Skip to content
This repository was archived by the owner on Apr 6, 2026. It is now read-only.

NOISSUE - Add SANs option#27

Merged
dborovcanin merged 9 commits into
absmach:mainfrom
nyagamunene:add_sans
Oct 14, 2024
Merged

NOISSUE - Add SANs option#27
dborovcanin merged 9 commits into
absmach:mainfrom
nyagamunene:add_sans

Conversation

@nyagamunene

@nyagamunene nyagamunene commented Oct 14, 2024

Copy link
Copy Markdown
Contributor

What type of PR is this?

This is a feature because it adds SANs option.

What does this do?

It adds SANs option for root and intermediate CA.

Which issue(s) does this PR fix/relate to?

N/A

Have you included tests for your changes?

N/A

Did you document any new/modified features?

N/A

Notes

Signed-off-by: nyagamunene <stevenyaga2014@gmail.com>
@nyagamunene nyagamunene marked this pull request as ready for review October 14, 2024 09:04
Comment thread service.go Outdated
Comment on lines +46 to +47
net.ParseIP("192.168.100.4"),
net.ParseIP("164.90.178.85"),

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

make this dynamic

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Load both DNS names and IP addresses from the config, we can't have it hardcoded like this.

Signed-off-by: nyagamunene <stevenyaga2014@gmail.com>
Comment thread docker/config.yml Outdated
organizational_unit:
- "AbstractMachines_ca"
country:
- "Sirbea"

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sirbea is not a country, and it should be France.

Comment thread service.go Outdated
Comment on lines +143 to +146
config, err := LoadConfig(configFile)
if err != nil {
return &svc, err
}

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Load config in the main.go and use it as a param in NewService.

Signed-off-by: nyagamunene <stevenyaga2014@gmail.com>
Signed-off-by: nyagamunene <stevenyaga2014@gmail.com>
Comment thread service.go
Comment thread service.go Outdated
return nil
}

func parseIPs(ipStrings []string) []net.IP {

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Extract config and config handling to a separate file. Make config IP list net.IP instead of strings and parse during config creation.

Signed-off-by: nyagamunene <stevenyaga2014@gmail.com>
Comment thread docker/config.yml Outdated
dns_names:
- "localhost"
ip_addresses:
- "192.168.100.4"

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
- "192.168.100.4"
- "localhost"

Comment thread docker/config.yml Outdated
- "localhost"
ip_addresses:
- "192.168.100.4"
- "164.90.178.85"

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

belongs to prism, don't set in this config, but rather create a config file on prism side

Signed-off-by: nyagamunene <stevenyaga2014@gmail.com>
Comment thread docker/config.yml Outdated
Comment on lines +11 to +18
province:
- "Sirbea"
locality:
- "Sirbea"
street_address:
- "Sirbea"
postal_code:
- "Sirbea"

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Signed-off-by: nyagamunene <stevenyaga2014@gmail.com>
Signed-off-by: nyagamunene <stevenyaga2014@gmail.com>
Signed-off-by: nyagamunene <stevenyaga2014@gmail.com>
@dborovcanin dborovcanin merged commit 3f118b8 into absmach:main Oct 14, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants