changelog++

2016-09-26 10:49:59 -04:00 · 2016-09-26 10:49:59 -04:00 · 69e662d374
parent b1ee56a15b
commit 69e662d374
1 changed files with 8 additions and 0 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -15,6 +15,14 @@ DEPRECATIONS/CHANGES:
   enabling it. If you are using this functionality, when upgrading, you should
   set `ha_enabled` to `"true"` *before* starting the new versions of Vault.

+FEATURES:
+
+ * **Secret ID CIDR Restrictions in `AppRole`**: Secret IDs generated under an
+   approle can now specify a list of CIDR blocks from where the requests to
+   generate secret IDs should originate from. If an approle already has CIDR
+   restrictions specified, the CIDR restrictions on the secret ID should be a
+   subset of those specified on the role [GH-1910]
+
 IMPROVEMENTS:

 * api: Return error when an invalid (as opposed to incorrect) unseal key is