summaryrefslogtreecommitdiff
path: root/certs
Commit message (Collapse)AuthorAgeFilesLines
* SSL: Update LetsEncrypt certs November 2018pedro/ssl-nov-18Pedro Alvarez2018-11-226-228/+214
|
* SSL: Update LetsEncrypt certs September 2018Pedro Alvarez2018-09-056-206/+206
|
* SSL: Update LetsEncrypt certs Jun 2018Pedro Alvarez2018-06-256-188/+208
|
* SSL: Update LetsEncrypt certs March 2018Pedro Alvarez2018-03-288-190/+186
|
* SSL: Update LetsEncrypt certs Jan 2018Pedro Alvarez2018-01-026-186/+186
|
* SSL: Remove storyboard certsPedro Alvarez2018-01-024-182/+0
|
* Update SSL certificatesSam Thursfield2017-10-206-240/+234
| | | | Old ones had expired
* Add ostree.baserock.org systemSam Thursfield2017-07-133-124/+128
| | | | | | | | | | | | | This is a new instance that can be used as an artifact cache by the BuildStream build tool. Anyone can download artifacts over HTTPS. Those given SSH access to the machine can write to the artifact cache (this will likely be limited to automated build machines). DNS is now set to point cache.baserock.org and ostree.baserock.org to the HAProxy frontend. The SSL certificate for the frontend-haproxy system has been regenerated to include the cache.baserock.org and ostree.baserock.org domains.
* Update SSL certsPedro Alvarez Piedehierro2017-05-2012-226/+467
|
* Apply manually changes from previous commit for frontend.pemPedro Alvarez2017-05-022-59/+96
|
* certs: Make spec.bo and docs.bo part of the frontend certPedro Alvarez2017-03-221-58/+59
|
* Remove old SSL certificate filesPedro Alvarez2017-03-172-196/+0
|
* Add new SSL certsPedro Alvarez2017-03-173-0/+277
|
* Add letsencrypt Root certificatePedro Alvarez2017-03-171-0/+58
| | | | | Combination of "ISRG Root X1" and "Encrypt Authority X3" certificates downloaded from https://letsencrypt.org/certificates/
* certs: Add startcom CA chain certificatePedro Alvarez2015-11-111-0/+78
| | | | | | | | These are public and can be downloaded from https://www.startssl.com/certs/ - https://www.startssl.com/certs/sub.class2.server.ca.pem - https://www.startssl.com/certs/ca.pem Change-Id: Ia2e1c2702fbd48f0f3bdd37dfc6044c5d0a94875
* Use HTTPS for all infrastructure.Sam Thursfield2015-03-301-0/+118
This is implemented with the HAProxy frontend doing 'SSL termination'. So internal traffic between the frontend_haproxy instance and the various machines serving content is unencrypted HTTP as before, but all traffic that goes over the public internet is encrypted now. Note that storyboard.baserock.org is not behind HAProxy, and currently uses a different, self-signed certificate. Change-Id: I9140def605fe26c9c613066fa6524e3cf817f97c
View Lorry Controller Status