefb
Review fixes pt. 2
2015-08-18 14:25:51 -07:00
4fb747ead1
Merge master
2015-08-15 16:50:57 -07:00
b9913a2b41
Review fixes
2015-08-14 17:14:02 -07:00
ffe3d19da2
Initial review fixes
2015-08-14 16:44:44 -07:00
c01c8a069b
Use natural sort
2015-08-11 11:50:38 -07:00
1a2825138d
Actually wire everything into the PADB
2015-08-06 16:57:38 -07:00
2d0be62966
Use mock syslog in test suites (except core and log). Drop SwitchLog().
2015-07-21 17:06:39 -04:00
41f5788c77
Correct most `go lint` warnings. (274 -> 5)
2015-06-16 22:18:28 -05:00
fcaa6b9530
Issue #11 : Add tests
2015-06-16 09:03:03 -05:00
f4ee29d1d3
Change all references from SimpleHTTPS -> SimpleHTTP
2015-06-12 11:22:04 -07:00
a77152e828
Rework Authority "New" methods to obtain AuditLogger from Singleton
...
- Also ran `go fmt` against these files I was touching anyway:
sa/storage-authority.go
va/validation-authority.go
wfe/web-front-end.go
2015-05-01 21:50:07 -07:00
e828c61818
Add singleton semantics to Audit Logger, per Issue #135
...
- Update tests to use the singleton logger
- Update commands to set the audit logger singleton
- Formatting updates to the tests (go fmt)
2015-05-01 21:48:24 -07:00
4967e9486d
hook in everywhere, add Noop client in tests
2015-04-12 21:50:07 -07:00
bb2e03ed36
Fix policy test.
2015-03-25 18:54:17 -07:00
33ac212b70
Add logging infrastructure to all authorities and commands
2015-03-24 19:06:11 -07:00
Roland Shoemaker