d725d7d249
feat: Read notBefore/After and serial from x509 command
...
- Added notBefore/After to the DB entity
- API changed to a command output oriented record instead of the certificate request object to separate concerns
2024-12-28 09:48:49 +01:00
cdd82443b0
chore: Apply IntelliJ quickfix about Data generator being discouraged
2024-12-28 09:48:47 +01:00
1b3600a1c9
chore: Define JS engine requirements in package.json
2024-12-28 09:30:06 +01:00
0cac57dd15
feat: Allow some OpenSSL commands to happen inline
...
- This reduces the number of disk reads/writes and allows for less potential IOExceptions
2024-11-24 13:50:46 +01:00
6b1c969ce6
feat: Implement import of CA bundles to keystores
2024-11-24 13:50:46 +01:00
a4f495ab91
feat: Allow import of trust-only certificates
...
- These certificates do not have keys, because they are solely for trusting them.
- Also more rigorously verify arguments passed to OpenSSL
2024-11-24 13:50:46 +01:00
286c9dcf28
feat: Unify Trust- and KeyStoreManager services
2024-11-24 13:50:46 +01:00
335eb3ed8d
experiment: Increase logging based on PR label
2024-11-23 22:10:20 +01:00
fc4ea17cf3
chore: Rename certificate information to be more versatile to use
2024-11-23 22:10:20 +01:00
f1135c54fa
chore: Rename OpenSSLCertificateCreator to OpenSSLService
2024-11-23 22:10:20 +01:00
938101db8f
chore: Refactor services
...
- OpenSSL and Truststore services should not be Beans by default
- Instead, they are using auto configurations to register the beans
2024-11-23 22:10:20 +01:00
8856d8773e
feat: Implement Truststore/Keystore creation ( #17 )
...
* feat: Implement Truststore/Keystore creation
* feat: Update ordering of certificate chains to match what JDK demands
* feat: Implement creating trust- and keystores from certs :)
2024-11-23 20:24:43 +01:00
861b7469d2
chore: Update termination/exception handling
2024-11-23 17:58:55 +01:00
f6eacd4d6d
fix: Check exit code of signing command
2024-11-23 17:58:55 +01:00
a059a60886
chore: Kill genCert on error
...
- Because apparently it can run into an infinite loop when there are pKey issues
2024-11-23 17:58:55 +01:00
003b9915a3
chore: Reduce logging noise from DB
2024-11-23 17:58:55 +01:00
8cd8963bca
fix: Retry cleanup again on system exit
2024-11-23 17:58:55 +01:00
8ef6234bc5
chore: Refactor how OpenSSL processes are started
2024-11-23 17:58:55 +01:00
97eea3a20f
chore: Make TestOpenSSLCertificateCreator a spring boot test
2024-11-23 17:58:55 +01:00
dd2e11c8e8
feat: Move OpenSSL output to custom logger
2024-11-23 17:58:55 +01:00
e37348db23
feat: Verify key is unencrypted using two random passphrases
2024-11-23 17:58:55 +01:00
693f6c7778
feat: Implement method for checking pKey encryption passphrase
2024-11-23 17:58:55 +01:00
8d83cba2cd
chore: Fix JDBC driver issues caused by blob incompatibility
...
chore: Remove lob annotation from certificate entity
chore: Rename commonName colum to reflect it being in the subject information
chore: Add more verbose logging
chore: Update test to yield actually usefull assertion errors
fix: Delete all items in the repository before running test
- This fixes an issue where non-deterministic test order would cause the #singleElement assertion to fail sometimes
2024-11-23 11:51:56 +01:00
de738b7311
fix: Update build image to 24.04 because of OpenSSL-CLI bug
...
chore: Remove now unneeded update step
chore: Align build images in workflows
chore: Add documentation on broken images
chore: Upgrade Ubuntu build image
chore: Add build step to update OpenSSL
2024-11-23 11:51:56 +01:00
d271be988f
chore: Add version logging for OpenSSL
2024-11-23 11:51:56 +01:00
f2ed523285
feat: Implement support for importing certificates
...
chore: Remove obsolete model
wip: Create first working test case for cert import
wip: Generate basic certRequest from given cert files
wip: Start work on being able to import certificates
chore: Update gitignore
2024-11-23 11:51:56 +01:00
b39242baba
feat: Tertiary full chain supprt
...
- Technically, CAs and intermediate CAs do not use "fullchain" certificates, but it is useful to us to include the entire certificate chain in the leaf certificate
2024-11-22 12:57:23 +01:00
c7f05f1337
feat: Store fullchain certificate information alongside certs
2024-11-22 12:57:23 +01:00
e888ea57c1
feat: Implement verification of trust chains in OpenSSLCertificateCreator
2024-11-22 12:57:23 +01:00
2b6473929a
feat: Implement feature to store symmetric passphrases in DB
2024-11-22 09:48:01 +01:00
ac3821c949
feat: Implement new services required or OpenSSL certificate creation
2024-11-22 09:48:01 +01:00
196d217bb7
chore: Run spotless
2024-11-22 09:48:01 +01:00
2d5f3f72c2
chore: Remove unused field
2024-11-22 09:48:01 +01:00
3e4fba83db
fix: Renaming issues & re-used usage closing twice
2024-11-22 09:48:01 +01:00
1d6bf0facc
feat: Allow certification results to be usages
2024-11-22 09:48:01 +01:00
fc34320ffd
feat: Implement way of retrieving CAs in signing process
2024-11-22 09:48:01 +01:00
2608bca428
feat: Use password provider to store certificates encrypted
2024-11-22 09:48:01 +01:00
e1a1e80f9f
feat: Add mockito for mockBeans in tests
2024-11-22 09:48:01 +01:00
edc2bf70c6
chore: Exchange regex flag with group-based flagging
2024-11-19 19:11:54 +01:00
1380b39977
feat: Implement certificate fingerprinting on creation
2024-11-19 19:11:54 +01:00
d709a59145
feat: Add simple doc file about usecases
2024-11-18 20:42:19 +01:00
Torge Hamann
f1cfce920a
Add cert and private key + cert creation service
2024-11-18 15:53:29 +01:00
adc973e90d
feat: Allow creation of unsigned certs
2024-11-17 23:03:06 +01:00
722092588f
feat: Basic verify certificate creation in creator
2024-11-17 23:03:06 +01:00
9ec619a380
fix: Use correct formatting for alt_names
2024-11-17 23:03:06 +01:00
CybAtax
f870fc1ac6
feat: Certificate request form ( #7 )
...
* wip: first draft cert request
* feat: form for cert request
* fix: add missing fields
* add app bar
* Give alt names list more space
* add missing rules
2024-11-17 22:48:38 +01:00
Torge Hamann
d98f60ab54
feat: Add basic certificate models and repositories ( #8 )
...
* Add basic certificate models and repositories
* Review comments
* Adjust cert enum
2024-11-17 21:35:27 +00:00
Torge Hamann
a2aea580f2
test: Fix test db setup and add lombok annotations ( #6 )
...
* Fix test db setup and add lombok annotations
* Formatting
2024-11-17 20:30:50 +00:00
Torge Hamann
c3da0eff5c
feat: DB adjustments + connection profile ( #5 )
...
* Use persistent database and add datasource
* Change DLL-behaviour for test
* Fix linebreak
2024-11-17 19:57:39 +00:00
4d04fc64aa
fix: Remove dummy exception from test
2024-11-17 20:52:16 +01:00
