2da7de2fec
Minimal changes to solve Dependency CVEs [VAULT-871] ( #11015 )
...
* minimal changes to solve most of the cves
* cleanup
* finished go mod vendor upgrades
2021-03-01 14:35:40 -08:00
b13b27f37e
OSS side barrier encryption tracking and automatic rotation ( #11007 )
...
* Automatic barrier key rotation, OSS portion
* Fix build issues
* Vendored version
* Add missing encs field, not sure where this got lost.
2021-02-25 14:27:25 -06:00
00c1acf0e1
Vendor OpenLDAP v0.4.0 ( #10996 )
2021-02-25 13:00:00 -07:00
eb891db72d
Vendor Couchbase DB plugin v0.3.0 ( #10995 )
2021-02-25 12:59:45 -07:00
9584c989ca
don't panic on connection errors in DefaultRetryPolicy ( #11002 )
...
fixes #11001
2021-02-25 13:16:17 -05:00
0273647f97
Update vault/api version ( #10965 )
...
* Update vault/api version
* go mod vendor
2021-02-24 18:19:05 +01:00
c1ddfbb538
OSS parts of the new client controlled consistency feature ( #10974 )
2021-02-24 06:58:10 -05:00
0c17cb5a79
upgrade consul template ( #10973 )
2021-02-22 14:24:27 -08:00
f33fda0d87
Adds method for rotating a policy without a persist ( #10941 )
2021-02-22 11:09:13 -08:00
bc44d19bbe
Add ParseCapacityString ( #10956 )
2021-02-22 10:44:55 -08:00
2aff402279
Bundle new Vault plugin: Terraform secrets ( #10931 )
...
* Bundle Terraform secrets engine
* update go.mod/sum
* vendor update
* add changelog entry
* add secrets terraform
2021-02-19 16:38:56 -06:00
4a96126d5a
Revert "Vault Dependency Upgrades [VAULT-871] ( #10903 )" ( #10939 )
...
This reverts commit eb74ca61fc4dcb7038f39defb127d5d639ba0ca1.
2021-02-18 15:40:18 -05:00
a26d1300e8
Vault Dependency Upgrades [VAULT-871] ( #10903 )
...
* upgrade vault dependency set
* etcd and grpc issues:
* better for tests
* testing
* all upgrades for hashicorp deps
* kubernetes plugin upgrade seems to work
* kubernetes plugin upgrade seems to work
* etcd and a bunch of other stuff
* all vulnerable packages upgraded
* k8s is broken in linux env but not locally
* test fixes
* fix testing
* fix etcd and grpc
* fix etcd and grpc
* use master branch of go-testing-interface
* roll back etcd upgrade
* have to fix grpc since other vendors pull in grpc 1.35.0 but we cant due to etcd
* rolling back in the replace directives
* a few more testing dependencies to clean up
* fix go mod vendor
2021-02-18 12:31:57 -08:00
52845525e9
OpenAPI - Don't panic if field isn't found ( #10929 )
2021-02-17 15:45:45 -07:00
a7531a11ea
Updates the JWT/OIDC auth plugin ( #10919 )
2021-02-16 17:21:35 -08:00
6e1b183f79
Shutdown Test Cores when Tests Complete ( #10912 )
...
* Shutdown Test Cores when Tests Complete
* go mod vendor
2021-02-12 13:04:48 -07:00
53cb1deb38
Revert "Read-replica instead of non-voter ( #10875 )" ( #10890 )
...
This reverts commit fc745670cf34821f5834357d9caebc3351dbc1e7.
2021-02-10 16:41:58 -05:00
d22c6f9a7a
Update gopsutil & x/sys libraries ( #10889 )
2021-02-10 14:33:11 -07:00
a2394e7353
Read-replica instead of non-voter ( #10875 )
2021-02-10 09:58:18 -05:00
43a05c5e84
PostgreSQL - Add username customization ( #10766 )
2021-02-04 16:05:56 -07:00
ec18926754
Vendor OpenLDAP dynamic secrets ( #10818 )
2021-02-02 11:41:47 -07:00
fa5784d789
Pull in newest consul-template from master and all corresponding dependencies [VAULT-1392] ( #10756 )
...
* pull in newest consul template with bugfix and all dependencies
* pull in newest consul template with bugfix and all dependencies
* Rename readme.md to README.md
* add changelog
2021-01-29 12:30:16 -08:00
508d33e64a
Updating GCP secrets plugin ( #10759 )
...
* Update gcp secrets plugin pseudo tag
2021-01-26 09:35:49 -08:00
1f164a8202
Add 'Add' and 'Del' functions to LDAP interface ( #10692 )
2021-01-20 16:59:29 -07:00
5794c4e91e
Updating snowflake plugin to 0.1.1 ( #10709 )
2021-01-20 12:56:36 -08:00
331529fc94
Aerospike storage backend ( #10131 )
...
* add an Aerospike storage backend
* go mod vendor
* add Aerospike storage configuration docs
* review fixes
* bump aerospike client to v3.1.1
* rename the defaultHostname variable
* relocate the docs page
2021-01-12 15:26:07 -08:00
f6bdda8c9c
add variable entropy readers to cert gen helpers [VAULT-1179] ( #10653 )
...
* move entropy augmentation in cert gen to oss
* changelog
* go mod vendor
* updated helpers to allow custom entropy
* comments
* comments
2021-01-08 09:48:27 -08:00
7189a67a33
Adding snowflake as a bundled database secrets plugin ( #10603 )
...
* Adding snowflake as a bundled database secrets plugin
* Add snowflake-database-plugin to expected bundled plugins
* Add snowflake plugin name to the mockBuiltinRegistry
2021-01-07 09:30:24 -08:00
8c67bed7ae
Send a test message before committing a new audit device. ( #10520 )
...
* Send a test message before committing a new audit device.
Also, lower timeout on connection attempts in socket device.
* added changelog
* go mod vendor (picked up some unrelated changes.)
* Skip audit device check in integration test.
Co-authored-by: swayne275 <swayne@hashicorp.com>
2020-12-16 16:00:32 -06:00
058532406b
mod: update secrets-gcp to latest ( #10558 )
2020-12-14 11:42:53 -08:00
a7aac342bd
Only set the namespace if the env var isn't present ( #1519 ) ( #10556 )
2020-12-14 11:40:48 -08:00
747d49150b
Updates the OIDC/JWT auth plugin ( #10546 )
2020-12-14 10:07:07 -08:00
275ca323e8
core: Record the time a node became active ( #10489 )
...
* core: Record the time a node became active
* Update vault/core.go
Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
* Add omitempty field
* Update vendor
* Added CL entry and fixed test
* Fix test
* Fix command package tests
Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
2020-12-11 16:50:19 -08:00
a73e834fda
Fail build if go mod vendor changes anything. ( #10524 )
2020-12-10 10:09:21 -05:00
ab72fa06ee
Add AllowedHeader and fix AllowedOrigins in the API ( #10482 )
...
* Add AllowedHeader and fix AllowedOrigins in the API
* Update changelog entry
* Fix wrong response conversion
2020-12-03 14:31:25 +01:00
f71203c439
Fix license caching issue ( #10424 )
...
* Fix license caching issue
* Add changelog entry
2020-12-02 18:21:14 +01:00
cc7efd393d
MySQL - Fix username generation length bug ( #10433 )
2020-12-01 15:24:51 -07:00
32cb144d0d
Update HCL dependency to fix ParseACLPolicy error on invalid syntax ( #10156 )
2020-11-30 09:17:33 -06:00
b8ba047b35
Allow Vault Agent to run as a Windows service ( #10231 )
2020-11-23 14:24:32 -08:00
6261afb343
Port: Telemetry For Lease Expiration Times ( #10375 )
...
* port lease metrics
* go mod vendor
* caught a bug
2020-11-13 10:26:58 -08:00
ca72dd4761
mod: update database-couchbase to v0.2.1 ( #10286 )
2020-10-30 14:29:54 -07:00
531e2eb613
mod: update vault plugins ( #10283 )
2020-10-30 13:28:47 -07:00
81a86f48e8
Backport some OSS changes ( #10267 )
...
* Backport some OSS changes
* go mod vendor
2020-10-29 16:47:34 -07:00
a15236e664
Updating to jwt plugin@master ( #10266 )
2020-10-29 14:25:06 -07:00
08486cdbb9
mod: update gopsutil@v2.20.9 ( #10261 )
2020-10-28 17:20:54 -07:00
b7cf4a05ff
Add support for Managed Identity auth for physical/Azure ( #10189 )
...
* Add support for Managed Identity auth for physical/Azure
Obtain OAuth token from IMDS to allow for access to Azure Blob with
short-lived dynamic credentials
Fix #7322
* add tests & update docs/dependencies
2020-10-28 15:04:26 -07:00
95bbd8d920
Merge PR #10192 : Auto-Join: Configurable Scheme & Port (and add k8s provider)
2020-10-23 16:13:09 -04:00
bd79fbafb3
Add couchbase, elasticsearch, and mongodbatlas back ( #10222 )
...
Updated the `Serve` function so these can be added back into Vault
2020-10-22 17:20:17 -06:00
e6c8ee24ea
DBPW - Enables AutoMTLS for DB plugins ( #10220 )
...
This also temporarily disables couchbase, elasticsearch, and
mongodbatlas because the `Serve` function needs to change signatures
and those plugins are vendored in from external repos, causing problems
when building.
2020-10-22 15:43:19 -06:00
92fa04c910
Update auth/jwt to latest master ( #10214 )
...
Fixes oidc config UI, and adds EdDSA (ed25519) to supported algorithms
2020-10-22 13:59:37 -07:00
Hridoy Roy