Commit graph

8358 commits

Author SHA1 Message Date
Michael Russell 1b555b6d4c Only append the UserKnownHostsFile ssh flag when required (#4674)
Don't set a default value for the UserKnownHostsFile flag.
Only append `-o UserKnownHostsFile` to the ssh command if it
has been specified by the user or vault ssh has set it based on another
flag (such as flagHostKeyMountPoint)

Fixes https://github.com/hashicorp/vault/issues/4672
2018-06-01 09:56:22 -04:00
Jeff Mitchell c8bc434441 changelog++ 2018-06-01 09:16:49 -04:00
Michael Russell 4d1669938c Use hostname instead of the IP when running the actual ssh command (#4673)
This is implementing the same fix that was added for the CA mode for vault
ssh in https://github.com/hashicorp/vault/pull/3922
Using the IP address caused `Host` entries in the ssh_config to not
match anymore meaning you would need to hardcode all of your IP
addresses in your ssh config instead of using DNS to connect to hosts
2018-06-01 09:16:12 -04:00
Jeff Mitchell ffdd6dd62b changelog++ 2018-06-01 09:14:57 -04:00
Alex Ionescu 7c31dacea2 Custom extended key usage for PKI. (#4667)
Custom extended key usage for PKI
2018-06-01 09:13:54 -04:00
Jeff Mitchell c7981e6417
Clean up request logic and use retryable's more efficient handling (#4670) 2018-06-01 09:12:43 -04:00
Matthew Irish 4d5713d090
UI - don't re-throw error when fetching features (#4669) 2018-05-31 16:22:49 -05:00
Jeff Mitchell b9ea7ae7cd Bump retryablehttp dep 2018-05-31 17:14:04 -04:00
Brian Kassouf 80580b82f3
UI: Trim trailing slashes to avoid redirects (#4668) 2018-05-31 12:52:43 -07:00
Jim Kalafut 2528a261bf
Add gzip compression to UI static content responses (#4664) 2018-05-31 09:42:08 -07:00
vishalnayak 07688b0de1 changelog++ 2018-05-31 10:20:33 -04:00
Vishal Nayak 9aca33487e
Passthrough EntityID to backends (#4663)
* passthrough entity id

* address review feedback
2018-05-31 10:18:34 -04:00
Brian Kassouf 05b46def62
Cleanup core.go and break out HA functionality (#4661) 2018-05-30 17:30:50 -07:00
Matthew Irish 3fca27ae2e
changelog++ 2018-05-30 12:29:42 -05:00
Matthew Irish 85d7412107
UI access sidebar (#4658)
* add error template to access so that we can see the sidebar even if you don't have permissions

* identity template cleanup

* make the token expiry warning friendlier and style it
2018-05-30 12:26:54 -05:00
Jeff Mitchell 53c6ffcb75 Update kv plugin 2018-05-30 09:07:19 -04:00
Jeff Mitchell bee49b1150 Fix Travis again 2018-05-30 08:56:14 -04:00
Jeff Mitchell 3f5d254111 Try another way for building Travis independently 2018-05-30 08:52:50 -04:00
Jeff Mitchell c4b53bc805 Block travis from running ldap tests as the test server is often failing 2018-05-30 08:46:25 -04:00
Jeff Mitchell 52ab8f50ea Give the token store revoke-self test more breathing room as Travis timings are too tight 2018-05-30 08:41:55 -04:00
Jeff Mitchell 9e7f381fca Sync over changes to config.go 2018-05-30 08:34:46 -04:00
amcbarnett 55eb4a997d Update mount-filter.html.md (#4656) 2018-05-30 08:28:51 -04:00
Matthew Irish 96c1e547f0
UI identity lists (#4655)
* add new key_info to the list models for identity endpoints

* add details to group and show pages

* add parent groups to group tabs

* render alias the same everywhere

* space tab subnav more like the designs

* fix tests

* pull tabs in and remove padding
2018-05-29 21:56:15 -05:00
Jeff Mitchell 0e396cf4fe Bump plugin deps 2018-05-29 21:16:48 -04:00
Jeff Mitchell 0e56c769e9 Add a note about updating plugins in Makefile 2018-05-29 21:09:57 -04:00
emily 192c228931 Add GCP auth helper (#4654)
* update auth plugin vendoring

* add GCP auth helper and docs
2018-05-29 20:36:24 -04:00
Becca Petrin 9228659c5c
add formatter to ad docs (#4653) 2018-05-29 16:47:46 -07:00
Becca Petrin 13a0eebb67
Update ad plugin (#4652) 2018-05-29 16:16:43 -07:00
Jeff Mitchell d9150969af Re-add removed check between shares/threshold 2018-05-29 18:38:14 -04:00
Brian Kassouf 893d874291 Update proto files (#4651) 2018-05-29 18:23:51 -04:00
Jeff Mitchell 4b1eb2805a Fix rekey tests 2018-05-29 18:02:13 -04:00
Jeff Mitchell be2c8d0665 Fix tests 2018-05-29 17:02:52 -04:00
Jeff Mitchell b7005ad62d Fix missing verification nonce field 2018-05-29 16:13:08 -04:00
Jeff Mitchell 51e6372a64 changelog++ 2018-05-29 16:06:44 -04:00
Calvin Leung Huang a986adfc3f changelog++ 2018-05-29 16:00:48 -04:00
Matthew Irish e35ec4b6d6
UI - strip secret slash (#4649)
* remove unused didError

* error should fall back to message if the errors array is empty

* strip leading slash when saving a secret
2018-05-29 14:48:55 -05:00
Eduardo Criado Mascaray f5c18d58ef Fix typo in group parameter in Vault systemd file (#4642) 2018-05-29 15:04:43 -04:00
Viacheslav Vasilyev d8d6be423b Make test-case output a little bit consistent (#4645)
As well as in some places `-d` were incorrectly replaced with `--data`, sample commands with `accessor` were added
2018-05-29 15:03:33 -04:00
Jeff Mitchell eec68e0de2 changelog++ 2018-05-29 15:01:39 -04:00
Jeff Mitchell bde0bda710
Merge pull request #4600 from hashicorp/rekey-verification
Rekey verification, allowing new key shares to be confirmed before committing the new key.
2018-05-29 15:00:07 -04:00
Jeff Mitchell 7cf283cd2c Make the rekey verification message more complete 2018-05-29 14:59:19 -04:00
Jeff Mitchell 3274d44012
Add num_member_entities and num_parent_groups to key_info in group listing (#4648) 2018-05-29 14:58:23 -04:00
Matthew Irish 64c0458d7e
changelog++ 2018-05-29 12:49:35 -05:00
Jeff Mitchell 2971813684 Add verification nonce to non-verify status, if it exists, and name it verification nonce in the verify status for clarity 2018-05-29 13:18:52 -04:00
Jeff Mitchell c53717ba1c Fix panic and update some text 2018-05-29 13:13:47 -04:00
Jeff Mitchell 8b065344f8 Update CLI text 2018-05-29 12:42:33 -04:00
Jeff Mitchell 2d05e072b9 Fix a null pointer and update status threshold 2018-05-29 12:04:30 -04:00
Becca Petrin 606889f005
Docs for the upcoming Active Directory secrets engine (#4612) 2018-05-29 08:49:09 -07:00
Jeff Mitchell bd0ac25eb9
Merge branch 'master' into rekey-verification 2018-05-29 10:19:57 -04:00
Matthew Irish b383874a76
UI - Active Directory secrets (#4647)
* add AD secrets in the ui and move deprecated engines to the bottom of the list

* fix tools tests

* prettier
2018-05-29 09:14:31 -05:00