| Age | Commit message (Collapse) | Author |
|---|
|
Add SPDX-License-Identifier headers to all substantial source files.
Collapse copyright years. Add some Emacs configuration for files
where the copyright notice is at the end. Add a test that every
file has SPDX-License-Identifier.
|
|
The documentation now includes information about the Duo file types, and
the new password types. This is both the general information, and the
Stanford-specific naming docs.
Change-Id: Iae256224a063ce42f22cd933ef7bb3ab402e0e2d
|
|
tivoli-key used to always contain the entirety of the TSM.PWD file,
but it's more useful to store only the encryption key in password
form.
Change-Id: Id770691fb756b7675ec0fe2eee1308a8974c9c3f
Reviewed-on: https://gerrit.stanford.edu/1309
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
Adam requested some clarification on whether the name of the object
should be fully-qualified or not (since we didn't in the legacy
naming scheme).
Change-Id: I52fcab71e54aee38f0c03eff774f927c5836ad03
Reviewed-on: https://gerrit.stanford.edu/1054
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
Change-Id: If833e4a6434362e04e738274a6f7fb276a9efe51
Reviewed-on: https://gerrit.stanford.edu/988
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
Change-Id: Id5af9714e3d4f516cf7391c869eff89521e145c5
Reviewed-on: https://gerrit.stanford.edu/849
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
Used currently by MDM to store both the certificate and the key in
the same file for convenience.
Change-Id: I38901ac93fe3022c2e00f735a0f995500841d709
Reviewed-on: https://gerrit.stanford.edu/784
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
If there are multiple SSL private keys for the same host-based CN,
an application name can be added as an additional component of the
name.
Change-Id: I06e25359b291a77a7dbca1a7f3db84afb2b16ddd
Reviewed-on: https://gerrit.stanford.edu/754
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
Remove the group for host-based file object names. Move the group
to the second component for non-host-based names so that the first
component is always the object type. Add some additional object
types and clarify wording based on feedback from Adam.
Change-Id: I5db7b23d2b004c69afb869df5624d455b751c0d5
Reviewed-on: https://gerrit.stanford.edu/724
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
Recommend slash-separated names by default. Remove some obsolete
bits and update a lot of the recommendations and wording.
Change-Id: I44cbf8116e7529b00a61261248ff9daecacdb910
Reviewed-on: https://gerrit.stanford.edu/723
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
|
|
The previous wording implied that <group>-<server>-tivoli-key was only
used for encryption keys. Allow for either passwords or encryption keys,
and remove the note that it should be base64-encoded since wallet now
supports binary files.
|
|
|
|
We have some general configuration files that contain database
passwords. Add a general naming convention to avoid creating new
ones with each new type of config file.
|
|
Add a naming convention for puppet.conf files containing secure data
and reorganize the naming convention documentation to group all
service objects together.
|
|
|
|
|
|
|
|
|
|
naming.
|
|
|
