Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vault 11798 vault cli issue intermediate #18467

Merged
merged 36 commits into from Jan 27, 2023
Merged

Vault 11798 vault cli issue intermediate #18467

merged 36 commits into from Jan 27, 2023

Conversation

kitography
Copy link
Contributor

@kitography kitography commented Dec 19, 2022
edited

Add vault client "issue" intermediate CA command (with tests).

kit@kit-Q44CF1473K vault % vault pki issue -issuer_name="thing" /pki_root/issuer/default /pki_int/ common_name="HHUHUHS LSDFS "
Key                               Value
---                               -----
ca_chain                          [-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
 -----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
]
certificate                       -----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
crl_distribution_points           []
issuer_id                         50ee0b6e-b22f-31fc-2e1d-f6ef60faa27d
issuer_name                       thing
issuing_certificates              []
key_id                            4816d259-8c75-2030-0a99-d858542abeb3
leaf_not_after_behavior           err
manual_chain                      <nil>
ocsp_servers                      []
revocation_signature_algorithm    n/a
revoked                           false
usage                             crl-signing,issuing-certificates,ocsp-signing,read-only
kit@kit-Q44CF1473K vault %

@kitography kitography changed the base branch from main to VAULT-11796-vault-cli-list-intermediates December 19, 2022 16:20
kitography and others added 17 commits December 19, 2022 11:22
@kitography
Make fmt. Changelog.
db415cf
@kitography
Error Handling Is Almost A Tutorial
60fe54d
@kitography
What I thought empty issuers response fix would be.
dab9f23
@kitography
Some tests
c258cf0
@kitography
PR-review updates.
77d1351
@kitography
Merge branch 'main' into VAULT-11795-vault-cli-verify-s-ign
500483b
@kitography
make fmt.
be41954
@kitography
Merge branch 'VAULT-11795-vault-cli-verify-s-ign' into VAULT-11796-va…
86e4ea6 
…ult-cli-list-intermediates
@kitography
Fix null response data for listing empty issuers causing a crash.
9f4f9cf
@kitography @stevendpclark
Update command/pki_list_children_command.go
20d96a4 
Fix double specifier

Co-authored-by: Steven Clark <steven.clark@hashicorp.com>
@kitography
Add test for pki_list_children.
87e9dab
@kitography
Fix tests.
4613848
@kitography
Update descriptions for correctness based on PR reviews.
77f79a5
@kitography
make fmt.
42ba023
@kitography
Updates based on PR feedback.
f9ac195
@kitography
Allow multiple arguements (space separated)
90eb1bc
@kitography
Merge branch 'VAULT-11796-vault-cli-list-intermediates' into VAULT-11…
1ebfb25 
…798-vault-cli-issue-intermediate

Allows reusage of test-updates.  Need output magic.
@kitography kitography changed the base branch from VAULT-11796-vault-cli-list-intermediates to main January 27, 2023 15:44
@kitography kitography added this to the 1.13.0-rc1 milestone Jan 27, 2023
cipherboy
cipherboy reviewed Jan 27, 2023
View reviewed changes
Copy link
Contributor

@cipherboy cipherboy left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Just some thoughts before the weekend.

command/pki_issue_intermediate.go Outdated Show resolved Hide resolved
command/pki_issue_intermediate.go Outdated Show resolved Hide resolved
command/pki_issue_intermediate.go Outdated Show resolved Hide resolved
stevendpclark
stevendpclark approved these changes Jan 27, 2023
View reviewed changes
Copy link
Contributor

@stevendpclark stevendpclark left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍

@kitography kitography merged commit 958a1c2 into main Jan 27, 2023
@kitography kitography deleted the VAULT-11798-vault-cli-issue-intermediate branch January 27, 2023 21:41
jayant07-yb pushed a commit to jayant07-yb/hashicorp-vault-integrations that referenced this pull request Mar 15, 2023
@kitography @cipherboy @stevendpclark
Vault 11798 vault cli issue intermediate (hashicorp#18467)
5f2949c 
* The verify-sign command in it's cleanest existing form.

* Working state

* Updates to proper verification syntax

Co-authored-by: 'Alex Scheel' <alex.scheel@hashicorp.com>

* make fmt

* Git CI caught some stuff.

* Base functionality.

* make fmt; changelog

* pki issue command.

* Make fmt. Changelog.

* Error Handling Is Almost A Tutorial

* What I thought empty issuers response fix would be.

* Some tests

* PR-review updates.

* make fmt.

* Fix null response data for listing empty issuers causing a crash.

* Update command/pki_list_children_command.go

Fix double specifier

Co-authored-by: Steven Clark <steven.clark@hashicorp.com>

* Add test for pki_list_children.

* Fix tests.

* Update descriptions for correctness based on PR reviews.

* make fmt.

* Updates based on PR feedback.

* Allow multiple arguements (space separated)

* Remove bad merge-thing.

* White-space hell fix change.

* Tests, and return information for issue ca

* Fix make fmt error introduced here: hashicorp#18876

* Update command/pki_issue_intermediate.go

Puncutation.

Co-authored-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Remove smart quotes for standard quotes.

* More information as part of the help text.

* Better help text.

* Add missing "/" into error message.

---------

Co-authored-by: 'Alex Scheel' <alex.scheel@hashicorp.com>
Co-authored-by: Steven Clark <steven.clark@hashicorp.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@stevendpclark stevendpclark stevendpclark approved these changes

@cipherboy cipherboy Awaiting requested review from cipherboy

Assignees
No one assigned
Labels
core/cli cryptosec
Projects
None yet
Milestone
1.13.0-rc1
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@kitography @cipherboy @stevendpclark