github smallstep/certificates v0.18.1-rc1
Step CA v0.18.1-rc1 (22-01-04)
on GitHub

latest releases: v0.27.4, v0.27.4-rc1, v0.27.3...
pre-release2 years ago

Official Release Artifacts

Linux

OSX Darwin

Windows

For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.

Don't see the artifact you need? Open an issue here.

Signatures and Checksums

step-ca uses sigstore/cosign for signing and verifying release artifacts.

Below is an example using cosign to verify a release artifact: 

cosign verify-blob \
  -key https://raw.githubusercontent.com/smallstep/certificates/master/cosign.pub \
  -signature ~/Downloads/step-ca_darwin_0.18.1-rc1_amd64.tar.gz.sig
  ~/Downloads/step-ca_darwin_0.18.1-rc1_amd64.tar.gz

The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.

Changelog

  • 8fee970 Merge pull request #779 from smallstep/herman/acme-cli-user-agent
  • 07addd0 Fix linting issue
  • a68208a Set Step CLI User-Agent when performing ACME requests
  • 8473164 Merge pull request #773 from smallstep/herman/ip-sans-improvements
  • a5f2f00 Change name of IP Common Name test for clarity
  • 80bebda Fix code style issue
  • f7c1a32 Merge pull request #777 from smallstep/pkcs11-decrypter
  • d5c6572 Fix typo.
  • 5a32401 Implement the kms.Decrypter with PKCS#11
  • ab44fbf Merge pull request #774 from smallstep/cm-roots
  • 2c63abc fix grammar
  • 7c4e6dc Remove duplicated code in bootstrap methods
  • 64c19d4 Fix subject in test, use ip
  • b0b2e77 Avoid doing unauthenticated requests on the SDK
  • bc0875b Disallow email address and URLs in the CSR
  • 13a31fd Merge branch 'master' into herman/ip-sans-improvements
  • ca707cb Fix linting
  • a5d3351 Fix test
  • a2c9b5c Allow IP identifiers in subject, including authorization enforcement
  • fbd3fd2 Merge pull request #625 from hslatman/hs/acme-revocation
  • 00539d0 Add changelog entry for ACME revocation
  • 3bc3957 Merge branch 'master' into hs/acme-revocation
  • 0524122 Remove authorization flow for different Account private keys
  • 53ebd85 Update star gif size
  • c0255b7 Update star gif
  • accb071 Star gif
  • 94afec7 Merge pull request #758 from smallstep/errors-forbidden
  • e0fee84 Add comment about public key validator.
  • 0cebde3 Change fallback message on RekeySSH.
  • 004fc05 Fix PR comments
  • 9fd147f Change error message.
  • 47a8a3c Add test case for ACME Revoke to Authority
  • 06bb97c Add logic for Account authorizations and improve tests
  • bae1d25 Improve tests for JWK vs. KID revoke auth flow
  • a7fbbc4 Add tests for GetCertificateBySerial
  • 4d01cf8 Increase test code coverage
  • 2d357da Add tests for ACME revocation
  • ed295ca Fix linting issue
  • c9cd876 Merge branch 'master' into hs/acme-revocation
  • 78acf35 Merge pull request #753 from scattered-network/docker-compose-go-mod-updates
  • d35848f Fix unit tests.
  • c3f98fd Change some bad requests to forbidded.
  • cbb0f40 Revert "Update Go Modules: Fixes Docker Example"
  • 3c5d1c9 Use smallstep/small-cli as base image, remove step cli build
  • ff04873 Change the default error type to forbidden in Sign.
  • b9beab0 Fix unit tests.
  • 507a272 Return always http errors in sign options.
  • d83ca96 Fixes #757
  • a33709c Fix sign ssh options tests.
  • 1da7ea6 Return always http errors in sign ssh options.
  • 031d4d7 Return BadRequest when validating sign options.
  • a067b3a Add a note about reload-or-try-restart in systemd
  • bb26799 Modify errs.Wrap with forbidden errors.
  • b5db3f5 Modify errs.ForbiddenErr to always return an error to the cli.
  • 4f84cef Merge pull request #752 from smallstep/errors-bad-request
  • d925bc6 Fix systemd renewer to use sh
  • 11a1297 Update Go Modules: Fixes Docker Example
  • 2d50c96 Merge branch 'master' into hs/acme-revocation
  • aa3fdf8 Do not overwrite errors.
  • b6ebd11 Update temporal solution for sending message to users
  • 668d3ea Modify errs.Wrap() with bad request to send messages to users.
  • 8c8db0d Modify errs.BadRequestErr() to always return an error to the client.
  • 8ce807a Modify errs.BadRequest() calls to always send an error to the client.
  • 8d229b9 update commented template names to match reality
  • 9187805 Merge pull request #741 from gdbelvin/ssh
  • febb619 Add some extra validation and print certificate objects
  • bbb327c Make a csr if there's not a root
  • 29f5a35 simplify flags
  • 29f9730 Satisfy golangci-lint
  • 42f56d6 Set golangci-lint version to v1.41.0 instead of latest
  • 023c64c Merge branch 'master' into hs/acme-revocation
  • c7a9c13 Add tests for extractOrLookupJWK middleware
  • 3151255 Merge branch 'master' into hs/acme-revocation
  • a4cfb66 Merge branch 'master' into hs/acme-revocation
  • 258efca Improve revocation authorization
  • 97165f1 Fix test mocking for CreateCertificate
  • 2b15230 Add Serial to Cert ID ACME table and lookup
  • 8f7e700 Merge branch 'master' into hs/acme-revocation
  • 16fe07d Fix mockSignAuth
  • 0e56932 Add support for revocation using JWK
  • 84e7d46 Improve handling of ACME revocation
  • d53bcaf Add base logic for ACME revoke-cert

Thanks!

Those were the changes on v0.18.1-rc1!

Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.

Check out latest releases or
releases around smallstep/certificates v0.18.1-rc1

Don't miss a new certificates release

NewReleases is sending notifications on new releases.

Get notifications