zydronium/google-nomulus
1
0
Fork 0
mirror of https://github.com/google/nomulus.git synced 2025-06-24 13:30:54 +02:00
Code Issues Projects Releases Packages Wiki Activity
google-nomulus/proxy
History
Lai Jiang 1c1ccee75e Respect certificate validity period (#391) 
Client SSL handler already performs the necessary validation. Only tests are
added.

Server SSL handler does not currently check for the validity period of
the client certificate as the insecure trust manager is used. This PR
added the check but does not actually terminate the connection yet. It
will log the expired certificates so that we can contact the registrars
to update them.

Once we are certain that all certificates are updated, we can turn off
dryrun mode.

We should also consider checking if the certificate has too long a
validity period as it defeats the purpose of using regularly updated
certificates to deprecate insecure cipher suites.
2019-11-27 16:08:38 -05:00
..
gradle/dependency-locks Break circular dependency between core and util (#379) 2019-11-21 15:36:55 -05:00
kubernetes Move terraform and kubernetes folder to be under proxy (#127) 2019-06-20 14:28:32 -04:00
src Respect certificate validity period (#391) 2019-11-27 16:08:38 -05:00
terraform No-op: Use nicer HCL2 syntax. (#384) 2019-11-22 16:08:56 -05:00
.gitignore Refactor to be more in line with a standard Gradle project structure 2019-06-13 09:41:11 -04:00
build.gradle Break circular dependency between core and util (#379) 2019-11-21 15:36:55 -05:00
deploy-proxy-for-env.sh Update proxy deployment script description (#245) 2019-08-28 17:35:43 -04:00
Dockerfile Refactor to be more in line with a standard Gradle project structure 2019-06-13 09:41:11 -04:00