letsencrypt
/
boulder
mirror of https://github.com/letsencrypt/boulder.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
boulder/test
History
Aaron Gable cac431c661
WFE: Use RA.GetAuthorization to filter out disabled challenges (#7659) 
Have the WFE ask the RA for authorizations, rather than asking the SA
directly. This extra layer of indirection allows us to filter out
challenges which have been disabled, so that clients don't think they
can attempt challenges that we have disabled.

Also shuffle the order of challenges within the authz objects rendered
by the API. We used to have code which does this at authz creation time,
but of course that was completely ineffectual once we stored the
challenges as just a bitmap in the database.

Update the WFE unit tests to mock RA.GetAuthorization instead of
SA.GetAuthorization2. This includes making the mock more accurate, so
that (e.g.) valid authorizations contain valid challenges, and the
challenges have their correct types (e.g. "http-01" instead of just
"http"). Also update the OTel tracing test to account for the new RPC.

Part of https://github.com/letsencrypt/boulder/issues/5913
 		2024-08-22 13:42:58 -07:00
..
aia-test-srv Add pkilint to CI via custom zlint (#7441) 2024-04-30 09:29:26 -07:00
akamai-test-srv Appease errcheck (#6821) 2023-04-14 22:32:24 -04:00
block-a-key Block keys using hex(sha256(spki)). (#4745) 2020-04-09 09:41:33 -07:00
boulder-tools ratelimits: Add a feature-flag which makes key-value implementation authoritative (#7666) 2024-08-22 15:56:30 -04:00
certs sfe: Implement self-service frontend for account pausing/unpausing (#7500) 2024-07-10 10:52:33 -04:00
config WFE: Reject new orders containing paused identifiers (#7599) 2024-07-25 13:46:40 -04:00
config-next ratelimits: Add a feature-flag which makes key-value implementation authoritative (#7666) 2024-08-22 15:56:30 -04:00
consul Dynamically generate grpc-creds at integration test startup (#7477) 2024-05-15 11:31:23 -04:00
ct-test-srv Update to math/rand/v2 (#7657) 2024-08-12 09:17:09 -07:00
grafana Python upgrade os upgrades and travis config cleanup (#5186) 2020-11-23 18:12:04 -08:00
health-checker Remove `service1` / `service2` names in consul (#7266) 2024-01-22 09:34:20 -08:00
hierarchy CRLs: include IssuingDistributionPoint extension (#6412) 2022-10-24 11:21:55 -07:00
inmem Delete sa.GetPendingAuthorization2 (#7648) 2024-08-07 09:33:37 -07:00
integration WFE: Use RA.GetAuthorization to filter out disabled challenges (#7659) 2024-08-22 13:42:58 -07:00
list-features Add GitHub Action to prompt CP/CPS review when new flags are added (#7425) 2024-04-12 12:04:48 -07:00
load-generator Update to math/rand/v2 (#7657) 2024-08-12 09:17:09 -07:00
mail-test-srv Remove all static minica keys (#7489) 2024-05-17 11:45:40 -07:00
ocsp Update integration test hierarchy for the modern era (#7411) 2024-04-08 14:06:00 -07:00
prometheus Remove ocsp-updater from Boulder (#6769) 2023-03-31 14:39:04 -07:00
proxysql Remove ocsp-updater from Boulder (#6769) 2023-03-31 14:39:04 -07:00
s3-test-srv Update integration test hierarchy for the modern era (#7411) 2024-04-08 14:06:00 -07:00
secrets sfe: Implement self-service frontend for account pausing/unpausing (#7500) 2024-07-10 10:52:33 -04:00
vars Improve cert_storage_failed_test (#6849) 2023-05-02 15:43:07 -07:00
asserts.go WFE: Include profile name in returned Order json (#7626) 2024-07-24 14:30:24 -07:00
certs.go Further simplifications to test.ThrowAwayCert (#7129) 2023-11-02 09:45:56 -07:00
challtestsrv.py challtestsrv.py: change address of target (#6234) 2022-07-18 11:10:00 -07:00
chisel2.py Remove all static minica keys (#7489) 2024-05-17 11:45:40 -07:00
create_db.sh Clean up database schema (#6832) 2023-04-21 10:37:05 -07:00
db.go It's borpin' time! (#6982) 2023-07-17 14:38:29 -07:00
entrypoint.sh test: Wait for a successful pkilint connection before continuing integration tests (#7574) 2024-07-09 12:38:44 -04:00
example-bad-key-revoker-template Add bad-key-revoker daemon (#4788) 2020-04-23 11:51:59 -07:00
example-blocked-keys.yaml Remove more test keys (#7488) 2024-05-16 11:20:07 -04:00
example-weak-keys.json Remove executable bit from JSON file (#6764) 2023-03-21 08:59:41 -07:00
format-configs.py Check if JSON configs are properly formatted instead of relying on git --diff (#7375) 2024-03-08 14:39:00 -08:00
helpers.py Dynamically generate grpc-creds at integration test startup (#7477) 2024-05-15 11:31:23 -04:00
hostname-policy.yaml PA: Support YAML for hostname policy. (#4180) 2019-04-26 14:35:28 -04:00
integration-test.py Dynamically generate grpc-creds at integration test startup (#7477) 2024-05-15 11:31:23 -04:00
rate-limit-policies.yml RA: Implement leaky bucket for duplicate certificate limit (#6262) 2022-07-29 17:39:31 -07:00
redis-cli.sh Remove all static minica keys (#7489) 2024-05-17 11:45:40 -07:00
redis-ocsp.config Remove all static minica keys (#7489) 2024-05-17 11:45:40 -07:00
redis-ratelimits.config ratelimits: Add a feature-flag which makes key-value implementation authoritative (#7666) 2024-08-22 15:56:30 -04:00
startservers.py sfe: Implement self-service frontend for account pausing/unpausing (#7500) 2024-07-10 10:52:33 -04:00
test-key-5.der Fix wfe2 key rollover (#3373) 2018-01-18 14:31:48 -08:00
v2_integration.py ratelimits: Add a feature-flag which makes key-value implementation authoritative (#7666) 2024-08-22 15:56:30 -04:00
wait-for-it.sh Quiet the output of wait-for-it (#5775) 2021-11-05 11:38:20 -07:00