Evan Cordell
|
1016641f8d
|
refactor jwt context building
|
2017-03-27 11:37:17 -04:00 |
|
Evan Cordell
|
abd78bce56
|
Use constants for TUF roots
|
2017-03-27 11:37:17 -04:00 |
|
Evan Cordell
|
6ad107709c
|
Change build_context_and_subject to take kwargs
|
2017-03-27 11:37:17 -04:00 |
|
Evan Cordell
|
43dd974dca
|
Determine which TUF root to show based on actual access, not requested
access
|
2017-03-27 11:37:17 -04:00 |
|
Joseph Schorr
|
6ae3faf7fc
|
Add explicit config parameter to the JWT auth methods
|
2016-09-29 11:15:20 +02:00 |
|
Joseph Schorr
|
dd2e086a20
|
Add feature flag to force all direct download URLs to be proxied
Fixes #1667
|
2016-09-29 11:13:41 +02:00 |
|
Joseph Schorr
|
ab1756306b
|
Switch to using the leeway parameter on JWT validation
|
2016-06-27 14:42:44 -04:00 |
|
Joseph Schorr
|
2653d213c9
|
Add an allowed amount of clock skew to registry JWTs
|
2016-06-24 15:08:26 -04:00 |
|
Joseph Schorr
|
8887f09ba8
|
Use the instance service key for registry JWT signing
|
2016-06-07 11:58:10 -04:00 |
|
Jake Moshenko
|
4266ae7ce5
|
Fix the x5c header in our registry jwts.
|
2016-05-23 15:05:54 -04:00 |
|
Jake Moshenko
|
9221a515de
|
Use the registry API for security scanning
when the storage engine doesn't support direct download url
|
2016-05-04 18:04:06 -04:00 |
|