luxolus/open-vault
2
0
Fork 0
Code Issues 1 Pull requests Releases Activity
12204 commits 1 branch 0 tags 214 MiB
Commit graph

41 commits

Author SHA1 Message Date
Theron Voran e1a432a167
AWS: Add iam_groups parameter to role create/update (#8811) 
Allows vault roles to be associated with IAM groups in the AWS
secrets engine, since IAM groups are a recommended way to manage
IAM user policies. IAM users generated against a vault role will
be added to the IAM Groups. For a credential type of
`assumed_role` or `federation_token`, the policies sent to the
corresponding AWS call (sts:AssumeRole or sts:GetFederation) will
be the policies from each group in `iam_groups` combined with the
`policy_document` and `policy_arns` parameters.

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
 2020-06-09 16:56:12 -07:00
joe miller 15661719fa
document all of the supported elliptic curves (#8722) 2020-06-08 11:26:56 -04:00
Austin Gebauer bf2ce8d1cb
docs: fix port number in curl command for aws rotate root iam creds (#9157) 2020-06-05 16:00:49 -07:00
Michael Golowka 5ca4d819d1
Update OpenLDAP Secrets Docs with Password Policies (#9088) 
* Update OpenLDAP docs to use password policies
 2020-06-02 11:34:01 -06:00
Christophe Drevet-Droguet 932c1834cc
ssh certificate signing: fix documentation of extensions (#8859) 2020-05-29 13:23:19 -04:00
Jeff Escalante 8eed94b072
🌷 Docs Website Maintenance (#8985) 
* website maintenance round
* improve docs, revert bug workaround as it was fixed
* boost memory
* remove unnecessary code
 2020-05-21 13:18:17 -04:00
Steven Robertson d9c5a6130a
fixes roleset GET to say 'read' instead of 'delete' (#8799) 2020-05-13 15:13:34 -04:00
Nicole Forrester 77ad037d9c
Add vault docs redirects & remove deprecated database docs (#8922) 
* website: add redirects for old database docs
* delete deprecated database docs
 2020-05-11 14:20:40 -06:00
Michael Golowka d5be4fbd6a
Improve documentation around database plugins (#8892) 
* Adds a summary to the top of each plugin's page showing the capabilities that the plugin has.
* Fixed sidebar sorting (they weren't quite alpabetical)
* Improved instructions for using the Oracle plugin
  * Added note about using the pluggable database rather than the container database
* Replaced admin/root usernames with super-user ones to encourage users to not use the root user in Vault
* Included suggestions to rotate the root user's password when the plugin is capable
* Improve documentation around rotating the root user's password
* Fixed various typos
 2020-05-01 15:05:05 -06:00
Scott Miller f5b2394aca
Add documentation warning against the use of SHA-1, and policy advice on how to block it (#8885) 2020-05-01 13:46:04 -05:00
ncabatoff 997fe6152c
Add overlooked role params. (#8898) 2020-04-30 13:05:20 -04:00
Brian Kassouf 21cdba6fb5
identity: Add batch entity deletion endpoint (#8785) 
* identity: Add batch entity deletion endpoint

* Update the parameter description

* Update error message

* Update helper/storagepacker/storagepacker.go

Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>

* Review feedback

* Update vault/identity_store_entities.go

Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>

Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
 2020-04-23 15:25:13 -07:00
Adrienne Cohea 858549450a
Documentation: In Transit, for the Trim Key API endpoint, correct the sample payload. (#8763) 2020-04-17 11:20:17 -07:00
Ryan Canty 49c937ff2c
Added docs for PR in Vault GCP Secrets repo (#8728) 2020-04-16 14:57:50 -07:00
Jason O'Donnell 584160f2a2
doc: add client tls parameters to openldap (#8730) 2020-04-13 13:57:51 -04:00
Jeff Escalante fbfed414bd
Routing Fixes (#8703) 
* fix a couple of .html extension links
* remove trailing slash config
* fix redirects, broken links, incorrect anchor link formats
 2020-04-09 13:56:59 -04:00
Jeffrey Hogan 8f80cd8b9d
Fix "List Template" table path (#8692) 2020-04-08 15:58:40 -07:00
Jim Kalafut f08ba0bf55 Transform docs 2020-04-07 10:02:31 -07:00
Jeff Escalante 8af56bd620
Anchor Link Fixes (#8572) 
* update anchor link algorithm
* update deps
* update content component
* fix a lot of broken links
 2020-03-31 15:21:16 -04:00
Brian Kassouf b6f8fcb164
Update index.mdx 2020-03-30 16:32:24 -07:00
Brian Shumate 64c55d7337
API Docs: Secrets/OpenLDAP (#8521) 
* API Docs: Secrets/OpenLDAP

- Update HTTP methods to POST for unsupported (GET) methods on:
  - /openldap/rotate-root
  - /openldap/rotate-role/:role_name

* Update website/pages/api-docs/secret/openldap/index.mdx

Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>

* Update website/pages/api-docs/secret/openldap/index.mdx

Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>

Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
 2020-03-20 12:00:39 -04:00
Jim Kalafut 3b21385937
Add docs for GCP Secrets rotate root operation (#8514) 2020-03-09 13:09:03 -07:00
Jason O'Donnell f4fffa8bb8
doc: update openldap with racf schema support (#8491) 2020-03-06 14:46:33 -08:00
Brian Shumate 9c3b2f6cc8
API Docs: edits to OpenLDAP secrets engine (#8490) 
- Fix typo
- Remove trailing spaces
 2020-03-06 10:18:44 -05:00
Jim Kalafut 6e7cd0580c
Add MongoDB API docs (#8389) 2020-02-22 11:39:36 -08:00
Jason O'Donnell 587b331d8f
docs: add openldap secret engine (#8388) 
* docs: add openldap secret engine

* Update format of types

* Add to sidebars

* Fix formatting
 2020-02-21 10:55:15 -05:00
JulesRenz c54c8c92bd
RSA3072 implementation in transit secrets engine (#8151) 
* RSA3072 implementation in transit secrets engine

* moved new KeyType at the end of the list
So already stored keys still work properly

Co-authored-by: Jim Kalafut <jim@kalafut.net>
 2020-02-15 14:40:50 -08:00
Jim Kalafut 0ab4c138c2
Update identity API docs (#8351) 2020-02-13 23:29:32 -08:00
Michael Golowka 635b957e76
Add x509 Client Auth to MongoDB Database Plugin (#8329) 
* Mark deprecated plugins as deprecated

* Add redaction capability to database plugins

* Add x509 client auth

* Update vendored files

* Add integration test for x509 client auth

* Remove redaction logic pending further discussion

* Update vendored files

* Minor updates from code review

* Updated docs with x509 client auth

* Roles are required

* Disable x509 test because it doesn't work in CircleCI

* Add timeouts for container lifetime
 2020-02-13 15:54:00 -07:00
Jeff Malnick 27ad920399
Add redshift database plugin (#8299) 
* feat: add redshift database plugin

* build: update vendored libraries

* docs: add reference doc for redshift variant of the database secrets engine

* feat: set middlewear type name for better metrics naming (#8346)

Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
 2020-02-13 09:42:30 -08:00
Jim Kalafut 2ee7b76469
Bundle MongoDB Atlas (#8309) 2020-02-07 14:09:39 -08:00
Daniel Spangenberg 1c1d93a21c
Fix default max_open_connections for db plugins (#8262) 2020-01-30 17:33:04 +01:00
Sarai 74a6d02a89
Fix broken link (#8259) 
- https://www.vaultproject.io/api/secret/pki/index.html#create-update-role
- https://www.vaultproject.io/api/secret/pki/index.html#createupdate-role
 2020-01-30 08:12:24 -08:00
Raoof Mohammed 0b7afcc728
docs: fix api path for merge entity identity doc (#8258) 2020-01-29 08:56:36 -08:00
Michel Vocks f695eb737b
Add Consul TLS options to access API endpoint (#8253) 2020-01-29 09:44:35 +01:00
Michel Vocks 96a6857f0c
Docs: Add nomad TLS options (#8254) 2020-01-29 09:38:54 +01:00
Mike Ruth eb592f05fb Update API to include roleset TTL parameter (#8231) 
Include documentation on including the TTL parameter for service account key rolesets. [Associated PR](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/54)
 2020-01-23 17:54:28 -08:00
Jeff Escalante 4f87851926 [website] Link Cleaning (#8205) 
* update dependencies

* remove hard-coded vaultproject.io on local links

* remove 'index.html' from internal links

* remove '.html' at end of internal links

* manual review cleanup

Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
 2020-01-22 12:05:41 -08:00
Clint 3b39b30e12
cleanup formatting on database index doc (#8207) 2020-01-22 09:57:03 -06:00
Becca Petrin aebfdc7516
Strip unnecessary payload in AD root cred rotation example (#8160) 
* strip unnecessary payload in example

* strip other unnecessary payload
 2020-01-17 16:49:36 -08:00
Jeff Escalante df34412570 New Website! (#8154) 
* new documentation website

* ci job adjustment

* update to latest version on downloads page

* remove transition-period scripts

* add netlify toml file

* fix docs patch

* fix ci config?

* revert go.mod changes

* a couple last markdown formatting fixes
 2020-01-17 16:18:09 -08:00