-
Notifications
You must be signed in to change notification settings - Fork 3
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #31 from Keyfactor/checksum-build-action
role domain fix, cleanup
- Loading branch information
Showing
32 changed files
with
1,101 additions
and
147 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,12 @@ | ||
# See GitHub's documentation for more information on this file: | ||
# https://docs.github.com/en/code-security/supply-chain-security/keeping-your-dependencies-updated-automatically/configuration-options-for-dependency-updates | ||
version: 2 | ||
updates: | ||
- package-ecosystem: "github-actions" | ||
directory: "/" | ||
schedule: | ||
interval: "daily" | ||
- package-ecosystem: "gomod" | ||
directory: "/" | ||
schedule: | ||
interval: "daily" |
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,19 @@ | ||
name: Keyfactor Bootstrap Workflow | ||
|
||
on: | ||
workflow_dispatch: | ||
pull_request: | ||
types: [opened, closed, synchronize, edited, reopened] | ||
push: | ||
create: | ||
branches: | ||
- 'release-*.*' | ||
|
||
jobs: | ||
call-starter-workflow: | ||
uses: keyfactor/actions/.github/workflows/starter.yml@v2 | ||
secrets: | ||
token: ${{ secrets.V2BUILDTOKEN}} | ||
APPROVE_README_PUSH: ${{ secrets.APPROVE_README_PUSH}} | ||
gpg_key: ${{ secrets.KF_GPG_PRIVATE_KEY }} | ||
gpg_pass: ${{ secrets.KF_GPG_PASSPHRASE }} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,4 +1,10 @@ | ||
.vs/* | ||
vaultSecretsEngine-update.zip | ||
*.zip | ||
vault/plugins/* | ||
*.sh | ||
*.exe | ||
keyfactor | ||
Keyfactor Vault Secrets Engine Guide.docx | ||
Makefile | ||
sample_config.json | ||
README.md |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,93 @@ | ||
# Visit https://goreleaser.com for documentation on how to customize this | ||
# behavior. | ||
before: | ||
hooks: | ||
# this is just an example and not a requirement for provider building/publishing | ||
- go mod tidy | ||
builds: | ||
- env: | ||
# goreleaser does not work with CGO, it could also complicate | ||
# usage by users in CI/CD systems like Terraform Cloud where | ||
# they are unable to install libraries. | ||
- CGO_ENABLED=0 | ||
mod_timestamp: '{{ .CommitTimestamp }}' | ||
flags: | ||
- -trimpath | ||
ldflags: | ||
- '-s -w -X main.version={{.Version}} -X main.commit={{.Commit}}' | ||
goos: | ||
- freebsd | ||
- windows | ||
- linux | ||
- darwin | ||
goarch: | ||
- amd64 | ||
- '386' | ||
- arm | ||
- arm64 | ||
ignore: | ||
- goos: darwin | ||
goarch: '386' | ||
- goos: freebsd | ||
goarch: 'arm64' | ||
binary: 'keyfactor' | ||
id: "keyfactor" | ||
main: './cmd/keyfactor' | ||
hooks: | ||
post: | ||
# - cmd: sh -c "echo $(echo -n '{{split .Target "_"}}'; echo -ne "\t"; sha256sum {{.Path}} | cut -d ' ' -f 1,2) >> binary_checksums.txt" | ||
- cmd: sh -c "echo $(echo -n '{{.Os}} '; echo -n '{{.Arch}} '; sha256sum {{.Path}} | cut -d ' ' -f 1,2) >> binary_checksums.txt" | ||
dir: './dist' | ||
archives: | ||
- format: zip | ||
name_template: '{{ .ProjectName }}_{{ .Version }}_{{ .Os }}_{{ .Arch }}' | ||
checksum: | ||
name_template: '{{ .ProjectName }}.{{ .Version }}.sha256' | ||
algorithm: sha256 | ||
signs: | ||
- artifacts: checksum | ||
args: | ||
# if you are using this in a GitHub action or some other automated pipeline, you | ||
# need to pass the batch flag to indicate its not interactive. | ||
- "--batch" | ||
- "--local-user" | ||
- "{{ .Env.GPG_FINGERPRINT }}" # set this environment variable for your signing key | ||
- "--output" | ||
- "${signature}" | ||
- "--detach-sign" | ||
- "${artifact}" | ||
release: | ||
prerelease: auto | ||
extra_files: | ||
- glob: 'installation.txt' | ||
- glob: 'LICENSE.txt' | ||
- glob: './dist/binary_checksums.txt' | ||
# If you want to manually examine the release before its live, uncomment this line: | ||
draft: true | ||
changelog: | ||
sort: asc | ||
use: github | ||
filters: | ||
exclude: | ||
- '^test:' | ||
- '^chore' | ||
- 'merge conflict' | ||
- Merge pull request | ||
- Merge remote-tracking branch | ||
- Merge branch | ||
- go mod tidy | ||
groups: | ||
- title: Dependency updates | ||
regexp: "^.*(feat|fix)\\(deps\\)*:+.*$" | ||
order: 300 | ||
- title: 'New Features' | ||
regexp: "^.*feat[(\\w)]*:+.*$" | ||
order: 100 | ||
- title: 'Bug fixes' | ||
regexp: "^.*fix[(\\w)]*:+.*$" | ||
order: 200 | ||
- title: 'Documentation updates' | ||
regexp: "^.*docs[(\\w)]*:+.*$" | ||
order: 400 | ||
- title: Other work | ||
order: 9999 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,5 @@ | ||
{ | ||
"files.associations": { | ||
"*.yaml": "home-assistant" | ||
} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,18 @@ | ||
- 1.3.1 | ||
- Fix for issue where plugin was not enforcing plugin-side role limitations for AllowedDomains and AllowSubDomains, and was relying exclusively on the certificate template for these values. | ||
|
||
- 1.3.0 | ||
- Fix for double encoding certificates when viewed in the terminal. | ||
|
||
- 1.2.0 | ||
- Updated the plugin to use it's own internal configuration settings storage per instance. | ||
|
||
- 1.1.0 | ||
- added subject parameters to certificate enrollment | ||
- now defaulting to role values for subject parameters if not provided. | ||
|
||
- 1.0.1 | ||
- This release fixes a bug where the CA logical name was not being URL encoded before sending the request to Keyfactor. | ||
|
||
- 1.00 | ||
- initial release |
Binary file not shown.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,6 @@ | ||
Copyright 2024 Keyfactor | ||
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. | ||
You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 | ||
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, | ||
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions | ||
and limitations under the License. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.