c769a12c45
set the box version for test for pass
2016-03-19 10:23:12 -07:00
017c32c3dd
fix certificate renewal
...
Do the whole acme flow for certificate renewal. the idea here is
simply reuse the key and the csr. In this case, it does not count
as a new certificate issuance.
https://github.com/diafygi/letsencrypt-nosudo/issues/55
2016-03-19 02:44:05 -07:00
5d54c9e668
check my domain for expiry and falling back
2016-03-18 23:43:56 -07:00
adaaca5ceb
switch expired certs of domains to use fallback cert
...
1) nginx won't reload when using expired certs
2) this is the only way the user can use the app now
2016-03-18 23:26:57 -07:00
4a73e1490e
Refactor code to take hours
2016-03-18 23:00:02 -07:00
f31a7a5061
use fallback certs if renewal fails
2016-03-17 12:20:02 -07:00
3499a4cc6c
move requiresOAuthProxy to nginx
...
we have 3 levels
* routes, cron, apptask
* everything else where everyone calls everyone :-)
* the db layer
2016-03-17 11:38:29 -07:00
20ac040dde
cert: check expiry correctly
2016-03-14 22:50:06 -07:00
7f2b3eb835
acme: disable renewal via url fetch for now
...
this does not seem to work.
From https://github.com/ericchiang/letsencrypt/commit/cf85854177b22540ca1aeba770c2b86534c6c5ef :
// RenewCertificate attempts to renew an existing certificate.
// Let's Encrypt may return the same certificate. You should load your
// current x509.Certificate and use the Equal method to compare to the "new"
// certificate. If it's identical, you'll need to run NewCertificate and/or
// start a new certificate flow.
2016-03-14 22:22:57 -07:00
2b562f76ea
le: handle renewal upto 30 days in advance
2016-03-14 22:18:43 -07:00
b942033512
acme: debug output the domain
2016-03-14 16:21:03 -07:00
fa4a8c2036
add debug for successful renewal
2016-03-14 15:55:51 -07:00
8da2eb36cc
fix email wording
2016-03-09 18:37:02 -08:00
cbb34005c6
restoreKey -> filename
2016-03-09 14:23:42 -08:00
4cfc187063
Add sender name to admin email
2016-03-09 07:41:50 +01:00
065af03e5f
Stop docker proxy in ldap tests
2016-03-09 07:34:44 +01:00
c4eeebdfbe
Enable admin change test
2016-03-09 06:18:39 +01:00
b1004de358
Notify admins about newly added admin
2016-03-09 06:16:21 +01:00
fbca0fef38
fix missing assert
2016-03-08 18:51:40 -08:00
d658530e66
fix failing tests
2016-03-08 18:44:51 -08:00
21d4cc9cb2
getAllPaged -> getPaged
2016-03-08 18:10:39 -08:00
e2b7ec3ffd
store filename with tar.gz extension
2016-03-08 16:47:53 -08:00
8014e2eaf8
add route to download backup
2016-03-08 16:28:42 -08:00
a10ed73af2
get zoneName using tldjs
2016-03-08 09:52:13 -08:00
8b2903015d
list app backups from db
2016-03-08 08:57:28 -08:00
d157bf30f3
remove box backups from the database
2016-03-08 08:52:20 -08:00
7996b32022
add backups to the database
...
ideally, these should be done _after_ the backup is successful and not when
the backup url is generated.
we had a discussion on why need backupdb to start with. Some rationale includes:
1. we can use it as a FK constraint (like make sure you delete backups when you delete app)
2. have labels for backups
3. dependancy relation from box backup to apps
4. s3 reverse sort is little painful and requires us to get all items in bulk and sort in JS
(also requires us to change our backup filename format)
5. any metadata storage requires database
The cons include:
1. s3 and this db go out of sync
2. db entry is useless if s3 file is missing
2016-03-08 08:42:00 -08:00
4b77703902
export getByAppIdPaged
2016-03-07 17:52:13 -08:00
4dd82d10ad
backup: ensure same timestamp for app data and config
2016-03-07 12:13:54 -08:00
9de6f9c1c2
add backupdb
...
mostly same code as the appstore side
2016-03-07 09:30:44 -08:00
486ced0946
fix LDAP debug
2016-03-04 17:52:27 -08:00
d1c1fb8786
fix ldap debug ("ldap" already appears as part of debug)
2016-03-04 17:51:18 -08:00
57ff8b6770
fix feedback test
2016-03-04 22:27:18 +01:00
17deac756b
Also log app manifest id for alive apps
2016-03-03 09:30:46 +01:00
f7bb3bac98
Log app manifest id in healthmonitor
2016-03-03 09:30:46 +01:00
a7b5b49d96
fix language
2016-02-26 10:14:37 -08:00
c585be4eec
Adjust group length error message
2016-02-26 11:07:31 +01:00
10967ff8ce
allow 1.2 times RAM
...
This is basically to allow 2 phabricators and another small app with
no warning on a 4gb droplet :-)
2016-02-25 18:34:28 -08:00
7cd3bb31e1
Add new support type for failing erroring apps
2016-02-25 21:38:37 +01:00
160467e199
Do not require password for user profile changes
2016-02-25 14:03:42 +01:00
384c410e7c
Do not require a password for user profile changes
2016-02-25 13:54:44 +01:00
84c4187fa9
Test normal users accessing the user api
2016-02-25 13:53:18 +01:00
4f7fd9177c
Allow user details only for the same user or admins
2016-02-25 13:44:53 +01:00
b5b0ab7475
Require admin rights for user listing
2016-02-25 13:43:15 +01:00
a0d7406b3c
Do not allow normal users to get group listings or details
2016-02-25 13:34:01 +01:00
9c995277f7
Fixup the apps unit tests
2016-02-25 12:20:18 +01:00
aa693e529b
Only list apps where a user has access to
2016-02-25 12:20:11 +01:00
63013c7297
Just check for .admin flag in the user object
2016-02-25 11:42:25 +01:00
c8db6419d8
Admins are not special cased in apps.js app listing
...
This is done in the route
2016-02-25 11:41:14 +01:00
93c1ddd982
Always amend the admin flag for further use
2016-02-25 11:40:48 +01:00
Girish Ramakrishnan