Remove unnecessary config_init_path() calls
kea: Introduce high availability support for both IPv4 and IPv6
Config access regression in CAs. Fix #15578
Use config accessors in certificate functions
Update the years in the Copyright notice.
Don't split fontawesome icon names
This makes it easier to update fontawesome versions. While here, fix amissing closing quote, and use the correct fontawesome prefix.
Update fontawesome icon names to v6. Implement #13537
Revert "Update fontawesome icon names to v6. Implement #13537"
This reverts commit 32be4696a301144c650f4765b8a2b51e28d95a40.
Update fontawesome. Implement #13537
Improve GUI cert digest help text
Instead of calling out one weak digest, mention the current bestpractice minimum and that others may fail for being too weak.
Also mention specifics about places which consider weak digests invalid.
Replace abbreviated links from System menu
Fix punctuation. Fixes #14188
Note that CA serial is ignored when randomizing. Fixes #14188
While here, when creating a CA, set the default serial to 1 since theGUI won't allow saving with the serial remaining at 0. That wouldotherwise force the user to change it themselves.
Update copyright years to include 2023
Add CA/Cert invalid descr char list to help. Fixes #13387
CA/Cert descr validation fixes. Fixes #13387
Validate description on save when editing and in other situations thatwere not yet covered.
While here, ensure that errors when editing a cert leave the user on thecert edit screen properly, but successful cases return to the cert list....
Update the Copyright year of the files owned by Rubicon/Netgate.
Certificate fields input validation. Issue #12035
Fix typo
Revert "Clean up some messy HTML in the cert/ca display code. Prep for future MVC changes."
This reverts commit 8d4fcd7ac1167894136e337fc619e63fa7200fa0.
Clean up some messy HTML in the cert/ca display code. Prep for future MVC changes.
Do not escape special characters in certificate DN fields. Fixes #12034
Update the Copyright year.
A subsequent commit will deal with .po's.
Remove CA prv key fix. Issue #10509
This is 2020. Issue #9245
Move CA random serial option to upper section. Issue #9883
This allows it to be set when creating a new CA, so it doesn't have tobe edited in later.
Also show the next serial/random status in the CA info blockHide trust store line from non-CA entries since it's not relevant to...
GUI improvements for ECDSA certificate handling
Change default ECSDA curve to prime256v1. Issue #9843
Previous default was brainpool, but brainpool curves are not (widely?)supported by browsers and were deprecated by IETF for TLS v1.3
CA/Cert optimizations
CA/Cert/CRL code optimizations
While here, use the new download function when exporting items
Validate CA/CRL serial input. Issue #9883 Issue #9869
Enforce a max lifetime for CA/Cert/CRL. Issue #3956
Add support for randomized cert serial numbers. Implements #9883
Add option to trust local CA entries. Implements #4068
Similar to closed PR #3558 from overhacked, but with a number ofchanges.
Certificate strength improvements. Fixes #9825
Add certificate lifetime to infoblock. Issue #7332
Show detailed infoblock on CA and Cert pages. Implements #9856
Add GUI code and more backend for CA/Cert Renewal. Issue #9842
spaces to tabs
Correct wording of CA/Cert CN input validation. Fixes #9234
Fix copyright message years to reflect BSDP -> ESF -> Netgate
Fix CA/Cert search description. Issue #9412
Fix bonus closing tag. Issue #9412
Add sorting and search to CA/Certs. Implements #9412
Ticket #9308: Replace use of /etc/ca_countries by get_cert_country_codes()
Update copyright notices to 2019. Happy New Year
Fix #9121: Initialize arrays to prevent PHP 7 errors
small change to fixup https://redmine.pfsense.org/issues/8851without this, clicking edit on existing CA goes to wrong screenand breaks Save button
Set default new CA/Cert action to Create Internal. Implements #8851
Merge pull request #3954 from whislock/crypto-updates
Group CA/Cert CN w/required options. Fixes #8381
Also add a note stating the other fields are optional.
Conform CA/Cert fields to RFC 5280. Fixes #8381
Only required subject field is CN (for simplicity)e-mail field deprecated from CA/Cert (can still be Cert SAN)
Add 6144/remove 512 from cert size options
Update the Copyright notice for pfSense.
Ensure that a certificate authority entry is capable of acting as a CA when importing. Fixes #7885
Allow a wider range of characters to be used in certificate fields, as laid out by RFC 4514. Fixes #7540
Merge pull request #3699 from PiBa-NL/20170417-certificatemanager-ca-crl-inuse
Merge pull request #3629 from doktornotor/patch-18
certificate manager, show 'in use' also for CA and CRL where certificates are in use by packages.
certificate manager, allow importing of ECC certificates
Add missing include
Remove whirlpool from the list of CA/Cert digest algorithms as it does not work properly. OpenSSL claims it's not valid ("unknown signature algorithm"). Fixes #7370While I'm here, stop needlessly repeating the algo list, it's a global in certs.inc, so use that single copy of the list.
Fix display of openssl errors when working with CA or certificate entries. Found this while looking into ticket #7370
Accommodate locales by testing for $_POST['va'] only
Revisions to GET/POST conversion limiting POSTs to save, apply, and delete functions
GET/POST conversion system_crlmanger.php
GET/POST conversion for camanager and certmanager
Required fields for System pages
Breadcrumb links
Fix CA input validation to (again) allow an import without a key. Fixes #7001
Ensure that the submitted private key matches the certificate or CA when importing. Ticket #6953
When deleting a CA, do not delete all certificates from this CA, only remove the CA reference from certificates that used this CA, as the relationship can be rebuilt if needed. Also, prevent in-use CAs from being deleted and print a list of places a CA is used, similar to the output on certificates. Fixes #6947
Move copyright from ESF to Netgate
Add a field to CA/Cert pages for OU, which is required by some external CAs and users. Fixes #6672
Move to Apache License 2.0
Review license / copyright on all files (final round)
Remove input_errors2Ajax calls, was never implemented. Ticket #3027
webgui tables, doubleclick event to perform 'edit' action
Merge pull request #2944 from stilez/patch-23
Always use require_once
The usage of require() and require_once() throughout the system isinconsistent, and "bugs" come up now and then when the order of"requires" is a bit different and some require() happens after theinclude file is already included/required....
Add missing recommended key lengths/digest to ca manager
System / Certificate Manager / CAs / Edit - Remove Personalizations
Remove "you" personalizations.
Change "internal" representation of CA on CA and CRL list to an icon, and the inuse indicator on CRLs to an icon. Ticket #5965
Update system_camanager.php
Something felt off about the Certificate/CA icons. Especially the fa-key and P12 being the same action. I think this is better.
Merge pull request #2637 from k-paulius/patch-6
Review alert wording. End sentence with period, remove redundant 'Warning', 'Error', etc. prefixes, since alerts are now color coded. Remove <b> tags.
Indicate in the breadcrumb if we are editing list item.
Convert section titles to title case
Internationalization of various system*.php
system_camanager action button titles
Fixed #5566
Convert remaining short_open_tag occurances. See PR #2378
HTML Compliance - System / Certicate / CAs
Close div tagClose php tag
Code style System Certificates
Remove all pfSense_MODULE and pfSense_BUILDER_BINARIES definitions, whatever was the reason they were added, it was never finished and it's not being used
Standardize Certificate Manager breadcrumbs
Added use of class autoloading (GUI stuff only)
Any GUI script that loads the guiconfig.inc file will have access tothe autoloader.
Copyright updates Batch 2 of 3
convert system_camanager to fa