Mitchell Hashimoto
a77913c0b6
website: a lot more concepts
2015-04-17 17:18:31 -07:00
Armon Dadgar
a03268bc32
vault: Adding an epoch prefix to keys to support eventual online key rotation
2015-04-17 16:51:13 -07:00
Mitchell Hashimoto
68e26ca2a0
website: transit backend
2015-04-17 12:56:31 -07:00
Mitchell Hashimoto
466ab3f17a
website: HA concepts, configuration
2015-04-17 12:56:31 -07:00
Mitchell Hashimoto
ee254a332e
command/server: can set advertise addr
2015-04-17 12:56:31 -07:00
Mitchell Hashimoto
415e7cef22
command/server: config for setting stats addresses
2015-04-17 12:56:31 -07:00
Mitchell Hashimoto
44b634c0d5
command/server: not HA possibilities when starting
2015-04-17 12:56:31 -07:00
Armon Dadgar
fb753210ed
Merge pull request #14 from hashicorp/f-limited-use
...
Support limited or one-time-use tokens
2015-04-17 11:59:31 -07:00
Armon Dadgar
4473abd6ce
vault: core enforcement of limited use tokens
2015-04-17 11:57:56 -07:00
Armon Dadgar
538c795f9b
vault: Adding method to consume a limited use token
2015-04-17 11:51:04 -07:00
Armon Dadgar
fd3948d476
vault: Tokens can have a use count specified
2015-04-17 11:34:25 -07:00
Mitchell Hashimoto
f7a1b2ced9
credential/app-id: allow restriction by CIDR block [GH-10]
2015-04-17 10:14:39 -07:00
Mitchell Hashimoto
e643b48235
credential/app-id: support associating a name with app ID [GH-9]
2015-04-17 10:01:03 -07:00
Mitchell Hashimoto
37af1683c6
credential/*: adhere to new API
2015-04-17 09:40:28 -07:00
Mitchell Hashimoto
cd3fa3be92
logical/framework: more flexible Pathmap and PolicyMap
2015-04-17 09:35:49 -07:00
Mitchell Hashimoto
910bf9c76d
logical/framework: PathStruct
2015-04-17 09:18:21 -07:00
Armon Dadgar
b65e1b3e22
vault: using a constant to make @mitchellh feel better
2015-04-15 17:19:59 -07:00
Armon Dadgar
acb3df23e8
Merge pull request #12 from hashicorp/f-transit
...
Adding transit logical backend
2015-04-15 17:14:30 -07:00
Armon Dadgar
07bffafbbd
Adding transit logical backend
2015-04-15 17:08:12 -07:00
Armon Dadgar
aa0e813bc0
Merge pull request #11 from abedra/barrier_updates
...
Clarify Barrier encryption defaults.
2015-04-15 16:46:20 -07:00
Aaron Bedra
95c37c1c4d
Clarify Barrier encryption defaults.
...
Declare the defaults in the comments to be what they are now (256 bit
key and default golang NONCE value). Make the key error message more
precise since. It isn't between 16 and 32, it is 16 OR 32.
2015-04-15 18:24:23 -05:00
Armon Dadgar
381aa0f7af
logical/aws: Use display name for IAM username
2015-04-15 15:05:00 -07:00
Armon Dadgar
489e79ffd3
logical/consul: Use the DisplayName for the ACL token name
2015-04-15 15:03:05 -07:00
Armon Dadgar
cf2faa06ae
credential/github: Set the github username as the display name
2015-04-15 14:30:46 -07:00
Armon Dadgar
a764baa8e7
Merge pull request #8 from hashicorp/f-display
...
Adding DisplayName to Auth to help operators correlate dynamic secrets
2015-04-15 14:28:56 -07:00
Armon Dadgar
818ce0a045
vault: token store allows specifying display_name
2015-04-15 14:24:07 -07:00
Armon Dadgar
76b69b2514
vault: thread the display name through
2015-04-15 14:12:34 -07:00
Armon Dadgar
9d2bd2bf29
logical: Adding a DisplayName for operators
2015-04-15 13:56:42 -07:00
Armon Dadgar
a2c22f6b3c
physical: fix negative cache issue for core keys
2015-04-15 13:48:49 -07:00
Armon Dadgar
e6fd2f2ce5
vault: Default key size to 256bit.
2015-04-15 13:33:47 -07:00
Armon Dadgar
3ee434a783
vault: Allow AES key to be up to 256 bits. Fixes #7
2015-04-15 13:33:47 -07:00
Mitchell Hashimoto
1943ca2536
Merge pull request #6 from abedra/master
...
website: add vault help output.
2015-04-15 08:31:09 -07:00
Aaron Bedra
32f152cb1f
Add vault help output.
...
Replace the TODO in the intro with the actual help output.
2015-04-15 10:29:02 -05:00
Armon Dadgar
1c84cfad54
website: Adding telemetry documentation
2015-04-14 18:47:47 -07:00
Armon Dadgar
f04d33b170
command/server: Enable telemetry. cc: @mitchellh
2015-04-14 18:44:09 -07:00
Armon Dadgar
c5d70794ad
website: document the HA design
2015-04-14 18:31:25 -07:00
Armon Dadgar
71ecc1ff45
Merge pull request #5 from hashicorp/f-ha
...
Support for High-Availability mode based on Backends
2015-04-14 16:59:35 -07:00
Armon Dadgar
9f7143cf44
vault: expose the current leader
2015-04-14 16:53:40 -07:00
Armon Dadgar
445f64eb39
vault: leader should advertise address
2015-04-14 16:44:48 -07:00
Armon Dadgar
b28dac7cb2
physical: Support association of value with lock
2015-04-14 16:36:53 -07:00
Armon Dadgar
ec8a41d2d2
vault: rename internal variable
2015-04-14 16:11:39 -07:00
Armon Dadgar
7579cf76ab
vault: testing standby mode
2015-04-14 16:08:14 -07:00
Armon Dadgar
2820bec479
vault: testing standby mode
2015-04-14 16:06:58 -07:00
Armon Dadgar
a0e1b90b81
vault: reject operation if standby
2015-04-14 14:09:11 -07:00
Armon Dadgar
d7102e2661
vault: first pass at HA standby mode
2015-04-14 14:06:15 -07:00
Armon Dadgar
0be49a97b7
vault: stopExpiration should be idempotent
2015-04-14 13:32:56 -07:00
Armon Dadgar
5150091a6b
physical: Adding inmem HA for testing
2015-04-14 12:04:15 -07:00
Armon Dadgar
cd6db0a637
physical: First pass at HABackend
2015-04-14 11:49:46 -07:00
Armon Dadgar
9aec9fe577
physical: Add profiling to Consul backend
2015-04-14 11:09:24 -07:00
Armon Dadgar
255e0fbda4
vault: enable physical cache in core
2015-04-14 11:08:04 -07:00