luxolus/open-vault
2
0
Fork 0
Code Issues 1 Pull requests Releases Activity
17706 commits 1 branch 0 tags 214 MiB
Commit graph

2886 commits

Author SHA1 Message Date
hc-github-team-secure-vault-core 386d78180c
backport of commit 4654c15248013edeb36fdeae28ab3631bebe0a8e (#21188) 2023-08-18 09:09:32 -04:00
hc-github-team-secure-vault-core e98cd02fa0
backport of commit c2ba113defbd98a6cd749dcd13f734b911241c98 (#22423) 
Co-authored-by: akshya96 <87045294+akshya96@users.noreply.github.com>
 2023-08-17 14:41:15 -07:00
hc-github-team-secure-vault-core b82a26bb49
backport of commit abaf1d68743dd65af8919f56687061eb29c4bdbe (#22379) 2023-08-16 20:27:19 +00:00
hc-github-team-secure-vault-core b30f78f66a
Ignore errors from rollback manager invocations (#22235) (#22238) 
* Ignore errors from rollback manager invocations

During reload and mount move operations, we want to ensure that errors
created by the final Rollback are not fatal (which risk failing
replication in Enterprise when the core/mounts table gets invalidated).
This mirrors the behavior of the periodic rollback manager, which
only logs the error.

This updates the noop backend to allow failing just rollback operations,
which we can use in tests to verify this behavior and ensure the core
operations (plugin reload, plugin move, and seal/unseal) are not broken
by this. Note that most of these operations were asynchronous from the
client's PoV and thus did not fail anyways prior to this change.



* Add changelog entry



* Update vault/external_tests/router/router_ext_test.go



---------

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
Co-authored-by: Alexander Scheel <alex.scheel@hashicorp.com>
Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
 2023-08-16 17:34:37 +00:00
hc-github-team-secure-vault-core f8cc240ab5
backport of commit 5a60c98a464af99c44a1eb62655ede2af3c85ff5 (#22370) 
Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
 2023-08-16 10:48:12 -04:00
hc-github-team-secure-vault-core 0624fb4113
backport of commit f3a4c01ba9e05850e255406f5bf4bc7f052c3985 (#22140) 
Co-authored-by: akshya96 <87045294+akshya96@users.noreply.github.com>
 2023-07-31 14:54:29 -07:00
hc-github-team-secure-vault-core 3fb1a15a4f
backport of commit c040f901e57d2d04772827b52f7b052757986897 (#22135) 
Co-authored-by: Chris Capurso <1036769+ccapurso@users.noreply.github.com>
 2023-07-31 13:57:29 -04:00
hc-github-team-secure-vault-core 8a911f6fee
backport of commit fdc257d3a0a13d6bc98f84ecf1b4faa6291125e3 (#22121) 
Co-authored-by: Max Bowsher <maxbowsher@gmail.com>
 2023-07-28 17:38:08 +00:00
hc-github-team-secure-vault-core a08da20b50
backport of commit d407078766e14c883978d496895aa4a068c87c68 (#22058) 
Co-authored-by: Josh Black <raskchanky@gmail.com>
 2023-07-26 00:27:13 +00:00
hc-github-team-secure-vault-core cbff440925
backport of commit da5d0ca498677d6fe0a8e7033217245ebbfd81d4 (#20994) 
Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
 2023-07-24 19:10:44 +00:00
hc-github-team-secure-vault-core af5132f100
backport of commit 215687795d6b9ad2b3a3e2c7dbb70b01cc470e44 (#21954) 
Co-authored-by: Hamid Ghaf <83242695+hghaf099@users.noreply.github.com>
 2023-07-19 18:32:53 +00:00
hc-github-team-secure-vault-core 5041048f4d
backport of commit a9977fab8008a53d052b6f89f41eb65fb83bdaa8 (#21910) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2023-07-18 13:01:39 +00:00
hc-github-team-secure-vault-core f5bb678c98
backport of commit e1a9d85a18858bccf4de71ddc0ce7592170ab894 (#21879) 
Co-authored-by: akshya96 <87045294+akshya96@users.noreply.github.com>
 2023-07-17 09:46:00 -07:00
hc-github-team-secure-vault-core 9c43e232d2
backport of commit 5d97159f05e581c0e5f14be9e2e3f8ac3b733091 (#21886) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2023-07-17 13:01:25 +00:00
hc-github-team-secure-vault-core a0dca58c44
backport of commit 0b0b15f968bb243b29544d6a7f2652137e07d632 (#21839) 
Co-authored-by: Hamid Ghaf <83242695+hghaf099@users.noreply.github.com>
 2023-07-13 15:26:01 -07:00
hc-github-team-secure-vault-core 1ebd61689d
backport of commit a98c0d9cbe9d7cc59fc17a0416e61469cd9d56ac (#21797) 
Co-authored-by: Ryan Cragun <me@ryan.ec>
 2023-07-12 20:40:35 +00:00
hc-github-team-secure-vault-core c4f8615678
backport of commit 3bf1299814af605b534a8c20b207790d3de21bcd (#21715) 
Co-authored-by: Max Bowsher <maxbowsher@gmail.com>
Co-authored-by: Anton Averchenkov <84287187+averche@users.noreply.github.com>
 2023-07-10 21:34:10 +00:00
hc-github-team-secure-vault-core 48247cdec6
backport of commit 9ace8751ff0df06058043b92343ceab2121c2bbd (#21727) 
Co-authored-by: divyaac <divya.chandrasekaran@hashicorp.com>
 2023-07-10 12:52:42 -07:00
hc-github-team-secure-vault-core 1d9e560f0f
backport of commit 2f677665b37fcced51737cdef7abbebb4c719529 (#21527) 
Co-authored-by: Max Bowsher <maxbowsher@gmail.com>
 2023-07-06 20:01:33 +00:00
hc-github-team-secure-vault-core 2c4e40eaf6
backport of commit 8bb9cbbebaed39b290590f79a8857f5ba01fbf16 (#21627) 
Co-authored-by: Peter Wilson <peter.wilson@hashicorp.com>
 2023-07-06 18:46:13 +01:00
hc-github-team-secure-vault-core 7e8c0a1cae
backport of commit 4c1a7b53d362ee733707de2fa3280596e35d7f03 (#21609) 
Co-authored-by: Bianca Moreira <48203644+biazmoreira@users.noreply.github.com>
 2023-07-06 12:05:43 +02:00
hc-github-team-secure-vault-core 946329b29d
backport of commit e0472d4059decd4a5801e027c34d38b80e038a32 (#21590) 
Co-authored-by: Anton Averchenkov <84287187+averche@users.noreply.github.com>
 2023-07-05 15:29:29 -04:00
hc-github-team-secure-vault-core a2160e5551
backport of commit c9b18c43ea0ed3a06127ad22dec0a13d094ee06d (#21551) 
Co-authored-by: Max Bowsher <maxbowsher@gmail.com>
 2023-07-04 00:37:25 +00:00
hc-github-team-secure-vault-core 9310e3acba
backport of commit 5b41148bfcfd305991c19998f6d04ca8880da137 (#21488) 2023-06-28 17:46:37 +00:00
hc-github-team-secure-vault-core aa7b7ad951
backport of commit c3741b0177056d9e999ff03a6542a4811508fa9a (#21485) 
Co-authored-by: Violet Hynes <violet.hynes@hashicorp.com>
 2023-06-27 15:54:28 -04:00
hc-github-team-secure-vault-core 36365ed7f4
backport of commit 3a46ecc389e9096ccea6c6f847b68ada7f8068d7 (#21362) 
Co-authored-by: Violet Hynes <violet.hynes@hashicorp.com>
 2023-06-21 14:01:13 +00:00
hc-github-team-secure-vault-core 3ddd7a14f0
backport of commit c5549cdac681676ae52ea173d737ee1c5d1949a2 (#21272) 
Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
 2023-06-15 20:41:45 +00:00
hc-github-team-secure-vault-core 7385e73a15
backport of commit 7b56b69959a7e5c1eb6326df3dd92e2411154548 (#21265) 
Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
 2023-06-15 17:05:27 +00:00
hc-github-team-secure-vault-core fa482cbf1c
backport of commit f2887a253506f80cd507d619dc49a2a495c173c1 (#21139) 
Co-authored-by: Paul Banks <pbanks@hashicorp.com>
 2023-06-13 14:21:51 +00:00
hc-github-team-secure-vault-core 6c26b96b31
backport of commit 0ff9059967aa3fc0f2be0fd46926f9a7f1de5573 (#21124) 
Co-authored-by: Josh Black <raskchanky@gmail.com>
 2023-06-09 22:04:11 +00:00
hc-github-team-secure-vault-core 03a8d1268a
backport of commit 8931e4790b46df81cca615865e1f33a127276e1d (#20972) 
Co-authored-by: akshya96 <87045294+akshya96@users.noreply.github.com>
 2023-06-08 18:59:55 +00:00
hc-github-team-secure-vault-core 6009fab706
backport of commit b54645514400b7c3db6e4a60b5491cdb7d55ceb6 (#20869) 
Co-authored-by: akshya96 <87045294+akshya96@users.noreply.github.com>
 2023-05-31 17:51:20 +00:00
hc-github-team-secure-vault-core c16d572ab8
backport of commit 3b5ca69b62a3c59468754278f579610c0902fa05 (#20839) 
Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
 2023-05-30 16:41:07 +00:00
hc-github-team-secure-vault-core 337d13cc3a
backport of commit c67242463c239215a1dbf3b9979787a5f8359bbf (#20830) 
Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
 2023-05-29 15:02:27 +00:00
miagilepner 741c890ce0
VAULT-14735: write mock activity log entity files (#20702) 
* support writing entities

* tests for writing entity segments
 2023-05-25 18:55:55 +02:00
Peter Wilson 9723462891
updated Leader godoc comment to give a warning on possible deadlock (#20773) 2023-05-25 12:02:39 +00:00
akshya96 38250d1917
Revert "User Lockout Perf Standby Error oss (#20766)" (#20770) 
This reverts commit 7a546a96e41e24b8341bb890154c9093accb9dc9.
 2023-05-24 18:55:34 -07:00
akshya96 3200310b90
User Lockout Perf Standby Error oss (#20766) 
* adding changes from ent

* add changelog

* removing new line
 2023-05-24 17:35:17 -07:00
Alexander Scheel c67546511d
Move activityType to a constant, set precedence (#20738) 
Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
 2023-05-24 12:29:47 -04:00
miagilepner fdecd99d26
VAULT-14735: repeated and segmented activity log clients (#20699) 
* add repeated, segmented, and writing

* simplify

* pr fixes

* remove comment

* Update vault/logical_system_activity_write_testonly.go

Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>

---------

Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
 2023-05-24 08:42:00 +00:00
miagilepner 06055fb668
VAULT-15395: Support mocking time functions in the activity log (#20720) 
* mock time in the activity log

* cleanup

* fix comment

* pr fixes

* update comment to explain why new timer is needed
 2023-05-23 16:25:23 +00:00
Márk Sági-Kazár 258b2ef740
Upgrade go-jose library to v3 (#20559) 
* upgrade go-jose library to v3

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

* chore: fix unnecessary import alias

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

* upgrade go-jose library to v2 in vault

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

---------

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
 2023-05-23 12:25:58 +00:00
miagilepner bff8931640
VAULT-14735: generate mock clients for activity log (#20252) 
* first part of segment client generation

* fix imports

* initial pr fixes

* refactor and fix

* update comments

* assign client type
 2023-05-23 11:58:51 +02:00
Mike Palmiotto dc8d2af2d8
Add current_billing_period activity endpoint param (#20694) 
* Add current_billing_period activity endpoint param

This commit introduces a new parameter: `current_billing_period`, which
can be used in lieu of `start_time` and `end_time` options.

GET ... /sys/internal/counters/activity?current_billing_period=true now
results in a response which contains the full billing period
information.

* changelog

* Update internal counters docs
 2023-05-22 09:22:45 -04:00
Mike Palmiotto a40341d176
Add client_type field to EntityRecord protobuf (#20626) 
* Add client_type field to EntityRecord protobuf

* changelog

* Add ACME clientType verification
 2023-05-19 20:30:12 +00:00
Alexander Scheel 9d2af72bde
Fix entropy sourcing on Vault Enterprise (#20684) 
Note the three overlapping scenarios discussed in the comments. In the
future, when this interface is more broadly supported, we should likely
add the interface directly to SystemView and implement it over the GRPC
interface, removing this nasty layering of already complex SystemView
implementations.

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
 2023-05-19 14:15:43 -04:00
miagilepner 7aa1bce6fb
VAULT-15703: Reload automated reporting (#20680) 
* support config reloading for census

* changelog

* second changelog entry for license updates

* correct changelog PR
 2023-05-19 14:42:50 +00:00
l-with d1d3d697da
Add possibility to decode generated encoded root token to api (#20595) 2023-05-18 15:18:19 -04:00
Hamid Ghaf 04d81e1c27
report intermediate error messages during request forwarding (#20643) 
* report intermediate error messages during request forwarding

* CL
 2023-05-18 05:07:54 -07:00
Marc Boudreau b35ded0cb8
VAULT-16217 Fixing Broken OpenAPI Specification Generation (#20597) 
* including path parameters into stub Paths for enterprise-only endpoints

* Set Required to true for path parameters in enterprise-only path stubs

Co-authored-by: Anton Averchenkov <84287187+averche@users.noreply.github.com>

* properly format go code

* re-adding initialization of Fields and Operations fields in the stubbed Path struct

---------

Co-authored-by: Anton Averchenkov <84287187+averche@users.noreply.github.com>
 2023-05-17 14:56:45 -04:00