gsadmin/certctl
1
0
Fork 0
mirror of https://github.com/shankar0123/certctl.git synced 2026-06-07 14:11:31 +00:00
Code Issues Packages Projects Releases Wiki Activity
230 Commits 1 Branch 82 Tags
9a41d0ca39712b3eed17334d29a31b709ddb1159
Commit Graph

9 Commits

Author SHA1 Message Date
shankar0123 9a41d0ca39 feat(M39): IIS WinRM proxy agent mode + front-to-back wiring 
Complete the IIS target connector with dual-mode deployment:
- WinRM proxy agent mode via masterzen/winrm for remote Windows servers
- Base64 PFX transfer with try/finally cleanup on remote host
- GUI wizard updated with 13 IIS config fields including WinRM settings
- TargetDetailPage sensitive field redaction (password/secret/token/key)
- OpenAPI TargetType enum updated (added Traefik, Caddy)
- connectors.md fully documented with WinRM proxy config example
- 38 total IIS tests (10 new WinRM tests), all passing with race detection

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-04-02 20:53:20 -04:00
shankar0123 a00bb349c4 feat(m27): certificate export (PEM/PKCS#12) and S/MIME EKU support 
Add certificate export in PEM (JSON or file download) and PKCS#12 formats.
Private keys are never included — they stay on agents. Add EKU-aware
issuance threading profile EKUs (serverAuth, clientAuth, codeSigning,
emailProtection, timeStamping) through the full issuance pipeline. Fix
agent CSR SAN splitting for email addresses, adaptive KeyUsage flags for
S/MIME vs TLS, and a pre-existing generateID collision bug in deployment
job creation.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-28 16:16:19 -04:00
shankar0123 6d5ca5ec9d chore: update go.sum with testcontainers-go dependencies 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-27 22:58:10 -04:00
shankar0123 f48520c86a fix: add go.sum and indirect deps for MCP SDK 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-23 17:00:30 -04:00
shankar0123 3e9d053026 fix: add x/crypto v0.31.0 checksums to go.sum 
The previous commit downgraded x/crypto but go.sum was missing the
v0.31.0 hashes, causing CI to fail with "missing go.sum entry".
Hashes sourced from sum.golang.org.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-15 16:06:11 -04:00
shankar0123 0e7451f95a Downgrade x/crypto from v0.49.0 to v0.31.0 for Go 1.22 compatibility 
golang.org/x/crypto v0.49.0 requires Go 1.25.0 which doesn't exist
yet, breaking both Docker builds and CI. Downgraded to v0.31.0 which
requires only Go 1.20+ and includes the same stable ACME v2 package.

Note: go.sum needs regeneration. Run `go mod tidy` before building.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-15 15:21:44 -04:00
shankar0123 ae67b10708 Complete M1, M1.1, M2: end-to-end lifecycle, agent deployment, ACME v2 
- Wire issuer connector end-to-end with IssuerConnectorAdapter (dependency inversion)
- Renewal/issuance job processor: RSA key + CSR generation, Local CA signing, cert version storage
- Agent work API (GET /agents/{id}/work) and job status API (POST /agents/{id}/jobs/{job_id}/status)
- Agent-side deployment: WorkItem enrichment with target type/config, NGINX/F5/IIS connector invocation
- Full ACME v2 implementation: HTTP-01 challenge solving, account registration, order lifecycle
- Update all docs (README, architecture, connectors, demo-advanced, quickstart) for M1-M2
- Fix go vet warning in deployment.go (non-constant format string)

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-14 23:49:45 -04:00
shankar0123 3a9fe8ba37 Complete V1 scaffold 2026-03-14 20:01:53 -04:00
shankar0123 d395776a95 Initial scaffold: certificate control plane v0.1.0 2026-03-14 08:22:17 -04:00