Skip to content

Releases: 18F/identity-pki

RC 15

10 Feb 17:13
@mitchellhenke mitchellhenke
2021-02-10T171254
175e820
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 15

RC 15

Improvements/Changes

  • Allow HTTP requests to CA issuer to fetch missing intermediate certificates (LG-4037) (#197)
  • Remove retired SSA certificate (#198)
  • Update nokogiri to patch vulnerability (#199)

Behind the scenes bug fixes users probably won't notice

  • Upgrade to Rails 6 (LG-3770) (#173)
  • Rake task to look for replacement certs (LG-3932) (#200)
Assets 2

RC 14

14 Jan 21:07
@solipet solipet
2021-01-14T210740
This tag was signed with the committer’s verified signature.
solipet Doug Price
GPG key ID: C289743E7CC68F3B
Learn about vigilant mode.
823d88e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 14

RC 14

Improvements/Changes

  • Bump thin gem from 1.7.2. to 1.8.0 (#174)
  • Alert on expired cert when walking chain (#185)
  • Cert health check can use duration syntax for deadline param (#188)
  • Remove expiring DHS CA4 cert (#187)
  • Replace expiring NASA cert (LG-3988) (#189)
  • Put each NASA PEM in its own file, remove expiring one (#190)
  • Map piv/cac to the Federal Bridge CA if using valid policy OIDs (#193)
  • Update CertificateChainService (#195)
Assets 2

RC 13

21 Dec 17:14
@mitchellhenke mitchellhenke
2020-12-21T171254
f4c113a
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 13

RC 13

Improvements/Changes

  • Add check for certificates expiring within 30 days (#179)
  • Add certificates health check endpoint (#181)

Bug Fixes Users Might Notice

  • Fall back to Certificate Revocation Lists if there is a parsing or timeout error from Online Certificate Status Protocol (OCSP) servers (#184)
Assets 2

RC 10

22 Sep 20:11
@solipet solipet
2020-09-22T200920
This tag was signed with the committer’s verified signature.
achapm Aaron Chapman
GPG key ID: 19EB5DF57B4AD5F0
Learn about vigilant mode.
80de14d
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 10

RC 10]

Improvements/Changes

  • LG-3167: Send is_auth_cert in token for HSDPD-12 (#159)
Assets 2

RC 11

22 Sep 20:15
@achapm achapm
2020-09-22T201505
This tag was signed with the committer’s verified signature.
achapm Aaron Chapman
GPG key ID: 19EB5DF57B4AD5F0
Learn about vigilant mode.
80de14d
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 11 Pre-release
Pre-release

Improvements/Changes

  • LG-873 Add x509_issuer to piv/cac response data for OIDC
  • Add updated certs for Treasury and State (LG-3513) (#164)
  • Update .gitignore to allow .pem files (#166)
  • Remove reek (#165)
  • Certificate Chain Service (#167)
Assets 2

RC 9

22 Jul 19:28
@achapm achapm
2020-07-22T192624
This tag was signed with the committer’s verified signature.
achapm Aaron Chapman
GPG key ID: 19EB5DF57B4AD5F0
Learn about vigilant mode.
6ac3e37
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 9

Features

  • None

Bugs and Enhancements

  • Update newrelic to use gov endpoint (#156)

PIV/CAC Issuing Certificates

  • LG-3043: map bridge certs (#154)
Assets 2

RC 8

08 Jun 21:25
@achapm achapm
2020-06-08T212256
This tag was signed with the committer’s verified signature.
achapm Aaron Chapman
GPG key ID: 19EB5DF57B4AD5F0
Learn about vigilant mode.
a01c3a9
Compare
Choose a tag to compare
RC 8

Features

None

Bugs and Enhancements

  • Expand bundled certs into repo #144
  • Bump websocket-extensions from 0.1.4 to 0.1.5 #149
  • Bump puma from 3.12.4 to 3.12.6 #150

PIV/CAC Issuing Certificates

  • Add DOD missing certs #151
Assets 2

RC 7

28 Jan 18:07
@jgsmith-usds jgsmith-usds
2019-01-28T175006
This tag was signed with the committer’s verified signature. The key has expired.
jgsmith-usds James G Smith
GPG key ID: 527663C8B3586FE3
Expired
Learn about vigilant mode.
407f97f
Compare
Choose a tag to compare
RC 7

Features

  • Support OID Chaining #65

Bugs and Enhancements

  • Restore caching of OCSP revocations #63

PIV/CAC Issuing Certificates

None

Assets 2

RC 6

07 Jan 14:52
@jgsmith-usds jgsmith-usds
2019-01-07T144927
This tag was signed with the committer’s verified signature. The key has expired.
jgsmith-usds James G Smith
GPG key ID: 527663C8B3586FE3
Expired
Learn about vigilant mode.
aa611e6
Compare
Choose a tag to compare
RC 6

Features

  • Validate issuing certs only on-demand rather than at startup
  • Cache OCSP responses for a short time
Assets 2

RC 4

03 Dec 15:43
@jgsmith-usds jgsmith-usds
2018-11-26T153732
This tag was signed with the committer’s verified signature. The key has expired.
jgsmith-usds James G Smith
GPG key ID: 527663C8B3586FE3
Expired
Learn about vigilant mode.
b4c8efc
Compare
Choose a tag to compare
RC 4

Features

Bugs and Enhancements

  • Support proxies in deployed environments #46, #47
  • Update gems to avoid potential security issues #44, #48

PIV/CAC Issuing Certificates

  • Remove revoked RRB certificate
  • Add additional State certificates
Assets 2