Armon Dadgar
|
a0cf8f1793
|
vault: attempt to resolve #303
|
2015-06-02 22:55:18 +02:00 |
|
|
Armon Dadgar
|
0f933df76e
|
vault: fixing a typo
|
2015-06-02 16:04:05 +02:00 |
|
|
Armon Dadgar
|
daffef08db
|
vault: reload master key before keyring
|
2015-05-29 14:30:03 -07:00 |
|
|
Armon Dadgar
|
f6729b29f8
|
vault: adding ability to reload master key
|
2015-05-29 14:29:55 -07:00 |
|
|
Armon Dadgar
|
716f8d9979
|
core: adding tests for HA rekey and rotate
|
2015-05-29 12:16:34 -07:00 |
|
|
Armon Dadgar
|
4f5fde039f
|
vault: all rekey commands should fail as standby
|
2015-05-29 11:52:37 -07:00 |
|
|
Armon Dadgar
|
5aaad32af8
|
vault: ensure upgrades are cleaned up
|
2015-05-28 16:52:06 -07:00 |
|
|
Armon Dadgar
|
db0afc9ebe
|
vault: move upgrade logic out of core
|
2015-05-28 16:43:44 -07:00 |
|
|
Armon Dadgar
|
4eb5c63a5d
|
vault: create upgrade path in HA mode
|
2015-05-28 16:43:15 -07:00 |
|
|
Armon Dadgar
|
67ed0a3c16
|
vault: moving upgrade path into barrier
|
2015-05-28 16:42:32 -07:00 |
|
|
Armon Dadgar
|
82ef0b1ac7
|
vault: handle read of key upgrades
|
2015-05-28 16:11:31 -07:00 |
|
|
Armon Dadgar
|
796ae59a89
|
vault: support keyring reload
|
2015-05-28 16:09:15 -07:00 |
|
|
Armon Dadgar
|
2e86fa62d5
|
vault: adding barrier AddKey
|
2015-05-28 15:52:26 -07:00 |
|
|
Armon Dadgar
|
c095861a02
|
keyring: Add key serialization
|
2015-05-28 15:49:52 -07:00 |
|
|
Armon Dadgar
|
c60970e743
|
vault: prevent rekey on standby
|
2015-05-28 15:26:35 -07:00 |
|
|
Armon Dadgar
|
01e890653c
|
vault: more logging
|
2015-05-28 14:15:06 -07:00 |
|
|
Armon Dadgar
|
0877160754
|
vault: minor rekey cleanups
|
2015-05-28 12:07:52 -07:00 |
|
|
Armon Dadgar
|
c5352d14a4
|
vault: testing rekey
|
2015-05-28 12:02:30 -07:00 |
|
|
Armon Dadgar
|
361c722c5c
|
vault: first pass at rekey
|
2015-05-28 11:40:01 -07:00 |
|
|
Armon Dadgar
|
5aed043ea5
|
vault: ensure master key is copied to avoid memzero issues
|
2015-05-28 11:38:59 -07:00 |
|
|
Armon Dadgar
|
4e3f0cddcf
|
vault: Adding VerifyMaster to Barrier
|
2015-05-28 11:28:33 -07:00 |
|
|
Armon Dadgar
|
9f399eb9ff
|
vault: prevent raw access to protected paths
|
2015-05-28 10:24:41 -07:00 |
|
|
Armon Dadgar
|
1a4256c20c
|
vault: more logging around rotate
|
2015-05-27 17:56:55 -07:00 |
|
|
Armon Dadgar
|
d0b93a6164
|
vault: adding sys/key-status and sys/rotate
|
2015-05-27 17:53:42 -07:00 |
|
|
Armon Dadgar
|
26cff2f42f
|
vault: expose information about keys
|
2015-05-27 17:25:36 -07:00 |
|
|
Armon Dadgar
|
3e717907cd
|
vault: testing barrier rekey
|
2015-05-27 17:17:03 -07:00 |
|
|
Armon Dadgar
|
b93feb8a6b
|
vault: first pass at rekey
|
2015-05-27 17:13:40 -07:00 |
|
|
Armon Dadgar
|
9e39fec4a5
|
vault: testing key rotation
|
2015-05-27 17:10:08 -07:00 |
|
|
Armon Dadgar
|
ead96e8c99
|
vault: first pass at key rotation
|
2015-05-27 17:05:02 -07:00 |
|
|
Armon Dadgar
|
3d800fe7be
|
vault: keyring api changes
|
2015-05-27 17:04:46 -07:00 |
|
|
Armon Dadgar
|
490bece0a0
|
vault: make keyring immutable
|
2015-05-27 16:58:55 -07:00 |
|
|
Armon Dadgar
|
28560a612f
|
vault: test for backwards compatability
|
2015-05-27 16:42:42 -07:00 |
|
|
Armon Dadgar
|
e8e9103300
|
vault: share keyring persistence code
|
2015-05-27 16:29:59 -07:00 |
|
|
Armon Dadgar
|
0e9136d14c
|
vault: first pass at keyring integration
|
2015-05-27 16:01:25 -07:00 |
|
|
Armon Dadgar
|
50dc6a471e
|
vault: adding path for keyring
|
2015-05-27 15:23:43 -07:00 |
|
|
Armon Dadgar
|
8c2a767f4f
|
vault: Adding version to key entry
|
2015-05-27 15:23:31 -07:00 |
|
|
Armon Dadgar
|
1903518202
|
vault: Ensure we always set a key InstallTime
|
2015-05-27 14:37:40 -07:00 |
|
|
Armon Dadgar
|
ef2f71e17f
|
vault: Adding InstallTime to key in keyring
|
2015-05-27 14:37:40 -07:00 |
|
|
Armon Dadgar
|
57c763a3fa
|
vault: Adding keyring
|
2015-05-27 14:37:40 -07:00 |
|
|
Armon Dadgar
|
70b3b37ffb
|
vault: rename key epoch to term for clarity
|
2015-05-27 14:37:39 -07:00 |
|
|
Armon Dadgar
|
daa5b9c1b5
|
vault: physical -> storage for clarity
|
2015-05-27 14:33:58 -07:00 |
|
|
Armon Dadgar
|
8ee5aebb3c
|
vault: testing raw responses
|
2015-05-27 14:19:12 -07:00 |
|
|
Armon Dadgar
|
ba7bfed1af
|
vault: Expose MountPoint to secret backend. Fixes #248
|
2015-05-27 11:46:42 -07:00 |
|
|
Armon Dadgar
|
d15eed47ad
|
vault: reproducing GH-203
|
2015-05-15 17:48:03 -07:00 |
|
|
Armon Dadgar
|
3bcd32228d
|
vault: lease renewal should not create new lease entry
|
2015-05-15 17:47:39 -07:00 |
|
|
Armon Dadgar
|
18795a4b26
|
vault: Adding test based on bug report
|
2015-05-15 17:19:41 -07:00 |
|
|
Armon Dadgar
|
0b84e86483
|
vault: Adding more logging
|
2015-05-15 17:19:32 -07:00 |
|
|
Armon Dadgar
|
8f4ddfd904
|
vault: adding test for e33a904
|
2015-05-11 11:16:21 -07:00 |
|
|
Armon Dadgar
|
843d9e6484
|
vault: verify login endpoint never returns a secret
|
2015-05-09 11:51:58 -07:00 |
|
|
Armon Dadgar
|
13ab31f4b5
|
vault: ensure InternalData is never returned from the core
|
2015-05-09 11:47:46 -07:00 |
|