d0a3f07b07
Stop Vault Package Tests From Swallowing Errors ( #2960 )
...
* Fix ignored error in TestAESGCMBarrier_MoveIntegrityV1().
* Fix ignored error in TestAESGCMBarrier_MoveIntegrityV2().
* Fix ignored err in TestExpiration_Tidy().
* Fix ignored error in TestSystemBackend_policyCRUD().
2017-07-04 13:58:28 -04:00
753b68fa1b
Port TestCluster changes from proxy branch
2017-07-03 14:54:01 -04:00
79b5d2f5bb
fix token store tests
2017-07-01 16:06:15 -04:00
e0404d17e9
fix router tests
2017-06-30 22:06:17 -04:00
3f9ec7a2e2
fix expiration tests
2017-06-30 21:31:27 -04:00
e52ec0aacf
Bring TestCluster_ListenForRequests port numbers in line with spread out ports from earlier change
2017-06-30 13:31:57 -04:00
4b26425609
Input validation for router mount ( #2942 )
...
* Added input validation for router mount
* Add path and type in returned errors
2017-06-29 17:00:13 -04:00
034a1f91be
Fix missed 10->100 conversion in tests
2017-06-29 01:45:48 -04:00
4502b649c6
Use more separation between test cluster ports for OSX' sake
2017-06-29 00:29:17 -04:00
d169918465
Create and persist human-friendly-ish mount accessors ( #2918 )
2017-06-26 18:14:36 +01:00
a71cb52f1b
Don't allow overriding token ID with the same token ID ( #2917 )
...
Fixes #2916
2017-06-24 01:52:48 +01:00
d55d75a79f
Convert listener arguments to map[string]interface{} ( #2905 )
...
This allows people to use more natural constructs, e.g. for tls_disable
it can be a bool, int, or string.
2017-06-22 20:29:53 +01:00
286392c2a2
Fix tests
2017-06-21 11:19:38 -04:00
c414a525d2
Fix panic when attempting to renew auth token via sys/leases/renew ( #2901 )
...
This could occur when using the lease ID; this is unsupported but wasn't
checking for the existence of a secret in the lease.
2017-06-21 16:00:39 +01:00
069764ea8f
Add option to have dev mode generic backend return leases
2017-06-21 10:42:50 -04:00
7e7d766e21
Exclude /sys/leases/renew from registering with expiration manager ( #2891 )
...
* exclude /sys/leases/renew from registering with expiration manager
* adding sys/leases/renew to return full secret object, adding tests to catch renew errors
2017-06-20 12:34:00 -04:00
fade02bb43
Fix root paths test
2017-06-17 01:51:42 -04:00
cf7d56e8f3
Fix up CORS.
...
Ref #2021
2017-06-17 01:26:25 -04:00
0303f51b68
Cors headers ( #2021 )
2017-06-17 00:04:55 -04:00
43d7547235
Address review feedback
2017-06-16 23:54:49 -04:00
186e4af95e
Fix the test error message
2017-06-16 23:54:49 -04:00
4fe7fc4ef9
Added utility on router to fetch mount entry using its ID
2017-06-16 23:54:49 -04:00
ab5014534e
Clone policy permissions and then use existing values rather than policy values for modifications ( #2826 )
...
Should fix #2804
2017-06-07 13:49:51 -04:00
e9b52ed928
Log auth info on permission denied due to ACL ( #2754 )
2017-06-05 18:04:31 -04:00
605d74d889
Don't try to clean up upgrades if we're sealed
2017-06-05 16:00:56 -04:00
fb9029e3dd
Log heartbeat stopping
2017-06-05 15:57:04 -04:00
f7df60b131
Allow accessing Warnings directly in Response. ( #2806 )
...
A change in copystructure has caused some panics due to the custom copy
function. I'm more nervous about production panics than I am about
keeping some bad code wiping out some existing warnings, so remove the
custom copy function and just allow direct setting of Warnings.
2017-06-05 10:52:43 -04:00
88c0367fa6
Add grpc keepalives as a fallback option for our heartbeating
2017-05-26 13:32:13 -04:00
3696c9b779
Input checks for policy rules ( #2771 )
...
* Input checks for policy rules
* Address review feedback
2017-05-26 10:48:41 -04:00
72a5b5e23b
Fix tests
2017-05-25 09:00:49 -04:00
df33f70df4
Heartbeat immediately upon connection
2017-05-24 21:45:51 -04:00
3d7db4248f
Rename peer cluster cache
2017-05-24 21:10:32 -04:00
5c230c796b
Add peer cluster address cache
2017-05-24 20:51:53 -04:00
bbe27aaedf
Add heartbeating and cluster address sharing to request forwarding ( #2762 )
2017-05-24 15:06:56 -04:00
9d4801b1e8
Revert grpc back a version (they introduced a panic) and clean up a bunch of old request forwarding stuff
2017-05-24 10:38:48 -04:00
0d4e7fba69
Remove non-gRPC request forwarding
2017-05-24 09:34:59 -04:00
7cc72a9066
Delay salt initialization for audit backends
2017-05-23 20:36:20 -04:00
aa40d2cff6
add gofmt checks to Vault and format existing code ( #2745 )
2017-05-19 08:34:17 -04:00
858deb9ca4
Don't allow parent references in file paths
2017-05-12 13:52:33 -04:00
d25aa9fc21
Don't write salts in initialization, look up on demand ( #2702 )
2017-05-09 17:51:09 -04:00
76ca5fc377
Allow non-strings to be used to set `ttl` field in generic. ( #2699 )
2017-05-09 14:05:00 -04:00
5b3d80042e
Fix mount test
2017-05-09 09:49:45 -04:00
e3c8be72cc
Fix local check on singleton required mounts
2017-05-09 08:36:10 -04:00
e0c2b37c2a
Add commenting to singletonMountTables
2017-05-08 13:39:18 -04:00
f50d345fa3
Fix imports.
...
Closes #2688
2017-05-08 10:23:29 -04:00
726bd6f379
Don't load a required mount if in secondary mode, let sync invalidate do that
2017-05-05 19:40:26 -04:00
3aafb3270c
Move singleton mount fetching function to mount.go and fix tests
2017-05-05 17:20:30 -04:00
b53331d345
Add token to singleton mounts
2017-05-05 16:45:48 -04:00
6f6f242061
Add logic to skip initialization in some cases and some invalidation logic
2017-05-05 15:01:52 -04:00
fa201f2505
auth/token/tidy log level update
2017-05-05 11:16:13 -04:00
Lars Lehtonen