aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2017-01-18Clarify logfiles and well-known filepathsNiall Sheridan
2017-01-16Update authprovider testsNiall Sheridan
2017-01-15Add more context to errorsNiall Sheridan
2017-01-15Make CertStorer implementations publicNiall Sheridan
2017-01-14Add critical options supportNiall Sheridan
2017-01-13Use wkfs to manage the lets encrypt cacheNiall Sheridan
2017-01-13Db test config (#43)Kevin Lyda
* Allow tests to specify mysql connection info. User can set MYSQL_TEST_USER, MYSQL_TEST_PASS and MYSQL_TEST_HOST environment variables for test environments that need that. * Changes from testing. Need to set both time fields as '0000-00-00' depends on a feature deprecated in MySQL 5.7.4. Go lint wanted snake case for my sql_config var. sqlConfig it is. * Go go idioms. Based on feedback from Niall, a cleaner way to do this in Go.
2017-01-10Use latest versionsNiall Sheridan
Fix newly-broken tests
2017-01-09Merge pull request #39 from nsheridan/opts2Niall Sheridan
Simplify key generation
2017-01-09Merge branch 'master' into opts2Niall Sheridan
2017-01-08Remove dbinit and use sql/js seed filesNiall Sheridan
2017-01-06Check that tls cert/key are set if use_tls is trueNiall Sheridan
2017-01-05Move GetPublicKey to the shared `lib` packageNiall Sheridan
2017-01-04Simplify key generationNiall Sheridan
Use functions to build key generation options. Make it entirely optional.
2016-12-29Use vendored s3 wkfsNiall Sheridan
2016-12-28Log SHA256 fingerprintsNiall Sheridan
2016-12-28ignore appengineNiall Sheridan
2016-12-28Update dependenciesNiall Sheridan
2016-12-28quieten the linterNiall Sheridan
2016-12-28Allow building static binariesNiall Sheridan
sqlite uses CGO which prevents the building of statically-linked binaries. This change will omit sqlite support when building a static binary with: CGO_ENABLED=0 go build --ldflags '-extldflags "-static"'
2016-12-28Add LetsEncrypt supportNiall Sheridan
When configured the server will request a TLS certificate for the specified server name from LetsEncrypt
2016-10-31Update dependenciesNiall Sheridan
2016-10-31Add /cashier volumeNiall Sheridan
2016-10-17Unmarshal the config using mapstructure directly.Niall Sheridan
Avoid unmarshalling into an intermediate struct. Better tests.
2016-10-11Replace the 'datastore' option with a 'database' optionNiall Sheridan
The 'datastore' string option is deprecated and will be removed in a future version. The new 'database' map option is preferred.
2016-10-08Update dependenciesNiall Sheridan
2016-10-06Update READMENiall Sheridan
2016-10-06Add support for Hashicorp VaultNiall Sheridan
Vault is supported for the following: As a well-known filesystem for TLS cert, TLS key and SSH signing key. For configuration secrets for cookie_secret, csrf_secret, oauth_client_id and oauth_client_secret options.
2016-10-06Use wkfs when loading tls certsNiall Sheridan
2016-10-06Drop support for go 1.5Niall Sheridan
2016-09-30Use json.NewDecoder to decode json from httpNiall Sheridan
2016-09-29Empty commitNiall Sheridan
2016-09-28Submit => RevokeNiall Sheridan
2016-09-24Use a new session for each requestNiall Sheridan
2016-09-12Minor changesNiall Sheridan
2016-09-11Invert check for revoked certNiall Sheridan
2016-09-11Use the alpine imageNiall Sheridan
2016-09-11Add a toggle for unexpired certsNiall Sheridan
2016-09-11Allow filtering resultsNiall Sheridan
2016-09-11Use %T instead of reflect.Niall Sheridan
2016-09-10Make client a top-level package for consistencyNiall Sheridan
2016-09-04update READMENiall Sheridan
2016-09-04Update READMENiall Sheridan
2016-09-03Update dependenciesNiall Sheridan
Also tweak travis config
2016-09-03drop coverage checksNiall Sheridan
2016-09-03Run coverage on all packagesNiall Sheridan
2016-09-03Add codecovNiall Sheridan
2016-09-03Add comments for exported types and functionsNiall Sheridan
2016-09-03Move signing & agent logic out of the main packageNiall Sheridan
2016-09-01Remove the Principal field from the requestNiall Sheridan
The server will always overwrite this field with the username obtained from the auth provider. Allowing the client to set it is a waste of time.