Tomasz Wrobel [Wed, 7 Jul 2021 11:56:47 +0000 (13:56 +0200)]
[OOM-CERT-SERVICE] Alignment of makefile
- Add more SANs to openssl request creation
- Add customization of CA destination
Issue-ID: OOM-2753
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I409a874983bdc7cda61195086549abc30259fb3c
Joanna Jeremicz [Wed, 7 Jul 2021 14:18:44 +0000 (16:18 +0200)]
[OOM-CERT-SERVICE] Code refactor
- Rename methods names to more descriptive ones
- Group classes in packages
- Simplify certificate model usage in KUR (use BouncyCastle object)
Issue-ID: OOM-2753
Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
Change-Id: I0507752b8d74a71ef27545648c2045f2033a330a
Pawel Baniewski [Wed, 7 Jul 2021 07:34:05 +0000 (07:34 +0000)]
Merge "[OOM-CERT-SERVICE] Add Certification Request functionality"
Pawel Baniewski [Wed, 7 Jul 2021 07:29:56 +0000 (07:29 +0000)]
Merge "[OOM-K8S-CERT-EXTERNAL-PROVIDER] Format golang code"
Remigiusz Janeczek [Mon, 5 Jul 2021 10:25:15 +0000 (12:25 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Format golang code
Issue-ID: OOM-2753
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I7b2f83dff5f7894b3064461b523bd94a77cac1f3
Joanna Jeremicz [Mon, 5 Jul 2021 14:47:58 +0000 (16:47 +0200)]
[OOM-CERT-SERVICE] Add Certification Request functionality
Issue-ID: OOM-2753
Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
Change-Id: Id8702dd45254f0e82d9b71e5e69372569e523838
Tomasz Wrobel [Wed, 30 Jun 2021 14:14:25 +0000 (16:14 +0200)]
[OOM-CERT-SERVICE] Add Key Update Request functionality
Issue-ID: OOM-2753
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: Icecef30b830c38606e17fbc2c502208543d048d2
Remigiusz Janeczek [Fri, 2 Jul 2021 09:23:33 +0000 (11:23 +0200)]
[OOM-CERT-SERVICE] Fix EJBCA "CA with name - does not exist" error
When sending KUR request to EJBCA it fails with error:
"CA with name - does not exist"
Issue-ID: OOM-2753
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I19d41fd1c8718d5b7e82f361d398c1ebe2545401
Bogumil Zebek [Fri, 2 Jul 2021 08:58:55 +0000 (08:58 +0000)]
Merge "[OOM-CERT-SERVICE] Add Certificate Update Admin role"
Remigiusz Janeczek [Fri, 2 Jul 2021 08:38:05 +0000 (10:38 +0200)]
[OOM-CERT-SERVICE] Fix makefile requests
Issue-ID: OOM-2753
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: Ic295f805b8aea6f13b95e6c972037066471a5faa
Bogumil Zebek [Thu, 1 Jul 2021 09:52:56 +0000 (09:52 +0000)]
Merge "[OOM-CERT-SERVICE] Add logic for KUR/CR detection"
Bogumil Zebek [Thu, 1 Jul 2021 09:32:59 +0000 (09:32 +0000)]
Merge "[OOM-CERT-SERVICE] Modify EJBCA configuration"
Bogumil Zebek [Thu, 1 Jul 2021 09:32:09 +0000 (09:32 +0000)]
Merge "[OOM-CERT-SERVICE] Add handling cmp response when PBM value is missing."
Remigiusz Janeczek [Wed, 30 Jun 2021 10:44:29 +0000 (12:44 +0200)]
[OOM-CERT-SERVICE] Add logic for KUR/CR detection
Issue-ID: OOM-2753
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I571ad3914a870dde83929cb6121c2c63a5df3ae4
Joanna Jeremicz [Wed, 30 Jun 2021 13:30:57 +0000 (15:30 +0200)]
[OOM-CERT-SERVICE] Modify EJBCA configuration
- Do not create default ManagementCA with generated UID
- Create ManagementCA with hardcoded UID to allow performing KUR
Issue-ID: OOM-2753
Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
Change-Id: Ief51c27200300118ffa0206ba2657504ce4bc69c
Tomasz Wrobel [Tue, 29 Jun 2021 09:51:51 +0000 (11:51 +0200)]
[OOM-CERT-SERVICE] Add handling cmp response when PBM value is missing.
Issue-ID: OOM-2753
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I38de28c994b5c83f936b3b5ea47d024a96f4733e
Remigiusz Janeczek [Wed, 16 Jun 2021 17:16:30 +0000 (19:16 +0200)]
[OOM-CERT-SERVICE] Add curl requests to Makefile
Increase max header size (default was too low for update
requests)
Issue-ID: OOM-2753
Change-Id: I3614d8d34ed18ae52cec8fb4f9349e170c2ac3af
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Piotr Marcinkiewicz [Fri, 25 Jun 2021 14:01:52 +0000 (16:01 +0200)]
[OOM-CERT-SERVICE] Add Certificate Update Admin role
Add Certificate Update Admin role in order to allow performing
KUR/CR in EJBCA.
Issue-ID: OOM-2753
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: Ib07a694c6a88d5ad58059cd331d2eddbcaf8a97b
Bogumil Zebek [Tue, 29 Jun 2021 12:33:41 +0000 (12:33 +0000)]
Merge "[OOM-CERT-SERVICE] Add update endpoint"
Piotr Marcinkiewicz [Thu, 24 Jun 2021 08:48:28 +0000 (10:48 +0200)]
[OOM-CERT-SERVICE] Add update endpoint
- Add endpoint with old cert and old PK parameters
for KUR/CR requests
Issue-ID: OOM-2753
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I094ce1a39a11bbb94f94e0b13ca7ff71eb99dd30
Piotr Marcinkiewicz [Wed, 23 Jun 2021 14:40:34 +0000 (16:40 +0200)]
[OOM-CERT-SERVICE] Implement signature PKIMessage protection
- Add signature protection
- Refactor password-based protection code
- Add JUnit tests
Issue-ID: OOM-2753
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I398568a35e52a816c32646c8915db5c287ede401
Pawel Baniewski [Fri, 18 Jun 2021 10:23:12 +0000 (10:23 +0000)]
Merge "Fix sonar issues"
Pawel Baniewski [Fri, 18 Jun 2021 10:22:42 +0000 (10:22 +0000)]
Merge "[OOM-CERT-SERVICE] Deprecate certServiceClient - update docs"
Pawel Baniewski [Tue, 15 Jun 2021 07:18:52 +0000 (07:18 +0000)]
Merge "[OOM-CERT-SERVICE] Fix cmpv2 issuer error when CRD is removed"
Tomasz Wrobel [Thu, 10 Jun 2021 08:44:58 +0000 (10:44 +0200)]
[OOM-CERT-SERVICE] Fix cmpv2 issuer error when CRD is removed
Issue-ID: OOM-2771
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I28f7a0d7fb3e7f6227b0a4ac64ca45c274956b8e
Piotr Marcinkiewicz [Tue, 8 Jun 2021 09:48:01 +0000 (11:48 +0200)]
[OOM-CERT-SERVICE] Deprecate certServiceClient - update docs
- Remove certServiceClient description from docs
- Move descrption of CMPv2 provider to "How to use functionality"
- Update description of getting certs for CertService in OOM
- Update certService version to 2.4.0
Issue-ID: OOM-2744
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I283755b8fbd579646f979c88ea3022266855c4dc
Remigiusz Janeczek [Wed, 9 Jun 2021 10:12:30 +0000 (12:12 +0200)]
Fix sonar issues
Issue-ID: OOM-2764
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: Iab71cbcac1982207e6f29b4b046280ad27143e03
Bogumil Zebek [Wed, 2 Jun 2021 06:32:37 +0000 (06:32 +0000)]
Merge "[OOM-CERT-SERVICE] Configure EJBCA to handle Key Update Request"
Remigiusz Janeczek [Tue, 1 Jun 2021 10:14:22 +0000 (12:14 +0200)]
Deprecate certServiceClient
- disable certServiceClient submodule
- set fixed version for certServiceClient image usage
Issue-ID: OOM-2744
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: Ibfca21ffe4310e7a5d124853c4b33c1c481f10a8
Piotr Marcinkiewicz [Thu, 20 May 2021 07:05:16 +0000 (09:05 +0200)]
[OOM-CERT-SERVICE] Configure EJBCA to handle Key Update Request
Change RA response protection from pbe to signature, set HMAC
and End entity certificate authentication in order to enable
Key Update Request in EJBCA. Set default CA, which will sign
Confirmation Response message.
Issue-ID: OOM-2753
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I1ab13b0a55711291a8c2a1448ae3497747348d67
Tomasz Wrobel [Tue, 11 May 2021 14:12:26 +0000 (16:12 +0200)]
[OOM-CERT-SERVICE] Update EJBCA image tag to 7.4.3.2
Issue-ID: OOM-2649
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I1c1d650b5bb85aa5a235f1e9476475e30a90987c
Piotr Marcinkiewicz [Wed, 24 Feb 2021 10:45:39 +0000 (11:45 +0100)]
Create Honolulu release notes
Issue-ID: REQ-601
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I4bbce41cb8e9dde9f90ad8eb8e3f1a85d0ea94fa
Joanna Jeremicz [Wed, 27 Jan 2021 11:38:09 +0000 (12:38 +0100)]
Release 2.3.3
Issue-ID: OOM-2658
Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
Change-Id: I360bed0c0cd01da65d46d02abf73bddb9710329d
Piotr Marcinkiewicz [Tue, 26 Jan 2021 09:45:10 +0000 (10:45 +0100)]
[OOM-CERT-SERVICE] Fix KeyUsage extention sent to CMPv2 server
- fix setting key usage to digitalSignature & keyEncipherment & nonRepudiation
- set extended key usage to clientAuth & serverAuth
Issue-ID: OOM-2658
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I5c00f622c3d117a63e4f48a3d2a90fd48cce3d0e
Jan Malkiewicz [Tue, 19 Jan 2021 07:16:19 +0000 (08:16 +0100)]
[CMPV2] Fix NPE & enhance error messages
Fix NPE.
Include error messages returned by CMP server in API response.
Issue-ID: OOM-2657
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I6ec46b14ba04b5be10de5994236efd8fc14c5d2e
Remigiusz Janeczek [Mon, 28 Dec 2020 10:13:10 +0000 (11:13 +0100)]
Release CertService 2.3.2
Issue-ID: OOM-2656
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I232c132b8dbcc657dce8de0d5bcc5e6af64a4491
Pawel Baniewski [Tue, 22 Dec 2020 11:45:13 +0000 (11:45 +0000)]
Merge "[OOM-CERT-SERVICE] Align implementation with RFC4210"
Jan Malkiewicz [Mon, 21 Dec 2020 08:19:36 +0000 (09:19 +0100)]
[CMPV2] Add description of the flag CMPv2CertManagerIntegration
Issue-ID: OOM-2560
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: Ifb5f045d54ea5d2e1673bebf1af1e3113b71375c
Piotr Marcinkiewicz [Thu, 17 Dec 2020 15:03:07 +0000 (16:03 +0100)]
[OOM-CERT-SERVICE] Align implementation with RFC4210
- change MAC algorithm
- limit iterations to random value from 1000-2000 range
- correct caName validation to allow URL safe characters
Issue-ID: OOM-2656
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I2c320607e7a02996cd249f45ac224e3f3a8aa3c9
Jan Malkiewicz [Fri, 18 Dec 2020 07:36:41 +0000 (08:36 +0100)]
[CMPV2] Enhance documentation for CMPv2 cert provider
Issue-ID: OOM-2560
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I0a8a1979ca815a76b2e3318cc357da848fe52a9e
Piotr Marcinkiewicz [Tue, 15 Dec 2020 07:57:34 +0000 (08:57 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add information about SANs to external provider
Issue-ID: OOM-2559
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: Ib4cb6d07db38aff7cfe1bdb1710d3c2c193cfcdf
Piotr Marcinkiewicz [Wed, 9 Dec 2020 17:45:13 +0000 (18:45 +0100)]
[OOM-CERT-SERVICE] Correct SANs documentation and logging
- correct properties logging format in external provider
- correct SANs documentation
Issue-ID: OOM-2559
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: If58e6ca53849e6d091bba652b1cc091f37d8eeeb
Remigiusz Janeczek [Wed, 2 Dec 2020 09:36:38 +0000 (10:36 +0100)]
[OOM CERT-SERVICE] Release CertService 2.3.1
Issue-ID: OOM-2559
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I44c2a5bd559ca89501e952f088e425dd1068fc6b
Remigiusz Janeczek [Wed, 2 Dec 2020 08:14:51 +0000 (09:14 +0100)]
[OOM CERT-SERVICE-CLIENT] Fix null pointer when sans empty
Issue-ID: OOM-2632
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I5e05eb2923b96313cb1d37eb844862289d6acae1
Piotr Marcinkiewicz [Tue, 1 Dec 2020 08:47:56 +0000 (09:47 +0100)]
[OOM CERT-SERVICE] Release CertService 2.3.0
Issue-ID: OOM-2559
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I19fdf5c00656e4a309da3ad3b696e38a3cfe1cf3
Tomasz Wrobel [Thu, 26 Nov 2020 07:41:25 +0000 (08:41 +0100)]
[OOM CERT-SERVICE DOCS] Add Honolulu in change-log
Issue-ID: OOM-2633
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: Ic2fecf421d8280e02195ebda2b0dc735d7274c81
Bogumil Zebek [Thu, 26 Nov 2020 06:31:17 +0000 (06:31 +0000)]
Merge "[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add documentation for k8s external provider"
Bogumil Zebek [Thu, 26 Nov 2020 06:30:39 +0000 (06:30 +0000)]
Merge "[OOM-CERT-SERVICE] Update documentation with new Sans types"
Jan Malkiewicz [Wed, 25 Nov 2020 08:21:11 +0000 (09:21 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add documentation for k8s external provider
Issue-ID: OOM-2560
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I76659e1369c2a6ec43f9d31326ff0c43d6a1ccdc
Pawel Baniewski [Wed, 25 Nov 2020 14:55:17 +0000 (14:55 +0000)]
Merge "[OOM CERT-SERVICE DOCS] Align release notes to template"
Tomasz Wrobel [Tue, 24 Nov 2020 11:17:43 +0000 (12:17 +0100)]
[OOM CERT-SERVICE DOCS] Align release notes to template
Issue-ID: OOM-2633
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I891a0817f5e2b08e7420c3f007e85d096d3e3a96
Bogumil Zebek [Wed, 25 Nov 2020 12:17:08 +0000 (12:17 +0000)]
Merge "[OOM cert-service-client] Add validation of email, ip and domain name"
kjaniak [Fri, 13 Nov 2020 14:03:17 +0000 (15:03 +0100)]
[OOM cert-service-client] Add validation of email, ip and domain name
Added SanMapper to distinguish types of SANS.
ExitableException changed to RuntimeException.
Introcudced intermediate object San.
Issue-ID: OOM-2559
Signed-off-by: kjaniak <kornel.janiak@nokia.com>
Change-Id: I060de9869ab9fd737a474f683a251abd8431d224
Piotr Marcinkiewicz [Tue, 24 Nov 2020 13:16:28 +0000 (14:16 +0100)]
[OOM-CERT-SERVICE] Update documentation with new Sans types
- Update documentation
- Update "How to run" CertService client
Issue-ID: OOM-2559
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I0ae26661bd695accb884ba9e56946197052bc535
deen1985 [Tue, 24 Nov 2020 16:15:13 +0000 (17:15 +0100)]
[OOM-CertService] Missing release_notes: tag in rst docs:
docs/release-notes.rst updated to include ".. _release_notes:" after the license.
Now if can be referred properly in ONAP docs "project release notes"
Change-Id: Ie84243fbf67be5e70a6e1a02176a3991b63f70f5
Signed-off-by: Damian Nowak <damian.nowak@nokia.com>
Issue-ID: OOM-2637
Pawel Baniewski [Mon, 23 Nov 2020 08:51:40 +0000 (08:51 +0000)]
Merge "[OOM CERT-SERVICE-API] Add support for URI, IP, E-mail in SANs"
Tomasz Wrobel [Thu, 19 Nov 2020 13:22:14 +0000 (14:22 +0100)]
[OOM CERT-SERVICE-CLIENT] Improve readability of URI regex
Issue-ID: OOM-2632
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: Ic016c788d4dfde95ecd5eca955508385cd144bb4
Tomasz Wrobel [Wed, 18 Nov 2020 06:55:55 +0000 (07:55 +0100)]
[OOM CERT-SERVICE-API] Add support for URI, IP, E-mail in SANs
Issue-ID: OOM-2632
Change-Id: I903c31ebe05521e281753cb847001ba99275f758
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Bogumil Zebek [Thu, 19 Nov 2020 12:36:42 +0000 (12:36 +0000)]
Merge "[OOM CERT-SERVICE-CLIENT] Add URI validator (RFC 3986)"
Tomasz Wrobel [Tue, 17 Nov 2020 07:59:43 +0000 (08:59 +0100)]
[OOM CERT-SERVICE-CLIENT] Add URI validator (RFC 3986)
Issue-ID: OOM-2632
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: Ia71d413a56f65b0a51ff5c2e7522035f41e06faf
Bogumil Zebek [Thu, 19 Nov 2020 06:10:48 +0000 (06:10 +0000)]
Merge "Update ejbca config to allow emails, uris and ip addresses"
Remigiusz Janeczek [Wed, 18 Nov 2020 14:28:15 +0000 (15:28 +0100)]
Update ejbca config to allow emails, uris and ip addresses
Issue-ID: OOM-2632
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: Iba089c85afb8b6cbb37c9257e9d57916970855b6
Piotr Marcinkiewicz [Wed, 18 Nov 2020 10:50:11 +0000 (11:50 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Extend SANs support
- Extend support SANs: email, ip, uri
- Fix logging filtered Csr issue
Issue-ID: OOM-2559
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: Ib3f2ff2a6383ca46629e457df76c6a70f549ac1b
Bogumil Zebek [Wed, 18 Nov 2020 10:18:51 +0000 (10:18 +0000)]
Merge "[CLIENT] Change certService client to use comma as SANS delimiter"
Remigiusz Janeczek [Tue, 17 Nov 2020 12:39:16 +0000 (13:39 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add coverage report
Issue-ID: OOM-2559
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I484a2b38ef40b60f879c2067b39329073db030af
Remigiusz Janeczek [Tue, 17 Nov 2020 08:54:08 +0000 (09:54 +0100)]
[CLIENT] Change certService client to use comma as SANS delimiter
Issue-ID: OOM-2632
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I12a39cd514261a555081addb333ef1a99a481424
Pawel Baniewski [Fri, 13 Nov 2020 13:33:31 +0000 (13:33 +0000)]
Merge "[OOM ext-cert-provider] Refacor in validation (intermediate solution)"
kjaniak [Thu, 12 Nov 2020 06:54:33 +0000 (07:54 +0100)]
[OOM ext-cert-provider] Refacor in validation (intermediate solution)
Atomic validation function moved to BasicValidationFunctions
More complex validation is served by ValidatorsFactory
Sans property class object changed to List<String>
Signed-off-by: kjaniak <kornel.janiak@nokia.com>
Issue-ID: OOM-2559
Change-Id: I4719499dde969db95e2caa172f767674690c40e1
Jan Malkiewicz [Thu, 12 Nov 2020 13:24:05 +0000 (14:24 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Release 2.2.0
Issue-ID: OOM-2559
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I385cbd12a6c342e5ebaeebeca7bfba2e16f7aa29
Jan Malkiewicz [Thu, 12 Nov 2020 08:44:58 +0000 (09:44 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Version properties 2.1.0 -> 2.2.0
Issue-ID: OOM-2559
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: Ib04e7f081c06e973b7489bb0e1bf26d038a40241
Jan Malkiewicz [Tue, 10 Nov 2020 13:58:11 +0000 (14:58 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Update version 2.1.1 -> 2.2.0
Issue-ID: OOM-2559
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: Ia2bcf542daa863ef41022e016382b4b96bbbc971
Jan Malkiewicz [Thu, 5 Nov 2020 14:25:12 +0000 (15:25 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Refactoring & code improvements
Issue-ID: OOM-2559
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I52c38aacf064682f0018ac37b1400893bd9e53fc
Pawel Baniewski [Thu, 5 Nov 2020 13:25:22 +0000 (13:25 +0000)]
Merge "[OOM-K8S-CERT-EXTERNAL-PROVIDER] Change logger implementation provider"
Joanna Jeremicz [Fri, 30 Oct 2020 16:06:04 +0000 (17:06 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Change logger implementation provider
Issue-ID: OOM-2559
Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
Change-Id: I717dfcfd74a01ccb81b2eb03c52be2c90fc3a9c5
Piotr Marcinkiewicz [Wed, 4 Nov 2020 12:07:24 +0000 (13:07 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add API exceptions handling
- Added handling exceptions from CertService API
Issue-ID: OOM-2559
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I18f00fd7e17f96b2e73b81370b54fe33f10039c3
Piotr Marcinkiewicz [Tue, 3 Nov 2020 16:06:13 +0000 (17:06 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add CertificateRequest controller test
- Add CertificateRequest controller test with fake K8s API
Issue-ID: OOM-2559
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I4e32c2d28f5c4ea35dd013119dfc31acb1646582
Pawel Baniewski [Thu, 5 Nov 2020 08:13:11 +0000 (08:13 +0000)]
Merge "[OOM-K8S-CERT-EXTERNAL-PROVIDER] Configuration for local development"
Jan Malkiewicz [Mon, 2 Nov 2020 13:53:30 +0000 (14:53 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Configuration for local development
Issue-ID: OOM-2559
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I5ee38593cff665dc7d0e0d17f4df569be129d778
Piotr Marcinkiewicz [Fri, 30 Oct 2020 10:02:51 +0000 (11:02 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add CMPv2IssuerController test
- Add Reconcile test in CMPv2IssuerController
Issue-ID: OOM-2559
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I49aff7bc36f7da4df7eeaebaca144ee5a5bb9853
Remigiusz Janeczek [Thu, 29 Oct 2020 13:03:25 +0000 (14:03 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Filter not supported CSR properties
Align EJBCA config with OOM
Issue-ID: OOM-2559
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I8ab73c84415e1ea1b09b6210ffbf84386315f9eb
Tomasz Wrobel [Wed, 28 Oct 2020 15:27:25 +0000 (16:27 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Save CertService response as PEM artifacts
Issue-ID: OOM-2559
Change-Id: I86ce277396f87fdde5ffafa4ca8f8fe9853daa3c
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Jan Malkiewicz [Wed, 28 Oct 2020 07:19:08 +0000 (08:19 +0100)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add logging of supported CSR properties
Issue-ID: OOM-2559
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I8e6a55eea3d87b6bb5f3a26ca9a11d618bb61a77
Pawel Baniewski [Tue, 27 Oct 2020 11:43:40 +0000 (11:43 +0000)]
Merge "[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add logging of not supported/overridden CSR info"
Tomasz Wrobel [Fri, 23 Oct 2020 06:34:41 +0000 (08:34 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add logging of not supported/overridden CSR info
Issue-ID: OOM-2559
Change-Id: I0199712e70d65650dd7ce0c0b95537373f94f7a4
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Jan Malkiewicz [Fri, 23 Oct 2020 07:46:13 +0000 (09:46 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add health check of CMPv2 provisioner (cert-service-api)
Issue-ID: OOM-2559
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I81d4dcfcb10f71182ea667770bafb9556817b793
Remigiusz Janeczek [Thu, 22 Oct 2020 07:18:12 +0000 (09:18 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add client for CertService API
Issue-ID: OOM-2559
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I3bf6c36b9eec7a661202b18eb7765e332ccfbc07
Jan Malkiewicz [Wed, 21 Oct 2020 08:52:33 +0000 (10:52 +0200)]
Fix docker image name.
Issue-ID: OOM-2559
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: Ib2130563379e6160ab7c29592b5d4428d6550b48
Remigiusz Janeczek [Tue, 20 Oct 2020 12:35:53 +0000 (14:35 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Fix failing build
Adjust cmpv2_provisioner_test to use cmpv2provisioner.New(...) with
updated signature
Issue-ID: OOM-2559
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I4ebc91326ddf189660991c65f1727338c7eae5fb
Bogumil Zebek [Tue, 20 Oct 2020 12:16:53 +0000 (12:16 +0000)]
Merge "[OOM-K8S-CERT-EXTERNAL-PROVIDER] Provide certs to CMPv2 Issuer"
Remigiusz Janeczek [Fri, 16 Oct 2020 09:08:09 +0000 (11:08 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Provide certs to CMPv2 Issuer
Format code
Issue-ID: OOM-2559
Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com>
Change-Id: I88346b96657606b010aa8d7da0f8b86d1844f9d7
Joanna Jeremicz [Fri, 16 Oct 2020 14:06:04 +0000 (16:06 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Add unit tests to cmpv2_provisioner
Add tests with input and output .pem files
Tests should be adjusted to future implementation when possible
Issue-ID: OOM-2559
Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
Change-Id: I39952c2cb0bd35bfd8337b22ca6e95c86509b4f7
Jan Malkiewicz [Fri, 16 Oct 2020 08:42:57 +0000 (10:42 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Mock implementaion enhanced (part III)
Code refactoring
Added unit tests
Issue-ID: OOM-2559
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I3f3b7b39d739818fa82842993f621c6134816079
Jan Malkiewicz [Thu, 15 Oct 2020 07:04:18 +0000 (09:04 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Mock implementaion enhanced (part II)
Rename CertServiceIssuer -> CMPv2Issuer
Checking for Issuer.Kind (has to be CMPv2Issuer)
Introduced exit codes
Refactoring file names and packages
Moved tests to main package (according to GOlang convention)
Issue-ID: OOM-2559
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I710d9f6c9bd22318e5152e5215b78d5a9e7b4540
Jan Malkiewicz [Wed, 14 Oct 2020 11:54:17 +0000 (13:54 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Mock implementaion enhanced
Libs upgraded.
Use v1 version of the resources.
Issue-ID: OOM-2559
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I009ff3ca8c3e84863dcf5cea290c8968280ca8ec
Tomasz Wrobel [Tue, 13 Oct 2020 07:08:07 +0000 (09:08 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Rename variables to readable.
Issue-ID: OOM-2559
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I1da11dcc12e97f6997a409106e90f6000a6102d0
Pawel Baniewski [Fri, 9 Oct 2020 12:13:49 +0000 (12:13 +0000)]
Merge "[OOM-K8S-CERT-EXTERNAL-PROVIDER] Create mock implementation"
Jan Malkiewicz [Tue, 6 Oct 2020 12:49:21 +0000 (14:49 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Create mock implementation
This project is a GOlang implementation of an external provider for kubernetes cert-manager.
External provider will use OOM CertService as backend signing CA.
Mock implementation only logs intent of certificate signing.
In order to provide the ultimate implemenatation please extend file 'certservice-provisioner.go'.
Issue-ID: OOM-2559
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: Ib3de4ca4c54424042ddaa50507375815cc3da7f4
Tomasz Wrobel [Thu, 8 Oct 2020 09:34:59 +0000 (11:34 +0200)]
[OOM-CPMv2] Move LICENSE.txt to root directory
Issue-ID: OOM-2559
Signed-off-by: Tomasz Wrobel <tomasz.wrobel@nokia.com>
Change-Id: I79f6bb83ee120bd30384e64cc850e54bf8114ce9
Jan Malkiewicz [Wed, 30 Sep 2020 12:59:26 +0000 (14:59 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Fix pom.xml - deploy phase
Issue-ID: OOM-2559
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I33437adae136a8b8a3678afbef5ec4632908834f
Jan Malkiewicz [Wed, 30 Sep 2020 12:26:09 +0000 (14:26 +0200)]
[OOM-K8S-CERT-EXTERNAL-PROVIDER] Fix pom.xml
Issue-ID: OOM-2559
Signed-off-by: Jan Malkiewicz <jan.malkiewicz@nokia.com>
Change-Id: I5891bd40a5b97c14c537438c74bd706b23800216
Code Review / oom / platform / cert-service.git / log