Mark.TwoFive/home-cert-assistant
1
0
Fork 0
Code Issues Pull requests 1 Projects Releases Wiki Activity Actions
61 commits 2 branches 0 tags 771 KiB
Commit graph

61 commits

This branch
This branch
All branches
Author SHA1 Message Date
Magnus Leßmann (@MarkL4YG)
a4f495ab91 feat: Allow import of trust-only certificates 
- These certificates do not have keys, because they are solely for trusting them.
- Also more rigorously verify arguments passed to OpenSSL
 2024-11-24 13:50:46 +01:00
Magnus Leßmann (@MarkL4YG)
286c9dcf28 feat: Unify Trust- and KeyStoreManager services 2024-11-24 13:50:46 +01:00
Magnus Leßmann (@MarkL4YG)
335eb3ed8d experiment: Increase logging based on PR label 2024-11-23 22:10:20 +01:00
Magnus Leßmann (@MarkL4YG)
fc4ea17cf3 chore: Rename certificate information to be more versatile to use 2024-11-23 22:10:20 +01:00
Magnus Leßmann (@MarkL4YG)
f1135c54fa chore: Rename OpenSSLCertificateCreator to OpenSSLService 2024-11-23 22:10:20 +01:00
Magnus Leßmann (@MarkL4YG)
938101db8f chore: Refactor services 
- OpenSSL and Truststore services should not be Beans by default
- Instead, they are using auto configurations to register the beans
 2024-11-23 22:10:20 +01:00
Magnus Leßmann (@MarkL4YG)
8856d8773e
feat: Implement Truststore/Keystore creation (#17) 
* feat: Implement Truststore/Keystore creation
* feat: Update ordering of certificate chains to match what JDK demands
* feat: Implement creating trust- and keystores from certs :)
 2024-11-23 20:24:43 +01:00
Magnus Leßmann (@MarkL4YG)
861b7469d2 chore: Update termination/exception handling 2024-11-23 17:58:55 +01:00
Magnus Leßmann (@MarkL4YG)
f6eacd4d6d fix: Check exit code of signing command 2024-11-23 17:58:55 +01:00
Magnus Leßmann (@MarkL4YG)
a059a60886 chore: Kill genCert on error 
- Because apparently it can run into an infinite loop when there are pKey issues
 2024-11-23 17:58:55 +01:00
Magnus Leßmann (@MarkL4YG)
003b9915a3 chore: Reduce logging noise from DB 2024-11-23 17:58:55 +01:00
Magnus Leßmann (@MarkL4YG)
8cd8963bca fix: Retry cleanup again on system exit 2024-11-23 17:58:55 +01:00
Magnus Leßmann (@MarkL4YG)
8ef6234bc5 chore: Refactor how OpenSSL processes are started 2024-11-23 17:58:55 +01:00
Magnus Leßmann (@MarkL4YG)
97eea3a20f chore: Make TestOpenSSLCertificateCreator a spring boot test 2024-11-23 17:58:55 +01:00
Magnus Leßmann (@MarkL4YG)
dd2e11c8e8 feat: Move OpenSSL output to custom logger 2024-11-23 17:58:55 +01:00
Magnus Leßmann (@MarkL4YG)
e37348db23 feat: Verify key is unencrypted using two random passphrases 2024-11-23 17:58:55 +01:00
Magnus Leßmann (@MarkL4YG)
693f6c7778 feat: Implement method for checking pKey encryption passphrase 2024-11-23 17:58:55 +01:00
Magnus Leßmann (@MarkL4YG)
8d83cba2cd chore: Fix JDBC driver issues caused by blob incompatibility 
chore: Remove lob annotation from certificate entity
chore: Rename commonName colum to reflect it being in the subject information
chore: Add more verbose logging
chore: Update test to yield actually usefull assertion errors
fix: Delete all items in the repository before running test
- This fixes an issue where non-deterministic test order would cause the #singleElement assertion to fail sometimes
 2024-11-23 11:51:56 +01:00
Magnus Leßmann (@MarkL4YG)
de738b7311 fix: Update build image to 24.04 because of OpenSSL-CLI bug 
chore: Remove now unneeded update step
chore: Align build images in workflows
chore: Add documentation on broken images
chore: Upgrade Ubuntu build image
chore: Add build step to update OpenSSL
 2024-11-23 11:51:56 +01:00
Magnus Leßmann (@MarkL4YG)
d271be988f chore: Add version logging for OpenSSL 2024-11-23 11:51:56 +01:00
Magnus Leßmann (@MarkL4YG)
f2ed523285 feat: Implement support for importing certificates 
chore: Remove obsolete model
wip: Create first working test case for cert import
wip: Generate basic certRequest from given cert files
wip: Start work on being able to import certificates
chore: Update gitignore
 2024-11-23 11:51:56 +01:00
Magnus Leßmann (@MarkL4YG)
b39242baba feat: Tertiary full chain supprt 
- Technically, CAs and intermediate CAs do not use "fullchain" certificates, but it is useful to us to include the entire certificate chain in the leaf certificate
 2024-11-22 12:57:23 +01:00
Magnus Leßmann (@MarkL4YG)
c7f05f1337 feat: Store fullchain certificate information alongside certs 2024-11-22 12:57:23 +01:00
Magnus Leßmann (@MarkL4YG)
e888ea57c1 feat: Implement verification of trust chains in OpenSSLCertificateCreator 2024-11-22 12:57:23 +01:00
Magnus Leßmann (@MarkL4YG)
2b6473929a feat: Implement feature to store symmetric passphrases in DB 2024-11-22 09:48:01 +01:00
Magnus Leßmann (@MarkL4YG)
ac3821c949 feat: Implement new services required or OpenSSL certificate creation 2024-11-22 09:48:01 +01:00
Magnus Leßmann (@MarkL4YG)
196d217bb7 chore: Run spotless 2024-11-22 09:48:01 +01:00
Magnus Leßmann (@MarkL4YG)
2d5f3f72c2 chore: Remove unused field 2024-11-22 09:48:01 +01:00
Magnus Leßmann (@MarkL4YG)
3e4fba83db fix: Renaming issues & re-used usage closing twice 2024-11-22 09:48:01 +01:00
Magnus Leßmann (@MarkL4YG)
1d6bf0facc feat: Allow certification results to be usages 2024-11-22 09:48:01 +01:00
Magnus Leßmann (@MarkL4YG)
fc34320ffd feat: Implement way of retrieving CAs in signing process 2024-11-22 09:48:01 +01:00
Magnus Leßmann (@MarkL4YG)
2608bca428 feat: Use password provider to store certificates encrypted 2024-11-22 09:48:01 +01:00
Magnus Leßmann (@MarkL4YG)
e1a1e80f9f feat: Add mockito for mockBeans in tests 2024-11-22 09:48:01 +01:00
Magnus Leßmann (@MarkL4YG)
edc2bf70c6 chore: Exchange regex flag with group-based flagging 2024-11-19 19:11:54 +01:00
Magnus Leßmann (@MarkL4YG)
1380b39977 feat: Implement certificate fingerprinting on creation 2024-11-19 19:11:54 +01:00
Magnus Leßmann (@MarkL4YG)
d709a59145 feat: Add simple doc file about usecases 2024-11-18 20:42:19 +01:00
Torge Hamann
f1cfce920a Add cert and private key + cert creation service 2024-11-18 15:53:29 +01:00
Magnus Leßmann (@MarkL4YG)
adc973e90d feat: Allow creation of unsigned certs 2024-11-17 23:03:06 +01:00
Magnus Leßmann (@MarkL4YG)
722092588f feat: Basic verify certificate creation in creator 2024-11-17 23:03:06 +01:00
Magnus Leßmann (@MarkL4YG)
9ec619a380 fix: Use correct formatting for alt_names 2024-11-17 23:03:06 +01:00
CybAtax
f870fc1ac6
feat: Certificate request form (#7) 
* wip: first draft cert request

* feat: form for cert request

* fix: add missing fields

* add app bar

* Give alt names list more space

* add missing rules
 2024-11-17 22:48:38 +01:00
Torge Hamann
d98f60ab54
feat: Add basic certificate models and repositories (#8) 
* Add basic certificate models and repositories

* Review comments

* Adjust cert enum
 2024-11-17 21:35:27 +00:00
Torge Hamann
a2aea580f2
test: Fix test db setup and add lombok annotations (#6) 
* Fix test db setup and add lombok annotations

* Formatting
 2024-11-17 20:30:50 +00:00
Torge Hamann
c3da0eff5c
feat: DB adjustments + connection profile (#5) 
* Use persistent database and add datasource

* Change DLL-behaviour for test

* Fix linebreak
 2024-11-17 19:57:39 +00:00
Magnus Leßmann (@MarkL4YG)
4d04fc64aa fix: Remove dummy exception from test 2024-11-17 20:52:16 +01:00
Magnus Leßmann (@MarkL4YG)
caefe964b1 chore: Run spotless 2024-11-17 20:52:16 +01:00
Magnus Leßmann (@MarkL4YG)
ae6c7232c4 feat: Implement capability of signing certs 2024-11-17 20:52:16 +01:00
Magnus Leßmann (@MarkL4YG)
3312710abe fix: Delete tmpDir during cleanup too 2024-11-17 20:52:16 +01:00
Magnus Leßmann (@MarkL4YG)
b5571aa2e5 🚧 Fix issue where cert cleanup fails 
- Delete temp directory using FileTree visitor recursively
- Update CertificateRequestBuilder to accept subject info directly from
  builder
 2024-11-17 20:52:16 +01:00
Magnus Leßmann (@MarkL4YG)
98a6556bf9 🚧 Create method to generate x509 certs 2024-11-17 20:52:16 +01:00