Cédric Ollivier [Mon, 3 Jul 2023 12:31:17 +0000 (14:31 +0200)]
Set Python and Ubuntu versions in .readthedocs.yaml
It now follows the ONAP gate configurations.
It also fixes the settings and formats it.
Issue-ID: DOC-811
Signed-off-by: Cédric Ollivier <cedric.ollivier@orange.com>
Change-Id: Ib61520dad853bda7c8c4a0311267bb6bf5c782a3
thmsdt [Thu, 3 Nov 2022 09:09:12 +0000 (10:09 +0100)]
fix ribbon.css
Issue-ID: DOC-798
Signed-off-by: thmsdt <thomas.kulik@telekom.de>
Change-Id: I0dddd2942d50a349791ec719b8758a91eaf06e53
thmsdt [Tue, 4 Oct 2022 09:33:10 +0000 (11:33 +0200)]
fix doc config files
Issue-ID: DOC-798
Signed-off-by: thmsdt <thomas.kulik@telekom.de>
Change-Id: Ifb3ca80f231c8d2e1742f0bde1c647204a2b8d82
Andreas Geissler [Wed, 21 Sep 2022 12:38:06 +0000 (14:38 +0200)]
[OOM-CERT-SERVICE] Release 2.6.0
Release new version and update release notes for Kohn
Issue-ID: OOM-2985
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
Change-Id: I170bfb6aee4a9e4ded1b4ef3dd457cfb593e04fd
Borislav Glozman [Tue, 20 Sep 2022 09:19:10 +0000 (09:19 +0000)]
Merge "[OOM-CERT-SERVICE] Fix vulnerabilities for Kohn"
Andreas Geissler [Mon, 12 Sep 2022 11:27:04 +0000 (13:27 +0200)]
[OOM-CERT-SERVICE] Fix vulnerabilities for Kohn
- update gson to 2.9.0
- update commons-io to 2.11.0
- update httpclient to 4.5.13
- update bcprov-jdk15on to 1.70
- left version of sonar-go-pluging at 1.1.1.2000
- fix the implementation in respect to the update
- include py3.8 fix (https://gerrit.onap.org/r/c/oom/platform/cert-service/+/130574)
Issue-ID: OOM-2985
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
Change-Id: I0d6b775c3f09b283900981c49db4abaf80d33b11
Borislav Glozman [Fri, 16 Sep 2022 08:33:32 +0000 (08:33 +0000)]
Merge "[GENERAL] Add Andreas Geissler as committer"
Jack Lucas [Thu, 12 May 2022 11:55:10 +0000 (07:55 -0400)]
[GENERAL] Add Andreas Geissler as committer
Add Andreas Geissler as committer.
Also add previously approved committers
(Fiachra Corcoran and Dan Timoney).
Issue-ID: OOM-1
Signed-off-by: Jack Lucas <jflos@sonoris.net>
Change-Id: I6e04056b931cf88567e250bd1c988f6d04d4c184
Andreas Geissler [Thu, 19 May 2022 13:12:05 +0000 (15:12 +0200)]
[DOCS] Update J release notes for cert-service
Update the expired certificates and recreate the docker files
Update the release notes and update some Sphinx files
Fix some linting problems in the files
Issue-ID: OOM-2953
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
Change-Id: I1a26d7289890eee7fb38b11a45da3db5fc70ba8d
Tomasz Wrobel [Wed, 18 May 2022 17:56:57 +0000 (19:56 +0200)]
[OOM-CERT-SERVICE] Fix expired certificates in cert-service
Issue-ID: OOM-2953
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I176a475ad1af5c18a667cd18ac23e95cfe5b0138
Sylvain Desbureaux [Tue, 25 Jan 2022 07:22:05 +0000 (08:22 +0100)]
[COMMITTER] Add Jack Lucas as committer
Issue-ID: OOM-1
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: Ifd6d94709b16280c45f86bb9d8eb8a0ad49c0075
Sylvain Desbureaux [Wed, 12 Jan 2022 07:45:29 +0000 (07:45 +0000)]
Merge "[OOM-CERT-SERVICE] Add change-log"
Tomasz Wrobel [Tue, 11 Jan 2022 10:10:21 +0000 (11:10 +0100)]
[OOM-CERT-SERVICE] Add change-log
Issue-ID: OOM-2903
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: Ib7ec0923d6bcf8b2835111238b2e20a300d6fc64
Tomasz Wrobel [Tue, 11 Jan 2022 09:48:55 +0000 (10:48 +0100)]
[OOM-CERT-SERVICE] Release 2.5.0
Issue-ID: OOM-2903
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: Idd923c1a0b30a259e584ad407929e4e68f8006fd
Sylvain Desbureaux [Mon, 10 Jan 2022 13:20:43 +0000 (13:20 +0000)]
Merge changes I816c59e3,I99e55519
* changes:
[OOM-CERT-SERVICE]Fix Apache log4j2 vulnerability
Top up project version to 2.5.0
Tomasz Wrobel [Thu, 23 Dec 2021 12:43:31 +0000 (13:43 +0100)]
[OOM-CERT-SERVICE]Fix Apache log4j2 vulnerability
- Top up spring-boot to 2.5.8
- Top up Apache log4j2 to 2.17.1
- Top up spring-boot-starter-log4j2 to 2.6.2
- Add miising validator bean
Issue-ID: OOM-2903
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I816c59e39344bb1fcc2833bcbd58af7fc1c30d78
Tomasz Wrobel [Thu, 23 Dec 2021 13:05:16 +0000 (14:05 +0100)]
Top up project version to 2.5.0
Issue-ID: OOM-2903
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I99e55519d8ffcebb797763bdef3d8a8c7ec5fd7a
thmsdt [Wed, 3 Nov 2021 10:01:51 +0000 (11:01 +0100)]
[DOC] Correct requirements for doc chain building
Issue-ID: DOC-765
Signed-off-by: thmsdt <thomas.kulik@telekom.de>
Change-Id: I1bab49f825d76d45135d343706226dbfa8e41221
Joanna Jeremicz [Fri, 13 Aug 2021 07:55:48 +0000 (09:55 +0200)]
Describe manual actions for certificate update
Issue-ID: OOM-2752
Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
Change-Id: I4898e2b36aed2954be54f9a85f77287894a0483f
Remigiusz Janeczek [Wed, 28 Jul 2021 10:52:27 +0000 (12:52 +0200)]
Update RTD Offered APIs section to use OpenAPI.yaml file
Update Certificate update section in RTD
Issue-ID: OOM-2754
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: Ia673a8bf449fca3fba52fb88374b7b418c23c6eb
Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
Piotr Marcinkiewicz [Thu, 22 Jul 2021 10:51:11 +0000 (12:51 +0200)]
[OOM-CERT-SERVICE] Release 2.4.0
Issue-ID: OOM-2754
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I4b2d64fff6de6ff7947145c312e019e5b93e7ceb
Bogumil Zebek [Thu, 22 Jul 2021 08:54:32 +0000 (08:54 +0000)]
Merge "Update RTD with certificate update use case"
Joanna Jeremicz [Wed, 14 Jul 2021 14:18:00 +0000 (16:18 +0200)]
Update RTD with certificate update use case
- Update change log and release notes
- Update "How to use" page
Issue-ID: OOM-2754
Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
Change-Id: I32b34bdf37142f5bc8b62fe96248c29b349e541a
Tomasz Wrobel [Wed, 21 Jul 2021 13:37:56 +0000 (15:37 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add handling request when updateEnpoint is missing
Issue-ID: OOM-2753
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I06fc3043787631b83cc776b1e446700bd13f9863
Piotr Marcinkiewicz [Fri, 16 Jul 2021 12:53:14 +0000 (14:53 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Refactor provider code
- add csr and key params to SignCertificateModel
- correct handling error when signing csr fails
- create factory for SignCertificateModel
Issue-ID: OOM-2753
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I9bc296dfc999de0390ec90a00cbaa9dd82c89265
Bogumil Zebek [Mon, 19 Jul 2021 08:04:05 +0000 (08:04 +0000)]
Merge "[OOM-CERT-SERVICE] Add CertificateDecriptionException handler"
Bogumil Zebek [Mon, 19 Jul 2021 08:03:29 +0000 (08:03 +0000)]
Merge "[OOM-CERT-SERVICE] Refactor CmpResponseValidationHelper"
Piotr Marcinkiewicz [Thu, 15 Jul 2021 07:35:21 +0000 (09:35 +0200)]
[OOM-CERT-SERVICE] Update OpenAPI
- Update OpenAPI after introduction certificate update endpoint
Issue-ID: OOM-2753
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I16117a9dc9f854ba04b39ca1133c19d052e8f7db
Piotr Marcinkiewicz [Wed, 14 Jul 2021 07:45:18 +0000 (09:45 +0200)]
[OOM-CERT-SERVICE] Add CertificateDecriptionException handler
Issue-ID: OOM-2753
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: If4f705b11cdaf1c98f49875b40eb970563d4c3dd
Pawel Baniewski [Fri, 16 Jul 2021 08:11:04 +0000 (08:11 +0000)]
Merge "[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add send update request functionality"
Piotr Marcinkiewicz [Tue, 13 Jul 2021 14:06:35 +0000 (16:06 +0200)]
[OOM-CERT-SERVICE] Refactor CmpResponseValidationHelper
- move to validation package
- adjust methods modifiers
- remove duplicated code (getProtectedBytes)
Issue-ID: OOM-2753
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I2dd977ac136e2d1f99338f2c92b36b19651426df
Tomasz Wrobel [Tue, 13 Jul 2021 14:47:08 +0000 (16:47 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add send update request functionality
Issue-ID: OOM-2753
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I0637ded5c870cc66c7dc27dff269dab0f7d9015b
Joanna Jeremicz [Tue, 13 Jul 2021 12:04:13 +0000 (14:04 +0200)]
[OOM-CERT-SERVICE] Improve logging
Issue-ID: OOM-2753
Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
Change-Id: If61f56cf0a54cc0084481613ff984ae01655c942
Pawel Baniewski [Thu, 15 Jul 2021 08:46:29 +0000 (08:46 +0000)]
Merge "[OOM-CERT-SERVICE] Refactor CertService API code"
Pawel Baniewski [Thu, 15 Jul 2021 08:36:47 +0000 (08:36 +0000)]
Merge "[OOM-CERT-SERVICE] Fix sonar and checkstyle issues, code cleanup"
Remigiusz Janeczek [Fri, 2 Jul 2021 07:49:20 +0000 (09:49 +0200)]
[OOM-CERT-SERVICE] Remove CaMode from Cmpv2Server configuration
Issue-ID: OOM-2753
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I10662551a315a0b38b1213513d07ab2a4ccf5326
Piotr Marcinkiewicz [Tue, 13 Jul 2021 13:41:57 +0000 (15:41 +0200)]
[OOM-CERT-SERVICE] Refactor CertService API code
- move conversion StringBase64 to PrivateKey to separate class
- move protection algorithm classes to separate package
- adjust modifiers and test to above changes
Issue-ID: OOM-2753
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: Ifafa38162acfcd59d5177dbc478a6209e97a18e3
Remigiusz Janeczek [Tue, 13 Jul 2021 13:52:23 +0000 (15:52 +0200)]
[OOM-CERT-SERVICE] Fix sonar and checkstyle issues, code cleanup
Issue-ID: OOM-2753
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: Id88b6b2bceba7258745e4ce999dd375fb9ce438f
Pawel Baniewski [Mon, 12 Jul 2021 10:04:28 +0000 (10:04 +0000)]
Merge "[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add check if cert should be updated"
Pawel Baniewski [Fri, 9 Jul 2021 10:03:44 +0000 (10:03 +0000)]
Merge "[OOM-CERT-SERVICE] Add Unit test for private key in pkcs1 format"
Tomasz Wrobel [Wed, 7 Jul 2021 11:56:47 +0000 (13:56 +0200)]
[OOM-CERT-SERVICE] Alignment of makefile
- Add more SANs to openssl request creation
- Add customization of CA destination
Issue-ID: OOM-2753
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I409a874983bdc7cda61195086549abc30259fb3c
Tomasz Wrobel [Wed, 7 Jul 2021 15:07:45 +0000 (17:07 +0200)]
[OOM-CERT-SERVICE] Add Unit test for private key in pkcs1 format
Issue-ID: OOM-2753
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I91000b223c30eae1cd9f4d48be9e8197e239e1d2
Joanna Jeremicz [Wed, 7 Jul 2021 14:18:44 +0000 (16:18 +0200)]
[OOM-CERT-SERVICE] Code refactor
- Rename methods names to more descriptive ones
- Group classes in packages
- Simplify certificate model usage in KUR (use BouncyCastle object)
Issue-ID: OOM-2753
Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
Change-Id: I0507752b8d74a71ef27545648c2045f2033a330a
Remigiusz Janeczek [Tue, 6 Jul 2021 11:33:51 +0000 (13:33 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add check if cert should be updated
Issue-ID: OOM-2753
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: If0d7154b39c9ca7f9a7942f61b93725405b8f4e8
Pawel Baniewski [Wed, 7 Jul 2021 07:34:05 +0000 (07:34 +0000)]
Merge "[OOM-CERT-SERVICE] Add Certification Request functionality"
Pawel Baniewski [Wed, 7 Jul 2021 07:29:56 +0000 (07:29 +0000)]
Merge "[OOM-K8S-CERT-EXTERNAL-PROVIDER] Format golang code"
Remigiusz Janeczek [Mon, 5 Jul 2021 10:25:15 +0000 (12:25 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Format golang code
Issue-ID: OOM-2753
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I7b2f83dff5f7894b3064461b523bd94a77cac1f3
Joanna Jeremicz [Mon, 5 Jul 2021 14:47:58 +0000 (16:47 +0200)]
[OOM-CERT-SERVICE] Add Certification Request functionality
Issue-ID: OOM-2753
Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
Change-Id: Id8702dd45254f0e82d9b71e5e69372569e523838
Tomasz Wrobel [Wed, 30 Jun 2021 14:14:25 +0000 (16:14 +0200)]
[OOM-CERT-SERVICE] Add Key Update Request functionality
Issue-ID: OOM-2753
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: Icecef30b830c38606e17fbc2c502208543d048d2
Remigiusz Janeczek [Fri, 2 Jul 2021 09:23:33 +0000 (11:23 +0200)]
[OOM-CERT-SERVICE] Fix EJBCA "CA with name - does not exist" error
When sending KUR request to EJBCA it fails with error:
"CA with name - does not exist"
Issue-ID: OOM-2753
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I19d41fd1c8718d5b7e82f361d398c1ebe2545401
Bogumil Zebek [Fri, 2 Jul 2021 08:58:55 +0000 (08:58 +0000)]
Merge "[OOM-CERT-SERVICE] Add Certificate Update Admin role"
Remigiusz Janeczek [Fri, 2 Jul 2021 08:38:05 +0000 (10:38 +0200)]
[OOM-CERT-SERVICE] Fix makefile requests
Issue-ID: OOM-2753
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: Ic295f805b8aea6f13b95e6c972037066471a5faa
Bogumil Zebek [Thu, 1 Jul 2021 09:52:56 +0000 (09:52 +0000)]
Merge "[OOM-CERT-SERVICE] Add logic for KUR/CR detection"
Bogumil Zebek [Thu, 1 Jul 2021 09:32:59 +0000 (09:32 +0000)]
Merge "[OOM-CERT-SERVICE] Modify EJBCA configuration"
Bogumil Zebek [Thu, 1 Jul 2021 09:32:09 +0000 (09:32 +0000)]
Merge "[OOM-CERT-SERVICE] Add handling cmp response when PBM value is missing."
Remigiusz Janeczek [Wed, 30 Jun 2021 10:44:29 +0000 (12:44 +0200)]
[OOM-CERT-SERVICE] Add logic for KUR/CR detection
Issue-ID: OOM-2753
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I571ad3914a870dde83929cb6121c2c63a5df3ae4
Joanna Jeremicz [Wed, 30 Jun 2021 13:30:57 +0000 (15:30 +0200)]
[OOM-CERT-SERVICE] Modify EJBCA configuration
- Do not create default ManagementCA with generated UID
- Create ManagementCA with hardcoded UID to allow performing KUR
Issue-ID: OOM-2753
Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
Change-Id: Ief51c27200300118ffa0206ba2657504ce4bc69c
Tomasz Wrobel [Tue, 29 Jun 2021 09:51:51 +0000 (11:51 +0200)]
[OOM-CERT-SERVICE] Add handling cmp response when PBM value is missing.
Issue-ID: OOM-2753
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I38de28c994b5c83f936b3b5ea47d024a96f4733e
Remigiusz Janeczek [Wed, 16 Jun 2021 17:16:30 +0000 (19:16 +0200)]
[OOM-CERT-SERVICE] Add curl requests to Makefile
Increase max header size (default was too low for update
requests)
Issue-ID: OOM-2753
Change-Id: I3614d8d34ed18ae52cec8fb4f9349e170c2ac3af
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Piotr Marcinkiewicz [Fri, 25 Jun 2021 14:01:52 +0000 (16:01 +0200)]
[OOM-CERT-SERVICE] Add Certificate Update Admin role
Add Certificate Update Admin role in order to allow performing
KUR/CR in EJBCA.
Issue-ID: OOM-2753
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: Ib07a694c6a88d5ad58059cd331d2eddbcaf8a97b
Bogumil Zebek [Tue, 29 Jun 2021 12:33:41 +0000 (12:33 +0000)]
Merge "[OOM-CERT-SERVICE] Add update endpoint"
Piotr Marcinkiewicz [Thu, 24 Jun 2021 08:48:28 +0000 (10:48 +0200)]
[OOM-CERT-SERVICE] Add update endpoint
- Add endpoint with old cert and old PK parameters
for KUR/CR requests
Issue-ID: OOM-2753
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I094ce1a39a11bbb94f94e0b13ca7ff71eb99dd30
Piotr Marcinkiewicz [Wed, 23 Jun 2021 14:40:34 +0000 (16:40 +0200)]
[OOM-CERT-SERVICE] Implement signature PKIMessage protection
- Add signature protection
- Refactor password-based protection code
- Add JUnit tests
Issue-ID: OOM-2753
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I398568a35e52a816c32646c8915db5c287ede401
Pawel Baniewski [Fri, 18 Jun 2021 10:23:12 +0000 (10:23 +0000)]
Merge "Fix sonar issues"
Pawel Baniewski [Fri, 18 Jun 2021 10:22:42 +0000 (10:22 +0000)]
Merge "[OOM-CERT-SERVICE] Deprecate certServiceClient - update docs"
Pawel Baniewski [Tue, 15 Jun 2021 07:18:52 +0000 (07:18 +0000)]
Merge "[OOM-CERT-SERVICE] Fix cmpv2 issuer error when CRD is removed"
Tomasz Wrobel [Thu, 10 Jun 2021 08:44:58 +0000 (10:44 +0200)]
[OOM-CERT-SERVICE] Fix cmpv2 issuer error when CRD is removed
Issue-ID: OOM-2771
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I28f7a0d7fb3e7f6227b0a4ac64ca45c274956b8e
Piotr Marcinkiewicz [Tue, 8 Jun 2021 09:48:01 +0000 (11:48 +0200)]
[OOM-CERT-SERVICE] Deprecate certServiceClient - update docs
- Remove certServiceClient description from docs
- Move descrption of CMPv2 provider to "How to use functionality"
- Update description of getting certs for CertService in OOM
- Update certService version to 2.4.0
Issue-ID: OOM-2744
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I283755b8fbd579646f979c88ea3022266855c4dc
Remigiusz Janeczek [Wed, 9 Jun 2021 10:12:30 +0000 (12:12 +0200)]
Fix sonar issues
Issue-ID: OOM-2764
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: Iab71cbcac1982207e6f29b4b046280ad27143e03
Bogumil Zebek [Wed, 2 Jun 2021 06:32:37 +0000 (06:32 +0000)]
Merge "[OOM-CERT-SERVICE] Configure EJBCA to handle Key Update Request"
Remigiusz Janeczek [Tue, 1 Jun 2021 10:14:22 +0000 (12:14 +0200)]
Deprecate certServiceClient
- disable certServiceClient submodule
- set fixed version for certServiceClient image usage
Issue-ID: OOM-2744
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: Ibfca21ffe4310e7a5d124853c4b33c1c481f10a8
Piotr Marcinkiewicz [Thu, 20 May 2021 07:05:16 +0000 (09:05 +0200)]
[OOM-CERT-SERVICE] Configure EJBCA to handle Key Update Request
Change RA response protection from pbe to signature, set HMAC
and End entity certificate authentication in order to enable
Key Update Request in EJBCA. Set default CA, which will sign
Confirmation Response message.
Issue-ID: OOM-2753
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I1ab13b0a55711291a8c2a1448ae3497747348d67
Tomasz Wrobel [Tue, 11 May 2021 14:12:26 +0000 (16:12 +0200)]
[OOM-CERT-SERVICE] Update EJBCA image tag to 7.4.3.2
Issue-ID: OOM-2649
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I1c1d650b5bb85aa5a235f1e9476475e30a90987c
Piotr Marcinkiewicz [Wed, 24 Feb 2021 10:45:39 +0000 (11:45 +0100)]
Create Honolulu release notes
Issue-ID: REQ-601
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I4bbce41cb8e9dde9f90ad8eb8e3f1a85d0ea94fa
Joanna Jeremicz [Wed, 27 Jan 2021 11:38:09 +0000 (12:38 +0100)]
Release 2.3.3
Issue-ID: OOM-2658
Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
Change-Id: I360bed0c0cd01da65d46d02abf73bddb9710329d
Piotr Marcinkiewicz [Tue, 26 Jan 2021 09:45:10 +0000 (10:45 +0100)]
[OOM-CERT-SERVICE] Fix KeyUsage extention sent to CMPv2 server
- fix setting key usage to digitalSignature & keyEncipherment & nonRepudiation
- set extended key usage to clientAuth & serverAuth
Issue-ID: OOM-2658
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I5c00f622c3d117a63e4f48a3d2a90fd48cce3d0e
Jan Malkiewicz [Tue, 19 Jan 2021 07:16:19 +0000 (08:16 +0100)]
[CMPV2] Fix NPE & enhance error messages
Fix NPE.
Include error messages returned by CMP server in API response.
Issue-ID: OOM-2657
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I6ec46b14ba04b5be10de5994236efd8fc14c5d2e
Remigiusz Janeczek [Mon, 28 Dec 2020 10:13:10 +0000 (11:13 +0100)]
Release CertService 2.3.2
Issue-ID: OOM-2656
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I232c132b8dbcc657dce8de0d5bcc5e6af64a4491
Pawel Baniewski [Tue, 22 Dec 2020 11:45:13 +0000 (11:45 +0000)]
Merge "[OOM-CERT-SERVICE] Align implementation with RFC4210"
Jan Malkiewicz [Mon, 21 Dec 2020 08:19:36 +0000 (09:19 +0100)]
[CMPV2] Add description of the flag CMPv2CertManagerIntegration
Issue-ID: OOM-2560
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: Ifb5f045d54ea5d2e1673bebf1af1e3113b71375c
Piotr Marcinkiewicz [Thu, 17 Dec 2020 15:03:07 +0000 (16:03 +0100)]
[OOM-CERT-SERVICE] Align implementation with RFC4210
- change MAC algorithm
- limit iterations to random value from 1000-2000 range
- correct caName validation to allow URL safe characters
Issue-ID: OOM-2656
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I2c320607e7a02996cd249f45ac224e3f3a8aa3c9
Jan Malkiewicz [Fri, 18 Dec 2020 07:36:41 +0000 (08:36 +0100)]
[CMPV2] Enhance documentation for CMPv2 cert provider
Issue-ID: OOM-2560
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I0a8a1979ca815a76b2e3318cc357da848fe52a9e
Piotr Marcinkiewicz [Tue, 15 Dec 2020 07:57:34 +0000 (08:57 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add information about SANs to external provider
Issue-ID: OOM-2559
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: Ib4cb6d07db38aff7cfe1bdb1710d3c2c193cfcdf
Piotr Marcinkiewicz [Wed, 9 Dec 2020 17:45:13 +0000 (18:45 +0100)]
[OOM-CERT-SERVICE] Correct SANs documentation and logging
- correct properties logging format in external provider
- correct SANs documentation
Issue-ID: OOM-2559
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: If58e6ca53849e6d091bba652b1cc091f37d8eeeb
Remigiusz Janeczek [Wed, 2 Dec 2020 09:36:38 +0000 (10:36 +0100)]
[OOM CERT-SERVICE] Release CertService 2.3.1
Issue-ID: OOM-2559
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I44c2a5bd559ca89501e952f088e425dd1068fc6b
Remigiusz Janeczek [Wed, 2 Dec 2020 08:14:51 +0000 (09:14 +0100)]
[OOM CERT-SERVICE-CLIENT] Fix null pointer when sans empty
Issue-ID: OOM-2632
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I5e05eb2923b96313cb1d37eb844862289d6acae1
Piotr Marcinkiewicz [Tue, 1 Dec 2020 08:47:56 +0000 (09:47 +0100)]
[OOM CERT-SERVICE] Release CertService 2.3.0
Issue-ID: OOM-2559
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I19fdf5c00656e4a309da3ad3b696e38a3cfe1cf3
Tomasz Wrobel [Thu, 26 Nov 2020 07:41:25 +0000 (08:41 +0100)]
[OOM CERT-SERVICE DOCS] Add Honolulu in change-log
Issue-ID: OOM-2633
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: Ic2fecf421d8280e02195ebda2b0dc735d7274c81
Bogumil Zebek [Thu, 26 Nov 2020 06:31:17 +0000 (06:31 +0000)]
Merge "[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add documentation for k8s external provider"
Bogumil Zebek [Thu, 26 Nov 2020 06:30:39 +0000 (06:30 +0000)]
Merge "[OOM-CERT-SERVICE] Update documentation with new Sans types"
Jan Malkiewicz [Wed, 25 Nov 2020 08:21:11 +0000 (09:21 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add documentation for k8s external provider
Issue-ID: OOM-2560
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I76659e1369c2a6ec43f9d31326ff0c43d6a1ccdc
Pawel Baniewski [Wed, 25 Nov 2020 14:55:17 +0000 (14:55 +0000)]
Merge "[OOM CERT-SERVICE DOCS] Align release notes to template"
Tomasz Wrobel [Tue, 24 Nov 2020 11:17:43 +0000 (12:17 +0100)]
[OOM CERT-SERVICE DOCS] Align release notes to template
Issue-ID: OOM-2633
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I891a0817f5e2b08e7420c3f007e85d096d3e3a96
Bogumil Zebek [Wed, 25 Nov 2020 12:17:08 +0000 (12:17 +0000)]
Merge "[OOM cert-service-client] Add validation of email, ip and domain name"
kjaniak [Fri, 13 Nov 2020 14:03:17 +0000 (15:03 +0100)]
[OOM cert-service-client] Add validation of email, ip and domain name
Added SanMapper to distinguish types of SANS.
ExitableException changed to RuntimeException.
Introcudced intermediate object San.
Issue-ID: OOM-2559
Signed-off-by: kjaniak <kornel.janiak@nokia.com>
Change-Id: I060de9869ab9fd737a474f683a251abd8431d224
Piotr Marcinkiewicz [Tue, 24 Nov 2020 13:16:28 +0000 (14:16 +0100)]
[OOM-CERT-SERVICE] Update documentation with new Sans types
- Update documentation
- Update "How to run" CertService client
Issue-ID: OOM-2559
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I0ae26661bd695accb884ba9e56946197052bc535
deen1985 [Tue, 24 Nov 2020 16:15:13 +0000 (17:15 +0100)]
[OOM-CertService] Missing release_notes: tag in rst docs:
docs/release-notes.rst updated to include ".. _release_notes:" after the license.
Now if can be referred properly in ONAP docs "project release notes"
Change-Id: Ie84243fbf67be5e70a6e1a02176a3991b63f70f5
Signed-off-by: Damian Nowak <damian.nowak@nokia.com>
Issue-ID: OOM-2637
Pawel Baniewski [Mon, 23 Nov 2020 08:51:40 +0000 (08:51 +0000)]
Merge "[OOM CERT-SERVICE-API] Add support for URI, IP, E-mail in SANs"
Tomasz Wrobel [Thu, 19 Nov 2020 13:22:14 +0000 (14:22 +0100)]
[OOM CERT-SERVICE-CLIENT] Improve readability of URI regex
Issue-ID: OOM-2632
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: Ic016c788d4dfde95ecd5eca955508385cd144bb4
Tomasz Wrobel [Wed, 18 Nov 2020 06:55:55 +0000 (07:55 +0100)]
[OOM CERT-SERVICE-API] Add support for URI, IP, E-mail in SANs
Issue-ID: OOM-2632
Change-Id: I903c31ebe05521e281753cb847001ba99275f758
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>