certificates
certificates copied to clipboard
smallstep
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
### What would you like to be added I would like the option to specify a specific dns server to resolve host names for an acme provisioner. ### Why this...
- [ ] write build & nfpm config in GoReleaser - [ ] bundle the systemd service unit; should support systemd 229+ Here's a starting point for the nfpm configuration:...
### Description Please describe your pull request. 💔Thank you!
### Description PR https://github.com/smallstep/certificates/pull/871 changed the default renewBefore, to be based on the time until the next renewal, instead of the full validity of the certificate. This works ok when...
`step-ca` currently has an OpenID Connect provisioner, but not all Identity Providers support OIDC. SAML is the other major SSO protocol used in enterprise, and it would be nice if...
### What would you like to be added Provisioner: Is it possible to add ldaps support (Active Directory) with filter function. SSH User certificates: If a user is a member...
### What would you like to be added Make config options like 'minTLSCertDuration' capable of dealing with 'd' (days), 'w' (weeks) and 'y' (years). ### Why this is needed ATM...
This PR reduces boilerplate and addresses error handling in the `api` package and its sub-packages..
### Description This resolves https://github.com/smallstep/certificates/issues/688 and enables users to perform a normal upgrade of smallstep, and the new schema will be migrated to. At which point users can begin to...
Right now, to use custom OIDs you have to add a base64-encoded asn.1 value to the template. There's no way in the template engine to generate these values, so the...