pomerium

mirror of https://github.com/pomerium/pomerium.git synced 2025-05-12 00:27:35 +02:00

Author	SHA1	Message	Date
dependabot[bot]	5dd68f5ff0	chore(deps): bump github.com/caddyserver/certmagic from 0.13.1 to 0.14.0 (#2291 ) * chore(deps): bump github.com/caddyserver/certmagic from 0.13.1 to 0.14.0 Bumps [github.com/caddyserver/certmagic](https://github.com/caddyserver/certmagic) from 0.13.1 to 0.14.0. - [Release notes](https://github.com/caddyserver/certmagic/releases) - [Commits](https://github.com/caddyserver/certmagic/compare/v0.13.1...v0.14.0) --- updated-dependencies: - dependency-name: github.com/caddyserver/certmagic dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * update Obtain and Renew cert to new signatures Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Denis Mishin <dmishin@pomerium.com>	2021-06-14 11:48:05 -04:00
wasaga	b372ab4bcc	ocsp: reload on ocsp response changes (#2286 )	2021-06-11 15:58:01 -04:00
dependabot[bot]	d365771e90	chore(deps): bump github.com/caddyserver/certmagic from 0.12.0 to 0.13.0 (#2074 ) * chore(deps): bump github.com/caddyserver/certmagic from 0.12.0 to 0.13.0 Bumps [github.com/caddyserver/certmagic](https://github.com/caddyserver/certmagic) from 0.12.0 to 0.13.0. - [Release notes](https://github.com/caddyserver/certmagic/releases) - [Commits](https://github.com/caddyserver/certmagic/compare/v0.12.0...v0.13.0) Signed-off-by: dependabot[bot] <support@github.com> * autocert: fix for certmagic 0.12 -> 0.13 Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Caleb Doxsey <cdoxsey@pomerium.com>	2021-04-22 15:31:19 -06:00
Caleb Doxsey	b1d62bb541	config: remove validate side effects (#2109 ) * config: default shared key * handle additional errors * update grpc addr and grpc insecure * update google cloud service authentication service account * fix set response headers * fix qps * fix test	2021-04-22 15:10:50 -06:00
wasaga	e0c09a0998	log context (#2107 )	2021-04-22 10:58:13 -04:00
Caleb Doxsey	116805acb3	config: rename headers to set_response_headers (#2081 ) * config: rename headers to set_response_headers * Update config/options.go Co-authored-by: bobby <1544881+desimone@users.noreply.github.com> Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>	2021-04-14 11:22:21 -07:00
Caleb Doxsey	4cc697ace4	autocert: add metrics for renewal count, total and next expiration (#2019 )	2021-03-25 08:03:04 -06:00
Caleb Doxsey	853d2dd478	config: use getters for certificates (#2001 ) * config: use getters for certificates * update log message	2021-03-23 08:02:50 -06:00
Caleb Doxsey	3690a32855	config: use getters for authenticate, signout and forward auth urls (#2000 )	2021-03-19 14:49:25 -06:00
Caleb Doxsey	218acc001b	autocert: remove non-determinism (#1932 ) * autocert: remove non-determinism * try sorting coverage	2021-02-23 08:56:11 -08:00
bobby	fcd8c3644f	options: header only applies to routes and authN (#1862 ) Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>	2021-02-08 11:05:33 -08:00
wasaga	67f6030e1e	upstream endpoints load balancer weights (#1830 )	2021-01-28 09:11:14 -05:00
Caleb Doxsey	84e8f6cc05	config: fix databroker policies (#1821 )	2021-01-25 17:18:50 -07:00
Caleb Doxsey	c90eda5622	autocert: store certificates separately from config certificates (#1794 )	2021-01-21 13:13:55 -07:00
Caleb Doxsey	a4c7381eba	config: support multiple destination addresses (#1789 ) * config: support multiple destination addresses * use constructor for string slice * add docs * add test for multiple destinations * fix name	2021-01-20 15:18:24 -07:00
Travis Groth	eadd8c2482	autocert: improve logging (#1767 )	2021-01-12 10:33:33 -05:00
Caleb Doxsey	a6bc9f492f	authorize: move impersonation into session/service account (#1765 ) * move impersonation into session/service account * replace frontend statik * fix data race * move JWT filling to separate function, break up functions * maybe fix data race * fix code climate issue	2021-01-11 15:40:08 -07:00
bobby	f837c92741	dev: update linter (#1728 ) - gofumpt everything - fix TLS MinVersion to be at least 1.2 - add octal syntax - remove newlines - fix potential decompression bomb in ecjson - remove implicit memory aliasing in for loops. Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>	2020-12-30 09:02:57 -08:00
Caleb Doxsey	ac19c5041f	autocert: support certificate renewal (#1516 )	2020-10-14 08:24:41 -06:00
Caleb Doxsey	3b6c617784	redirect-server: add config headers to responses (#1416 )	2020-09-17 13:01:45 -06:00
Caleb Doxsey	e4e6abfd29	certmagic: improve logging (#1358 ) * certmagic: improve logging * Update internal/autocert/manager.go Co-authored-by: bobby <1544881+desimone@users.noreply.github.com> Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>	2020-09-01 09:58:09 -06:00
Caleb Doxsey	79741d5345	autocert: fix locking issue (#1310 )	2020-08-20 14:08:52 -06:00
bobby	8a384985f0	autocert: fix bootstrapped cache store path (#1283 ) Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>	2020-08-17 13:27:11 -07:00
Cuong Manh Le	277e6b56e9	internal/autocert: refactoring updateAutocert By factor out obtain and renew certification process, return specific error for each process if failed to contact with letsencrypt server.	2020-08-10 23:26:35 +07:00
Cuong Manh Le	3c23164347	internal/autocert: re-use cert if renewing failed but cert not expired Fixes #1232	2020-08-10 23:26:35 +07:00
Caleb Doxsey	b79e73b8b8	config: add support for policies stored in the databroker (#1099 ) * wip * always use databroker config source * add test * valid policy, remove debug lines	2020-07-17 10:35:29 -06:00
Caleb Doxsey	d3a7ee38be	options refactor (#1088 ) * refactor config loading * wip * move autocert to its own config source * refactor options updaters * fix stuttering * fix autocert validate check	2020-07-16 14:30:15 -06:00

27 commits