Jeff Mitchell
4798af88f9
Fix some cases where unauthorized calls could return 400 ( #5083 )
2018-08-10 08:59:58 -05:00
Jeff Mitchell
3403c7ad9c
Add headers accessor and ns function
2018-08-09 18:29:03 -04:00
Jeff Mitchell
67b160eb42
Add json tag to names response for sys_plugins
2018-08-09 18:02:03 -04:00
Jeff Mitchell
14dccd7744
Remove unused variable
2018-08-09 16:47:58 -04:00
Jeff Mitchell
99e1d0f444
changelog++
2018-08-09 16:38:22 -04:00
Jeff Mitchell
2ed2e696a7
Merge Identity Entities if two claim the same alias ( #5075 )
...
* Merge Identity Entities if two claim the same alias
Past bugs/race conditions meant two entities could be created each
claiming the same alias. There are planned longer term fixes for this
(outside of the race condition being fixed in 0.10.4) that involve
changing the data model, but this is an immediate workaround that has
the same net effect: if two entities claim the same alias, assume they
were created due to this race condition and merge them.
In this situation, also automatically merge policies so we don't lose
e.g. RGPs.
2018-08-09 15:37:36 -05:00
Jim Kalafut
70d516b34d
Update ParseStringSlice and address lint/vet warnings ( #5069 )
2018-08-09 11:13:37 -07:00
Jeff Mitchell
fc37078cac
changelog++
2018-08-09 14:08:16 -04:00
Martin
aa8662c6c0
Add mount_path and mount_type to group lookups ( #5074 )
2018-08-09 13:07:24 -05:00
Jeff Mitchell
65d2cc768c
Website typo fix
2018-08-08 15:53:40 -04:00
Jeff Mitchell
7d90e6eae9
Fix typo
2018-08-08 14:38:11 -04:00
Jim Kalafut
7b7f1cc7ff
Add ttl parameter to pki api docs ( #5063 )
2018-08-08 09:12:14 -07:00
Conor Mongey
5454c15a7e
Fix typo: Consult Template -> Consul Template ( #5066 )
2018-08-08 09:01:45 -07:00
Brian Kassouf
3330a3954a
Rollback: Only grab statelock if we are running async ( #5064 )
2018-08-07 17:48:43 -07:00
Jason Martin
e23186bc63
Fix typo in the AWS STS AssumeRole docs. ( #5061 )
2018-08-07 15:25:50 -07:00
Brian Kassouf
735287bd6a
Update k8s auth ( #5059 )
2018-08-07 10:45:40 -07:00
Ian Grayson
931c289b95
Update policies.html.md ( #5007 )
...
Allow admins to run CLI: `vault secrets list`
2018-08-07 10:35:23 -07:00
Jeff Escalante
2a21e85580
html syntax corrections ( #5009 )
2018-08-07 10:34:35 -07:00
Rob
ca3aa1f36b
Update dev-server.html.md ( #5035 )
...
The instructions were in backwards order. #3591
2018-08-07 10:33:30 -07:00
Calvin Leung Huang
b5c8b3d4c5
Clean up container on connection failure, switch to ory/dockertest on package postgresql ( #5050 )
2018-08-07 09:56:33 -07:00
Yoko
3ae63b06d7
Typo fix ( #5052 )
2018-08-06 15:50:39 -07:00
Yoko
ef6579fed5
[Guide] Sentinel Policies ( #5049 )
...
* Sentinel policies guide
* Typo fix
2018-08-06 15:39:32 -07:00
Yoko
06491fa6a6
[Guide] SSH Secrets Engine ( #5022 )
...
* OTP SSH guide
* Fixed the required policy
* Added the step to restart the SSH server
* Update ssh-otp.html.md
Just a few edits to highlight its cloud context. Looks great otherwise!
2018-08-06 15:04:24 -07:00
Yoko
fee3c2072d
[Guide] Build Your Own CA Guide ( #4995 )
...
* WIP
* WIP
* WIP - Jake's PKI demo
* WIP
* PKI secret engine guide
* Added little more description about role
* Added tidy step
* Fixed a broken link
2018-08-06 14:42:46 -07:00
Joel Thompson
eb322bbbc5
Vendor AWS ARN parser ( #5048 )
...
This adds the AWS ARN parser into the vendor as suggested by
https://github.com/hashicorp/vault/pull/4360#discussion_r186744987
2018-08-06 09:51:06 -07:00
Jim Kalafut
41df651499
Add plugin user-agent helper ( #5039 )
2018-08-06 09:02:04 -07:00
Jeff Mitchell
982fd6f9c8
Fix stepdown body closing
2018-08-04 11:50:29 -04:00
Jim Kalafut
2a8f368ef8
Update GCP auth plugin ( #5043 )
...
Fixes #5037
2018-08-03 14:56:02 -07:00
Olivier Lemasle
fcb82c2444
Fix two errors in docs ( #5042 )
...
Two small errors in documentation
2018-08-03 14:26:46 -07:00
Jim Kalafut
4bdbc820ed
Add PluginEnv to SystemView ( #5028 )
2018-08-03 09:32:17 -07:00
Jim Kalafut
8e91555807
Fix docs sidebar layout
2018-08-03 09:15:45 -07:00
Jason Martin
df3e3ba43d
Fix typo in the AWS STS AssumeRole docs. ( #5032 )
2018-08-02 22:57:24 -07:00
Gerald
43183af2c8
Fix gcp auth method link ( #5030 )
2018-08-02 22:55:59 -07:00
Jiang Yong
4841309cdf
correct Jenkins policy and mysql secret path when kv put in authentication guide ( #5023 )
...
* correct Jenkins policy and mysql secret path when kv put
* add a note for kv-v2 secret
2018-08-02 08:38:51 -07:00
Chris Hoffman
d8b1d19ed6
Plumbing request context through to expiration manager ( #5021 )
...
* plumbing request context to expiration manager
* moar context
* address feedback
* only using active context for revoke prefix
* using active context for revoke commands
* cancel tidy on active context
* address feedback
2018-08-01 21:39:39 -04:00
Jim Kalafut
212b00593d
Improve error message formatting ( #5029 )
...
Fixes #4999
2018-08-01 16:20:56 -07:00
Jeff Mitchell
62bcbd3dfe
Fix website typo
2018-08-01 16:52:11 -04:00
Brian Kassouf
bb076f161d
core: Cancel context before taking state lock ( #5020 )
...
* core: Cancel context before taking state lock
* Create active context outside of postUnseal
* Attempt to drain requests before canceling context
* fix test
2018-08-01 12:07:37 -07:00
Yoko
9c6a14ba6b
[Guide] Identity: Entities & Groups ( #4968 )
...
* Entities & Groups tutorial
* Re-wordig the persona section
* Incorporated the feedback
* Updated the policy requirements
* Incorporate the feedback
* Fixed grammar
* Made the final small adjustments
2018-08-01 11:07:09 -07:00
Raja Nadar
56fcd2e7b3
.net 2.0 standard leap ( #5019 )
...
2.0 is more conducive for consumers
2018-08-01 08:57:49 -04:00
Chris Hoffman
b229df9cd2
fixing rollback test
2018-07-31 22:45:38 -04:00
Yoko
aadfccaa6b
[Guide] Direct App Integration guide ( #4948 )
...
* Direct App Integration guide
* Added a tag for step3
2018-07-31 09:19:23 -07:00
Sean Malloy
7e9ec5afb4
Fix GCP auth docs typo ( #5017 )
...
The bound_bound_service_accounts parameter does not exist. The correct
spelling is bound_service_accounts.
2018-07-31 10:57:34 -04:00
Brian Kassouf
1781ade3a1
core: Read lock when doing a rollback ( #5016 )
2018-07-30 19:55:43 -06:00
Chris Hoffman
51f8cd9668
do not grab statelock when requested not to ( #5015 )
2018-07-30 14:54:54 -04:00
Jeff Mitchell
b60acd819c
changelog++
2018-07-30 10:37:56 -04:00
Jeff Mitchell
a6d0ae5890
Add exit-after-auth functionality to agent ( #5013 )
...
This allows it to authenticate once, then exit once all sinks have
reported success. Useful for things like an init container vs. a
sidecard container.
Also adds command-level testing of it.
2018-07-30 10:37:04 -04:00
Pat Downey
0ad44a7ac5
Expand TOFU acronym in AWS auto-auth docs ( #5011 )
2018-07-29 18:05:49 -07:00
Paul Nicholson
c761a9a8f2
agent: kubernetes: add missing slash in token path ( #5010 )
2018-07-29 15:50:18 -04:00
Yoko
3d8bf1441b
[Guide] Transit Secrets Engine beginner guide ( #4943 )
...
* Intro to Transit Secrets Engine guide
* Added the Katacoda scenario link in the Reference Materials section
* Referencig this guide in the existing encryption guides
2018-07-27 16:08:52 -07:00