luxolus
/
open-vault
2
0
Fork 0
Code Issues 1 Pull Requests Releases Activity
9,970 Commits 1 Branch 0 Tags 214 MiB
Commit Graph

9970 Commits

Author SHA1 Message Date
Jeff Mitchell 9193792773 Sync over 2019-03-18 09:33:01 -04:00
Jeff Mitchell 192330df48 Fmt 2019-03-18 09:28:20 -04:00
ncabatoff 4ca2e33740 Remove BoundCIDRs from the list of fields exported to Sentinel. Add explicit handling of fields we do want to export to SentinelGet so that we can wrap token on the ent side. (#6424) 2019-03-15 18:25:37 -04:00
Calvin Leung Huang 7a80fd0a81 add short sleep between revocation and lookup (#6425) 2019-03-15 18:24:53 -04:00
Brian Kassouf 609076ae4b update kv plugin 2019-03-15 12:49:31 -07:00
Nick Cabatoff de830e68d5 changelog++ 2019-03-15 15:11:35 -04:00
Brian Kassouf 9acbebd376 Upgrade kv plugin 2019-03-15 12:06:17 -07:00
ncabatoff fab1fde145
Move listener config from 'cache' block to top-level 'listener' blocks. Allow cache without auto-auth. (#6421) 
* Since we want to use the Agent listener for #6384, move listener config
from top-level 'cache' block to new top-level 'listeners' block.

* Make agent config allow cache and listener blocks without auto-auth
configured.
 2019-03-15 14:58:53 -04:00
Calvin Leung Huang 1172074922
changelog++ 2019-03-15 11:58:15 -07:00
Jim Kalafut 95aec5e953
changelog++ 2019-03-15 10:57:46 -07:00
Nick Cabatoff 836ebb05bd changelog++ 2019-03-15 13:44:56 -04:00
Brian Kassouf 777e7766ca Update plugins 2019-03-15 10:19:26 -07:00
ncabatoff cb3e3e578d Fix windows build by moving references to SIGUSR2 into a file not built (#6422) 
on windows.
 2019-03-15 10:12:48 -07:00
Michel Vocks 4ee5f7dffe Docs: Update Agent overview page (#6420) 
* Updated agent docs

* Updated overview agent page

* Updated complete links to short links
 2019-03-15 12:33:31 -04:00
ncabatoff 1fcfcbd8f2
Receiving a SIGUSR2 makes Vault log the running goroutines' stacks. (#6240) 
* Receiving a SIGUSR2 makes Vault log the running goroutines' stacks.
 2019-03-15 09:27:53 -04:00
Michel Vocks f4b0bd484a
Added upstream changes from enterprise to OSS (#6419) 2019-03-15 14:25:05 +01:00
Jim Kalafut 868b73bd8d
Update JWT plugin (#6415) 2019-03-14 14:18:09 -07:00
Matthew Irish 43b82bf514
UI - add description as helpText, and add sensitive from x-vault-displaySensitive (#6411) 
* add description from openAPI as helpText in the models, and add sensitive from x-vault-displaySensitive

* use TypeDurationSecond for TTLs on the GitHub auth method config

* remove empty vals in a loop and add tests

* hold off on changing GH config

* remove isEmpty import

* fix defaultValue
 2019-03-14 16:12:13 -05:00
Calvin Leung Huang e1e07011a0
changelog++ 2019-03-14 14:04:03 -07:00
Matthew Irish 07fc7f16cf
UI - jwt auth config model (#6410) 
* have jwt auth config generated from OpenAPI response

* support for viewing and enabling an 'oidc' auth type

* finish oidc config and clean up auth config form
 2019-03-14 16:01:56 -05:00
Jim Kalafut 5220e90c60 Fix improperly formatted help output strings (#6414) 2019-03-14 13:57:28 -07:00
Iskander (Alex) Sharipov b4d30a1b6c all: fix no-op append calls (#6360) 
Append call in form of `append(s)` has no effect,
it just returns `s`. Sometimes such invocation is a sign
of a programming error, so it's better to remove these.

Signed-off-by: Iskander Sharipov <quasilyte@gmail.com>
 2019-03-14 13:40:30 -07:00
Philipp Bandow 1145308e87 ssh on windows: fix file handling problem (#6359) 2019-03-14 13:39:34 -07:00
Andrej van der Zee 85fb1784b5 Cassandra plugin: Support for datacenter aware deployments (#6127) 
* Added option 'local_datacenter' to Casssandra database plugin for DC aware Casssandra deployments.

* Fixed spelling errors in Cassandra database plugin.

* Added website documentation.

* Added local_datacenter to Cassanra database plugin.

* Reverted datacenter-aware change in deprecated Cassandra builtin secret engine.
 2019-03-14 13:37:28 -07:00
Jim Kalafut 17bd265911
changelog++ 2019-03-14 12:45:54 -07:00
Matthew Irish 3efd0d10ff
UI - fetch role for oidc auth when rendering the default form (#6399) 
* fetch jwt role on render for default paths

* fix tests to expect fetching role on render at default paths

* update label for JWT auth method

* fix tests
 2019-03-14 14:26:09 -05:00
Vishal Nayak f7907c2809 Agent: Listener refactoring and socket file system permissions (#6397) 
* Listener refactoring and file system permissions

* added listenerutil and move some common code there

* Added test for verifying socket file permissions

* Change default port of agent to 8200

* address review feedback

* Address review feedback

* Read socket options from listener config
 2019-03-14 11:53:14 -07:00
Calvin Leung Huang a71adbc2ce sys: do not show filtered mounts on internal/ui/mounts (#6412) 2019-03-14 11:43:44 -07:00
Jeff Mitchell b86edf3d8e Fix table 2019-03-14 12:24:11 -04:00
Jeff Mitchell 4eaf4112e7 Add namespace properties to Sentinel docs 2019-03-14 12:22:02 -04:00
Matthew Bamber 4283e6a408 Fix SSH zero address OTP delete (#6390) 
* Fix SSH zero address OTP delete

Fixed bug where SSH OTP roles could not be deleted if a zero-address role
previously existed, and there currently exist no zero-address roles.

Fixes #6382

* Eliminate zeroAddressRoles remove function
 2019-03-14 08:56:40 -07:00
Juan Fontes cb08ec433b Update aws docs (#6408) 2019-03-13 17:31:22 -07:00
Noelle Daley dfcece3bd6
add AlertPopup (#6402) 
* add AlertPopup

* use curlies

Co-Authored-By: noelledaley <noelledaley@users.noreply.github.com>
 2019-03-13 14:52:09 -07:00
Martin 1b9327fe3f Fix inverted description for ldap/users$ and ldap/groups$ endpoints (#6406) 2019-03-13 11:02:45 -07:00
Michel Vocks d78c059626
Added warning for auto unseal init command (#6398) 
* Added warning when init command uses auto unseal and -key-shares and -key-threshold was set

* Reworked

* Update command/operator_init.go

Co-Authored-By: michelvocks <michelvocks@gmail.com>
 2019-03-13 18:06:39 +01:00
Matthew Irish 383faae60a
changelog++ 2019-03-13 09:45:26 -05:00
Matthew Irish a09df6f6f9
UI: fix bug where users couldn't nav back to unwrapped data (#6404) 
* fix bug where users couldn't nav back to unwrapped data

* don't autocomplete wrapped token input on unwrap page
 2019-03-13 09:43:57 -05:00
Richard Flosi fd182f9099 Update hashi-consent-manager to v1.0.8 (#6401) 2019-03-12 18:29:37 -07:00
Calvin Leung Huang 46572d7a89
changelog++ 2019-03-12 13:29:00 -07:00
Calvin Leung Huang 89472938ab
changelog++ 2019-03-12 13:28:07 -07:00
Calvin Leung Huang b7dcef399d
agent/caching: add X-Cache and Age headers (#6394) 
* agent/caching: add X-Cache and Age headers, update Date header on cached resp

* Update command/agent/cache/lease_cache.go

Co-Authored-By: calvn <cleung2010@gmail.com>

* Update command/agent/cache/proxy.go

Co-Authored-By: calvn <cleung2010@gmail.com>
 2019-03-12 13:21:02 -07:00
Jeff Mitchell 439f1eec51 changelog++ 2019-03-12 11:08:09 -04:00
Jeff Mitchell 3b0d07a440
ToUpper base32 values for TOTP key ingress (#6400) 
Fixes #6396
 2019-03-12 11:07:03 -04:00
Jeff Mitchell 8c8553b065 Add a bit on testing upgrades in advance 2019-03-09 11:57:51 -05:00
Matthew Irish 2069003067 add apt-get flags (#6389) 2019-03-09 02:58:18 -05:00
Calvin Leung Huang 70108668a9
testing: allow logger and audit backends to be set in TestCoreWithSealAndUI (#6388) 2019-03-08 13:46:24 -08:00
Jeff Mitchell 1d39e69d73 Add response warnings to audit logs (#6386) 2019-03-08 13:42:14 -08:00
Jeff Mitchell d2beb6e312 Update login command docs 2019-03-08 15:37:38 -05:00
Jeff Mitchell a0c8544071
Stop some curl whining (#6385) 
GET is inferred, so make curl whine less by not printing it
 2019-03-08 14:14:50 -05:00
Jeff Escalante 42acb433e6 correct quotes in docs layout (#6368) 2019-03-07 17:00:24 -08:00