Commit graph

11848 commits

Author SHA1 Message Date
Becca Petrin 13a44b2e0b
Add docs for Kubernetes service discovery feature (#8374)
* add docs for kube service discovery

* give example with env vars only

* improve doc flow

* strip note about active being sometimes applicable
2020-02-19 13:34:18 -08:00
Jim Kalafut c17bd6f829
changelog++ 2020-02-19 09:46:43 -08:00
Noelle Daley ced8a3f6b3
clarify that EditType is optional (#8386) 2020-02-19 11:44:22 -06:00
Jim Kalafut 8495811489
Add mongodbatlas to gen_openapi (#8387) 2020-02-19 09:39:14 -08:00
Jim Kalafut c263f7beb1
Update API docs for OIDC form_post mode (#8373) 2020-02-19 09:21:29 -08:00
Troy Fluegge e7288d6190
Update CHANGELOG.md (#8384)
I believe Kerberos was not intended here.
2020-02-19 09:10:39 -08:00
Jeff Mitchell da5aef4878 Move kv-builder to internalshared 2020-02-19 11:13:13 -05:00
Sam Salisbury a32ef9da50 ci: fix website docker image script 2020-02-19 07:45:54 +00:00
Sam Salisbury 0d8fb94a07 update to go1.13.8 2020-02-19 07:30:04 +00:00
Jim Kalafut 930299bddd
changelog++ 2020-02-18 12:07:46 -08:00
Jim Kalafut 2e8826744f
Update plugin dependencies (#8371)
* Update plugin dependencies

* Update vendoring
2020-02-18 09:55:04 -08:00
Michael Golowka 4e218cb8be
Fix typo (missing bracket) 2020-02-18 10:15:48 -07:00
Michael Golowka 660fe1b06d
Add MongoDB x509 client auth 2020-02-18 10:15:02 -07:00
Chelsea Shaw 7afc97da5c
changelog ++ 2020-02-18 10:48:25 -06:00
Chelsea Shaw 83a9fd619f
fix: error clears on transit key actions (#8354) 2020-02-18 10:00:50 -06:00
Markus Nilsson d8ea61f91a
Docs: Fix anchor link to Generating JWTs (#8368) 2020-02-18 13:11:48 +01:00
JulesRenz c54c8c92bd
RSA3072 implementation in transit secrets engine (#8151)
* RSA3072 implementation in transit secrets engine

* moved new KeyType at the end of the list
So already stored keys still work properly

Co-authored-by: Jim Kalafut <jim@kalafut.net>
2020-02-15 14:40:50 -08:00
Jeff Mitchell 844b2c3a5d Bump API/SDK and adapt to move from SDK stuff 2020-02-15 14:58:05 -05:00
Jeff Mitchell 7779c077e6 Bump API's SDK 2020-02-15 14:57:06 -05:00
Jeff Mitchell f09f21e512 Move reload/listenerutil/gatedwriter back out of sdk 2020-02-15 14:56:00 -05:00
Brian Kassouf 157f8887f8 go mod vendor 2020-02-15 11:40:53 -08:00
Gerardo Di Giacomo 8573eefe90
enabling TLS 1.3 support for TCP listeners (#8305)
* adding support for TLS 1.3 for TCP listeners

* removed test as CI uses go 1.12

* removed Cassandra support, added deprecation notice

* re-added TestTCPListener_tls13
2020-02-15 11:40:18 -08:00
Fredrik Hoem Grelland 13e68015aa
identity propagation in ssh secrets engine #7547 (#7548)
* identity propagation in ssh secrets engine #7547

* flag to enable templating allowed_users ssh (ca) secrets backend.
2020-02-15 11:04:33 -08:00
Vitaly Velikodny 3ae6568512
Add missed description field for GET /sys/auth/:path/tune endpoint (#8193)
* fix #7623: add missed description field for GET /sys/auth/:path/tune endpoint

* fix #7623: allow empty description

* fix #7623: update tests with description field
2020-02-15 10:32:47 -08:00
Jason O'Donnell dd9f25a118
Add OpenLDAP Secret Plugin (#8360)
* Add openldap secret plugin

* go mod vendor

* Revert to go-ldap 3.1.3

* go mod vendor
2020-02-15 13:21:07 -05:00
ncabatoff 9dd18d8487
Unless we've been asked to stop, most failures should not result in (#7732)
waitForLeadership returning.
2020-02-14 18:28:37 -08:00
Calvin Leung Huang 22ac66c922
command/generate-root: support returning json format on decode and generate otp (#7870) 2020-02-14 18:26:49 -08:00
Becca Petrin 88e4868194
fix testserver in vault enterprise environment (#8358) 2020-02-14 18:17:58 -08:00
Joe Dollard 8f74b4d2b6
provide vault server flag to exit on core shutdown (#7561)
* provide vault server flag to exit on core shutdown

* Update command/server.go

Co-Authored-By: Jeff Mitchell <jeffrey.mitchell@gmail.com>

Co-authored-by: Jeff Mitchell <jeffrey.mitchell@gmail.com>
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
2020-02-14 18:07:31 -08:00
Jeff Mitchell fc56999c5c
Switch output loggers in hclog instead of going through gatedlogger (#8228)
After flushing we no longer have to take a mutex hit for every log line.
2020-02-14 17:50:47 -08:00
Brian Kassouf e2da4529c2 go mod vendor 2020-02-14 16:40:05 -08:00
Brian Kassouf 3bbd9dc34c
Port some changes back to OSS (#8359) 2020-02-14 16:39:13 -08:00
Becca Petrin 9fb430e8bf
changelog++ 2020-02-14 15:59:55 -08:00
Becca Petrin 0a7a7452f0
changelog++ 2020-02-14 15:58:52 -08:00
Jeff Mitchell 38679f4baa Update vendoring 2020-02-14 17:55:06 -05:00
Jeff Mitchell 463e5a05fe Bump API/SDK 2020-02-14 17:28:40 -05:00
Jeff Mitchell 509e25de21 Update api's sdk 2020-02-14 17:27:43 -05:00
Jeff Mitchell e90d9f3946 Update to go-kms-wrapping entropy module 2020-02-14 17:27:19 -05:00
Jeff Mitchell 31b6345c31 Remove EncryptedBlobInfo in Entry 2020-02-14 17:03:40 -05:00
Jeff Mitchell aeac23d59e Revert "Move encrypted blob info (#8357)"
This reverts commit 5a3c55b6dfe89d0348d78acafcb83b60cf614d38.
2020-02-14 17:02:33 -05:00
Clint 5cadbbf845
Changelog++ 2020-02-14 15:55:33 -06:00
Clint 39f1d26902
Docs enforce autoauth token (#8270)
* rename UseAutoAuthForce to ForceAutoAuth, because I think it reads better

* Document 'ForceAuthAuthToken' option for Agent Cache

* Update website/pages/docs/agent/caching/index.mdx

Co-Authored-By: Jim Kalafut <jkalafut@hashicorp.com>

* Add additional tests around use_auto_auth=force and add documentation

* remove note, it's no longer correct

Co-authored-by: Jim Kalafut <jim@kalafut.net>
2020-02-14 15:48:12 -06:00
Jeff Mitchell e12351f263
Move encrypted blob info (#8357) 2020-02-14 16:45:37 -05:00
Jeff Mitchell 01402febb8 Update proto 2020-02-14 16:00:33 -05:00
Clint dc25d6d544
Changelog++ 2020-02-14 14:26:54 -06:00
Clint d3cda0fe2c
Guard against using Raft as a seperate HA Storage (#8239)
* Guard against using Raft as a seperate HA Storage

* Document that Raft cannot be used as a seperate ha_storage backend at this time

* remove duplicate imports from updating with master
2020-02-14 14:25:53 -06:00
Clint 59fa431bce
Changelog++ 2020-02-14 13:34:17 -06:00
Becca Petrin 5f19ff828c
update kerberos dependency (#8353) 2020-02-14 11:13:28 -08:00
Michel Vocks 985acc4ce5
Fix ldap client upndomain (#8333) 2020-02-14 10:26:30 -08:00
Angel Garbarino eb92dd198a
Update CHANGELOG.md 2020-02-14 11:14:31 -07:00