letsencrypt
/
boulder
mirror of https://github.com/letsencrypt/boulder.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
1,106 Commits 89 Branches 416 Tags 101 MiB
Commit Graph

104 Commits

Author SHA1 Message Date
Roland Shoemaker eb3ef4c98c Merge pull request #509 from r0ro/missing-reg-link 
Add missing link headers for registration resource update.
 2015-07-24 18:26:24 -07:00
Jacob Hoffman-Andrews 9423467142 Switch to our own fork of go-jose. 
This is the result of `godep save -r ./...` and
`git rm -r -f Godeps/_workspace/src/github.com/square`

Our fork is currently at the head of go-jose when Richard made the local nonce
changes, with the nonce changes added on top. In other words, the newly created
files are exactly equal to the deleted files.

In a separate commit I will bring our own go-jose fork up to the remote head,
then update our deps.

Also note: Square's go-jose repo contains a `cipher` package. Since we don't
make any changes to that package, we leave it imported as-is.
 2015-07-24 14:39:00 -07:00
Jacob Hoffman-Andrews 620a012c62 Rewrite go-jose dependencies to our fork. 2015-07-24 14:16:01 -07:00
Romain Fliedel 7a3c061576 Add new test to ensure Link headers are correctly set in Registration/NewRegistration reply. 2015-07-23 18:13:41 +02:00
Jacob Hoffman-Andrews 941df62ad4 Switch to AuditObject for CSR logging. 
This allows us to log the remote address and registration object along with the
CSR.

Also, restore part of a comment on CertificateRequest that was deleted.
 2015-07-22 16:32:11 -07:00
Jacob Hoffman-Andrews 6952aebeb3 Record initial application CSR. 
Fixes https://github.com/letsencrypt/boulder/issues/493.
Also, modify MockSyslogWriter so that it implements the SyslogWriter interface
(no pointer receivers).
 2015-07-22 15:34:59 -07:00
Jacob Hoffman-Andrews ce4ca429a6 Merge pull request #502 from letsencrypt/directory 
Basic ACME directory endpoint
 2015-07-22 15:32:15 -07:00
Jacob Hoffman-Andrews 7fce01b7ce Merge pull request #491 from letsencrypt/cache-headers 
WFE cache headers
 2015-07-22 15:09:02 -07:00
Roland Shoemaker b093613191 Add cache helper methods and always send static cache max-age 2015-07-21 18:21:48 -07:00
Roland Shoemaker 0e83538b56 Merge master 2015-07-21 17:48:19 -07:00
Jacob Hoffman-Andrews 99c339f850 Merge pull request #498 from tomclegg/490-mock-logs 
Add mock for syslog.
 2015-07-21 17:40:06 -07:00
Roland Shoemaker 1a3e41ee57 Review fixes 2015-07-21 17:39:16 -07:00
Roland Shoemaker 2d758a7ab6 Basic ACME directory endpoint 2015-07-21 16:55:57 -07:00
Roland Shoemaker 6e03f78ad0 Extend wfe.Certificate tests 2015-07-20 12:27:26 -07:00
Tom Clegg 249664383d Simplify init(). Add UseMockLog(), to mock syslog for an entire test process. 2015-07-19 14:21:48 -04:00
Roland Shoemaker 6a2344e1bf Add config vars and wire them into cmd/boulder and cmd/boulder-wfe 2015-07-17 17:44:03 -07:00
Roland Shoemaker f08261edb5 Add cache-control headers to terms, issuer, and certificate endpoints 2015-07-17 17:14:39 -07:00
Tom Clegg ff491962b9 Dry up "method not allowed" handling. 2015-07-16 22:07:44 -04:00
Jacob Hoffman-Andrews 738d959417 Merge pull request #429 from letsencrypt/unknown-key 
Return better message to client if JWK is unknown
 2015-07-08 10:50:36 -07:00
Roland Shoemaker a745160ee6 Merge master 2015-07-06 17:38:04 -07:00
Roland Shoemaker c233aa8e56 411 - Redirect /terms to wfe.SubscriberAgreementURL 
- Rebased (jcjones)
 2015-07-06 17:16:40 -07:00
Roland Shoemaker 1d4afe4c70 Add status code check to the right PR 2015-07-06 21:03:36 +01:00
Roland Shoemaker f8e6b06b12 Add status code check to test 2015-07-06 20:55:33 +01:00
Roland Shoemaker d9d537f7f4 Add location header to /acme/new-reg if key is already in use 2015-07-06 18:40:40 +01:00
Richard Barnes ff192330f8 Propagate nonce errors through WFE 2015-06-23 13:15:09 -07:00
Roland Shoemaker f21dc2e146 Merge branch 'master' into wfe-logging 2015-06-19 17:00:05 -07:00
Roland Shoemaker f228ac41f5 Add connection logging to the WFE 2015-06-19 16:47:54 -07:00
Brad Warren 4655447a35 Reformatted error messages 2015-06-19 14:47:45 -07:00
Brad Warren 426b03b7de Final cleanup 2015-06-19 14:09:09 -07:00
Roland Shoemaker 403af37a39 Hide Authorization.Expires field when uninitialized 2015-06-17 18:34:30 -07:00
J.C. Jones 41f5788c77 Correct most `go lint` warnings. (274 -> 5) 2015-06-16 22:18:28 -05:00
Roland Shoemaker 01c41c1bd0 Merge pull request #354 from letsencrypt/344-internal_server_errors 
Resolves Issue #344: Only send InternalServerError when needed
 2015-06-15 15:57:04 -07:00
Jacob Hoffman-Andrews 80d5e50e42 Enable revocation by account key. 
In addition to cert private key. This required modifying the GetCertificate*
functions to return core.Certificate instead of certificate bytes.
 2015-06-15 12:33:50 -07:00
J.C. Jones 1474b7f21f Resolves Issue #344: Only send InternalServerError when needed 
Basically, just send InternalServerError when it indicates an internal state
was broken.
 2015-06-13 00:21:44 -05:00
Richard Barnes 615366636a Send CORS headers 2015-06-11 22:26:16 -04:00
Richard Barnes d398bd962a Send an Allow header whenever we send 405 2015-06-11 22:12:01 -04:00
J.C. Jones 2ad15a4a85 Issue #309: Produce OCSP Responses immediately upon issuance, if at all possible. 
This approach performs a best-effort generation of the first OCSP response during
certificate issuance. In the event that OCSP generation fails, it logs a warning at
the Boulder-CA console, but returns successfully since the Certificate was itself
issued.
 2015-06-11 11:31:04 -05:00
Richard Barnes 8289a6d2fa Make tests pass 2015-06-09 17:43:16 -04:00
Roland Shoemaker 573e35ed56 Disallow multiple registrations with same key (and fix all related tests) 2015-06-04 20:21:59 +01:00
James 'J.C.' Jones a3521bcb61 Merge pull request #277 from rolandshoemaker/check-cert 
Check generated certificate matches CSR
 2015-06-03 22:10:35 -07:00
Roland Shoemaker 78e621c95f further review fixes 2015-06-03 00:27:08 +01:00
bifurcation 04479eca5c Merge pull request #291 from letsencrypt/fix-revocation 
Revert change to revocation from #275
 2015-06-02 17:52:35 -04:00
Jacob Hoffman-Andrews 7a60d431d6 Revert "Supporess the 'expires' field in public Authorizations" 
This reverts commit d47b7c12ac.

Conflicts:
	core/objects.go
	wfe/web-front-end.go
 2015-06-02 12:02:05 -07:00
Jacob Hoffman-Andrews 026cb424fc Revert "Replace RevokeCertficate with something more in line with the spec" 
This reverts commit b1bad40fe6.

Conflicts:
	wfe/web-front-end.go
 2015-06-02 10:45:54 -07:00
Roland Shoemaker 51890a9626 Move cert-csr check to boulder/core and review fixes 2015-06-02 17:56:28 +01:00
Roland Shoemaker c830921b5a WFE test comment cleanup 2015-06-01 16:39:21 +01:00
Roland Shoemaker 0048453fc8 remove JWS request generation cruft 2015-06-01 16:15:38 +01:00
Roland Shoemaker 33df806d25 wfe test fixes + DNSNames and CommonName cleanup 2015-06-01 15:01:24 +01:00
Roland Shoemaker e5bf16711c Add generated cert checks 2015-06-01 14:00:49 +01:00
Richard Barnes b1bad40fe6 Replace RevokeCertficate with something more in line with the spec 2015-06-01 02:11:10 -04:00