JanHoefelmeyer
2ac7940206
Pwacc ( #218 )
...
* Adds option to require Client Certificate and a Password to aquire write access in provider
* Removed unnecessary flavourtext from provider markdown file
* Fixed and simplified the auth middleware
Co-authored-by: Jan Höfelmeyer <Jan Höfelmeyer jhoefelmeyer@intevation.de>
Co-authored-by: Sascha L. Teichmann <sascha.teichmann@intevation.de>
2022-07-13 14:09:27 +02:00
Bernhard Reiter
21eb768a05
Improve providers handlung of tls client certs
...
* Change logging logic to print out the Issuer when a certificate
was presented.
2022-03-31 12:00:13 +02:00
Fadi Abbud
782d653e59
Issuer documentation
...
* Documentation for the "issuer" option of the provider.
* More info of the format of the accepted file
* Print out the value of `SSL_CLIENT_I_DN` also when it is not match the issuer.
2022-03-24 16:46:47 +01:00
Bernhard Reiter
3753f08370
Merge branch 'main' into client-certificate
2022-03-23 20:12:36 +01:00
Sascha L. Teichmann
737fc89cd5
Made the issuer optional if using client sides certs for auth.
2022-03-07 13:27:22 +01:00
Fadi Abbud
9e422d5ad2
Add one config option (provider)
...
* "Issuer" config option for setting the CA issuer, these is used to
determine the valid TLS client certificates that allowed to access the
web-interface of the provider.
2022-02-22 08:37:51 +01:00
Sascha L. Teichmann
81fa044bf0
Made auth middleware more readable.
2022-02-15 20:55:19 +01:00
Bernhard Reiter
dbf52223e9
Fix code format in cmd/csaf_provider/controller.go
2022-02-15 18:26:11 +01:00
Bernhard Reiter
2905a30cc0
Improve tls client cert handling
...
* Improve nginx setup to transfer auth information to the fcgiwrap
backend.
* Add instructions for creating client certs for testing.
* Add debug output to see if and which client cert has been used when
calling the csaf_provider.go .
2022-02-15 18:20:24 +01:00
Fadi Abbud
e8cbab2c29
Add some documentation (controller)
2022-02-07 13:00:28 +01:00
Fadi Abbud
901e5bed74
Add License headers
2021-12-09 16:19:26 +01:00
Sascha L. Teichmann
d335ad1b84
Added server config and middleware to use password to protect endpoints.
2021-12-06 17:24:45 +01:00
Sascha L. Teichmann
52b586d82f
Added JSON endpoints. Made Web UI optional.
2021-12-05 21:20:27 +01:00
Sascha L. Teichmann
565238da9a
Separated result rendering from controller actions.
2021-12-05 15:20:50 +01:00
Sascha L. Teichmann
8c272fef2a
Replaced JSON schema library with a MIT licenensed one.
2021-12-03 02:28:16 +01:00
Sascha L. Teichmann
78f0b2db0b
Validate CSAF documents against JSON schema.
2021-12-02 23:38:09 +01:00
Sascha L. Teichmann
f77bb5f1a8
Added default publisher if not configured. Warning if uploads don't have the same publisher as in metadata.
2021-12-02 10:51:25 +01:00
Sascha L. Teichmann
fbe20dbf60
Use Key ID instead of fingerprint in OpenPGP URL interpolation.
2021-12-01 20:51:39 +01:00
Sascha L. Teichmann
9cf4a7cb5c
Add OpenPGP key to provider metadata when generated at setup.
2021-12-01 20:16:09 +01:00
Sascha L. Teichmann
f2d8cd1e90
Work in bernhardreiter's PR#4.
2021-12-01 19:35:19 +01:00
Sascha L. Teichmann
04fb8f7e75
Fix golint warnings.
2021-11-25 18:21:23 +01:00
Sascha L. Teichmann
699692a9ed
Make it build under new repo location.
2021-11-25 12:30:37 +01:00
Sascha L. Teichmann
b82882eb09
Write feed URLs in provider metadata.
2021-11-17 11:47:09 +01:00
Sascha L. Teichmann
1d0d8a6d03
Write a first version of the ROLIE feed.
2021-11-17 02:16:55 +01:00
Sascha L. Teichmann
b8d51da4cb
Moved writing files code to file source file.
2021-11-17 00:07:34 +01:00
Sascha L. Teichmann
05475f5509
Factored out transaction, renamed dir to files.
2021-11-16 23:58:41 +01:00
Sascha L. Teichmann
5a350f2044
s/intevation/Intevation/
2021-11-16 23:43:43 +01:00
Sascha L. Teichmann
ef0a92b491
Added a no_passphrase flag to hide the passphrase input field from the web interface.
2021-11-16 14:43:35 +01:00
Sascha L. Teichmann
fed66c4e27
Added files from the first prototype.
2021-11-16 13:58:54 +01:00
