vishalnayak
|
65801942cb
|
Naming of the locked and nonLocked methods
|
2016-05-17 20:39:24 -04:00 |
|
Jeff Mitchell
|
ed574d63fe
|
Merge pull request #1416 from shomron/list_ldap_group_mappings
Support listing ldap group to policy mappings
|
2016-05-16 16:22:13 -04:00 |
|
Sean Chittenden
|
792950e16c
|
Merge pull request #1417 from hashicorp/b-pki-expire-ttl-unset
Set entry's TTL before writing out the storage entry's config
|
2016-05-15 10:02:03 -07:00 |
|
Sean Chittenden
|
7a4b31ce51
|
Speling police
|
2016-05-15 09:58:36 -07:00 |
|
Sean Chittenden
|
b0bba6d271
|
Store clamped TTLs back in the role's config
|
2016-05-15 08:13:56 -07:00 |
|
Sean Chittenden
|
539475714d
|
Set entry's TTL before writing out the storage entry's config
|
2016-05-15 07:06:33 -07:00 |
|
Oren Shomron
|
b8840ab9eb
|
Support listing ldap group to policy mappings (Fixes #1270)
|
2016-05-14 20:00:40 -04:00 |
|
Vishal Nayak
|
53fc941761
|
Merge pull request #1300 from hashicorp/aws-auth-backend
AWS EC2 instances authentication backend
|
2016-05-14 19:42:03 -04:00 |
|
vishalnayak
|
4122ed860b
|
Rename 'role_name' to 'role'
|
2016-05-13 14:31:13 -04:00 |
|
vishalnayak
|
9147f99c43
|
Remove unused param from checkForValidChain
|
2016-05-12 15:07:10 -04:00 |
|
vishalnayak
|
85d9523f98
|
Perform CRL checking for non-CA registered certs
|
2016-05-12 14:37:07 -04:00 |
|
vishalnayak
|
be88306f92
|
Name the files based on changed path patterns
|
2016-05-12 11:52:07 -04:00 |
|
vishalnayak
|
7e8a2d55d0
|
Update docs and path names to the new patterns
|
2016-05-12 11:45:10 -04:00 |
|
vishalnayak
|
ddcaf26396
|
Merge branch 'master-oss' into aws-auth-backend
|
2016-05-10 14:50:00 -04:00 |
|
vishalnayak
|
d09748a135
|
Fix the acceptance tests
|
2016-05-09 22:07:51 -04:00 |
|
vishalnayak
|
95f3f08d29
|
Call client config internal from the locking method
|
2016-05-09 21:01:57 -04:00 |
|
Jeff Mitchell
|
d899f9d411
|
Don't revoke CA certificates with leases.
|
2016-05-09 19:53:28 -04:00 |
|
Jeff Mitchell
|
4549625367
|
Update client code to use internal entry fetching
|
2016-05-09 23:26:00 +00:00 |
|
Jeff Mitchell
|
d77563994c
|
Merge pull request #1346 from hashicorp/disable-all-caches
Disable all caches
|
2016-05-07 16:33:45 -04:00 |
|
Jeff Mitchell
|
c16b0a4f41
|
Switch whitelist to use longest max TTL
|
2016-05-05 20:44:48 -04:00 |
|
Jeff Mitchell
|
7a6c76289a
|
Role tag updates
|
2016-05-05 15:32:14 -04:00 |
|
Jeff Mitchell
|
b58ad615f2
|
Fix HMAC being overwritten. Also some documentation, and add a lock to role operations
|
2016-05-05 14:51:09 -04:00 |
|
Jeff Mitchell
|
0eddeb5c94
|
Guard tidy functions
|
2016-05-05 14:28:46 -04:00 |
|
Jeff Mitchell
|
2d4c390f87
|
More updates to mutexes and adjust blacklisted roletag default safety buffer
|
2016-05-05 14:12:22 -04:00 |
|
Jeff Mitchell
|
8fef6e3ac0
|
Rename identity whitelist and roletag blacklist api endpoints
|
2016-05-05 13:34:50 -04:00 |
|
Jeff Mitchell
|
c69ba40d05
|
Move some mutexes around
|
2016-05-05 12:53:27 -04:00 |
|
Jeff Mitchell
|
f689e4712d
|
Update some mutexes in client config
|
2016-05-05 12:44:40 -04:00 |
|
Jeff Mitchell
|
c15c227774
|
Fall back to non-base64 cert if it can't be decoded (it's checked later anyways)
|
2016-05-05 11:36:28 -04:00 |
|
Jeff Mitchell
|
25913fb18c
|
Update commenting
|
2016-05-05 11:22:36 -04:00 |
|
Jeff Mitchell
|
15cbcedf1f
|
Make the roletag blacklist the longest duration, not least
|
2016-05-05 11:00:41 -04:00 |
|
Jeff Mitchell
|
e45d6c1120
|
Switch client code to shared awsutil code
|
2016-05-05 10:40:49 -04:00 |
|
Jeff Mitchell
|
4600ca8073
|
Merge branch 'master-oss' into aws-auth-backend
|
2016-05-05 10:36:06 -04:00 |
|
Jeff Mitchell
|
b6b9cd6f1f
|
Merge remote-tracking branch 'origin/master' into aws-cred-chain
|
2016-05-05 10:31:12 -04:00 |
|
Jeff Mitchell
|
3e71221839
|
Merge remote-tracking branch 'origin/master' into aws-auth-backend
|
2016-05-05 10:04:52 -04:00 |
|
vishalnayak
|
92fe94546c
|
Split SanitizeTTL method to support time.Duration parameters as well
|
2016-05-05 09:45:48 -04:00 |
|
vishalnayak
|
4ede1d6f08
|
Add the steps to generate the CRL test's test-fixture files
|
2016-05-04 05:48:34 -04:00 |
|
vishalnayak
|
b7c48ba109
|
Change image/ to a more flexible /role endpoint
|
2016-05-03 23:36:59 -04:00 |
|
Jeff Mitchell
|
1b0df1d46f
|
Cleanups, add shared provider, ability to specify http client, and port S3 physical backend over
|
2016-05-03 17:01:02 -04:00 |
|
Jeff Mitchell
|
7fbe5d2eaa
|
Region is required so error in awsutil if not set and set if empty in client code in logical/aws
|
2016-05-03 15:25:11 -04:00 |
|
Jeff Mitchell
|
a244ef8a00
|
Refactor AWS credential code into a function that returns a static->env->instance chain
|
2016-05-03 15:10:35 -04:00 |
|
Jeff Mitchell
|
45a120f491
|
Switch our tri-copy ca loading code to go-rootcerts
|
2016-05-03 12:23:25 -04:00 |
|
Jeff Mitchell
|
f21b88802f
|
Add some more tests around deletion and fix upsert status returning
|
2016-05-03 00:19:18 -04:00 |
|
Jeff Mitchell
|
7e1bdbe924
|
Massively simplify lock handling based on feedback
|
2016-05-02 23:47:18 -04:00 |
|
Jeff Mitchell
|
7f3613cc6e
|
Remove some deferring
|
2016-05-02 22:36:44 -04:00 |
|
Jeff Mitchell
|
fa0d389a95
|
Change use-hint of lockAll and lockPolicy
|
2016-05-02 22:36:44 -04:00 |
|
Jeff Mitchell
|
49c56f05e8
|
Address review feedback
|
2016-05-02 22:36:44 -04:00 |
|
Jeff Mitchell
|
3e5391aa9c
|
Switch to lockManager
|
2016-05-02 22:36:44 -04:00 |
|
Jeff Mitchell
|
08b91b776d
|
Address feedback
|
2016-05-02 22:36:44 -04:00 |
|
Jeff Mitchell
|
fedc8711a7
|
Fix up commenting and some minor tidbits
|
2016-05-02 22:36:44 -04:00 |
|
Jeff Mitchell
|
fe1f56de40
|
Make a non-caching but still locking variant of transit for when caches are disabled
|
2016-05-02 22:36:44 -04:00 |
|