Commit graph

25 commits

Author SHA1 Message Date
Austin Gebauer 56bc00bed8
Adds documentation for OIDC provider specific extension for G Suite (#9454)
* docs: adds documentation for JWT/OIDC google provider specific handling

* use may instead of will for identity group alias association

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>

* adds missed parentheses

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>

* adds missed parentheses

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>

* reword sentence referring to key file for Google service account

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>

* add styles to emphasize security step

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-07-22 12:18:58 -07:00
Austin Gebauer 66c8032fb5
docs: specify which JWT/OIDC role params support JSON pointer syntax in API docs (#9518) 2020-07-21 11:20:10 -07:00
Michael Golowka 6d86988d0b
Update GCP auth docs with warning about token impersonation (#9418) 2020-07-07 17:09:12 -06:00
DevOps Rob 230656ccf4
adding a note to the docs to make it clear that the token needs to be unlimited to create child tokens (#9397) 2020-07-03 09:00:14 -07:00
Theron Voran 06700a7110
Adding docs for azure-specific handling in jwt-oidc (#9287)
Co-authored-by: Jason O'Donnell <2160810+jasonodonnell@users.noreply.github.com>
2020-06-29 10:46:41 -07:00
Jeff Escalante 8eed94b072
🌷 Docs Website Maintenance (#8985)
* website maintenance round
* improve docs, revert bug workaround as it was fixed
* boost memory
* remove unnecessary code
2020-05-21 13:18:17 -04:00
Jim Kalafut 446370d94c
Update Azure Auth docs (#8963) 2020-05-08 16:20:08 -07:00
Yong Wen Chua f0720205c3
[auth/gcp] Add missing permission to documentation (#8689)
* [auth/gcp] Add missing permission to documentation

Signed-off-by: Yong Wen Chua <lawliet89@users.noreply.github.com>

* Clarified group aliases
2020-04-29 09:42:59 -07:00
Jim Kalafut de2d7b5260
Update OIDC configuration docs (#8771) 2020-04-27 15:59:40 -07:00
Jeff Escalante fbfed414bd
Routing Fixes (#8703)
* fix a couple of .html extension links
* remove trailing slash config
* fix redirects, broken links, incorrect anchor link formats
2020-04-09 13:56:59 -04:00
Jeff Escalante 8af56bd620
Anchor Link Fixes (#8572)
* update anchor link algorithm
* update deps
* update content component
* fix a lot of broken links
2020-03-31 15:21:16 -04:00
Jim Kalafut b949dc622b
Update JWT docs (#8525) 2020-03-14 14:45:30 -07:00
Becca Petrin 450275f6dc
document disable_fast_negotiation (#8542) 2020-03-13 15:45:40 -07:00
Jim Kalafut 0f2aa1401c
Update LDAP docs for anonymous_group_search (#8501) 2020-03-09 13:21:28 -07:00
Jim Kalafut 4aae569e36
Update JWT docs (#8513)
Add mention of new CLI parameters.
2020-03-09 13:19:25 -07:00
Jim Kalafut 47dd9c0d36
Correct GCP auth permissions list. (#8454)
Remove `listInstances`, which isn't a valid permission.
2020-03-02 21:43:07 -08:00
Becca Petrin 24ae59b317
correct the okta docs (#8403) 2020-02-21 11:13:42 -08:00
Markus Nilsson d8ea61f91a
Docs: Fix anchor link to Generating JWTs (#8368) 2020-02-18 13:11:48 +01:00
Dan Lafeir fe80e136da
Add a specific reference to AWS IAM Unique Identifiers (#8209)
* Add specification about AWS IAM Unique Identifiers

We experienced an issue where IAM roles resources were re-provisioned with the same ARNs and no change had been made to our vault role configuration but users lost access with `-method=aws`. It wasn't immediately clear to us how IAM Unique Identifiers where being used to avoid the same situations outlined in the AWS documentation. We eventually concluded that re-provisioning the roles in our auth/aws/auth would fetch the new IAM Unique Identifiers. 

I hope that this small amendment helps people avoid this problem in the future.
2020-02-04 15:31:48 -08:00
glerb 4f25ed2b08
Improve clarity of IAM flow explanation (#8275) 2020-02-03 10:14:09 -08:00
ncabatoff 03b14d8a64
Upgrade okta sdk lib (#8143)
Upgrade to new official Okta sdk lib.  Since it requires an API token, use old unofficial okta lib for no-apitoken case. 

Update test to use newer field names.  Remove obsolete test invalidated by #4798.  Properly handle case where an error was expected and didn't occur.
2020-02-03 12:51:10 -05:00
Theron Voran 890f4b63a6
Show bound_service_accounts in gce example (#8236)
Shows that the GCP auth option `bound_service_accounts` can be used
for gce-type roles as well as iam.
2020-01-27 11:48:21 -08:00
Becca Petrin fc09eb1e6b
Add Kerberos agent docs (#8220)
* add kerberos agent docs

* use relative doc link
2020-01-24 14:40:41 -08:00
Jeff Escalante 4f87851926 [website] Link Cleaning (#8205)
* update dependencies

* remove hard-coded vaultproject.io on local links

* remove 'index.html' from internal links

* remove '.html' at end of internal links

* manual review cleanup

Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-01-22 12:05:41 -08:00
Jeff Escalante df34412570 New Website! (#8154)
* new documentation website

* ci job adjustment

* update to latest version on downloads page

* remove transition-period scripts

* add netlify toml file

* fix docs patch

* fix ci config?

* revert go.mod changes

* a couple last markdown formatting fixes
2020-01-17 16:18:09 -08:00