Age | Commit message (Collapse) | Author |
|
|
|
|
|
Add a template for revocation
Use DATETIME type to store created/expires times
Require auth for the /admin and /revoke endpoints
|
|
|
|
|
|
|
|
|
|
Add AWS S3 and Google GCS virtual filesystems
|
|
|
|
This allows the signing key to be read directly from S3 using a path like
/s3/<bucket>/<path/to/signing.key> or /gcs/<bucket>/<path/to/signing.key>.
|
|
This is backward-compatible with the JSON config format - this is a
non-breaking change.
HCL treats config blocks as repeated fields so the config has to be
unmarshalled into a struct comprised of []Server, []Auth, []SSH first.
|
|
|
|
|
|
Fail loudly if either the google_opts domain value or github_opts organization
values are not set in the configuration. The lack of these values means that
a) in the Google case any @gmail.com address will be allowed
b) the Github case any Github user will be allowed.
This was previously documented but left as a foot-gun in the code.
Future commits will allow for explicit wildcards to be set.
|
|
|
|
|