Commit graph

1374 commits

Author SHA1 Message Date
Armon Dadgar 12d3aee58e audit: fixing panic caused by tls connection state. Fixes #322 2015-06-29 17:16:17 -07:00
Armon Dadgar b6e422a0a5 Updating godep 2015-06-29 16:44:02 -07:00
Armon Dadgar c27d214280 Merge pull request #379 from hashicorp/sethvargo/authorship
Restore authorship on commits
2015-06-29 16:42:36 -07:00
Christian Svensson 3c000f5129 Update Godeps for go-ldap/ldap 2015-06-29 19:03:51 -04:00
Christian Svensson 862a04f7ad Pass ServerName for LDAPS TLS connection validation 2015-06-29 19:01:11 -04:00
Christian Svensson f862083dc1 Use go-ldap/ldap's ParseDN to extract group name from DN 2015-06-29 19:01:02 -04:00
Christian Svensson 1d177ea6d9 Allow almost all leagal LDAP names to be used
Implement LDAP escaping according to RFC 4514 to allow
complex LDAP usernames to be used.

Leaving ASN BER encoded values unsupported for now.
2015-06-29 19:00:53 -04:00
Armon Dadgar 3bc388f30d Merge pull request #366 from nbrownus/http_responses
Better http responses
2015-06-29 15:31:45 -07:00
Armon Dadgar 496ebe561c vault: cleanups for the audit log changes 2015-06-29 15:27:28 -07:00
Armon Dadgar c1ff26d186 Merge branch 'nbrownus-audit-logging' 2015-06-29 15:19:12 -07:00
Armon Dadgar add8e1a3fd Fixing merge conflict 2015-06-29 15:19:04 -07:00
Armon Dadgar deeb611ab2 vault: handle a panic while generating audit output 2015-06-29 15:11:35 -07:00
Armon Dadgar 8987bc7e00 Updating Godeps 2015-06-29 15:05:44 -07:00
Armon Dadgar 7573c37f8e Fixing godeps file 2015-06-29 14:54:25 -07:00
Armon Dadgar ba0b37e792 Merge branch 'bluecmd-master' 2015-06-29 14:51:03 -07:00
Armon Dadgar 337997ab04 Fixing merge conflict 2015-06-29 14:50:55 -07:00
Armon Dadgar 29e004ddbb Merge pull request #373 from nbrownus/audit_key-status
Fixing key-status if audit logging is on
2015-06-29 14:47:55 -07:00
Nate Brown a0be7af858 Fixing key-status if audit logging is on 2015-06-24 10:57:05 -07:00
Armon Dadgar 3902626163 Merge pull request #310 from jefferai/f-pki
Initial PKI backend implementation
2015-06-21 11:12:22 +01:00
Armon Dadgar 2ddd4392cc Merge pull request #365 from swills/passwd
allow building on FreeBSD
2015-06-21 11:09:19 +01:00
Armon Dadgar 4edb78bf42 Merge pull request #368 from sergiopatino/master
Fix typo in link to Atlas URL on Community page.
2015-06-21 11:08:57 +01:00
sergiopatino 3e58e8fff2 Fix typo in link to Atlas URL.
Missing a colon after https!
2015-06-21 02:41:26 -07:00
Nate Brown 94e89537a1 Fixing tests 2015-06-19 14:04:32 -07:00
Nate Brown 31ab086063 Doing a little better with http response codes 2015-06-19 14:00:48 -07:00
Steve Wills 7244094509 allow building on FreeBSD
Allow this file to build on FreeBSD
2015-06-19 16:59:24 -04:00
Jeff Mitchell 390f769d1a Add unit tests for certutil, and fix a whitespace stripping issue.
Commit contents (C)2015 Akamai Technologies, Inc. <opensource@akamai.com>
2015-06-19 16:06:56 -04:00
Jeff Mitchell e086879fa3 Merge remote-tracking branch 'upstream/master' into f-pki 2015-06-19 13:01:26 -04:00
Jeff Mitchell a6fc48b854 A few things:
* Add comments to every non-obvious (e.g. not basic read/write handler type) function
* Remove revoked/ endpoint, at least for now
* Add configurable CRL lifetime
* Cleanup
* Address some comments from code review

Commit contents (C)2015 Akamai Technologies, Inc. <opensource@akamai.com>
2015-06-19 12:48:18 -04:00
Mitchell Hashimoto 0809378c9b audit: some tests 2015-06-19 03:31:19 -07:00
Nate Brown 91611a32c9 Fixing tests 2015-06-18 20:14:20 -07:00
Nate Brown b667ef4c71 Collapsing audit response logging to a single point 2015-06-18 19:48:26 -07:00
Nate Brown 3a860fe5c1 Actually not logging auth in the response if nil 2015-06-18 19:48:00 -07:00
Nate Brown 4ec685dc1a Logging authentication errors and bad token usage 2015-06-18 18:30:18 -07:00
Nate Brown c55f103c58 Adding error and remote_address to audit log lines 2015-06-18 17:17:18 -07:00
Armon Dadgar fcb0bddb01 cli: adding path-help to common commands list 2015-06-18 17:12:21 -07:00
Armon Dadgar 9772a72772 command/read: Ensure only a single argument. Fixes #304 2015-06-18 16:00:41 -07:00
Armon Dadgar c54868120a command/path-help: rename command, better error if sealed. Fixes #234 2015-06-18 15:56:42 -07:00
Armon Dadgar e2b0f5dae8 vault: improve lease error message. Fixes #338 2015-06-18 15:37:08 -07:00
Armon Dadgar 07fef2db8b Merge branch 'pradeepchhetri-master' 2015-06-18 14:31:16 -07:00
Armon Dadgar 28ddff305c physical/mysql: cleanup and documentation 2015-06-18 14:31:00 -07:00
Armon Dadgar 3e296cdebd Merge branch 'master' of https://github.com/pradeepchhetri/vault into pradeepchhetri-master 2015-06-18 13:55:25 -07:00
Armon Dadgar 3533d87746 command/write: adding force flag for when no data fields are necessary. Fixes #357 2015-06-18 13:51:06 -07:00
Armon Dadgar 7394c7bd8d command/server: fixing output weirdness 2015-06-18 13:48:18 -07:00
Armon Dadgar 7bd1e7d826 command/auth: warn earlier about VAULT_TOKEN 2015-06-18 13:48:04 -07:00
Jeff Mitchell 34f495a354 Refactor to allow only issuing CAs to be set and not have things blow up. This is useful/important for e.g. the Cassandra backend, where you may want to do TLS with a specific CA cert for server validation, but not actually do client authentication with a client cert.
Commit contents (C)2015 Akamai Technologies, Inc. <opensource@akamai.com>
2015-06-18 15:22:58 -04:00
Jeff Mitchell 9e00ca769a Restructure a little bit to make the helper library fully standalone. This makes it easier to move around later if desired, and for use by external programs.
Commit contents (C)2015 Akamai Technologies, Inc. <opensource@akamai.com>
2015-06-18 06:42:57 -04:00
Armon Dadgar 28f18119e0 command/auth: warn about the VAULT_TOKEN env var. Fixes #195 2015-06-17 19:19:02 -07:00
Armon Dadgar 89a12c99fc Merge pull request #355 from hashicorp/f-transit
Improving the transit backend
2015-06-17 18:55:29 -07:00
Armon Dadgar 7e6f44e39e website: document transit upsert behavior 2015-06-17 18:51:58 -07:00
Armon Dadgar d34861b811 secret/transit: allow policies to be upserted 2015-06-17 18:51:05 -07:00