17 Commits

Author	SHA1	Message	Date
vishalnayak	22c0ad94ba	Removed region parameter from config/client endpoint. ... Region to create ec2 client objects is fetched from the identity document. Maintaining a map of cached clients indexed by region.	2016-04-26 10:22:29 -04:00
vishalnayak	01d417afbf	Instance ID can optionally be accepted as a the role tag parameter.	2016-04-26 10:22:29 -04:00
vishalnayak	cd3e9e3b5b	Support providing multiple certificates. ... Append all the certificates to the PKCS#7 parser during signature verification.	2016-04-26 10:22:29 -04:00
vishalnayak	9a988ffdee	Docs update	2016-04-26 10:22:29 -04:00
vishalnayak	9dc519ae68	Return 4xx error at appropriate places	2016-04-26 10:22:29 -04:00
vishalnayak	943cc345fe	Tested pathImageTag	2016-04-26 10:22:29 -04:00
vishalnayak	a1ca3228b3	Make client nonce optional even during first login, when disallow_reauthentication is set	2016-04-26 10:22:29 -04:00
vishalnayak	8c439a2f61	Moved HMAC parsing inside parseRoleTagValue	2016-04-26 10:22:29 -04:00
vishalnayak	a2d774b0fc	Properly handle empty client nonce case when disallow_reauthentication is set	2016-04-26 10:22:29 -04:00
vishalnayak	eecdfdc1e9	Added disallow_reauthentication feature	2016-04-26 10:22:29 -04:00
vishalnayak	39c93b5e54	Remove todo and change clientNonce length limit to 128 chars	2016-04-26 10:22:28 -04:00
Jeff Mitchell	8e3192eac1	Fix typo	2016-04-26 10:22:28 -04:00
Jeff Mitchell	7efc5eceb9	Add environment and EC2 instance metadata role providers for AWS creds.	2016-04-26 10:22:28 -04:00
Jeff Mitchell	c8afcafaf9	allow_instance_reboot -> allow_instance_migration	2016-04-26 10:22:28 -04:00
Jeff Mitchell	8aae383e39	Switch around some logic to be more consistent/readable and respect max ... TTL on initial token issuance.	2016-04-26 10:22:28 -04:00
vishalnayak	93f8ec3086	Return un-expired entries from blacklist and whitelist	2016-04-26 10:22:28 -04:00
vishalnayak	e886d5aab9	AWS EC2 instances authentication backend	2016-04-26 10:22:28 -04:00