Updated description of docker deployment to include passing the
docker network to anchor so certificate requests can pass
validation.
Change-Id: Ib93e0b4806f919da1d33658f2a2ab38b81fdb4d8
This commit removes the key generation stage of building Anchor
containers. When a container is started it will look for a key in a
docker volume named '/key' if there is a correctly formatted key it will
attempt to use it. If not it will generate one before starting normal
operations.
Change-Id: I569f0fe07171faeed0cffc7c87f3075a094ec811
error info of "tox -e docs" is below
doc/source/signing_backends.rst:74: D003 Tabulation used for indentation
doc/source/signing_backends.rst:75: D003 Tabulation used for indentation
doc/source/signing_backends.rst:76: D003 Tabulation used for indentation
doc/source/signing_backends.rst:77: D003 Tabulation used for indentation
doc/source/signing_backends.rst:52: D001 Line too long
This patch correct it
Closes-Bug: #1664796
Change-Id: I55798c2823f8a98ae7bfee0612c3a2639b4ca8d5
Many deprecations are triggered early (on imports, for example).
To make sure all DeprecationWarning messages are emitted we enable
them via the PYTHONWARNINGS environment variable.
Change-Id: Ib61fa1f8dfdf0aa4c0e23d7472058244d6b66c53
Now that there exists only a gate job for Python 3.5 and not 3.4,
we should remove those references to the 3.4 that is untested.
Change-Id: I03caf829a7b1a07345bb29f07629c575fdab22a9
This installs stuff in the right places to run anchor from the
included startup scripts. The config is installed into /etc/anchor
This will work from within a venv or without.
The anchor config.py file has been moved into the project package
so that it will install with the other stuff. Eventually we should
strip it out as much as possible and move the details into the JSON
file.
Change-Id: Iffaa7669ce8118fbd41011f9e965704c2ad51b44
In Python 3 __ne__ by default delegates to __eq__ and inverts the
result, but in Python 2 they urge you to define __ne__ when you
define __eq__ for it to work properly [1].There are no implied
relationships among the comparison operators. The truth of x==y
does not imply that x!=y is false. Accordingly, when defining __eq__(),
one should also define __ne__() so that the operators will behave
as expected.
[1]https://docs.python.org/2/reference/datamodel.html#object.__ne__
Change-Id: Iebabc4deea0aadbec4e73aae52e78bfd84209379
Jenkins was failing when coverage report was getting gererated
as coverage combine deletes the reports and essentially and thus
was failing with the message no data found. This patch fixes it
Change-Id: I83ba65eff80181f06e712ea0a75e97919edf50ae
Now that there is a passing gate job, we can claim support for
Python 3.5 in the classifier. This patch also adds the convenience
py35 venv.
Change-Id: If31d87617e59c1fd59da183ac56148d32ef54b6d
Original validator checked for domain labels as defined by RFC1034, however real
internet deals with other domains as well - starting with digits or symbols.
This change allows modifying the pattern to allow custom / relaxed rules.
Validation has been removed from adding a domain to a new extension, since it's
only used in fixups and the domain should be already validated. (or not, if not
configured)
Closes-bug: 1592489
Change-Id: Ib453054ba5f554bab28cff392c539e713fa28918
The request / key files mentioned in the README for initial tests can be
ignored. Prevents accidental commits.
Change-Id: I4296be10697c48b2f5c27469ff304d57abf63bbc
On some systems openssl still defaults to sha1 in new certificate requests,
which is rejected by Anchor. Force sha256 in all examples instead.
Change-Id: I0c673392c7f6badd7d66c307ace594b1d711674d
For known, but deprecated algorithms (md{2,4,5}, sha1), log a better message
rather than just the OID of the rejected algorithm.
Change-Id: I004cbfe486657a80f482e506e4e1fc9396564391
Standards validation was correct, but could use a better error message. That
will follow in later commits.
This reverts commit 87d9da87b4.
Change-Id: Ib5fa6ffcdba879c4eabff513ee2b09a41271bebf
Standards validation is failing using the examples in the readme,
until this can be fixed and added to the tests, disabling
standards validation.
Change-Id: Ia22e2c2923c118321911c127bb4d46e50bca408b