SystemSh0cker/gocsaf
1
0
Fork 0
mirror of https://github.com/gocsaf/csaf.git synced 2025-12-22 18:15:42 +01:00
Code Issues Releases Activity Actions
829 commits 13 branches 34 tags 8.5 MiB
Commit graph

32 commits

Author SHA1 Message Date
Sascha L. Teichmann
0c2768b711 Fix header client. Simplify code. 2023-03-24 13:40:31 +01:00
Sascha L. Teichmann
ffb29f5ba4 Replace 'confirming filename' with 'conforming filename' 2023-02-03 16:21:15 +01:00
Sascha L. Teichmann
c4b70d20cd Demand Go 1.19 in go.mod. Replaced interface{} with any 2023-01-19 16:45:26 +01:00
JanHoefelmeyer
2ac7940206
Pwacc (#218) 
* Adds option to require Client Certificate and a Password to aquire write access in provider

* Removed unnecessary flavourtext from provider markdown file

* Fixed and simplified the auth middleware

Co-authored-by: Jan Höfelmeyer <Jan Höfelmeyer jhoefelmeyer@intevation.de>
Co-authored-by: Sascha L. Teichmann <sascha.teichmann@intevation.de>
 2022-07-13 14:09:27 +02:00
Bernhard Reiter
21eb768a05
Improve providers handlung of tls client certs 
* Change logging logic to print out the Issuer when a certificate
   was presented.
 2022-03-31 12:00:13 +02:00
Fadi Abbud
782d653e59 Issuer documentation 
* Documentation for the "issuer" option of the provider.
* More info of the format of the accepted file
* Print out the value of `SSL_CLIENT_I_DN` also when it is not match the issuer.
 2022-03-24 16:46:47 +01:00
Bernhard Reiter
3753f08370
Merge branch 'main' into client-certificate 2022-03-23 20:12:36 +01:00
Sascha L. Teichmann
737fc89cd5 Made the issuer optional if using client sides certs for auth. 2022-03-07 13:27:22 +01:00
Fadi Abbud
9e422d5ad2 Add one config option (provider) 
* "Issuer" config option for setting the CA issuer, these is used to
determine the valid TLS client certificates that allowed to access the
web-interface of the provider.
 2022-02-22 08:37:51 +01:00
Sascha L. Teichmann
81fa044bf0 Made auth middleware more readable. 2022-02-15 20:55:19 +01:00
Bernhard Reiter
dbf52223e9
Fix code format in cmd/csaf_provider/controller.go 2022-02-15 18:26:11 +01:00
Bernhard Reiter
2905a30cc0
Improve tls client cert handling 
* Improve nginx setup to transfer auth information to the fcgiwrap
 backend.
 * Add instructions for creating client certs for testing.
 * Add debug output to see if and which client cert has been used when
   calling the csaf_provider.go .
 2022-02-15 18:20:24 +01:00
Fadi Abbud
e8cbab2c29 Add some documentation (controller) 2022-02-07 13:00:28 +01:00
Fadi Abbud
901e5bed74 Add License headers 2021-12-09 16:19:26 +01:00
Sascha L. Teichmann
d335ad1b84 Added server config and middleware to use password to protect endpoints. 2021-12-06 17:24:45 +01:00
Sascha L. Teichmann
52b586d82f Added JSON endpoints. Made Web UI optional. 2021-12-05 21:20:27 +01:00
Sascha L. Teichmann
565238da9a Separated result rendering from controller actions. 2021-12-05 15:20:50 +01:00
Sascha L. Teichmann
8c272fef2a Replaced JSON schema library with a MIT licenensed one. 2021-12-03 02:28:16 +01:00
Sascha L. Teichmann
78f0b2db0b Validate CSAF documents against JSON schema. 2021-12-02 23:38:09 +01:00
Sascha L. Teichmann
f77bb5f1a8 Added default publisher if not configured. Warning if uploads don't have the same publisher as in metadata. 2021-12-02 10:51:25 +01:00
Sascha L. Teichmann
fbe20dbf60 Use Key ID instead of fingerprint in OpenPGP URL interpolation. 2021-12-01 20:51:39 +01:00
Sascha L. Teichmann
9cf4a7cb5c Add OpenPGP key to provider metadata when generated at setup. 2021-12-01 20:16:09 +01:00
Sascha L. Teichmann
f2d8cd1e90 Work in bernhardreiter's PR#4. 2021-12-01 19:35:19 +01:00
Sascha L. Teichmann
04fb8f7e75 Fix golint warnings. 2021-11-25 18:21:23 +01:00
Sascha L. Teichmann
699692a9ed Make it build under new repo location. 2021-11-25 12:30:37 +01:00
Sascha L. Teichmann
b82882eb09 Write feed URLs in provider metadata. 2021-11-17 11:47:09 +01:00
Sascha L. Teichmann
1d0d8a6d03 Write a first version of the ROLIE feed. 2021-11-17 02:16:55 +01:00
Sascha L. Teichmann
b8d51da4cb Moved writing files code to file source file. 2021-11-17 00:07:34 +01:00
Sascha L. Teichmann
05475f5509 Factored out transaction, renamed dir to files. 2021-11-16 23:58:41 +01:00
Sascha L. Teichmann
5a350f2044 s/intevation/Intevation/ 2021-11-16 23:43:43 +01:00
Sascha L. Teichmann
ef0a92b491 Added a no_passphrase flag to hide the passphrase input field from the web interface. 2021-11-16 14:43:35 +01:00
Sascha L. Teichmann
fed66c4e27 Added files from the first prototype. 2021-11-16 13:58:54 +01:00