- 03 Feb, 2021 5 commits
-
-
Vincent Pelletier authored
datetime.datetime.fromtimestamp applies timezones, which is unintended. Fixes a time drift on revoked certificates.
-
Vincent Pelletier authored
-
Vincent Pelletier authored
Also, this provides a handy location to log all queries when debugging. Also, some minor cleanups.
-
Vincent Pelletier authored
So they can be reused for more PEM-encoded types.
-
Vincent Pelletier authored
-
- 02 Feb, 2021 10 commits
-
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
Vincent Pelletier authored
Because this is not the job of an import/export tool.
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
Vincent Pelletier authored
Tests are supposed to help spot errors, and caucased access traces help with this too.
-
Vincent Pelletier authored
So that stdout may be more reliably used for scripting.
-
Vincent Pelletier authored
bad-option-value has an effect on the "disable" line, but somehow none on the "enable" line. So remove it altogether.
-
- 01 Feb, 2021 4 commits
-
-
Vincent Pelletier authored
python2.7 with pylint 1.9.5 python3.9 with pylint 2.6.0 Also, reduce the script of unused argument silencing.
-
Vincent Pelletier authored
-
Vincent Pelletier authored
It is redundant, but regular runner output does not display the test class.
-
Vincent Pelletier authored
Thanks, modern pylint !
-
- 29 Jan, 2021 2 commits
-
-
Vincent Pelletier authored
Otherwise, client certificates issued before a new CA is used get rejected once the new CA becomes current.
-
Vincent Pelletier authored
This extension is required by rfc5280 (see section 5.2.1) but was overlooked.
-
- 25 Nov, 2020 6 commits
-
-
Vincent Pelletier authored
-
Vincent Pelletier authored
The result only changes when CA certificates are reloaded, so prepare this valuein _loadCAKeyPairList.
-
Vincent Pelletier authored
"expires" takes an absolute date, "max-age" takes a number of seconds until expiration. So switch to "max-age": according to Mozilla Developer Network, it is supported by all major browsers, and by IE since version 8.
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
- 29 Jun, 2020 1 commit
-
-
Vincent Pelletier authored
-
- 27 Jun, 2020 4 commits
-
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
- 26 Jun, 2020 8 commits
-
-
Vincent Pelletier authored
4 branches depend on how tests are written, and are indeed not currently used. 1 branch depend on test process environment.
-
Vincent Pelletier authored
caucase.http will be re-generating its https certificate, so it can be slower than a normal non-initial start.
-
Vincent Pelletier authored
It would be the sign of a inconsistency in the dispatcher dict. Do not transform it into a user error (404).
-
Vincent Pelletier authored
Not all programs support having multiple CA certificates per file, so add support for creating and maintaining certificate directories containing a single certificate each.
-
Vincent Pelletier authored
Reference machine: Raspberry Pi 1 B+. caucased can take around 40s to start (CA generation, ...).
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
Vincent Pelletier authored
wsgi.input is specified to be a bytes object, not a string object.
-