5c55c34d6b
Update cubbyhole text to be more explicit.
...
Fixes #1165
2016-03-03 10:58:58 -05:00
0b4a8f5b94
Adding mssql secret backend
2016-03-03 09:19:17 -05:00
7c5f810bc0
Address first round of feedback
2016-03-01 15:30:37 -05:00
02362a5873
Update token documentation
2016-03-01 14:00:52 -05:00
fd585ecf8a
removed datatype and corrected a sentense
2016-03-01 11:21:29 -05:00
724823b8f7
zeroaddress documentation fix
2016-03-01 10:57:00 -05:00
3cc35a554b
Update doc, it's now 10 seconds
2016-02-29 10:09:11 -05:00
11ddd2290b
Provide 'sys/step-down' and 'vault step-down'
...
This endpoint causes the node it's hit to step down from active duty.
It's a noop if the node isn't active or not running in HA mode. The node
will wait one second before attempting to reacquire the lock, to give
other nodes a chance to grab it.
Fixes #1093
2016-02-26 19:43:55 -05:00
6207377f32
Update Vishal's info on the community page
2016-02-25 15:17:53 -05:00
b61f43d34c
Update documentation around VAULT_TLS_SERVER_NAME
2016-02-25 12:29:05 -05:00
db4450d3f3
Bump website version number
2016-02-25 10:44:18 -05:00
8ca847c9b3
Be more explicit about buffer type
2016-02-24 22:05:39 -05:00
151eaf9ec0
Add documentation for pki/tidy
2016-02-24 21:31:29 -05:00
36672bbf1f
Add information about the cert renewal enhancements to the upgrade guide
2016-02-24 21:24:20 -05:00
842f6670d1
Add upgrade information
2016-02-24 21:13:44 -05:00
69bcbb28aa
rename verify_cert as disable_binding and invert the logic
2016-02-24 21:01:21 -05:00
cf0156e5b4
documentation for the config endpoint
2016-02-24 17:13:24 -05:00
d065425f44
website: fix hover state for annc banner
2016-02-24 11:18:10 -08:00
c3fd1f8853
Merge pull request #1119 from hashicorp/jt-enterprise-bnr
...
Vault Enterprise Banner and Nav
2016-02-24 11:03:09 -08:00
a83db21a77
website: announcement banner for vault enterprise
2016-02-24 10:59:31 -08:00
f4d8852259
Add note that STS credentials can only be generated for user inline policies in AWS secret backend documentation
2016-02-23 09:06:52 -05:00
c9899a5300
postgres: connection_url fix
2016-02-22 11:22:49 -05:00
264c9cc40e
Merge branch 'master' into rabbitmq
2016-02-21 14:55:06 -08:00
c755065415
Add RabbitMQ secret backend
2016-02-21 14:52:57 -08:00
a43bd9131b
changelog++
2016-02-19 16:52:19 -05:00
38b55bd8b1
Don't deprecate value field yet
2016-02-19 16:07:06 -05:00
380b662c3d
mysql: provide allow_verification option to disable connection_url check
2016-02-19 16:07:05 -05:00
fef282f078
Some website config updates
2016-02-19 15:27:02 -05:00
50d3b68c8d
Merge pull request #1078 from eyal-lupu/master
...
ZooKeeper Backend: Authnetication and Authorization support
2016-02-19 15:13:09 -05:00
be073f8499
Update upgrade website section with information about the 0.5.1 PKI changes
2016-02-19 14:42:59 -05:00
7fc4ee1ed7
Disallow 1024-bit RSA keys.
...
Existing certificates are kept but roles with key bits < 2048 will need
to be updated as the signing/issuing functions now enforce this.
2016-02-19 14:33:02 -05:00
05b5ff69ed
Address some feedback on ldap escaping help text
2016-02-19 13:47:26 -05:00
c67871c36e
Update LDAP documentation with a note on escaping
2016-02-19 13:16:18 -05:00
9f4273589f
Remove root-protected references from transit docs
2016-02-18 12:45:18 -05:00
695a822545
Merge pull request #1075 from rajanadar/patch-14
...
adding full response for intermediate/generate
2016-02-18 10:16:53 -05:00
c431c2204d
Merge pull request #1074 from rajanadar/patch-13
...
added missing fields to read role
2016-02-18 10:16:14 -05:00
dd2c7a6bc8
Update index.html.md
...
typo in docs
2016-02-15 16:52:43 +00:00
c04b8ab287
Update index.html.md
...
Documentation: Zookeeper authentication and ACLs
2016-02-15 16:38:14 +00:00
35074dff51
Update index.html.md
...
Zookeeper authentication and authorization documentations
2016-02-15 16:20:32 +00:00
e7d20c0ef3
adding full response for intermediate/generate
...
1. adding superset of fields in response, so that folks can see all possible response fields.
2. also added the less important "warnings" field
2016-02-14 14:42:37 -08:00
2d918196ca
added missing fields to read role
...
added the lease and token type field to the read role response.
2016-02-14 13:00:42 -08:00
b0d05ebcb3
fixing response fields of /pki/issue
...
1. added the private_key_type field
2. changed "serial" to "serial_number"
3. added the warnings field
2016-02-14 12:41:43 -08:00
1985fa3313
Minor spelling fix
2016-02-13 08:41:16 -08:00
812736b475
Fixes typo
2016-02-12 22:34:07 +09:00
aaed354aca
Add note about client libraries to 0.5 upgrade page
2016-02-10 12:10:51 -05:00
4fb603906f
Bump website download links to 0.5.0
2016-02-10 12:08:29 -05:00
69f7aca258
Add change of exit code for status to upgrade page
2016-02-10 08:01:54 -05:00
fff201014d
Merge pull request #1021 from hashicorp/vault-seal-1006
...
Sealing vault in standby mode
2016-02-03 15:22:16 -05:00
f27e691c6c
Correct a small typo
2016-02-03 20:08:33 +00:00
eeea9710b6
Generalized the error message and updated doc
2016-02-03 15:06:18 -05:00
3a996e11fd
Add postgresql to bullet list of backends
2016-02-03 14:04:55 -05:00
4ca9d72f3a
Link to blog post on using with CM
2016-02-02 18:00:39 -05:00
159754acf2
Use capabilities to determine upsert-ability in transit.
2016-02-02 10:03:14 -05:00
5ef8839e48
Revert "Re-add upsert into transit. Defaults to off and a new endpoint /config"
...
This reverts commit dc27d012c0357f93bfd5bd8d480f3e229166307a.
2016-02-02 09:26:25 -05:00
6e6382d410
Some rewording based on feedback
2016-02-01 20:24:28 -05:00
f9bced579b
+list of
2016-02-01 20:17:06 -05:00
66494faa3f
Add an install/upgrade section. Add general and 0.5 upgrade procedures.
2016-02-01 20:17:06 -05:00
1d385b4de3
Re-add upsert into transit. Defaults to off and a new endpoint /config
...
can be used to turn it on for a given mount.
2016-02-01 20:13:57 -05:00
ca5e4dd955
Merge pull request #980 from rajanadar/patch-8
...
fixing the return type of verify otp
2016-02-01 14:10:14 -05:00
fc6d23a54e
Allow the format to be specified as pem_bundle, which creates a
...
concatenated PEM file.
Fixes #992
2016-02-01 13:19:41 -05:00
af73d965a4
Cassandra:
...
* Add ability to change protocol version
* Remove config as a root path, use normal ACLs
* Update docs
2016-02-01 10:27:26 -05:00
9a21d03689
Update documentation around default_lease_ttl and max_lease_ttl.
...
Fixes #1004
2016-02-01 09:44:42 -05:00
d0eb0813b1
Add vault-java-drver to libraries
2016-01-29 21:02:54 -05:00
df536a8f0a
Fix token backend doc bug
...
Fixes #990
2016-01-29 21:01:08 -05:00
4112809fb5
Make the PostgreSQL backend more performant
2016-01-29 13:47:10 -07:00
5f178e1927
Update transit docs to no longer claim upsert functionality
2016-01-29 14:43:52 -05:00
68dc0e2dd3
Merge pull request #945 from quixoten/postgres_physical
...
Add support for PostgreSQL as a physical backend
2016-01-29 10:35:38 -05:00
2015118958
Add listing of roles to PKI
2016-01-28 15:18:07 -05:00
63c6172c17
Add list documentationf for mysql
2016-01-28 15:06:52 -05:00
62e3ac83f8
Add list support for postgres roles
2016-01-28 14:41:50 -05:00
904e2b36b6
Update SSH documentation with list
2016-01-28 14:41:43 -05:00
e4438d9705
fixed the return type of /ssh/lookup api
2016-01-28 01:04:35 -08:00
b8fa5c6fd4
fix return type of post /ssh/creds
...
added sample json for both otp and dynamic credentials
2016-01-28 00:56:59 -08:00
7aabad7808
better description
2016-01-27 21:58:54 -08:00
67da86eeab
fixing the return type of verify otp
...
it seems to be 200 on valid OTP and 204 on invalid OTP. (i think it should be an error.. 400 or 404)
but for the moment, fixing the docs to match the existing behavior.
2016-01-27 20:04:11 -08:00
737df30939
Improve naming
...
Hopefully this naming scheme will be more straightforward.
2016-01-27 17:15:48 -07:00
b7a49922a9
Update etcd sync option to be a string.
...
Ping #921
2016-01-27 17:15:52 -05:00
b0bd06f5a4
Merge pull request #921 from faradayio/hosted-etcd-support
...
Load-balanced etcd support
2016-01-27 17:09:43 -05:00
0db33274b7
discover bind dn with anonymous binds
2016-01-27 17:06:27 +01:00
22c22095d2
samaccountname as login example
2016-01-27 09:25:05 +01:00
c6acb340a8
docs for binddn/bindpass
2016-01-27 07:51:10 +01:00
1107a068b7
Merge pull request #972 from rajanadar/patch-7
...
added the delete api details to generic backend
2016-01-26 09:49:06 -05:00
bc04e4eec2
Merge pull request #971 from rajanadar/patch-6
...
added the delete api details to cubbyhole
2016-01-26 09:48:47 -05:00
92d42aa6c7
Merge pull request #969 from rajanadar/patch-4
...
fixing the description of the /lookup/<token> api
2016-01-26 09:48:22 -05:00
741c23cb4a
added the delete api details to generic backend
...
documentation was missing this api description
2016-01-25 23:56:33 -08:00
64c9eb969d
added the delete api details to cubbyhole
...
cubbyhole delete api details were missing. added them.
2016-01-25 23:47:33 -08:00
f02aa2c2c0
fixing an incorrect json response field name
...
changed a read-role api response field from 'revocation_cql' to 'rollback_cql'
didn't verify it using a real cassandra server test, but looked at the source code json schema definition here:
https://github.com/hashicorp/vault/blob/master/builtin/logical/cassandra/path_roles.go
func pathRoles(b *backend) *framework.Path
please feel free to discard the PR, if i am looking at the wrong source location or something.
2016-01-25 23:42:20 -08:00
cf9b3c7c66
fixing the description of the /lookup/<token> api
2016-01-25 23:26:29 -08:00
c57072d39a
AWS secret backend - docs when using existing policy
2016-01-26 01:43:14 +00:00
35a0d28620
Docs for AWS backend when using an existing policy
2016-01-26 01:39:24 +00:00
93c64375e9
Merge 'upstream/master' into postgres_physical
2016-01-25 13:43:16 -07:00
05e337727f
Document changes
2016-01-25 14:47:16 -05:00
64e521a68b
Add structured data
2016-01-24 13:37:20 -05:00
abd9fe1b73
Merge pull request #961 from rajanadar/patch-3
...
fixed login link,request params,add json response
2016-01-23 14:45:27 -05:00
d3434f8f03
clarify default mountpoint
2016-01-23 11:02:00 -08:00
9d776351a3
Merge 'upstream/master' into postgres_physical
2016-01-22 20:56:07 -07:00
9b82736b9a
fixed login link,request params,add json response
...
1. fix login link
2. added personal access token to request message
3. added a sample json response
2016-01-22 17:38:32 -08:00
b0f33d4d19
mention that this is an unauthenticated endpoint
2016-01-22 17:10:16 -08:00
dac5997e14
update sys-init.html.md
...
change response field from 'initialize' to 'initialized'
2016-01-22 16:45:59 -08:00
c226b0be7d
Update naming and pull DDL for upsert back out
2016-01-22 17:15:10 -07:00
32b712ddb1
Move the upsert definition back into the code
2016-01-22 09:47:02 -07:00
bfbdc72e03
Remove options for column configuration
2016-01-22 08:41:31 -07:00
7b2407093b
0.7 -> 1.0
2016-01-22 10:07:32 -05:00
3955604d3e
Address more list feedback
2016-01-22 10:07:32 -05:00
7d1d003ba0
Update documentation and use ParseBool for list query param checking
2016-01-22 10:07:32 -05:00
be1b4c8a46
Only allow listing on folders and enforce this. Also remove string sorting from Consul backend as it's not a requirement and other backends don't do it.
2016-01-22 10:07:32 -05:00
5341cb69cc
Updates and documentation
2016-01-22 10:07:32 -05:00
d621d7ebe7
Add C# library and do some reorg on the library page
2016-01-22 10:03:02 -05:00
512b1ddf6c
Merge 'upstream/master' into postgres_physical
2016-01-21 13:04:27 -07:00
4abca91d66
Renamed sts duration to ttl and added STS permissions note.
2016-01-21 14:28:34 -05:00
0b5e35c8cd
documenting the new aws/sts endpoint
2016-01-21 14:05:10 -05:00
06641570c7
Remove DDL statements from the code
2016-01-20 18:52:49 -07:00
fc94487f55
Add support for PostgreSQL as a physical backend
2016-01-19 17:00:09 -07:00
973c888833
RootGeneration->GenerateRoot
2016-01-19 18:28:10 -05:00
3b994dbc7f
Add the ability to generate root tokens via unseal keys.
2016-01-19 18:28:10 -05:00
306c63b1be
/encryption key/master key/
2016-01-19 15:42:50 +00:00
6d655d75fe
Do not use compressed javascripts
...
Minifier gets really confused when you give it already-compressed
javascript.
2016-01-14 15:00:41 -05:00
1001566a26
Keep ordering consistent in config doc, and put HA backends first
2016-01-14 13:55:53 -05:00
94f590581a
Add scripts to deploy via Atlas
2016-01-14 13:42:53 -05:00
e40c77ff27
Use HTTPS + www where appropriate
2016-01-14 13:42:47 -05:00
d210b561a2
ImageOptim
2016-01-14 13:42:34 -05:00
13b1e8f9df
Fix image asset URLs
2016-01-14 13:42:28 -05:00
2d7555f442
Remove Heroku stuff
2016-01-14 13:42:13 -05:00
5873824ee2
Version 0.4.1
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQEcBAABAgAGBQJWls/HAAoJEFGFLYc0j/xMarQH/i6rW+wLm9DadkFV23jwjttt
TRumTPDoBxHQDoB0wkC4CmA8UiZnzc68o5OlxisC8KAz/89HWZf8sUDxkOSY1vUX
BGDkiv+KF6LiDRAdDyIqK6PYUkKHaJgue9Vnwu5+1iRv1sjK5PyPb992Wmt/DtOM
nRn8Hn5qmmDCUm79TKXpZNMs/CRx21VM7q2Sm139kLzTr0Qg2Oyxcp3mB8TR7LtV
ATdMQ//HzL/tGJ6Yw7zkgZzdf7EMFFO1SSVqAzqag6kqNqwjvmDGrQaTzkdl7anv
72zMXqVcryeSL6DRZuR+OrHs63aaoTwIXcqO56nBrZ1NAEqkI0oCcvDZNLt7yi4=
=YCXl
-----END PGP SIGNATURE-----
Merge tag 'v0.4.1'
Version 0.4.1
2016-01-14 09:57:21 -05:00
eeac69939c
Bump values to 0.4.1
2016-01-13 17:28:17 -05:00
d949043cac
Merge pull request #914 from hashicorp/acl-rework
...
More granular ACL capabilities
2016-01-12 21:11:52 -05:00
5204da4edd
Fix typo
...
Change "...implements is own login endpoint..." to "...implements its own login endpoint..."
2016-01-12 22:22:13 +08:00
e815db8756
Update audit sys docs
2016-01-11 19:08:23 -05:00
69434fd13e
etcd: Allow disabling sync for load balanced etcd
...
Some etcd configurations (such as that provided by compose.io) place the
etcd cluster behind multiple load balancers or proxies. In this
configuration, calling Sync (or AutoSync) on the etcd client will
replace the load balancer addresses with the underlying etcd server
address.
This will cause the etcd client to bypass the load balancers, and may
cause the connection to fail completely if the etcd servers are
protected by a firewall.
This patch provides a "sync" option for the etcd backend, which defaults
to the current behavior, but which can be used to turn off of sync.
This corresponds to etcdctl's --no-sync option.
2016-01-11 13:56:58 -05:00
ebabcd857a
etcd: Document existing username and password options
...
These options were present in the source code, but not in the
documentation. They're needed to connect to some hosted etcd services.
2016-01-11 11:30:51 -05:00
4f4ddbf017
Create more granular ACL capabilities.
...
This commit splits ACL policies into more fine-grained capabilities.
This both drastically simplifies the checking code and makes it possible
to support needed workflows that are not possible with the previous
method. It is backwards compatible; policies containing a "policy"
string are simply converted to a set of capabilities matching previous
behavior.
Fixes #724 (and others).
2016-01-08 13:05:14 -05:00
3a0ea3bcaa
Add documentation for the DynamoDB backend
2016-01-08 17:34:31 +01:00
a094eedce2
Add rekey nonce/backup.
2016-01-06 09:54:35 -05:00
d4bc51751e
Fix typo in docs
2016-01-05 11:45:23 -05:00
e54edd54ac
Update documentation with policy fetching information.
2016-01-05 11:26:19 -05:00
df5f5d68bd
Merge pull request #888 from aedotj/patch-1
...
Fixed "edit this page" not clickable
2016-01-04 11:29:21 -08:00
496e9962d0
Fixes mis-placed html tag
2015-12-31 10:37:01 -05:00
a7a02b3043
Cert documentation fix.
...
Fixes #899
2015-12-30 16:44:24 -05:00
6cdb8aeb4f
Merge branch 'master' into f-disable-tls
2015-12-29 12:59:02 -05:00
41d6e0e085
Merge pull request #882 from hashicorp/clarify-physical-support
...
Clarify stance on physical backend support
2015-12-29 11:40:23 -06:00
911431ac27
Fixed "edit this page" not clickable
...
The link in .edit-page-link is moved using top and right properties, which makes it "under" the layer of the rest of the page (at least in the docs). Changing the z-index fixes it.
2015-12-28 17:51:27 +01:00
8248d15a5b
Doc grammar fix
2015-12-22 21:27:08 +00:00
dca0e72f10
Clarify stance on physical backend support
2015-12-22 10:50:31 -05:00
8cfc45e0eb
Merge pull request #879 from hashicorp/header
...
fixes 'by HashiCorp' in the header
2015-12-21 12:39:54 -05:00
a8b013a4f3
cleanup footer
2015-12-20 11:56:28 -08:00
c02013f631
add missing html tag
2015-12-20 14:20:30 -05:00
2ec7a2f032
capitol C in by hashicorp lockup
2015-12-19 21:21:18 -08:00
8bba9497ac
Some copyediting/simplifying of the Consul page
2015-12-18 10:07:40 -05:00
0d74de9da4
Update secret backend Consul documentation
...
Adds information on the steps to get a management token for use by
Vault when communicating with Consul as a secret backend.
2015-12-18 09:44:31 -05:00
1261791e6f
Update etcd config docs with new options in 0.4.
...
Ping #780
2015-12-17 10:34:41 -05:00
d6884b85e1
Change API endpoint path for app-id
...
The /login path was confusing because its not relative and not consistent with other documentation. Other documentation (e.g., username and password at https://www.vaultproject.io/docs/auth/userpass.html ) uses relative path.
2015-12-15 12:45:04 -06:00
60c5975f87
flexbox should only have been used on website subpages
2015-12-15 10:14:25 -08:00
db7a2083bf
Allow setting the advertise address via an environment variable.
...
Fixes #581
2015-12-14 21:22:55 -05:00
ff9745bb00
Update Changelog and documentation with separate-HA-backend info.
2015-12-14 21:04:58 -05:00
7dca03eb3f
Update documentation with Consul backend `token_type` parameter.
...
Fixes #854
2015-12-14 20:54:13 -05:00
fce85c12e2
Add vault-java to libraries
...
vault-java implements the basic HTTP API, more endpoints are in the
pipeline
2015-12-14 19:04:05 +01:00
dfbe08fe8f
fix bug in js for sticky footer by replacing with flexbox
2015-12-11 17:21:06 -08:00
4f839cce9e
Fix typo
...
futher => further
2015-12-11 08:50:06 -08:00
016e0dd0f3
Bump website version
2015-12-10 12:49:58 -05:00
e25b3ad344
Update documentation to be consistent with return codes
...
Fixes #831
2015-12-10 10:26:40 -05:00
448efd56fa
Merge branch 'master' into pki-csrs
2015-12-08 10:57:53 -05:00
902b7b0589
Add a warning about consistency of IAM credentials as a stop-gap.
...
Ping #687
2015-12-08 10:56:34 -05:00
eee8386ea9
Add info about cert backend not checking CRL revocation.
2015-12-05 15:12:43 -05:00
bf0909a892
Tab -> space doc fix
2015-12-05 15:04:54 -05:00
1dbfcc3b45
Merge branch 'master' into pki-csrs
2015-12-03 15:23:08 -05:00
3bdbd66f7d
Remove datacenter from Consul configuration, as it cannot actually do
...
anything
Fixes #816
2015-12-03 15:16:37 -05:00
4eec9d69e8
Change allowed_base_domain to allowed_domains and allow_base_domain to
...
allow_bare_domains, for comma-separated multi-domain support.
2015-11-30 23:49:11 -05:00
b6c49ddf01
Remove token display names from input options as there isn't a viable
...
use-case for it at the moment
2015-11-30 18:07:42 -05:00
60ad2e0bbd
website: updating documentation
2015-11-25 12:23:56 -08:00
d461929c1d
Documentation update
2015-11-20 13:13:57 -05:00
22a6d6fa22
Merge branch 'master' into pki-csrs
2015-11-20 12:48:38 -05:00
25e359084c
Update documentation, some comments, make code cleaner, and make generated roots be revoked when their TTL is up
2015-11-19 17:14:22 -05:00
af3d6ced8e
Update validator function for URIs. Change example of entering a CA to a
...
root cert generation. Other minor documentation updates. Fix private key
output in issue/sign.
2015-11-19 11:35:17 -05:00
71f9ea8561
Make it clear that generating/setting a CA cert will overwrite what's
...
there.
2015-11-19 09:51:18 -05:00
a95228e4ee
Split root and intermediate functionality into their own sections in the API. Update documentation. Add sign-verbatim endpoint.
2015-11-19 09:51:18 -05:00
c461652b40
Address some feedback from review
2015-11-19 09:51:18 -05:00
ed62afec14
Large documentation updates, remove the pathlength path in favor of
...
making that a parameter at CA generation/sign time, and allow more
fields to be configured at CSR generation time.
2015-11-19 09:51:18 -05:00
ea676ad4cc
Add tests for intermediate signing and CRL, and fix a couple things
...
Completes extra functionality.
2015-11-19 09:51:17 -05:00
1c7157e632
Reintroduce the ability to look up obfuscated values in the audit log
...
with a new endpoint '/sys/audit-hash', which returns the given input
string hashed with the given audit backend's hash function and salt
(currently, always HMAC-SHA256 and a backend-specific salt).
In the process of adding the HTTP handler, this also removes the custom
HTTP handlers for the other audit endpoints, which were simply
forwarding to the logical system backend. This means that the various
audit functions will now redirect correctly from a standby to master.
(Tests all pass.)
Fixes #784
2015-11-18 20:26:03 -05:00
45e7e61d71
Update audit documentation around what hash is used
2015-11-18 10:42:42 -05:00
28ae7b2466
edit this page
2015-11-09 21:10:49 -08:00
d931c62d94
sidebar
2015-11-09 21:08:05 -08:00
2af4092734
redesign header bulk
2015-11-09 20:58:06 -08:00
1a45696208
Add no-default-policy flag and API parameter to allow exclusion of the
...
default policy from a token create command.
2015-11-09 17:30:50 -05:00
10913e2e6b
Update cert documentation to note requiring sudo access.
2015-11-06 16:09:42 -05:00
ffa879d6e2
Update S3 docs
2015-11-06 09:26:09 -05:00
08dbc70c9f
Switch etcd default port to 2379, in line with 2.x.
...
Fixes #753
2015-11-05 09:47:50 -05:00
4ad533a5ba
Add a line to the documentation to describe the new feature
2015-11-04 15:36:24 +01:00
a4322afedb
Merge pull request #746 from hashicorp/issue-677
...
Add a PermitPool to physical and consul/inmem
2015-11-03 15:26:58 -05:00
7f44a1b812
Add configuration parameter for max parallel connections to Consul
2015-11-03 15:26:07 -05:00
73e3aa1d64
Add create-orphan to documentation
2015-11-03 15:15:33 -05:00
d3f7546602
Fix trailing whitespace complaints
2015-11-03 10:52:20 -05:00
f0a25ed581
Clarify that CRLs are not fetched by Vault
2015-11-03 10:52:20 -05:00
154fc24777
Address first round of feedback from review
2015-11-03 10:52:20 -05:00
59cc61cc79
Add documentation for CRLs and some minor cleanup.
2015-11-03 10:52:20 -05:00
ffa196da0e
Note that the dev server does not fork
...
Fixes #710 .
2015-10-30 12:47:56 -04:00
f83eba4666
Force a trailing slash
2015-10-29 16:21:39 -04:00
e2d4a5fe0f
Documentation update around path/key name encryption.
...
Make it clear that path/key names in generic are not encrypted.
Fixes #697
2015-10-29 11:21:40 -04:00
c1d8b97342
Add reset support to the unseal command.
...
Reset clears the provided unseal keys, allowing the process to be begun
again. Includes documentation and unit test changes.
Fixes #695
2015-10-28 15:59:39 -04:00
57290b6d92
Minor format fix in environment documentation
2015-10-28 09:56:28 -04:00
b057645d73
Use vendored fastly logo
2015-10-26 12:13:03 -04:00
a710a80252
Use releases for releases
2015-10-26 00:06:17 -04:00
c7ff26b650
add documentation for GitHub Auth Backend 'ttl' and 'max_ttl' parameters
2015-10-23 09:30:48 -04:00
b27e80d090
add GitHub Enterprise base_url to docs
...
In https://github.com/hashicorp/vault/issues/716 @jefferai confirmed that the GitHub Auth Backend supports GitHub enterprise using an undocumented ``base_url`` parameter. This adds that parameter to the relevant documentation page.
2015-10-23 09:18:07 -04:00
d4a8c08feb
fix typo in first-secret.html.md
2015-10-22 12:04:22 -06:00
0168ce491b
Update token documentation to better explain token durations
2015-10-22 13:02:37 -04:00
189b72c3ba
Document the renew-self call
2015-10-21 10:53:20 -04:00
bc40e652bf
Remove revoke-self from sys API documentation as it's in the token-store instead
2015-10-21 10:46:41 -04:00
1d29ae940a
Minor grammar fix.
2015-10-20 13:42:46 -07:00
df0d335700
bundle update middleman-hashicorp
2015-10-12 14:28:43 -04:00
9f0b1547bb
Allow disabling the physical storage cache with 'disable_cache'.
...
Fixes #674 .
2015-10-12 13:00:32 -04:00
44706da08c
Merge pull request #691 from hashicorp/sethvargo/tabs_spaces_oh_my
...
Remove tabs from terminal output
2015-10-12 12:39:44 -04:00
50f720bc06
Remove tabs from terminal output
...
This also standardizes on the indentation we use for multi-line commands as
well as prefixes all commands with a $ to indicate a shell.
2015-10-12 12:10:22 -04:00
55c26a909e
Documentation updates to remove lease id and duration from generic
...
backend example.
2015-10-12 10:01:15 -04:00
89d40450cd
Force a Ruby version
2015-10-08 13:22:20 -04:00
ed9bb36516
bundle update middleman-hashicorp
2015-10-07 17:41:50 -04:00
ad09203343
use github_url to generate edit_this_page link
2015-10-07 17:39:08 -04:00
703c01c767
Add github_slug and website_root config vars
2015-10-07 17:38:22 -04:00
bf464b9a4b
Merge pull request #661 from hashicorp/maxopenconns
...
Parameterize max open connections in postgresql and mysql backends
2015-10-03 16:55:20 -04:00
c9213a809d
update acl example
...
Without `auth/token/lookup-self` read access you are unable to
authenticate. Update example to work as well as use new command output.
2015-10-02 09:06:42 -06:00
644a655920
mysql: made max_open_connections configurable
2015-10-01 21:15:56 -04:00
2051101c43
postgresql: Configurable max open connections to the database
2015-10-01 20:11:24 -04:00
e2b157aa79
Remove redundant wording for SSH OTP introduction.
2015-09-30 10:58:44 -04:00
f711393de6
Merge pull request #649 from ipoval/master
...
[code-gardening] fix typo in the documentation
2015-09-29 19:01:58 -07:00
aa774daf1c
website: bundle update
...
gets latest middleman-hashicorp w/ bugfix
2015-09-29 18:56:47 -07:00
c3569bae5e
Fixed gravatar hash
2015-09-29 14:12:58 -04:00
0bced67170
[code-gardening] fix typo in the documentation
2015-09-28 19:34:57 -07:00
62ac518ae7
Switch per-mount values to strings going in and seconds coming out, like other commands. Indicate deprecation of 'lease' in the token backend.
2015-09-25 10:41:21 -04:00
a0290f69df
Add 'edit this page' link to footer
2015-09-24 14:10:32 -07:00
d8ab92dcd6
`bundle update middleman-hashicorp`
2015-09-24 13:53:13 -07:00
f963e0b67d
Update README to point to Makefile
2015-09-24 13:52:27 -07:00
b274e94413
Add Makefile
2015-09-24 13:51:25 -07:00
af27a99bb7
Remove JWT for the 0.3 release; it needs a lot of rework.
2015-09-24 16:23:44 -04:00
e38c21e0ca
Documentation fix for global TTLs
2015-09-24 12:17:26 -04:00
8fa7d3bd0b
Add revoke-self to docs
2015-09-24 12:05:00 -04:00
89511e6977
Fixes docs for new JWT secret backend
2015-09-24 16:47:17 +02:00
54c62fe5aa
docs: pg username not prefixed with vault-
...
due to
05fa4a4a48
2015-09-22 10:14:47 -05:00
a5f52f43b1
Minor doc update to SSH
2015-09-21 16:26:07 -04:00
29c722dbb6
Enhance SSH backend documentation; remove getting of stored keys and have TTLs honor backends systemview values
2015-09-21 16:14:30 -04:00
3eb38d19ba
Update transit backend documentation, and also return the min decryption
...
value in a read operation on the key.
2015-09-21 16:13:43 -04:00
ca33cd8423
Add API endpoint documentation to cubbyhole
2015-09-21 16:13:36 -04:00
273f13fb41
Add API endpoint documentation to generic
2015-09-21 16:13:29 -04:00
59ba17c601
Add clarity to the lease concepts document.
2015-09-21 08:56:26 -04:00
801e531364
Enhance transit backend:
...
* Remove raw endpoint from transit
* Add multi-key structure
* Add enable, disable, rewrap, and rotate functionality
* Upgrade functionality, and record creation time of keys in metadata. Add flag in config function to control the minimum decryption version, and enforce that in the decrypt function
* Unit tests for everything
2015-09-18 14:41:05 -04:00
8f79e8be82
Add revoke-self endpoint.
...
Fixes #620 .
2015-09-17 13:22:30 -04:00
dff6e468f9
Grammar fix
2015-09-15 15:53:27 -04:00
538852d6d6
Add documentation for cubbyhole
2015-09-15 13:50:37 -04:00
142cb563a6
Improve documentation of token renewal
2015-09-11 21:08:32 -04:00
ace611d56d
Address items from feedback. Make MountConfig use values rather than
...
pointers and change how config is read to compensate.
2015-09-10 15:09:54 -04:00
488d33c70a
Rejig how dynamic values are represented in system view and location of some functions in various packages; create mount-tune command and API analogues; update documentation
2015-09-10 15:09:54 -04:00
Jeff Mitchell