luxolus/open-vault
2
0
Fork 0
Code Issues 1 Pull requests Releases Activity
1281 commits 1 branch 0 tags 214 MiB
Commit graph

41 commits

Author SHA1 Message Date
Jeff Mitchell 0d832de65d Initial PKI backend implementation. 
Complete:
* Up-to-date API documents
* Backend configuration (root certificate and private key)
* Highly granular role configuration
* Certificate generation
* CN checking against role
* IP and DNS subject alternative names
* Server, client, and code signing usage types
* Later certificate (but not private key) retrieval
* CRL creation and update
* CRL/CA bare endpoints (for cert extensions)
* Revocation (both Vault-native and by serial number)
* CRL force-rotation endpoint

Missing:
* OCSP support (can't implement without changes in Vault)
* Unit tests

Commit contents (C)2015 Akamai Technologies, Inc. <opensource@akamai.com>
 2015-06-08 00:06:09 -04:00
Armon Dadgar 66ab2bbf54 Merge pull request #263 from sheldonh/iam-policy 
List IAM permissions required by root credentials
 2015-06-01 13:16:51 +02:00
Armon Dadgar 98cca9cb18 Merge pull request #261 from jsok/consul-lease 
Add ability to configure consul lease durations
 2015-06-01 13:04:28 +02:00
Chad Whitacre b83f3f2d02 Provide missing verb 2015-05-31 17:19:34 -04:00
certifiedloud ac4763027b replaced confusing term 'physical' with 'storage'. 2015-05-27 14:44:17 -06:00
Sheldon Hearn 89e7bb2569 Missed a few IAM permissions 2015-05-27 16:42:12 +02:00
Sheldon Hearn 3d2005ea56 List IAM permissions required by root credentials 2015-05-27 16:28:24 +02:00
Jonathan Sokolowski 2b1926f262 website: Update /consul/roles/ parameters 2015-05-27 09:54:15 +10:00
Armon Dadgar 96e3bac87a website: Document overwrite behavior. Fixes #182 2015-05-11 10:58:29 -07:00
Mitchell Hashimoto f3fd061ed0 Merge pull request #54 from pborreli/typos 
website: fixed typos
 2015-04-28 11:37:49 -07:00
Emil Hessman 04d09c34d2 website: merge 2015-04-28 20:36:27 +02:00
Pascal Borreli 0ec229a9c9 Fixed typos 2015-04-28 19:36:16 +01:00
Emil Hessman 3d5f3d1d70 website: address minor doc typos 2015-04-28 20:32:04 +02:00
Andrew Williams b68244b252 website: fix small typo 2015-04-28 13:21:44 -05:00
Mat Elder a7c0d26dea msyql to consul on consul backend docs 2015-04-28 14:11:42 -04:00
Armon Dadgar 43083225d0 website: remove TODO from transit quickstart 2015-04-27 14:58:53 -07:00
Armon Dadgar 434305a6c2 secret/aws: Using roles instead of policy 2015-04-27 14:20:28 -07:00
Armon Dadgar 5edf8cf3a8 Do not root protect role configurations 2015-04-27 14:07:20 -07:00
Armon Dadgar 12e8c0f8cf secret/postgres: secret/mysql: roles endpoints root protected 2015-04-27 14:04:10 -07:00
Armon Dadgar 816d981d1a secret/consul: replace policy with roles, and prefix the token path 2015-04-27 13:59:56 -07:00
Armon Dadgar 6a38090822 secret/transit: rename policy to keys 2015-04-27 13:52:47 -07:00
Armon Dadgar 190b7f30e1 website: API consistency 2015-04-27 12:30:46 -07:00
Armon Dadgar 04421a5635 website: aws API 2015-04-27 12:26:23 -07:00
Armon Dadgar b52f52ace6 website: make PG quickstart like MySQL 2015-04-27 12:16:07 -07:00
Armon Dadgar 4404dd2a8f website: adding postgresql API docs 2015-04-27 11:17:13 -07:00
Armon Dadgar 61783663e4 website: document Consul APIs 2015-04-27 11:08:47 -07:00
Seth Vargo a4b55bfc3e Add Quick Start for Postgresql 2015-04-27 09:30:21 -04:00
Seth Vargo 0ffbd1f8ea Add Quick Start for AWS 2015-04-27 09:29:16 -04:00
Armon Dadgar 6ac2c848d7 website: start consul api 2015-04-26 22:03:38 -07:00
Armon Dadgar ea29b313e9 website: consul quickstart 2015-04-26 22:03:38 -07:00
Armon Dadgar 0e12fa9b68 website: adding mysql quickstart and API 2015-04-26 22:03:38 -07:00
Armon Dadgar 0d0aec7abd website: quickstart + API for transit 2015-04-26 22:03:38 -07:00
Armon Dadgar e58676128b website: quickstart for generic 2015-04-26 22:03:38 -07:00
Armon Dadgar d801e2e555 website: adding mysql docs skeleton 2015-04-25 12:10:53 -07:00
Mitchell Hashimoto 690a932deb website: postgresql backend 2015-04-18 22:47:23 -07:00
Mitchell Hashimoto 208dd1e8be logical/aws: move root creds config to config/root 2015-04-18 22:21:31 -07:00
Mitchell Hashimoto 68e26ca2a0 website: transit backend 2015-04-17 12:56:31 -07:00
Mitchell Hashimoto 744440021f website: add a couple more secret backend sections 2015-04-13 20:42:07 -07:00
Mitchell Hashimoto 3c9b4182cb website: consul secret backend 2015-04-10 20:26:01 -07:00
Mitchell Hashimoto 3266f9513f website: aws secret backend 2015-04-10 20:24:45 -07:00
Mitchell Hashimoto a906f720b1 website: secrets index 2015-04-09 23:31:26 -07:00