luxolus/open-vault
2
0
Fork 0
Code Issues 1 Pull requests Releases Activity
9824 commits 1 branch 0 tags 214 MiB
Commit graph

9824 commits

This branch
This branch
All branches
Author SHA1 Message Date
Calvin Leung Huang 5b5ec851c7 Agent caching docs (#6272) 
* WIP agent caching docs

* More docs updates

* Add caching/index.html to docs_detailed_categories.yml

* Some more docs updates

* Some more docs updates

* updates

* address review feedback

* fix sample config

* Update website/source/docs/agent/caching/index.html.md

Co-Authored-By: calvn <cleung2010@gmail.com>

* fix config for sidebar display

* Add environment variable to the docs
 2019-02-26 09:57:17 -05:00
Jim Kalafut ebb63652cd
Fix agent test (#6281) 2019-02-21 21:24:16 -08:00
Jim Kalafut 9bac5158cd
Update JWT docs for OIDC feature (#6270) 2019-02-21 17:06:23 -08:00
Calvin Leung Huang fda590f538
agent/caching: use const for cache-clear path (#6271) 2019-02-21 14:53:34 -08:00
Calvin Leung Huang 8fc9138fe4
agent/caching: remove EvictByPrefix and EvictAll (#6269) 2019-02-21 14:52:10 -08:00
Chris Hoffman 481c38c7d0
adding 1.1 upgrade docs (#6279) 2019-02-21 17:41:06 -05:00
Matthew Irish a5fd143f82
fix tests for auth-jwt and related functionality (#6277) 2019-02-21 16:21:23 -06:00
Brian Kassouf 40399cb387
Update config.rb 2019-02-20 17:24:53 -08:00
Brian Kassouf d6d81d3def
Cut version 1.1.0-beta1 2019-02-20 12:14:59 -08:00
Brian Kassouf efe5671f36 make fmt 2019-02-20 12:12:21 -08:00
Brian Kassouf 5cd0e97654
release prep 2019-02-20 11:12:09 -08:00
Brian Kassouf 4936297896
release prep 2019-02-20 11:11:08 -08:00
Brian Kassouf ccc2a1683c
changelog++ 2019-02-20 10:18:15 -08:00
Brian Kassouf 8c5e0cfddc
changelog++ 2019-02-20 10:12:38 -08:00
Brian Kassouf f46a90b46e
changelog++ 2019-02-20 10:03:41 -08:00
Matthew Irish d3393ce3d6
changelog++ 2019-02-20 11:53:06 -06:00
Brian Kassouf 897f525b1e
changelog++ 2019-02-20 09:45:27 -08:00
Brian Kassouf adb6a9febc
Merge pull request #6266 from jesferman/patch-1 
Fix wrong link in PKI menu-list
 2019-02-20 09:12:52 -08:00
Jesus Fernandez Manzano c63408442b
Fix wrong link in PKI menu-list 
"Generate Certificate" button was linking to "sign" endpoint instead of "issue"
 2019-02-20 12:29:08 +01:00
Vishal Nayak 779d49bab5
AgentCache: Properly compute auto-auth token (#6264) 
* Properly compute auto-auth token

* Use inmem sink to track auto-auth token

* update debug statement

* Only add inmem sink if using auto-auth token is allowed
 2019-02-20 02:11:05 -05:00
Brian Kassouf f22b1b396a
changelog++ 2019-02-19 14:43:07 -08:00
Vishal Nayak 5037185d5d
Agent Cache: Some review feedback (#6257) 
* Revamp agent cache client

* Update command/agent.go

Co-Authored-By: vishalnayak <vishalnayak@users.noreply.github.com>

* Agent cache auto auth token lookup case (#6258)

* agent cache auto auth token lookup case

* Use Blake2b256Hash instead of SHA256

* agent/cache: update cache-clear endpoint; use bytes.NewReader instead (#6259)

* agent/cache: update cache-clear endpoint; use bytes.NewReader instead

* agent/cache: Fix TestCache_ComputeIndexID after switching to blake2b

* agent/cache: Only parse response body if it's non-nil (#6260)

* Differently disable agent address in the API client

* Remove DisableAgent
 2019-02-19 16:53:29 -05:00
Brian Kassouf bb910f2bb9
Merge pull request #6262 from hashicorp/1.1-beta 
Merge 1.1 Beta
 2019-02-19 12:20:58 -08:00
Brian Kassouf 26d8d318d7 Merge remote-tracking branch 'oss/master' into 1.1-beta 2019-02-19 12:17:15 -08:00
Brian Kassouf ab1a04f8e6
Port over some test fixes (#6261) 2019-02-19 12:03:02 -08:00
Martin 4c9e7f4478 typo in pathsToRadix doc (#6253) 2019-02-18 10:05:04 -08:00
Lexman 1ed2f2210b use deep.Equal instead of reflect.DeepEqual in some failing tests (#6249) 
* use deep.Equal instead of reflect.DeepEqual in some failing tests

* changed test output a little bit
 2019-02-15 14:00:14 -08:00
Nick Cabatoff 3e871daec3 Fix TestSysMount. 2019-02-15 14:28:39 -05:00
ncabatoff 81c5a87d85 Fix TestSysRemount. (#6248) 2019-02-15 11:15:39 -08:00
ncabatoff 62113d614b Fix TestSysMounts, TestSysMounts_headerAuth. (#6246) 2019-02-15 11:15:02 -08:00
ncabatoff 4cf1e24a9e Fix TestSystemBackend_mount, TestSystemBackend_mounts. (#6247) 2019-02-15 11:14:45 -08:00
Calvin Leung Huang ac0b31b544 fix TestCore_Unmount 2019-02-15 11:13:26 -08:00
Calvin Leung Huang 35ecaa2b6b fix TestSystemBackend_InternalUIMounts 2019-02-15 10:46:38 -08:00
Vishal Nayak 614ec67b05
address some review back (#6237) 2019-02-15 13:40:03 -05:00
ncabatoff cab3e6815b Fix broken tests resulting from new mount config field passthrough_request_headers. (#6245) 2019-02-15 10:20:29 -08:00
Jim Kalafut a7b6d9d2a8 Fix JWT end-to-end test (#6244) 2019-02-15 09:39:23 -08:00
Jim Kalafut a32c7b6d91 Fix agent test (#6243) 2019-02-15 09:27:57 -08:00
Chris Hoffman 999fbd3bca fixing operator unseal test (#6241) 2019-02-15 09:06:37 -08:00
Chris Hoffman a6841a5e94 fixing command server tests (#6242) 2019-02-15 09:06:20 -08:00
Jim Kalafut 483bc1d86c
changelog++ 2019-02-15 08:28:42 -08:00
Calvin Leung Huang 4e31f955cb cacememdb: add LeaseToken and TokenParent tests for GetByPrefix 2019-02-15 07:55:09 -08:00
vishalnayak cdaac4a715 Fix cachememdb test 2019-02-15 10:34:19 -05:00
Jim Kalafut b8839a677b
changelog++ 2019-02-15 07:15:56 -08:00
Jim Kalafut 0db1ac1425
changelog++ 2019-02-14 22:39:02 -08:00
Jeff Mitchell 3dfa30acb4 Add ability to use path wildcard segments (#6164) 
* Path globbing

* Add glob support at the beginning

* Ensure when evaluating an ACL that our path never has a leading slash. This already happens in the normal request path but not in tests; putting it here provides it for tests and extra safety in case the request path changes

* Simplify the algorithm, we don't really need to validate the prefix first as glob won't apply if it doesn't

* Add path segment wildcarding

* Disable path globbing for now

* Remove now-unneeded test

* Remove commented out globbing bits

* Remove more holdover glob bits

* Rename k var to something more clear
 2019-02-14 18:31:43 -08:00
Brian Kassouf f5b5fbb392
Refactor the cluster listener (#6232) 
* Port over OSS cluster port refactor components

* Start forwarding

* Cleanup a bit

* Fix copy error

* Return error from perf standby creation

* Add some more comments

* Fix copy/paste error
 2019-02-14 18:14:56 -08:00
Vishal Nayak feb235d5f8
Vault Agent Cache (#6220) 
* vault-agent-cache: squashed 250+ commits

* Add proper token revocation validations to the tests

* Add more test cases

* Avoid leaking by not closing request/response bodies; add comments

* Fix revoke orphan use case; update tests

* Add CLI test for making request over unix socket

* agent/cache: remove namespace-related tests

* Strip-off the auto-auth token from the lookup response

* Output listener details along with configuration

* Add scheme to API address output

* leasecache: use IndexNameLease for prefix lease revocations

* Make CLI accept the fully qualified unix address

* export VAULT_AGENT_ADDR=unix://path/to/socket

* unix:/ to unix://
 2019-02-14 20:10:36 -05:00
Noelle Daley d7edf45853
throw an error when starting vault if one occurs (#6235) 
* throw an error when starting vault if one occurs

* use node 10

* do not use shorthand
 2019-02-14 15:11:43 -08:00
Martin c9918b93e8 Avoid panic at login when external group has a nil alias (#6230) 2019-02-14 12:57:20 -08:00
Martin 9044173d6e Prometheus support on v1/sys/metrics endpoint (#5308) 
* initial commit for prometheus and sys/metrics support

* Throw an error if prometheusRetentionTime is 0,add prometheus in devmode

* return when format=prometheus is used and prom is disable

* parse prometheus_retention_time from string instead of int

* Initialize config.Telemetry if nil

* address PR issues

* add sys/metrics framework.Path in a factory

* Apply requiredMountTable entries's MountConfig to existing core table

* address pr comments

* enable prometheus sink by default

* Move Metric-related code in a separate metricsutil helper
 2019-02-14 12:46:59 -08:00