* findex reboot
* redis compact OK
* fixed upsert conflict
* more testing of compact and deletions
* further tests improvements
* locking on compact
* started to implement Reis DB
* must refactor findex_redis retrieve
* more on redis DB
* progress on redis impl...
* async transaction support
* more on async transactions
* feat(ci): add redis service
* minor change
* more work required on Find
* added permissions DB using Findex
* doc and cleanup of pernissions
* all tests passing with Redis with Findex - need to add encryption to the DB
* updated to latest Findex
* fixed ECIES and keywrapping
* realigning to new crypto_core
* refactored AES 256 GCM
* converted Covercrypt
* force output length to 32 for argon2
* end of refactoring to cloudproof_2_2_0
* aligned to cloudproof_2_2_1
* aligned to cloudproof_2_2_1 - removed old findex redis inpl
* CI warnings
* rebase fixes AND move all redis tests to same place
* bumped cloudproof to 2.2.1
* expose redis-findex database options
* fixed locate issue with redis-findex
* redacted passwords in conf displays
* documentation
* more readme fixes
* readme improvements
* changelog
* fix: minimize changes on Cargo.lock
* fix: update docker-compose.yml
* fix: REDIS_URL
* ci: open redis port on container
* fix: redis tests
* Apply suggestions from code review
Co-authored-by: Thibs <ThibsG@users.noreply.github.com>
* fix: cargo format
* more review fixes
* change log
---------
Co-authored-by: Emmanuel Coste <emmanuel.coste@cosmian.com>
Co-authored-by: Manuthor <manu.coste@gmail.com>
Co-authored-by: Manuthor <32013169+Manuthor@users.noreply.github.com>
Co-authored-by: Thibs <ThibsG@users.noreply.github.com>
- Authentication:
- support for more JWT providers
- support for certificate authentication
- Removal of global static conf and use of proper injection (was hindering testing)
- Authorization: re-factor of endpoints and fix delegation issues around revoke and destroy
- More documentation improvements
Commits details:
* support for ;ore JWT providers
* re-added / at then end issuer_uri to match iss claim in JWT
* authentication documentation
* making it working with Google Auth
* fix to get auth to work with both Google id token and Auth0
* doc improvements
* added certificate authentication server side
* reworking TLSS tests
* almost there on TLS test
* tls client tests OK
* auth tests OK
* added certificate authentication server side
* format
* fixed tests
* clippy fixes
* disabled auths tests to understand CI behaviour
* REmove the static conf singleton. Yes.....
* cleaned up server config
* fixed config name inmacro and features
* force database secret to be anarray of 32 bytes
* fixed new_database tests
* additional documentation and clarification of new-database command
* improvement to CLI documentation
* de-hardcoded CONF_PATH in tests and removed unnecessary async
* sqlx upgrade to 0.7.0 alpha 3
* added server-version and renamed permissions -> accesses
* more changes to the access API
* cleaned up test configurations
* started work on access
* fixed revoke and destroy access grants
* fixed revoke access
* moved tests to http/s
* still problems with access shared
* problems with shared
* fixed granted
* moved to obtained
* more renaming harmonization
* access management documentation
* T. Brezot suggested changes
* use crypto_core Key rather than byte array
* cargo fmt
* Update crate/cli/Cargo.toml
Co-authored-by: Thibs <ThibsG@users.noreply.github.com>
* Update crate/server/src/config/mod.rs
Co-authored-by: Thibs <ThibsG@users.noreply.github.com>
* Update documentation/docs/authentication.md
Co-authored-by: Thibs <ThibsG@users.noreply.github.com>
* Update documentation/docs/single_server_mode.md
Co-authored-by: Thibs <ThibsG@users.noreply.github.com>
* removed unnecessary reauired=true in clap arguments
* review fixes
* Update crate/server/src/error.rs
Co-authored-by: Thibs <ThibsG@users.noreply.github.com>
* Update crate/server/src/lib.rs
Co-authored-by: Thibs <ThibsG@users.noreply.github.com>
* more review fixes
* merge leftover
* another merge leftover
* test(auth0 tenant): update creds
* bump rust version
* futher auth0 fixes
---------
Co-authored-by: Théophile <theophile.brezot@cosmian.com>
Co-authored-by: Thibs <ThibsG@users.noreply.github.com>
Co-authored-by: Manuthor <manu.coste@gmail.com>
. Added the ability to manipulate EC and Symmetric Keys
. Added ECIES encryption (using Curve 25519) and AES GCM encryption
. Added support for policy specifications
. Reworked Revoke and Destroy to be closer to KMIP definitions
. Revoking and Destroying a public/private key, revokes or destroy all the related keys
. Refactored the server to simplify traits and separate the operations into smaller files
. Upgrading of SQLX
. Many more tests
. Upgrading of PKCS12 support
. Removal of Eyre in the CLI
