Commit graph

13379 commits

Author SHA1 Message Date
Hridoy Roy 5b63066c2c
Diagnose V0: Storage End to End Checks (#11468)
* Create helpers which integrate with OpenTelemetry for diagnose collection

* Go mod vendor

* consul tls checks

* draft for storage end to end check

* Comments

* Update vault/diagnose/helpers.go

Co-authored-by: swayne275 <swayne275@gmail.com>

* Add unit test/example

* tweak output

* More comments

* add spot check concept

* Get unit tests working on Result structs

* Fix unit test

* Get unit tests working, and make diagnose sessions local rather than global

* Comments

* Last comments

* No need for init

* :|

* Fix helpers_test

* cleaned up chan logic. Tests next.

* fix tests

* remove a comment

* tests

* remove a comment

* cosmetic changes

Co-authored-by: Scott G. Miller <smiller@hashicorp.com>
Co-authored-by: swayne275 <swayne275@gmail.com>
2021-05-02 13:33:13 -07:00
Clint 59870ee0d3
Update Agent Auth with GCP to use new SignJWT endpoint (#11473)
* Update Agent Auth with GCP to use new SignJWT endpoint

* use iamcredentials name instead of renaming the package on import

* add changelog

* Update changelog/11473.txt

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2021-04-30 15:45:06 -05:00
Scott Miller fcb9bab51b
Fix rotate/config unit test for 32 bit yet again (#11491) 2021-04-30 10:31:11 -05:00
Scott Miller 85fbd45e1c
Create helpers which integrate with OpenTelemetry for diagnose collection (#11454)
* Create helpers which integrate with OpenTelemetry for diagnose collection

* Go mod vendor

* Comments

* Update vault/diagnose/helpers.go

Co-authored-by: swayne275 <swayne275@gmail.com>

* Add unit test/example

* tweak output

* More comments

* add spot check concept

* Get unit tests working on Result structs

* Fix unit test

* Get unit tests working, and make diagnose sessions local rather than global

* Comments

* Last comments

* No need for init

* :|

* Fix helpers_test

Co-authored-by: swayne275 <swayne275@gmail.com>
2021-04-29 13:32:41 -05:00
swayne275 8db70c9e58
Expiration Manager: Handle Presumed Irrevocable Leases Separately (#11452)
* build out zombie lease system

* add typo for CI

* undo test CI commit

* time equality test isn't working on CI, so let's see what this does...

* protect against nil pointer receiver calls
2021-04-29 09:12:02 -06:00
Hridoy Roy 36ae22c07a
Consul TLS Checks for Diagnose [draft] (#11467)
* consul tls checks

* fix some tests

* complete physical and service registration tls checks
2021-04-28 08:55:18 -07:00
Meggie 5d4341e4d6
docs: adding a storage concepts page (#9155)
* Adding a storage concepts page

It very briefly covers some considerations for taking backups.

* Apply suggestions from code review

Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>

* Updated with some additional comments

* Attempt to further clarify sensitivity

* Update storage.mdx

* More on "Why backup?"

Added HashiConf talk link.

* Update website/content/docs/concepts/storage.mdx

Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>

Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2021-04-28 10:51:36 -04:00
Sam Salisbury 43aeac63c7
upgrade-packagespec script: open browser for PR (#11486) 2021-04-28 11:35:25 +01:00
Vishal Nayak 406abc19dc
Autopilot: Return leader info via delegate (#11247)
* Autopilot: Return leader info via delegate

* Pull in the new raft-autopilot lib dependencies

* update deps

* Add CL
2021-04-27 15:54:26 -04:00
Artur Frysiak 3da7cdffc7
Fix endpoint path in example (#11437) 2021-04-27 14:53:19 -05:00
Sam Salisbury 4d4045710a
packagespec upgrade -version 0.2.5 (#11481) 2021-04-27 20:45:06 +01:00
Sam Salisbury 2efcaaf192
yarn --verbose run: fix no output timeout in CI (#10788) 2021-04-27 13:51:24 +01:00
Josh Black ec105f288f
Switch to shared raft-boltdb library and add metrics (#11269) 2021-04-26 16:01:26 -07:00
Nick Cabatoff e3a88c59e9
Add metrics for perf standby and replication node type. (#11472) 2021-04-26 13:54:19 -04:00
Lars Lehtonen ed93de7c54
http: deprecate errwrap.Wrapf() (#11471) 2021-04-26 13:33:48 -04:00
Zachary Shilton f07feb6f53
website: update readme (#11421)
* website: bump to latest nextjs-scripts prerelease

* website: run generate:readme to update website readme blocks

* website: revert bump to nextjs-scripts, deferred
2021-04-26 12:37:20 -04:00
Jason O'Donnell ddfe5342c5
docs: add missing configurations for CSI documentation (#11236) 2021-04-26 17:32:00 +01:00
Chelsea Shaw 1810edf428
UI/update UI deps (#11447) 2021-04-26 11:23:57 -05:00
Nick Cabatoff 5a4151873c
Cast constant to int64 so it doesn't overflow. (#11466) 2021-04-26 10:04:39 -04:00
Nick Cabatoff dd50c8b087
Update CHANGELOG.md (#11433) 2021-04-26 09:55:23 -04:00
Sam Salisbury 619d1daca0
packagespec upgrade -version 0.2.4 (master) (#11461)
* packagespec upgrade -version 0.2.4

* upgrade circleci-multi-file-config

* make ci-config
2021-04-26 13:36:15 +01:00
Lars Lehtonen b6f75f49e0
serviceregistration: deprecate errwrap.Wrapf() (#11443) 2021-04-26 08:33:50 -04:00
Sam Salisbury bcecb885ff
add scripts/upgrade-packagespec (#10276)
* add scripts/upgrade-packagespec

* upgrade-packagespec script: docs + actionable logs

* upgrade-packagespec script: escape branch name

- This is now more accurate and handles branch names with
  slashes and pluses better.

* Update scripts/upgrade-packagespec

Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>

Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
2021-04-26 11:53:00 +01:00
Hridoy Roy 22cab6185d
[VAULT-1441] Fix race that allowed remounting on path used by another mount (#11453)
* remount concurrent test fix

* changelog

* Update changelog/11453.txt

Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>

Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
2021-04-24 09:05:41 -07:00
Austin Gebauer 490474a502
secrets/database: Fixes marshalling bug for json.Number types (#11451) 2021-04-23 14:07:26 -07:00
Tiago Pascoal 4f987907c3
Fix: send extensions instead of extension to sign endpoint (#11194) 2021-04-23 14:56:17 -05:00
Nick Cabatoff a21e7139ff
Update tests to reflect new HC public pgp keys. (#11446) 2021-04-23 12:32:46 -04:00
Zachary Shilton c8f56671a4
website: resolve unlinked content (#11391)
* website: temp support for unlinked content

* website: add GitHub check for unlinked content

* website: add hotfix for brand coloration issue
2021-04-22 13:41:07 -04:00
Yoko bc91eef281
[Docs] Add relevant Learn tutorial links (#11440)
* Add cross-links to matching Learn tutorials

* Undo automatic format update by Atom

* Fix a typo

* Fix a grammartical error
2021-04-22 10:09:31 -07:00
Lars Lehtonen d8f7dd364a
builtin: deprecate errwrap.Wrapf() throughout (#11430)
* audit: deprecate errwrap.Wrapf()

* builtin/audit/file: deprecate errwrap.Wrapf()

* builtin/crediential/app-id: deprecate errwrap.Wrapf()

* builtin/credential/approle: deprecate errwrap.Wrapf()

* builtin/credential/aws: deprecate errwrap.Wrapf()

* builtin/credentials/token: deprecate errwrap.Wrapf()

* builtin/credential/github: deprecate errwrap.Wrapf()

* builtin/credential/cert: deprecate errwrap.Wrapf()

* builtin/logical/transit: deprecate errwrap.Wrapf()

* builtin/logical/totp: deprecate errwrap.Wrapf()

* builtin/logical/ssh: deprecate errwrap.Wrapf()

* builtin/logical/rabbitmq: deprecate errwrap.Wrapf()

* builtin/logical/postgresql: deprecate errwrap.Wrapf()

* builtin/logical/pki: deprecate errwrap.Wrapf()

* builtin/logical/nomad: deprecate errwrap.Wrapf()

* builtin/logical/mssql: deprecate errwrap.Wrapf()

* builtin/logical/database: deprecate errwrap.Wrapf()

* builtin/logical/consul: deprecate errwrap.Wrapf()

* builtin/logical/cassandra: deprecate errwrap.Wrapf()

* builtin/logical/aws: deprecate errwrap.Wrapf()
2021-04-22 11:20:59 -04:00
Angel Garbarino 2e35e9578c
UI/obscure secret on input (#11284)
* new font and add as font-family to be used in masked-input

* clean up logic

* refactor for displayOnly

* start cert masking

* work on certificates

* upload cert work

* fix global styling

* fix styling for class no longer used

* make mask by default and remove option

* glimmerize start and certificate on LDAP a file field

* glimmerize actions

* first part of glimmerizing text-file still need to do some clean up

* not doing awesome over here

* getting ready to un-glimmer

* unglimmerize

* remove placeholder based on conversations with design

* clean up text-file

* cleanup

* fix class bindings

* handle class binding

* set up for test

* fix elementId

* track down index

* update masked-input test

* add more to the masked-input test

* test-file test

* fix broken test

* clear old style

* clean up

* remove pgp key masked font, this really needs to be refactored to text-file component

* changelog

* cover other certificate view

* add allowCopy

* address some pr styling comments

* improve test coverage

* fix some issues

* add attr.options.masked
2021-04-22 08:58:37 -06:00
Michael Golowka 29d91d09ff
Add note about root_rotation_statements workaround for special chars (#11378) 2021-04-21 12:58:48 -07:00
Nick Cabatoff a62202eb87
Document unauth pprof and the new pprof endpoints. (#11413) 2021-04-21 15:21:59 -04:00
Austin Gebauer 81744c4094
Updates docs for G Suite config in JWT/OIDC auth method (#11418) 2021-04-21 10:59:37 -07:00
Jim Kalafut 97a230a828
Update website version (#11432) 2021-04-21 10:48:51 -07:00
Jim Kalafut 6b968b402b
Changelog updates for 1.7.1/1.6.4/1.5.8 (#11426) 2021-04-21 10:44:14 -07:00
Nick Cabatoff 7ee6acf780
Fix a couple of 64bit-isms. (#11429) 2021-04-21 09:53:25 -04:00
Josh Black 06809930a3
Add HTTP response headers for hostname and raft node ID (if applicable) (#11289) 2021-04-20 15:25:04 -07:00
Arnav Palnitkar 45e2bfcad7
Fixed duplicate path issue for kv engine (#11423)
- Ids used to collide in ember data while creating a secret with any existing
path name from a different kv engine
2021-04-20 12:11:21 -07:00
Nick Cabatoff b7ed30afed
Poll until token disappears from storage. (#11424) 2021-04-20 14:55:10 -04:00
Nick Cabatoff 75ec35421d
Refactor TestTokenStore_CubbyholeTidy so that it can be tested on ent with a non-root namespace. (#11422) 2021-04-20 14:49:25 -04:00
claire bontempo 1f6633fd56
Grammar typo fix (#11357)
* fixes are/is typo

* reverts change - need to checkout to new branch

* fixes is/are typo
2021-04-20 10:11:35 -05:00
Brian Kassouf c400dfdd3d
core/token: fix panic looking up invalid batch tokens (#11415) 2021-04-19 18:26:51 -07:00
Arnav Palnitkar a43ea992a9
Updated search select component styling (#11360)
* Updated search select component styling

- Fixed styling for better readability and access to delete action

* Added changelog file
2021-04-19 15:40:18 -07:00
Nick Cabatoff 474c4e8134
Make cubbyhole revocation/tidying compatible with cubbys in namespaces. (#11408) 2021-04-19 17:28:04 -04:00
Chelsea Shaw 449a45baaa
Add root rotation statement support to mongoDB (#11404)
* Add root rotation statement support to mongoDB

* Add changelog
2021-04-19 15:40:44 -05:00
xka5h 034442b9ee
Update index.mdx to fix link to vault agent as a windows service link (#11356)
* Update index.mdx

fixed link for windows agent

* removing the 's' in agents

Co-authored-by: Bryce Kalow <bkalow@hashicorp.com>

Co-authored-by: Bryce Kalow <bkalow@hashicorp.com>
2021-04-19 11:36:43 -07:00
Nick Cabatoff a8023e0fdb
Add support for unauthenticated pprof access on a per-listener basis,… (#11324)
* Add support for unauthenticated pprof access on a per-listener basis, as we do for metrics.

* Add missing pprof sub-targets like 'allocs' and 'block'.  Capture the goroutine subtarget a second time in text form.  This is mostly a convenience, but also I think the pprof format might be a bit lossy?
2021-04-19 14:30:59 -04:00
Noah Fontes 0f45cd37ea
Add community-maintained OAuth 2.0/OIDC secrets plugin to plugin portal docs (#11280) 2021-04-19 11:20:50 -07:00
Calvin Leung Huang a8cafab083
pki: fix tidy removal on revoked entries (#11367)
* pki: fix tidy removal on revoked entries

* add CL entry
2021-04-19 09:40:40 -07:00