Age | Commit message (Collapse) | Author | Files | Lines |
|
Adding a disable_tls flag to allow
running the service in tests and other
non production environments. Also,
CSIT tests may not support TLS tests
Issue-ID: AAF-189
Change-Id: I936b3b887104f2b041a8c73909951a25494eebeb
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adds a test case for create domain interface
Change-Id: I198d4e91845753ca359330c367180bd3a3732f30
Issue-ID: AAF-183
Signed-off-by: Manjunath Ranganathaiah <manjunath.ranganathaiah@intel.com>
|
|
Added support for running system level code coverage tasks
Updated sms.go to allow graceful shutdown when it
gets a SIGINT. Useful for gather coverage information.
Issue-ID: AAF-192
Change-Id: Ife4a485e7926fd59948bf90fac4b2d4ea9de0332
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding build commands within the bash script
This will then be called in the nightly docker
push
Issue-ID: AAF-100
Change-Id: Iab29de26c7f9feac1b3f76666f1674ad7a267da8
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding PGP decrypt function to auth.
This can be used by quorum client in its code for decryption
Issue-ID: AAF-165
Change-Id: I6d236c3164ccb93c11527ac8c2e725987236f9f0
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding the necessary bash scripts to be called for docker build
These will be called by the jenkins job for the nightly docker build
Issue-ID: AAF-100
Change-Id: Iae0c095d44849ae65583247fc7026f313d1ee0b7
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Making the build static is good for deployment on a container.
There is no need to worry about installing dependencies and so on.
Issue-ID: AAF-182
Change-Id: I6bb34ccae423886d9154b2a713b81911f739e9ff
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Use returned values of map for datatype variables.
Change-Id: I3829eab81e5e573505efff68970bd3495b7a92f0
Issue-ID: AAF-98
Signed-off-by: Manjunath Ranganathaiah <manjunath.ranganathaiah@intel.com>
|
|
Instead of sending JSONArray, retrun JSON object
for consistency and client processing
Issue-ID: AAF-172
Change-Id: I17d2e2c2865a817c8016987f998c87259413f306
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Added a few different values in map that are of different
datatypes
Sorted the import statements and grouped by function
Issue-ID: AAF-98
Change-Id: Ibe9f3188b1373c10275ea4aa4817eca789680b91
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Using an embedded lock instead of an explicit variable
Issue-ID: AAF-92
Change-Id: Ia7bd43a40ec50664b042afa9e46091f14122ba5c
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Change-Id: I245302bc125515269be948bb8b6874a7d3cb5367
Issue-ID: AAF-98
Signed-off-by: Manjunath Ranganathaiah <manjunath.ranganathaiah@intel.com>
|
|
Using golang init is creating log files in various folders
when tests are run.
Moved to Init which is called my server initialization.
Issue-ID: AAF-148
Change-Id: Ia05fa1ed1841fd6a98852329ab031372f6489ad6
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding a couple of functions to support PGP key generation
and using said keys to initialise vault.
Issue-ID: AAF-165
Change-Id: Ic65f8157f125005d544bbf8dede184bd282a5357
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding updated unit tests for handler.go
They needed to be fleshed out based on the handler implementation
Issue-ID: AAF-131
Change-Id: Id161faef7500947d858e99b9648f951bc1e54e09
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
URL is now a command line parameter for endpoint tests
Issue-ID: AAF-161
Change-Id: I6f740ad5cbbd3c73ee7e9a4556acef360a1aefa5
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Building Dockerfile for SMS containerization - implemented review comments Issue-ID: AAF-147
Change-Id: I85030f461d6242d0bd4358dce7ac3b6d86edfd22
Signed-off-by: vamshi.nemalikonda <vn00480215@techmahindra.com>
|
|
Updated Quorum client with correct url
of sms service and tls configuration,urls with https
Change-Id: Ifb957497426b5a1fa085bcc7f300e09de34dade4
Issue-ID: AAF-130
Signed-off-by: giri <hg0071052@techmahindra.com>
|
|
Adding endpoint tests that use curl and some dummy data
to exercise the various endpoints that are deployed
Issue-ID: AAF-161
Change-Id: I522216ac790db10a68f4d2af8e845d7526b9fa48
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Updating the json encoding to use Marshal
This is to allow us to set the right return Header type
and also return the right status codes
Issue-ID: AAF-160
Change-Id: Ib260e5b8306b16069c57f6b83efcf401747ff2b6
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Currently errors are being written out to the screen
Log them to a log file with the appropriate prefix instead
This uses the sms/log framework for logging
Issue-ID: AAF-159
Change-Id: Ib4f4dbc87fa4b1ee92ed1055de94f8324bd1a192
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Renamed config file to template file
Template file needs to be renamed on server side with
local customizations before server start
Issue-ID: AAF-157
Change-Id: I8a6004774fc8fabaa96d130f3d17c38f74453b11
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Unseal backend support is now added.
The quorum client will use this api to unseal/initialize the backend
storage service
Issue-ID: AAF-156
Change-Id: Ic2726e9a5ca351912a16c3ec911d03e400233277
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Role initialization should not depend on vault state
SMS start is independent of vault state
Any calls to SMS will fail since backend is not active yet
Issue-ID: AAF-155
Change-Id: I810eb145b4eab4717dede12e79880aced08caaa2
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Updating API documentation to add login, status and unseal end points
Issue-ID: AAF-121
Change-Id: I073d970aa779353a34236e61692ca67f380084b6
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding a framework for logging
We will add other logging integrations into this framework
Issue-ID: AAF-148
Change-Id: Ia16d1ddf4c24a5e2f957c429aff23970d081ccc4
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Using constant names instead of numbers
Removed an unused handler
Issue-ID: AAF-99
Change-Id: I16101576daee140acd40c3db906dd22289d71188
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Quorum client is used to check the
status of the vault and unseal if found sealed
Change-Id: I113fd64ee8a3ed97b2c445f9a27d7352dc86aaaf
Issue-ID: AAF-130
Signed-off-by: giri <hg0071052@techmahindra.com>
|
|
Adding deletedomain implementation in vault.go
This is a silent command and will not return any error
if the domain to be deleted does not exist
Issue-ID: AAF-144
Change-Id: Iff97a1a5be7415cd0c7ebb2894f16348718e2839
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Initializing the pointer before using it in JSON
decode. This was not erroring out before, but this
is the right usage.
Issue-ID: AAF-145
Change-Id: I9a4f8adbe946e896112a8fbef2a84b790578f780
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Server startup is silent when there are errors
Making server startup more informative in cases
where errors are encountered.
Issue-ID: AAF-146
Change-Id: Iec9a44d0d10813cf77aef69dbfd5fd50eea10dbc
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
|
|
A GET HTTP request on domainname/secret will now list
all the secret names stored in that domain
The content of the secrets are not returned here.
Issue-ID: AAF-140
Change-Id: I0e0491f642e1ff82f11cb90a93df4a71393bc5ac
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Adding deletesecret functionality in backend and handler
Issue-ID: AAF-142
Change-Id: I09dfc78af72dff1d60ce25cc22053d72948f7433
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Check to see if approle is not already enabled
before enabling it. This prevents error messages on
the vault server side
Issue-ID: AAF-141
Change-Id: Ic5a0401f72385fb66d19d34da2ab38ea57ea44bc
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Completing getsecret backend implementation and handler call
Also adding in checktoken call before secret is read from vault
Issue-ID: AAF-137
Change-Id: Ia987af51c039290d1a06b7e2b4a8aa6a63e469c6
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Implementaion code added for createsecret method
Updated handler.go to check return value from createsecret
Added checktoken before write secret
Issue-ID: AAF-126
Change-Id: Ia46a0f1be5904072da74e04d123f88b09b46ed69
Signed-off-by: vamshi.nemalikonda <vn00480215@techmahindra.com>
|
|
Secret domain creation and secret creation is controlled
using approle authentication within the sms service
A temporary token with a short ttl is created and used
for adding domains and secrets into vault right now
Root token is used only once during the initial bring up
Also fixing unit test for backend.go
Issue-ID: AAF-99
Change-Id: I1352dadb32b54caaef86c7795601bf04d657dc3b
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
This project
will contain the quorum client implementation
Change-Id: Iee88ae20b0b47b04717d8409ade9340db225556d
Issue-ID: AAF-127
Signed-off-by: Girish <hg0071052@techmahindra.com>
|
|
Adding Unit Test case auth_test.go and auth_test.cert file for testing auth.go
Change-Id: I68611f2b17a9f37618cbc5ef8db11e6fb632b910
Issue-ID: AAF-122
Signed-off-by: Havaldar Girish <hg0071052@techmahindra.com>
|
|
Added unit tests for backend, vault, config and handler
Updated the makefile to call the tests when build target is invoked
Issue-ID: AAF-118
Change-Id: Id9b719a0e2b46070867a7fcbae34b83d19ef3282
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Auth package should return an error to the calling function
instead of erroring out with log.Fatal
Issue-ID: AAF-99
Change-Id: I9f1abd3710a85df85ac6e1d623dc16d77b977f1a
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
API Document was old
Updated with latest
Issue-ID: AAF-121
Change-Id: Ifea35d2aad6e7d52fe73d02984e6d11b6cd89831
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Adding a Makefile to allow easier builds and for jenkins integration
jenkins jjb will call make build, make deploy and so on
Makefile resides along with the main application go file
Issue-ID: AAF-117
Change-Id: Ibf4413a26d5572703bea122d3d0db83f4c35ae88
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Refactored code and moved some structs from handler to backend
Completed the interface that is part of the backend
Currently, the interface implementation is empty and will need to be fleshed out
Issue-ID: AAF-99
Change-Id: I0083bc9d7ce7f6e5294339bf1e270b90c1b3de29
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Includes a directory stucture for all the current components
The implemented code establishes a mTLS connection to client
and serves a GET status request
Other requests and handlers will come in future patches
Issue-ID: AAF-102
Change-Id: Ib3bca066586d23330b10550f83772ab11aacabc7
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
|