luxolus/open-vault
2
0
Fork 0
Code Issues 1 Pull requests Releases Activity
9144 commits 1 branch 0 tags 214 MiB
Commit graph

9144 commits

This branch
This branch
All branches
Author SHA1 Message Date
Brian Shumate 25d6d03222 Docs: update policy read API output to address #5298 (#5299) 2018-09-21 10:52:46 -04:00
Seth Vargo 743161abd4 Also format TTLs in non-secret responses (#5367) 2018-09-21 09:54:18 -04:00
Brian Shumate 7d692ee614 Update screenshot (#5378) 
- Use a Vault dashboard example (previous example was for Consul)
- Rename image file
 2018-09-21 09:53:49 -04:00
Roman Iuvshyn 0832153f7d fixes file path option in samples (#5377) 
fixes file path option in samples
 2018-09-20 15:55:20 -07:00
Jim Kalafut 25fbbdb730
changelog++ 2018-09-20 15:00:25 -07:00
Jim Kalafut 343c72dbe1
Detect and bypass cycles during token revocation (#5364) 
Fixes #4803
 2018-09-20 14:56:38 -07:00
Yoko 3600f3dfa5
[Guide] Tokens & Leases guide **Correction** (#5375) 
* Added Azure Key Vault

* Corrected the info about orphan token creation
 2018-09-20 13:58:29 -07:00
Calvin Leung Huang 4ac6675fef changelog++ 2018-09-20 12:32:07 -07:00
Calvin Leung Huang 189b893b35
Add ability to provide env vars to plugins (#5359) 
* Add ability to provide env vars to plugins

* Update docs

* Update docs with examples

* Refactor TestAddTestPlugin, remove TestAddTestPluginTempDir
 2018-09-20 10:50:29 -07:00
Brian Shumate 74ec835b3b Docs: update Tidy API (#5374) 
- Add a sample response to /auth/token/tidy API docs
- Document /auth/approle/tidy/secret-id API docs
 2018-09-20 13:25:33 -04:00
Jeff Mitchell 9a24242cd1 BoundCidrs -> BoundCIDRs 2018-09-20 12:45:49 -04:00
Jeff Mitchell 5363f1308f Makefile updates 2018-09-20 12:38:05 -04:00
Laura Gjerman-Uva 6fcf6ea6fe Add -dr-token flag to commands to generate OTP and decode with OTP (required on DR secondary as of 0.11) (#5368) 2018-09-20 09:19:01 -07:00
Richard Lane 43837ecdf1 Documentation correction - update list identity whitelist sample request (#5369) 
Path was incorrectly referencing the roletag-blacklist

Updated the sample to match the correct path
 2018-09-19 21:21:57 -07:00
Brian Kassouf 94990a38df
changelog++ 2018-09-19 12:10:01 -07:00
pavel-usov 470131d100 Change in GET_LOCK call to make it MariaDB compatilble (#5343) 
* Update mysql.go

Change in GET_LOCK call to make it MariaDB compatilble

* Use math.MaxUint32 for lock timeout, add comments
 2018-09-19 12:05:04 -07:00
Jeff Mitchell da21bb14a8 changelog++ 2018-09-19 13:09:49 -04:00
Jeff Mitchell 4b45d8210f
Possibly fix Nomad capabilities issue (#5360) 2018-09-19 13:06:37 -04:00
Becca Petrin d05484b586
AliCloud Secrets Docs (#5351) 2018-09-19 08:42:59 -07:00
Becca Petrin 74d4d0ccc0
add alicloud secrets engine (#5352) 2018-09-19 08:42:28 -07:00
Jeff Mitchell c4b88333c9 Fix make proto substitutions 2018-09-19 11:37:01 -04:00
Jeff Mitchell 43aebacfa8 Fix default_max_request_duration HCL name and update docs (#5321) 
* Fix default_max_request_duration HCL name and update docs

* Update tcp.html.md
 2018-09-18 14:30:21 -07:00
Calvin Leung Huang 3ea1cc861d Small Makefile and script cleanup (#5354) 2018-09-18 14:28:37 -07:00
Clint 06d8dce8db
Update CHANGELOG.md 2018-09-18 16:07:08 -05:00
Clint 5882156f53
Translate AWS Rate limiting errors to 502 errors (#5270) 
* Initial implemntation of returning 529 for rate limits

- bump aws iam and sts packages to v1.14.31 to get mocking interface
- promote the iam and sts clients to the aws backend struct, for mocking in tests
- this also promotes some functions to methods on the Backend struct, so
  that we can use the injected client

Generating creds requires reading config/root for credentials to contact
IAM. Here we make pathConfigRoot a method on aws/backend so we can clear
the clients on successful update of config/root path. Adds a mutex to
safely clear the clients

* refactor locking and unlocking into methods on *backend

* refactor/simply the locking

* check client after grabbing lock
 2018-09-18 15:26:06 -05:00
Jeff Mitchell 919b968c27
The big one (#5346) 2018-09-17 23:03:00 -04:00
Jeff Mitchell 551f435501 changelog++ 2018-09-17 14:30:33 -04:00
Jeff Mitchell f692c1e3a9 Revert "Detect and bypass cycles during token revocation (#5335)" 
This reverts commit 00314eb4d1c5609a1935f653dc6f2fc83c0bfcc0.
 2018-09-17 14:10:57 -04:00
Brian Kassouf a2608a3b61
Fix approle tidy on performance standbys (#5338) 
* Fix approle tidy on performance standbys

* Forward PKI and AWS also
 2018-09-17 09:53:23 -07:00
Jeff Mitchell 65928618eb changelog++ 2018-09-17 12:36:20 -04:00
Jeff Mitchell 07e654f539 changelog++ 2018-09-17 12:11:11 -04:00
Jim Kalafut 6c5f678d6a
changelog++ 2018-09-17 09:04:51 -07:00
Jim Kalafut 0ae6ec52b8
Detect and bypass cycles during token revocation (#5335) 
Fixes #4803
 2018-09-17 08:55:12 -07:00
Yoko 512b64ad77
[Guide] Secure Introduction - Update (#5323) 
* Adding Vault Agent to the Secure Intro guide

* Incorporated the feedback

* Deleted extra spaces

* methods -> approaches
 2018-09-14 13:51:23 -07:00
Jeff Mitchell 5dc2bff9e2 changelog++ 2018-09-14 14:46:50 -04:00
Yoko 2cc8610abb
[Guide] Namespaces policy (#5296) 
* Added policy info

* Fixed the API URL

* Added webinar recording as a reference material
 2018-09-14 11:23:46 -07:00
Jeff Mitchell 6a2a6a7b34 changelog++ 2018-09-14 09:06:11 -04:00
Evan Grim 7f5c193ace Fix small grammatical error in plugin docs (#5334) 2018-09-13 14:23:24 -07:00
Jim Kalafut eb6c165e29
Improve CLI error message (#5327) 2018-09-13 08:23:36 -07:00
Clint bfbfe83195
Update CHANGELOG.md 2018-09-13 10:10:52 -05:00
Yoko 04a0dd6d0e
ACL Policy Templating -> ACL Policy Path Templating (#5330) 2018-09-12 16:14:31 -07:00
Clint 5f5af90dfe
Update AWS auth backend iam_request_headers to be TypeHeader (#5320) 
Update AWS Auth backend to use TypeHeader for iam request headers

- Remove parseIamRequestHeaders function and test, no longer needed with new TypeHeader
- Update AWS auth login docs
 2018-09-12 16:16:16 -05:00
Becca Petrin b2ff87c9c2
Poll for new creds in the AWS auth agent (#5300) 2018-09-12 13:30:57 -07:00
Brian Shumate 168b956fbb Docs: clarify max_ttl in Database Secrets Create (#5311) 
- Clarify max_ttl on Database Secrets Create API
- Crosslink to TTL general case docs
 2018-09-11 19:55:15 -04:00
Jeremy Gerson 7c51265de9 Update pki-engine.html.md (#5322) 2018-09-11 19:49:31 -04:00
Jim Kalafut e1a326152d
Switch to strings.EqualFold (#5284) 2018-09-11 16:22:29 -07:00
Yoko 7683aa3e57
[Guide] Performance Standby Nodes (#5272) 
* Performance Standby Nodes guide

* Added a link in the Vault HA guide

* Added links

* Clarified the node selection info

* Incorporated feedback

* Added 'when the Enterprise license includes this feature'

* Fixed the label: server 8 -> VM8

* Incorporated the feedback
 2018-09-11 15:22:36 -07:00
Jeff Mitchell d96d10957c Update some text around encrypting with agent 2018-09-11 15:05:44 -04:00
Becca Petrin 625592c5e6
update to match aws (#5315) 2018-09-11 11:10:50 -07:00
Jeff Mitchell 981bb07a4a changelog++ 2018-09-11 13:10:54 -04:00