2db96ae7ac
Add upgrade note for Transform ( #10371 )
...
* Add upgrade note for tokenization
* nav
* Just 1.5
* Clarify relationship to API changes
Co-authored-by: Meggie <meggie@hashicorp.com>
2020-11-11 10:33:51 -05:00
c62582e0de
docs: adds documentation for key management secrets engine ( #10353 )
...
Co-authored-by: Clint <catsby@users.noreply.github.com>
Co-authored-by: Yoko <yoko@hashicorp.com>
2020-11-10 09:28:28 -08:00
1b2a198212
More info on when vm params are not needed ( #10362 )
...
* more info on when vm params are not needed
* more updates
2020-11-09 11:49:03 -08:00
dae4bc5fbc
Update azure.mdx ( #10347 )
2020-11-09 11:20:06 -08:00
b6b3ec79ca
Land Tokenization docs ( #10357 )
2020-11-09 10:58:54 -06:00
a361d1299b
Add plugin reload docs to the website sidebar ( #10108 )
2020-11-06 14:13:12 -08:00
48103c71fe
Add autosnapshot docs. ( #10338 )
2020-11-06 15:56:52 -05:00
61c5da6911
Update MongoDB Atlas plugin docs ( #10343 )
...
Root credential rotation not supported as the Vault user uses public/private keys instead of passwords to authenticate.
2020-11-06 19:16:48 +00:00
caf65bfae7
Add new metrics to the telemetry page
2020-11-05 15:05:07 -08:00
fba851dbe9
Update raft.mdx ( #10329 )
2020-11-05 12:33:50 -08:00
e5a6ef2df2
Elipse / triple dots missing in VAULT_TOKEN ( #9929 )
2020-11-05 09:54:26 -08:00
c087f5885b
Bump HSM version ( #10327 )
2020-11-05 12:53:25 -05:00
f742277996
Documentation for client count / activity log API. ( #10315 )
...
* Documentation for client count API.
* New concepts page
Co-authored-by: swayne275 <swayne@hashicorp.com>
2020-11-05 11:47:48 -06:00
10a16574a6
Proposed changelog for the 1.6.0 RC ( #10328 )
...
* changelog++
I wasn't entirely sure what the changelog should look like for the release candidate.
* Updating website version
2020-11-04 18:23:15 -05:00
e32e1e17c7
docs: clarify location of service account key file for google-specific OIDC handling ( #10313 )
2020-11-02 17:45:05 -08:00
8af08c3221
Add an env var to enable a permit pool that limits lease expirations ( #10268 )
...
* Add a flag to enable a permit pool to gate lease expiration
* Use the env var to get the size
* Add logs and metris to help debug this
Co-authored-by: Hridoy Roy <roy@hashicorp.com>
2020-10-30 14:45:44 -07:00
16eb1489d1
Update OIDC namespace_in_state docs ( #10269 )
...
To reflect the default of true for new configs.
2020-10-30 08:15:34 -07:00
81a86f48e8
Backport some OSS changes ( #10267 )
...
* Backport some OSS changes
* go mod vendor
2020-10-29 16:47:34 -07:00
f172eb9477
Docs - examples of IPv6 added in `listener` section of configurations. ( #9601 )
2020-10-29 15:12:18 -04:00
ab5b8bc6bf
Update index.mdx ( #10262 )
2020-10-29 12:04:48 -07:00
f8a248ce48
Port: change leader status metric name to active ( #10245 )
...
* change active node metric name
* comment to see if commit is fine
Co-authored-by: Hridoy Roy <hridoyroy@Hridoys-MacBook-Pro.local>
2020-10-29 10:30:45 -07:00
b7cf4a05ff
Add support for Managed Identity auth for physical/Azure ( #10189 )
...
* Add support for Managed Identity auth for physical/Azure
Obtain OAuth token from IMDS to allow for access to Azure Blob with
short-lived dynamic credentials
Fix #7322
* add tests & update docs/dependencies
2020-10-28 15:04:26 -07:00
a4bcbb84e2
docs: fix k8s helm configuration rendering ( #10257 )
2020-10-28 10:51:40 -04:00
0259be04e0
Port: Add metrics to report mount table sizes for auth and logical [Vault 671] ( #10201 )
...
* first commit
* update
* removed some ent features from backport
* final refactor
* backport patch
Co-authored-by: Hridoy Roy <hridoyroy@Hridoys-MacBook-Pro.local>
Co-authored-by: Hridoy Roy <hridoyroy@Hridoys-MBP.hitronhub.home>
2020-10-27 08:24:43 -07:00
e6807a0645
Docs: Support for scopes in MongoDB Atlas database plugin ( #10241 )
2020-10-27 13:24:51 +00:00
ebfaa551eb
Add ability to specify region for OCI Storage Backend ( #9302 )
...
* Add ability to specify region for OCI Storage Backend
* Fix capitalization in Vault documentation
Co-authored-by: Josh Black <raskchanky@users.noreply.github.com>
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-10-26 18:28:32 -04:00
d8dc45f03f
UI/OIDC: allow passing namespace in state ( #10171 )
...
* UI/OIDC: allow passing namespace in state
Suppport in the UI OIDC callback flow to parse namespace out of the
state parameter instead of a separate query parameter in the
redirect_uri. Includes docs for the option that enables this behavior
in the JWT plugin.
* 1.6 wordsmithing
* pass_namespace_in_state -> namespace_in_state
* re-wording
* use strict equals
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-10-26 18:17:21 -04:00
e07fe992ef
DBPW - Add readme to dbplugin package ( #10230 )
2020-10-26 13:57:02 -06:00
b705d71ae7
Add info about aws timeouts to docs ( #10209 )
...
In auth/aws, seal/awskms, and secrets/aws, storage/s3, and
storage/dynamodb.
One blurb for the docs pages and one for the .0 upgrade pages.
2020-10-26 11:15:59 -07:00
95bbd8d920
Merge PR #10192 : Auto-Join: Configurable Scheme & Port (and add k8s provider)
2020-10-23 16:13:09 -04:00
d5169bae28
Update Venafi Secrets Engine doc to account for recent enhancements ( #10221 )
2020-10-22 16:25:37 -07:00
ecaa561262
Updating latest version to 1.5.5 on website ( #10208 )
2020-10-21 19:27:43 -04:00
cdcbac013b
docs: update helm to 0.8.0 ( #10190 )
...
* docs: update helm to 0.8.0
* Fix formatting
* Add allowed values to failurePolicy
2020-10-20 15:47:47 -04:00
2dbd6dd098
Update injector docs for 0.6.0 ( #10186 )
2020-10-20 13:09:37 -04:00
77ea265a0a
Clarify prometheus_retention_time to 0 ( #10187 )
...
zero prometheus_retention_time will disable.
2020-10-20 11:51:08 -04:00
ec29078acb
DBPW - Update docs with password policies & new Database interface ( #10138 )
2020-10-19 15:58:09 -06:00
ee6dafcf45
fix press kit ( #10169 )
2020-10-18 22:07:58 -07:00
6c6dc2bfbb
Fix for broken link ( #10152 )
2020-10-16 16:44:33 -07:00
ab18a74c08
Updated missing code encoding around two path references ( #10161 )
2020-10-16 16:26:28 -07:00
0d6a0ec589
Merge PR #10010 : Rate Limit Quotas: Allow Exempt Paths to be Configurable
2020-10-16 14:58:19 -04:00
767c3cd29f
Update HSM version w/ waypoint ( #10154 )
2020-10-15 12:55:20 -04:00
feaafb2c3a
Adds note that it requires a PEM-encoded file ( #10145 )
2020-10-14 16:43:07 -07:00
4d9a2c44ca
[Website] Bump HSM version ( #10149 )
...
* Bump HSM version
* Updated pkg
2020-10-14 14:32:48 -04:00
a23ed17806
Add GCS storage change to 1.5.0 upgrade guide ( #10139 )
2020-10-14 07:34:47 -07:00
771da35261
upgrade docs for new telemetry [VAULT-672] ( #10137 )
...
* upgrade docs for new telemetry
* Update telemetry.mdx
Co-authored-by: HridoyRoy <hridoyroy@Hridoys-MacBook-Pro.local>
2020-10-14 06:52:23 -07:00
8b1a3301f0
Add telemetry for LRU cache ( #10079 )
...
Vault creates an LRU cache that is used when interacting with the
physical backend. Add telemetry when the cache is hit, missed, written
to and deleted from. Use the MetricSink from ClusterMetrics
2020-10-13 10:11:54 -05:00
95c5f60055
docs/ssh: update algorithm_signer param after #9824 ( #10126 )
2020-10-09 15:42:11 -07:00
ec133d98a2
Add new HashiStackMenu ( #10105 )
2020-10-09 12:15:38 -04:00
86e79f6f26
lease_renewable false on STS AWS credentials ( #10115 )
...
See #1804
2020-10-08 10:25:01 -07:00
c48ec9cfc3
Adding note about commands that are root only ( #10098 )
...
* We don’t specifically note anywhere that these
have to be run from root, so makes sense to add
2020-10-08 09:46:43 -07:00
09aa3dfa6c
Add reference to community GitHub secrets plugin ( #10111 )
2020-10-08 09:45:42 -07:00
088c6c7364
Add API docs for sys/monitor ( #9968 )
2020-10-07 11:53:07 -07:00
3e278b33dc
Clarify docs around audit non-hmac request and response keys ( #10018 )
2020-10-06 10:43:32 -07:00
dc5a0da770
Pull latest raft updates ( #10055 )
...
* Implement raft peers metric
* Remove old peers metric
* Update vault raft dependency
* Add peer_id docs
2020-10-05 16:36:48 +02:00
da82b2096d
Adding an UG note on primary_cluster_addr behavior ( #10071 )
2020-10-02 13:25:09 -04:00
2b9b41115a
Update index.mdx ( #10064 )
...
Reworded disable_mlock to remove confusion regarding what is acceptable for production deployments. Disabling mlock is alright for production given the additional security recommendations are implemented. Disabling mlock is also recommended for integrated storage
2020-10-01 15:31:03 -07:00
a3cfa7c447
Merge PR #10059 : Port OSS changes from #1497
2020-10-01 15:15:20 -04:00
ab7cd4f8db
corrected typo in "certificate" ( #9916 )
2020-09-28 17:39:01 -07:00
818120b401
corrected a missing noun ( #9917 )
2020-09-28 17:38:39 -07:00
5d419f73c3
Minor fix to audit documentation ( #10047 )
2020-09-28 16:04:45 -07:00
2ba19c3f16
Update k8s auth docs for new parameter ( #9992 )
...
Adds info about the disable_local_ca_jwt parameter.
Co-authored-by: Clint <catsby@users.noreply.github.com>
2020-09-25 11:17:28 -07:00
44b255ab61
Updating version for website to 1.5.4 ( #10040 )
2020-09-25 13:50:09 -04:00
a20fe5c066
moved the documentation to kv2 page ( #10017 )
...
Co-authored-by: HridoyRoy <hridoyroy@Hridoys-MacBook-Pro.local>
2020-09-22 11:58:00 -07:00
15e608c0ed
Update AD secret engine docs for root cred rotation ( #9990 )
2020-09-21 16:21:14 -07:00
9190860cc0
docs: Change sidebar labeling to use Integrated Storage ( #10002 )
...
I changed some verbiage in the page as well.
2020-09-21 15:55:36 -04:00
9eb1fb1df4
minor only ha_storage clarification ( #10001 )
2020-09-21 13:06:03 -04:00
9b3e244e40
Fix doc formatting. ( #9994 )
2020-09-21 10:01:43 -07:00
795b118941
Update index.mdx ( #9950 )
...
MongoDB Atlas Language modernization update
2020-09-16 12:02:34 -07:00
5740e1ff9e
5844 AWS Root Credential Rotation ( #9921 )
...
* strip redundant field type declarations
* root credential rotation for aws creds plugin
* Change location of mocks awsutil and update methods that no longer exist
* Update website/pages/docs/auth/aws.mdx
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
* Update sdk version to get the awsutil mock file
* Re-vendor modules to pass CI
* Use write lock for the entirety of AWS root cred rotation
* Update docs for AWS root cred rotation for clarity
Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-09-15 15:26:56 -07:00
4062c8a5c3
Add a note on performance and availability to the HSM behavior docs ( #9923 )
2020-09-14 11:28:23 -05:00
9a9d886a2d
doc: add VAULT_DISABLE_MLOCK env ( #9933 )
2020-09-11 13:57:09 -04:00
444f2b5469
Merge PR #9922 : Document rate limit list API
2020-09-11 08:54:21 -04:00
8d3b8440e8
Docs: Add that vault deletes IAM user ( #9919 )
2020-09-10 15:23:41 -07:00
51a1ccea1c
Update upgrade guides for latest releases ( #9908 )
2020-09-08 16:53:43 -07:00
7da4317b49
Integrate @hashicorp/react-search into layout ( #9868 )
2020-09-08 14:17:36 -07:00
33cf45440a
improve mobile styling for columns component ( #9899 )
2020-09-04 15:12:01 -07:00
fe7229028f
docs: add required/optional to kerberos autoauth config ( #9897 )
...
* docs: add required/optional to kerberos autoauth config
* Remove double space
2020-09-04 17:20:21 -04:00
f12719fbde
Add upgrade note about the KV metric crash. ( #9882 )
...
Co-authored-by: swayne275 <swayne275@gmail.com>
2020-09-02 22:19:09 -05:00
63d484b831
docs: fix URL for plugin portal mdx page ( #9885 )
2020-09-02 17:20:00 -07:00
744623746a
docs: add a plugin portal page ( #9590 )
...
* docs: add a plugins directory page
* docs: remove divs on the plugins directory page
* add columns
* tag component
* docs: use tags on plugins directory
* docs: revert tags on plugins directory for now
* fix header for official plugins
* add note on submission for community plugins
* s/plugins directory/plugin portal/
* move portal page into docs section
* tag oracle db as external, fix kerberos misspelling
* include gh issue template as submission form
Co-authored-by: Jeff Escalante <jescalan@users.noreply.github.com>
2020-09-02 16:25:06 -07:00
4fa8cc422a
Updating the vault injector connectivity docs ( #9783 )
...
Adding more detail about connectivity requirements, noting that
masters sometimes need to connect to workers on :8080, and
considerations when Vault is running outside of Kubernetes.
2020-09-02 14:07:31 -07:00
d10a000e2f
docs: add injector tls setup ( #9871 )
...
* docs: add injector tls setup
* Add missing prompts
* Grammar
* fix sidebar
* Update website/pages/docs/platform/k8s/helm/examples/injector-tls.mdx
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/injector-tls.mdx
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/injector-tls.mdx
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
* Move note before command
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-09-02 11:36:21 -04:00
31a52a7a05
Update version.js ( #9858 )
2020-08-31 13:27:49 -04:00
b2110a2e87
docs: add ldap ppolicy to enforce password hashing ( #9856 )
...
* docs: add ldap ppolicy to enforce password hashing
* formatting
* grammar
* Clarify password policy doc
2020-08-31 13:05:27 -04:00
b61f080daf
Update docs to add EdDSA to supported algorithms ( #9854 )
2020-08-29 10:30:05 -07:00
0d723e54a9
docs: add tls settings on cert auto-auth's config page ( #9848 )
2020-08-27 19:21:32 -07:00
a71798a445
TLS Cert Authentication example updates ( #9735 )
...
* TLS Cert Authentication example updates
- Updated the Cert Auth example description to clarify which CA
should issue the certificate.
- Removed `-ca-cert` parameter from examples as this caused
confusion. Is this the auth CA or the CA of the listener?
* Return CA parameter to examples, add Note
- Returned CA parameter to login examples
- Added note above examples to explain which CA is being used in CLI
- Updated examples in API doc to use httpS
- Added note above login example to explain wich CA is being used
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-08-27 17:47:16 -07:00
ba1adb6d22
Update Known Issues ( #9847 )
...
Provide information about AWS IAM fix versions.
2020-08-27 16:48:44 -07:00
b96f073e23
docs: fixes rollback_statements description and some punctuation ( #9836 )
2020-08-26 16:49:17 -07:00
4c4fb54806
Aws auth fixes ( #9825 )
...
* Bring over PSIRT-37 changes from ENT
* Add additional allowed headers
* Already had this one
* Change to string slice comma separated parsing
* Add allowed_sts_header_values to read output
* Only validate AWS related request headers
* one per line
* Import ordering
* Update test
* Add X-Amz-Credential
* Reorder imports
2020-08-25 17:37:59 -05:00
052dea6e57
doc: update vault-helm to 0.7.0 ( #9810 )
...
* doc: update vault-helm to 0.7.0
* Fix typo in agent image
* Remove doc from sidebar
* Update website/pages/docs/platform/k8s/helm/configuration.mdx
Co-authored-by: Clint <catsby@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/configuration.mdx
Co-authored-by: Clint <catsby@users.noreply.github.com>
* Add note about prometheus
Co-authored-by: Clint <catsby@users.noreply.github.com>
2020-08-24 19:03:36 -04:00
dfd5e2d532
vault-k8s: add new annotations for 0.5.0 ( #9804 )
...
* vault-k8s: add new annotations for 0.5.0
* feedback revision
2020-08-24 13:20:29 -04:00
8815905114
Add Known Issue for AWS IAM logins ( #9798 )
...
* Add Known Issue for AWS IAM logins
* Add note about license issue
2020-08-21 15:21:56 -07:00
dffd0dfa4b
K8s docs cross reference ( #9795 )
...
* add links to commonly reference Learn site docs
* fixed markdown links
* Moved Deployment Guide to "Guides" subs section
2020-08-21 15:03:01 -04:00
6cd00407ad
Add vault.metrics.collection.* metrics to documentation. ( #9796 )
2020-08-21 13:27:30 -05:00
275a34476c
Updates for 1.5.1, 1.4.4, 1.3.8, and 1.2.5 ( #9793 )
...
* Updates for 1.5.1, 1.4.4, 1.3.8, and 1.2.5
* Recommend against using these versions
* Re-running checks
* Update docs-navigation.js
2020-08-20 18:57:44 -04:00
7f7ac71746
Document allowed_domains_template. ( #9751 )
2020-08-20 09:54:52 -04:00
f20f3747c7
New seal migration strategy doesn't work in 1.4. ( #9765 )
2020-08-20 09:54:28 -04:00
0a13195450
Reduce a required permission for OIDC with AzureAD ( #9785 )
...
`Group.Read.All` is too permissive policy to achieve external groups
feature. `GroupMembers.Read.All` is enough for that purpose.
MicroSoft Graph API Permission reference follows
https://docs.microsoft.com/en-us/graph/permissions-reference#application-permissions-23
2020-08-20 00:00:31 -07:00
ac36da333d
Add note for AD domain usernames in MSSQL ( #9743 )
...
Adding a note that `vaultuser` might be part of the AD domain like `DOMAIN\vaultuser`.
2020-08-18 10:35:21 -06:00
ba9d1b6fbf
Couchbase database plugin documentation ( #9764 )
2020-08-18 15:57:18 +01:00
b2a106a931
Add a section to the MySQL secrets plugin docs about x509 ( #9757 )
2020-08-17 16:29:51 -07:00
fd6e0eb543
Update documentation for MySQL Secrets Engine ( #9671 )
...
* Update documentation for MySQL Secrets Engine
Update documentation for MySQL Database Secrets Engine to reflect changes introduced with https://github.com/hashicorp/vault/pull/9181
* Empty Commit to re-trigger tests
Co-authored-by: Lauren Voswinkel <lvoswinkel@hashicorp.com>
2020-08-17 15:30:33 -07:00
edc40a1767
Correctly mark Cassandra as not supporting static roles ( #9750 )
2020-08-17 14:36:32 -06:00
f0f576f5bf
Restoring the example policies for blocking sha1 ( #9677 )
...
(In the transit api-docs)
2020-08-17 10:30:06 -07:00
893e15bdbf
Document the new SSH signing algorithm option. ( #9197 )
2020-08-17 13:03:44 -04:00
5b003b06f8
Trail of bits 018 ( #9674 )
...
* TOB-018 remediation
* Make key derivation an optional config flag, off by default, for backwards compatibility
* Fix unit tests
* Address some feedback
* Set config on unit test
* Fix another test failure
* One more conf fail
* Switch one of the test cases to not use a derive dkey
* wip
* comments
2020-08-17 11:36:16 -05:00
f873863263
Merge PR #9667 : Rate Limit Backoff
2020-08-16 22:09:18 -04:00
ca65131543
Added upgrade guidance on mount -> path filters ( #9712 )
2020-08-12 10:54:56 -04:00
00a0d043be
docs: fix sentence in vault debug command ( #9725 )
2020-08-11 20:24:37 -07:00
a28209ad6d
small change to make github star count display correctly ( #9718 )
2020-08-11 17:06:23 -04:00
eb923f30b1
website: update favicon refs ( #9713 )
2020-08-11 13:56:25 -04:00
967d9b85da
Updates URLs to match new paths at Learn ( #9679 )
...
Previous URLs which included a track in the querystring now go to standard paths instead.
2020-08-10 13:40:09 -07:00
494cdf5bcb
Add docs for OpenLDAP plugin's new AD schema ( #9619 )
2020-08-10 10:24:38 +01:00
3a9619fb05
Add explanation of "keys" field. ( #9676 )
2020-08-07 12:11:11 -05:00
b01fda0e04
Add docs for CSR signing. ( #8899 )
2020-08-07 10:45:12 -04:00
db9993335c
docs: fixes environment variable in azure secrets config API ( #9678 )
2020-08-06 17:11:18 -07:00
5100624d5c
Merge PR #9628 : add audit_non_hmac_request_keys to payload example for tune
2020-08-06 15:27:03 -04:00
6cf859632a
Remove weird TTL special case documentation from cubbyhole ( #9669 )
2020-08-05 16:20:24 -05:00
c9fb408b60
Docs - /system/unseal Typo - Resolves : #9659 ( #9660 )
2020-08-05 08:33:47 -04:00
9b3719d9ce
Update OpenLDAP docs ( #9648 )
...
Add link to API docs.
2020-07-31 17:25:27 -07:00
76894f7dcb
curl command incorrect: ---header should be --header ( #9643 )
2020-07-30 14:55:42 -07:00
837ec00859
docs: fix gcpkms steps for asymmetric decryption and asymmetric signing ( #9638 )
2020-07-30 10:50:23 -07:00
51b6dfb097
Add new page documenting limits. ( #9592 )
...
* Add new page documenting limits.
* Add some identity metrics not previously documented.
* Updated limits based on compression experiments.
* Add Transit key rotation limits, and link to Transform size limit.
2020-07-29 16:18:04 -05:00
1e262e5648
Merge PR #9581 : Rate Limit Quota Headers
2020-07-29 15:15:05 -04:00
1bd4502b92
Mark MongoDB Atlas as supporting static creds ( #9624 )
...
Also fixes some links that are not rendering properly with a newline
between the text and the link.
2020-07-29 11:39:53 -06:00
082a034cfa
docs: add missing parameters to the gcpkms key create/update API ( #9612 )
2020-07-28 13:53:27 -07:00
290c6d7187
Fix broken links in website footer ( #9613 )
...
* add security page and press kit
* github link correction
2020-07-28 16:22:35 -04:00
43d8c304c5
Remove obsolete kms->shamir warning. Add warning about taking a backup. ( #9614 )
2020-07-28 16:13:57 -04:00
70d964d420
Update OIDC docs ( #9599 )
...
Clarify that verbose logging is to the server logs.
2020-07-27 08:51:59 -07:00
c3c253e76c
Add upgrade note for okta issue. ( #9587 )
2020-07-27 11:36:17 -04:00
8a5b97198c
Fix navigation for the Sentinel config and clarify module usage ( #9588 )
2020-07-27 09:52:46 -05:00
cca5bb3ba6
docs: fix sentence in gcp secrets by removing unneeded word ( #9585 )
2020-07-24 07:36:06 -07:00
39fb31559f
Add cross-referencing links to learn tutorials ( #9562 )
...
* Add cross-referencing link to learn
* Fix grammar
* Update website/pages/docs/concepts/password-policies.mdx
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
2020-07-23 07:56:00 -07:00
295b0573c1
Docs: Update MongoDB to support root credential rotation ( #9559 )
...
* Update MongoDB to support root credential rotation
2020-07-22 14:56:11 -06:00
5fc28fe65a
Fix links to documentation. ( #9570 )
...
* Fix links to documentation.
* Add 1.5.0 upgrade nodes to navigation.
2020-07-22 15:55:41 -05:00
645e8b6521
Add upgrade note for #9555 . ( #9569 )
2020-07-22 16:24:06 -04:00
5d9a1caba1
Add upgrade note for #9553 . ( #9563 )
...
* Add upgrade note for #9553 .
* Note that these are metrics introduced in 1.5.0.
* Added link to docs.
2020-07-22 14:47:48 -05:00
f3587c341b
Merge PR #9089 : Initial 1.5.0 Upgrade Doc
2020-07-22 15:23:02 -04:00
56bc00bed8
Adds documentation for OIDC provider specific extension for G Suite ( #9454 )
...
* docs: adds documentation for JWT/OIDC google provider specific handling
* use may instead of will for identity group alias association
Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
* adds missed parentheses
Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
* adds missed parentheses
Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
* reword sentence referring to key file for Google service account
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
* add styles to emphasize security step
Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-07-22 12:18:58 -07:00
068e080c27
Add sentinel configuration stanza documentation to OSS ( #9558 )
2020-07-22 13:07:51 -05:00
b642b1ddd7
Merge PR #9544 : docs: add pages to sidebar
2020-07-22 09:28:56 -04:00
692200c47b
Link to release notes on downloads page ( #9546 )
...
* Link to release notes on downloads page
* Per Jeff E's comment linking to index
2020-07-21 18:11:32 -04:00
66c8032fb5
docs: specify which JWT/OIDC role params support JSON pointer syntax in API docs ( #9518 )
2020-07-21 11:20:10 -07:00
87172c3fbb
docs: changes the default alias names in the GCP auth API docs to role_id for both IAM and GCE ( #9494 )
2020-07-21 10:22:24 -07:00
a3e0620cd4
doc: add k8s probe notes to helm doc ( #9543 )
2020-07-21 12:40:43 -04:00
259aa74728
docs: add release notes ( #9540 )
...
* Create nav for release notes
* Update 1.5.0.mdx
Initial release notes
* Update 1.5.0.mdx
Minor edits
* Update 1.5.0.mdx
Made a small grammatical edit
* Update 1.5.0.mdx
Changed a period to a colon
* Update 1.5.0.mdx
Some minor formatting changes
* Update 1.5.0.mdx
Changes to the Splunk app description
* Update 1.5.0.mdx
Small change to the vault monitor command description
* Update 1.5.0.mdx
Small change to the description of the vault monitor command
* Update 1.5.0.mdx
Added link to the Splunk app for Monitoring Vault
* Updating version
* Capitalization consistency
Co-authored-by: Andy Manoske <andy@hashicorp.com>
Co-authored-by: Darshana Sivakumar <darshana10@gmail.com>
2020-07-21 12:23:03 -04:00
13cc4295b5
doc: remove beta warnings for openshift ( #9541 )
2020-07-21 10:43:41 -04:00
fdb2fc612e
API and upgrade docs for global plugin reload ( #9487 )
2020-07-17 13:39:24 -05:00
6bc9696a51
Replaces storage backend with secrets engine in the gcp secrets docs ( #9511 )
2020-07-16 17:43:47 -07:00
ea13485c7d
Merge PR #9502 : Resource Quotas: Remove 'burst' Param from Rate Limiter
2020-07-16 14:34:43 -04:00
4e4cb5289a
Fetch quota by name before updating it ( #9466 )
...
* Fix quotas update
* Update doc
2020-07-15 13:25:00 -04:00
11b10f21b7
Update the seal migration docs ( #9432 )
...
* update the seal migration docs
* Update website/pages/docs/concepts/seal.mdx
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
2020-07-15 11:55:28 -04:00
f5a81882b5
Add RC note on downloads page ( #9473 )
2020-07-13 18:43:30 -04:00
a7522738b9
docs: Updating vault-helm service_registration docs ( #9417 )
...
* Adding notes about ingress and route requirements
Specifically that they require vault 1.4 with service_registration
enabled. Also removed a stray block about extraVolumes.
2020-07-10 13:02:51 -07:00
23a3375f98
Add links to API docs ( #9442 )
2020-07-10 12:55:43 -06:00
ca21cb93df
Documentation fixes on metric names ( #9419 )
...
Make the names of WAL metrics exactly match their implementation.
Add `vault` prefix to be consistent everywhere.
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
2020-07-08 13:16:42 -05:00
f5fcf04a73
Document OSS->ENT upgrade process ( #9414 )
2020-07-08 09:17:27 -04:00
6d86988d0b
Update GCP auth docs with warning about token impersonation ( #9418 )
2020-07-07 17:09:12 -06:00
a282864793
Merge PR #9342 : Resource Quotas Doc
2020-07-07 11:42:01 -04:00
dcc05e8aed
learn -> tutorials in subnav ( #9391 )
2020-07-06 18:47:59 -04:00
94b4545a69
Merge PR #9388 : Update tokens.mdx
2020-07-06 09:22:50 -04:00
230656ccf4
adding a note to the docs to make it clear that the token needs to be unlimited to create child tokens ( #9397 )
2020-07-03 09:00:14 -07:00
866576cde8
Changing changelog headers and update version ( #9393 )
2020-07-02 19:46:41 -04:00
a3371f6242
🌷 Website Maintenance ( #9140 )
...
* another round of maintenance
- apply stylelint
- run eslint across all files
- remove unneeded font import
- add jsconfig and import from absolute pahts
- remove unneeded experimental nextjs config
- update all dependencies
* refreshing with the latest dep updates
2020-07-02 14:24:34 -04:00
93b37de1bc
Mention Linux packages on install page ( #9314 )
...
* Update install docs to mention Linux packages
We now build packages for Debian, Ubuntu, CentOS, etc. This removes language
about "we have no plans to build packages" and adds links to step by step guides
for adding a GPG key and the official repository.
* Fix URL to Learn Vault install page
A Linux section previously existed but now it is in the general install section.
* Fix Markdown for multi-step compile from source
The steps were previously marked up as an ordered list but the numbers didn't
display correctly. This outdents the code so it's a series of paragraphs instead
of an ordered list.
2020-07-02 13:51:02 -04:00
15d8ed3f82
request.connection.remote_addr only has IP ( #9326 )
...
* request.connection.remote_addr only has IP
The request.connection.remote_addr property exposed to Sentinel only has an IP.
It does not include a port.
I tested this in a policy with `print("remote address:", request.connection.remote_addr)` and got back 150.10.0.26.
* Update website/pages/docs/enterprise/sentinel/properties.mdx
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-07-02 10:47:44 -07:00
44a7e3661d
Update replication status API docs with new fields ( #9215 )
2020-06-29 15:11:17 -07:00
dc2b5c1830
Add docs for vault monitor ( #9218 )
2020-06-29 12:23:31 -07:00
06700a7110
Adding docs for azure-specific handling in jwt-oidc ( #9287 )
...
Co-authored-by: Jason O'Donnell <2160810+jasonodonnell@users.noreply.github.com>
2020-06-29 10:46:41 -07:00
1bb9992c92
fix #8092 : add the note to docs about impossible to create a custom token with 's.' prefix ( #8195 )
...
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-06-29 12:20:23 -04:00
6306faa3d2
Update documentation with more details for allowed_parameters ( #9279 )
2020-06-29 09:01:33 -07:00
4a48b57546
Add Algolia indexing script to CI ( #9332 )
2020-06-29 16:39:08 +01:00
c6876fe00f
Resource Quotas: Rate Limiting ( #9330 )
2020-06-26 17:13:16 -04:00
505bb596d3
docs: default for the auth-path annotation ( #9313 )
...
Updating the default for the auth-path annotation in the k8s injector
docs.
2020-06-25 09:36:23 -07:00
9a19916d53
doc: update vault helm enterprise image examples ( #9299 )
...
* doc: update vault helm enterprise image examples
* fix tar reference
2020-06-23 16:20:34 -04:00
c45bdca0b3
raft: add support for using backend for ha_storage ( #9193 )
...
* raft: initial work on raft ha storage support
* add note on join
* add todo note
* raft: add support for bootstrapping and joining existing nodes
* raft: gate bootstrap join by reading leader api address from storage
* raft: properly check for raft-only for certain conditionals
* raft: add bootstrap to api and cli
* raft: fix bootstrap cli command
* raft: add test for setting up new cluster with raft HA
* raft: extend TestRaft_HA_NewCluster to include inmem and consul backends
* raft: add test for updating an existing cluster to use raft HA
* raft: remove debug log lines, clean up verifyRaftPeers
* raft: minor cleanup
* raft: minor cleanup
* Update physical/raft/raft.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update vault/ha.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update vault/ha.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update vault/logical_system_raft.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update vault/raft.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update vault/raft.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* address feedback comments
* address feedback comments
* raft: refactor tls keyring logic
* address feedback comments
* Update vault/raft.go
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
* Update vault/raft.go
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
* address feedback comments
* testing: fix import ordering
* raft: rename var, cleanup comment line
* docs: remove ha_storage restriction note on raft
* docs: more raft HA interaction updates with migration and recovery mode
* docs: update the raft join command
* raft: update comments
* raft: add missing isRaftHAOnly check for clearing out state set earlier
* raft: update a few ha_storage config checks
* Update command/operator_raft_bootstrap.go
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
* raft: address feedback comments
* raft: fix panic when checking for config.HAStorage.Type
* Update vault/raft.go
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
* Update website/pages/docs/commands/operator/raft.mdx
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
* raft: remove bootstrap cli command
* Update vault/raft.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update vault/raft.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* raft: address review feedback
* raft: revert vendored sdk
* raft: don't send applied index and node ID info if we're HA-only
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-06-23 12:04:13 -07:00
6bd17d7e91
Document new and previously undocumented telemetry metrics: ( #9283 )
...
usage metrics
vault.route.*
vault.core.unsealed
2020-06-23 13:49:45 -05:00
4a5bef48c4
docs: add additional info around transform for tweak and template type ( #9203 )
2020-06-23 10:32:54 -07:00
965f95239a
docs: clarify when plugin executables must also be given mlock syscall ability ( #9275 )
2020-06-22 10:05:15 -07:00
ab4e072bb6
Add the static-roles feature for MSSQL ( #9062 )
2020-06-19 23:01:06 -07:00
7502813335
Add password_policy field to Azure docs ( #9249 )
...
* Add password_policy field
* Updated vault-plugin-secrets-azure to v0.6.1
* A bunch of other libraries also got updated at the same time because of the plugin update
2020-06-18 13:25:59 -06:00
2e7e63f78c
docs: add sample revocation for mongodb ( #9245 )
2020-06-17 08:25:56 -07:00
632c86ecc1
Add new Telemetry config options ( #9238 )
...
* Add new Telemetry config options
Add cluster_name, maximum_gauge_cardinality, and usage_gauge_period
configuration options to the config stanza.
Update unit tests.
Document.
Co-authored-by: Mark Gritter <mgritter@hashicorp.com>
2020-06-17 10:07:33 -05:00
e8db47f92d
docs/agent: add overview for consul template fetches ( #9227 )
...
* docs/vault-k8s: add overview for consul template fetches
* Add dynamic role link
* move to agent documentation, add link
* fix typo in certificate doc
* fix note about leased secrets
* update secret vs token, add note to pki
* add more secret vs token notes
* add note about caching
2020-06-15 15:49:35 -04:00
d9fbd04a33
docs: fix typo in gcp and gcpkms secrets ( #9228 )
2020-06-15 11:57:51 -07:00
922f9374c6
Fix typo ( #9217 )
...
correct parameter is `leader_ca_cert_file`
2020-06-15 14:36:15 -04:00
1a8b7765bc
Add password policies to Active Directory secret engine ( #9144 )
...
* Also updates AD docs to reflect password policies
2020-06-15 10:36:17 -06:00
320e9ecb92
Minor transform docs rewording ( #9223 )
2020-06-14 20:53:36 -07:00
889c9d6f06
add disable_iss_validation option to k8s auth docs ( #9142 )
2020-06-11 19:02:20 -07:00
a89f09802d
Integrate password policies into RabbitMQ secret engine ( #9143 )
...
* Add password policies to RabbitMQ & update docs
* Also updates some parts of the password policies to aid/fix testing
2020-06-11 16:08:20 -06:00
9cc77b94a8
Clarify cache setting. ( #9204 )
2020-06-11 16:20:36 -04:00
7a2eabde69
Simple typos ( #9119 )
2020-06-11 14:22:49 -04:00
e8a36eb752
replacing "a key usage mode" as it is confusing ( #9194 )
...
Since the context of this page is transit and encryption keys, the use of the word "key" to mean effectively common seems ill advised. Proposing an alternative wording.
2020-06-11 07:50:31 -04:00
5ca6057295
website: remove whitepaper link from subnav ( #9190 )
2020-06-10 16:01:23 -04:00
e1a432a167
AWS: Add iam_groups parameter to role create/update ( #8811 )
...
Allows vault roles to be associated with IAM groups in the AWS
secrets engine, since IAM groups are a recommended way to manage
IAM user policies. IAM users generated against a vault role will
be added to the IAM Groups. For a credential type of
`assumed_role` or `federation_token`, the policies sent to the
corresponding AWS call (sts:AssumeRole or sts:GetFederation) will
be the policies from each group in `iam_groups` combined with the
`policy_document` and `policy_arns` parameters.
Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
2020-06-09 16:56:12 -07:00
315d1ba9c5
Explain what lease tidy does. ( #9178 )
2020-06-09 16:54:06 -04:00
15661719fa
document all of the supported elliptic curves ( #8722 )
2020-06-08 11:26:56 -04:00
76e78605a9
Fixed minor typo in secrets documentation page ( #8856 )
2020-06-08 11:17:26 -04:00
4e13db3912
[docs/telemetry] Unnecessary comma in HCL example ( #8817 )
2020-06-08 11:07:28 -04:00
38ca50cdd9
update to include vault_format ( #8876 )
2020-06-08 10:40:03 -04:00
6e97db6d68
Add note about flag -target=recovery for auto-unseal mode ( #9163 )
2020-06-08 09:26:49 -04:00
bf2ce8d1cb
docs: fix port number in curl command for aws rotate root iam creds ( #9157 )
2020-06-05 16:00:49 -07:00
0565e28592
docs: document raft and mlock interaction ( #9093 )
...
* docs: document raft and mlock interaction
* docs: expand on mlock issue when raft is used
* Update website/pages/docs/configuration/index.mdx
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
2020-06-05 15:02:55 -07:00
e2d5d92b77
Github markdown doesn't use "^" for superscript, have to be explicit ( #9156 )
2020-06-05 16:55:33 -05:00
f8f4ae4ab2
Document and give an example of the input size limits when using the FF3-1 transform. ( #9151 )
...
* Document and give an example of the input size limits when using the FF3-1
transform.
2020-06-05 07:45:18 -05:00
e0e29a9586
docs/k8s: Add OpenShift K8s beta documentation ( #9135 )
...
* doc/k8s: add OpenShift examples
* Update requirements
* Update website/pages/docs/platform/k8s/helm/openshift.mdx
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
* Fix ha example
* Fix ha doc
* Update image references
* Fix formatting
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-06-03 15:10:37 -04:00
a60ba90a20
updated 1.3.2 and 1.4.0 upgrade guides to note AWS STS region issue fixed in 1.4.1 ( #9137 )
2020-06-03 10:27:45 -07:00
7622bee530
Docs updates for vault-helm 0.6.0 release ( #9116 )
...
* Docs updates for vault-helm 0.6.0 release
* added openshift and postStart values
* noting that openshift support is a beta feature
2020-06-03 11:44:32 -04:00
fa17e22050
Docs updates for vault-k8s 0.4.0 ( #9107 )
...
* Adding changes for vault-k8s 0.4.0
* add note about run-as-same-user rejecting root
2020-06-03 10:06:20 -04:00
fbd9fd4510
Fix upgrade guide ( #9133 )
2020-06-02 16:27:19 -07:00
5ca4d819d1
Update OpenLDAP Secrets Docs with Password Policies ( #9088 )
...
* Update OpenLDAP docs to use password policies
2020-06-02 11:34:01 -06:00
bd587da491
Add docs for password policies ( #8974 )
...
* Add docs for password policies
2020-06-02 11:12:22 -06:00
9dd67cbeb6
Merge PR #9027 : Integrated Storage (Raft): Add Support for max_entry_size Config
2020-06-01 10:17:24 -04:00
a098e313a9
correct sockaddr.is_contained example ( #9104 )
...
Syntax for sockaddr.is_contained should be outer, inner - i.e. range, IP. See https://docs.hashicorp.com/sentinel/imports/sockaddr/ for reference.
2020-05-29 10:51:31 -07:00
0e3229a3d8
add missing styles for mdx components ( #9103 )
2020-05-29 13:29:24 -04:00
9987b71a36
Update seal docs to reflect 1.3 changes. ( #9086 )
2020-05-29 13:28:03 -04:00
932c1834cc
ssh certificate signing: fix documentation of extensions ( #8859 )
2020-05-29 13:23:19 -04:00
3a07bd0bc4
doc: Add an example of templated policy using k8s metadata ( #9101 )
2020-05-28 17:54:56 -07:00
d8c52a4b44
Add note regarding LDAP regression. ( #9038 )
2020-05-27 12:29:30 -04:00
3ce9615992
Allow auto_auth with templates without specifying a sink ( #8812 )
...
For situations where you want the Vault agent to handle one or more templates but do not require the acquired credentials elsewhere.
Modify the logic in SyncServer so that if there are no sinks, ignore any new credentials. Since SyncServer is responsible for shutting down the agent, make sure it still properly shuts down in this new situation.
Solves #7988
2020-05-26 13:52:14 -04:00
175bff872c
Add some notes on what tidy does and how to see if your cluster can handle it ( #9036 )
2020-05-26 09:19:36 -04:00
a9d7d34ede
Update release notes ( #9064 )
2020-05-21 18:51:19 -07:00
95055d7409
update website for 1.4.2 ( #9063 )
2020-05-21 16:34:03 -04:00
8eed94b072
🌷 Docs Website Maintenance ( #8985 )
...
* website maintenance round
* improve docs, revert bug workaround as it was fixed
* boost memory
* remove unnecessary code
2020-05-21 13:18:17 -04:00
8fc08f8c91
Require TLS or plaintext flagging in MySQL configuration ( #9012 )
...
* Adds a safety switch to configuration files.
This requires a user to either use TLS, or acknowledge that they are sending
credentials over plaintext.
* Warn if plaintext credentials will be passed
* Add true/false support to the plaintext transmission ack
* Updated website docs and ensured ToLower is used for true comparison
2020-05-21 09:09:37 -07:00
4b2a72c616
doc: clarify token helper intro ( #9058 )
2020-05-21 10:11:32 -04:00
1845ef6d2e
doc: add environment variable template example ( #9019 )
...
* doc: add environment variable template example
* Update website/pages/docs/platform/k8s/injector/examples.mdx
Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
2020-05-18 15:51:17 -04:00
b7a9fb8566
docs: updating helm configuration ( #8973 )
...
Added helm configs that were changed/added in vault-helm
0.5.0. Also corrected the data type of a few config parameters.
2020-05-18 11:08:40 -07:00
dd8c10bb76
fix missing line-continuation in sample code ( #9005 )
2020-05-15 08:29:32 -04:00
fbbd4fcf2d
docs: fix agent listener link ( #9003 )
2020-05-15 06:51:52 -05:00
d1ba50384a
Soften the warning language on PKCS #1 v1.5 padding ( #8988 )
...
* Soften the warning language on PKCS #1 v1.5 padding
2020-05-14 12:29:21 -05:00
5825b23013
Add 1.4.1 upgrade guide ( #8981 )
2020-05-13 16:55:32 -07:00
f65cd64696
doc: add notes about injector annotations ( #8992 )
2020-05-13 16:43:34 -04:00
c33cd93b93
Typo in policies.mdx ( #8850 )
2020-05-13 15:17:41 -04:00
d9c5a6130a
fixes roleset GET to say 'read' instead of 'delete' ( #8799 )
2020-05-13 15:13:34 -04:00
98f32a94a9
Static roles aren't supported yet for atlas. ( #8989 )
2020-05-13 12:13:29 -04:00
8805a7b45c
Warn in the documentation against the use of CKM_RSA_PKCS. ( #8982 )
...
* Warn in the documentation against the use of CKM_RSA_PKCS
* tweak
* Roger roger.
2020-05-12 10:56:41 -05:00
72c4e3c7af
Doc: seal migration update ( #8724 )
...
* Doc: seal migration update
* s/Auto Unseal/KMS Seal
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* s/Recovery/recovery
* remove 'at this point'
* Address review comments
* Address review feedback
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Address review comments
Co-authored-by: Meggie <meggie@hashicorp.com>
2020-05-12 01:02:59 -04:00
77ad037d9c
Add vault docs redirects & remove deprecated database docs ( #8922 )
...
* website: add redirects for old database docs
* delete deprecated database docs
2020-05-11 14:20:40 -06:00
182bfc86f8
Fix minor typos in docs ( #8965 )
2020-05-11 11:12:48 -04:00
a1f674c53c
Removing some unnecessary escape characters from Agent docs ( #8957 )
...
* Fix formatting of the Vault Agent docs
2020-05-09 12:52:13 -07:00
446370d94c
Update Azure Auth docs ( #8963 )
2020-05-08 16:20:08 -07:00
656685a253
doc: add note about versions for helm upgrades ( #8960 )
...
* doc: add note about versions for helm upgrades
* Fix repo search output
* Update website/pages/docs/platform/k8s/helm/run.mdx
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-05-08 16:56:39 -04:00
564f71a397
Update vault helm docs with new helm repo ( #8931 )
...
* Update the k8s injector docs for the new helm repo
* Update vault helm docs with new helm repo
2020-05-08 10:55:56 -07:00
c922532f2e
Correct docs typos ( #8954 )
2020-05-08 08:24:38 -07:00
49cb9eea09
docs: remove comparison reference in what-is-vault page ( #8950 )
2020-05-07 15:24:08 -07:00
7e9ac9bbec
Fix formatting of the Vault Agent docs ( #8947 )
...
* Fix formatting of the Vault Agent docs
* Fix up the param definitions with <code> rather than <tt>
* Use <code> only where there is a link embedded, otherwise ticks
2020-05-07 15:10:49 -07:00
eefbc0b84b
Adding redirect to learn ( #8940 )
2020-05-07 13:57:31 -07:00
5e1b1c7320
website: add link to certification on /community ( #8942 )
2020-05-07 12:44:06 -04:00
e7af25b969
raft: use file paths for TLS info in the retry_join block ( #8894 )
...
* raft: use file paths for TLS info in the retry_join stanza
* raft: maintain backward compat for existing tls params
* docs: update raft docs with new file-based TLS params
* Update godoc comment, fix docs
2020-05-06 18:26:08 -07:00
69fa1965de
Update standalone-tls.mdx ( #8920 )
...
extraEnvironmentVars should be under server, not global
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-05-06 17:03:37 -07:00
67087f291e
Fix capabilities to show MSSQL static roles aren't supported ( #8935 )
2020-05-06 10:56:01 -06:00
34f01920e9
Added plugin reload function to api ( #8777 )
...
* Added plugin reload function to api
* Apply suggestions from code review
Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>
* go mod vendor
* addressing comments
* addressing comments
* add docs
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-05-04 11:14:23 -07:00
d5be4fbd6a
Improve documentation around database plugins ( #8892 )
...
* Adds a summary to the top of each plugin's page showing the capabilities that the plugin has.
* Fixed sidebar sorting (they weren't quite alpabetical)
* Improved instructions for using the Oracle plugin
* Added note about using the pluggable database rather than the container database
* Replaced admin/root usernames with super-user ones to encourage users to not use the root user in Vault
* Included suggestions to rotate the root user's password when the plugin is capable
* Improve documentation around rotating the root user's password
* Fixed various typos
2020-05-01 15:05:05 -06:00
f5b2394aca
Add documentation warning against the use of SHA-1, and policy advice on how to block it ( #8885 )
2020-05-01 13:46:04 -05:00
ece5329dae
doc: fix order of auth method sidebar ( #8902 )
2020-04-30 16:35:55 -04:00
87886c6f18
website: bump version to 1.4.1 ( #8904 )
...
* website: bump version to 1.4.1
* website: update changelog URL
2020-04-30 12:43:35 -07:00
200e681702
Update website README
2020-04-30 12:38:28 -07:00
997fe6152c
Add overlooked role params. ( #8898 )
2020-04-30 13:05:20 -04:00
4d8c7d3f19
Update index.mdx ( #8895 )
2020-04-30 09:25:59 -07:00
62d266e9b7
Add AWS auth metadata changes to upgrade guide ( #8887 )
...
* add aws auth metadata changes to upgrade guide
2020-04-29 21:52:03 -07:00
3c0f80f1dc
Update the vault-helm ingress config docs ( #8881 )
...
The chart defines the `backend` stanza, so the `path` list should
just be path strings. More typos: `tls.hosts` is a list, not a
string.
2020-04-29 12:10:26 -07:00
f0720205c3
[auth/gcp] Add missing permission to documentation ( #8689 )
...
* [auth/gcp] Add missing permission to documentation
Signed-off-by: Yong Wen Chua <lawliet89@users.noreply.github.com>
* Clarified group aliases
2020-04-29 09:42:59 -07:00
405fbaface
document new gcp auth metadata fields ( #8879 )
2020-04-29 09:38:13 -07:00
74c1bf6894
document aws auth metadata ( #8880 )
2020-04-29 07:36:38 -07:00
34106136cd
GCP Auth docs - Move `iam_alias` and `gce_alias` to config instead of role ( #8862 )
...
Move `iam_alias` and `gce_alias` to config instead of role
2020-04-28 13:55:07 -06:00
de2d7b5260
Update OIDC configuration docs ( #8771 )
2020-04-27 15:59:40 -07:00
ec8448ab56
token: disallow periods on custom token IDs ( #8646 )
...
* token: disallow periods on custom token IDs
* docs: update token API docs
2020-04-27 09:39:33 -07:00
1dbc6d3dd0
Add 'iam_alias' and 'gce_alias' fields to API docs ( #8822 )
2020-04-27 09:54:51 -06:00
62ee11ef02
Fix typo in Entropy Augmentation docs sales contact link ( #8851 )
2020-04-26 14:24:48 -07:00
5f3a64595b
Typo in response-wrapping.mdx ( #8849 )
2020-04-26 10:00:32 -07:00
21cdba6fb5
identity: Add batch entity deletion endpoint ( #8785 )
...
* identity: Add batch entity deletion endpoint
* Update the parameter description
* Update error message
* Update helper/storagepacker/storagepacker.go
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Review feedback
* Update vault/identity_store_entities.go
Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-04-23 15:25:13 -07:00
ec1d92a95a
Add changelog url to data file for website ( #8810 )
...
* pull changelog url from config file
* add fallback if url is empty
2020-04-22 16:27:34 -04:00
771fd8de61
update website readme ( #8739 )
...
- add section on redirects
- add section on markdown enhancements
- consistently wrap at col 81
- add fix for safe write issue
2020-04-22 15:18:48 -04:00
2ff08ee932
Doc: update sys/mounts API response ( #8800 )
2020-04-21 23:57:49 -04:00
2659c34910
raft: check for nil on concrete type in SetupCluster ( #8784 )
...
* raft: check for nil on concrete type in SetupCluster
* raft: move check to its own func
* raft: func cleanup
* raft: disallow disable_clustering = true when raft storage is used
* docs: update disable_clustering to mention new behavior
2020-04-21 13:45:07 -07:00
858549450a
Documentation: In Transit, for the Trim Key API endpoint, correct the sample payload. ( #8763 )
2020-04-17 11:20:17 -07:00
e58cce958b
Clarify version that sink mode is in ( #8764 )
...
Clarifying customer experience. Ie, don't try this on 1.2.1
2020-04-17 11:16:21 -07:00
49c937ff2c
Added docs for PR in Vault GCP Secrets repo ( #8728 )
2020-04-16 14:57:50 -07:00
cfad0ebe16
Clarify key rotation capabilities for Azure auto-unseal ( #8745 )
...
* Clarify key rotation capabilities for Azure auto-unseal
* Fix alignment
Co-authored-by: Vishal Nayak <vishalnayakv@gmail.com>
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-04-15 12:52:16 -04:00
8767f17ef4
Add AWS auth info to upgrade guide ( #8731 )
...
* add aws auth info to upgrade guide
* elaborate on who is effected and add more versions
* use partials for repeated doc text
* add new pages to side nav
2020-04-13 14:52:10 -07:00
ab8f1bfc8a
redirect /index.html to root ( #8723 )
...
* remove 'index.html' from link endings
2020-04-13 14:38:20 -04:00
584160f2a2
doc: add client tls parameters to openldap ( #8730 )
2020-04-13 13:57:51 -04:00
8e1ecefe59
minor docs updates ( #8725 )
2020-04-13 10:03:05 -07:00
82c03b6c2c
Fixing a docs typo ( #8729 )
...
Vauld -> Vault
2020-04-13 10:16:52 -06:00
ca34b7b3f1
docs: add section on transformations for the transform engine ( #8718 )
...
* docs: add section on transformations for the transform engine
* docs: emphasize on caveat for internal tweak source
2020-04-10 17:00:48 -07:00
774afb0ee6
Update mongodbatlas.mdx ( #8720 )
...
Users copying and pasting the command are running into issues w/ the newlines so squashing example to one line.
2020-04-09 15:21:09 -07:00
fbfed414bd
Routing Fixes ( #8703 )
...
* fix a couple of .html extension links
* remove trailing slash config
* fix redirects, broken links, incorrect anchor link formats
2020-04-09 13:56:59 -04:00
8f80cd8b9d
Fix "List Template" table path ( #8692 )
2020-04-08 15:58:40 -07:00
e8cc90e8b6
raft: disallow ha_storage stanza when raft storage is used ( #8707 )
2020-04-08 13:07:42 -07:00
8645089708
document upgrading to 1.4.0 ( #8704 )
2020-04-08 14:48:46 -04:00
f75de0ded5
Remove the warning about raft storage being in beta. ( #8699 )
2020-04-08 12:13:04 -04:00
a8dae1cca6
site: update to version 1.4.0, remove rc download box ( #8693 )
2020-04-07 11:07:37 -07:00
24056ea929
Update integrated-storage.mdx
2020-04-07 10:14:56 -07:00
f08ba0bf55
Transform docs
2020-04-07 10:02:31 -07:00
ffb66ebc83
docs: add vault helm enterprise examples ( #8678 )
...
* docs: add vault helm enterprise examples
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-dr-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-dr-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-perf-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-perf-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-perf-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-dr-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Fix website build
* Shorten sidebar titles
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-dr-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-perf-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Fix sidebar
* Fix sidebar titles
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-04-07 12:56:50 -04:00
52f43020f0
Update standalone-tls.mdx ( #8685 )
...
little typo when decoding the kube CA
2020-04-06 09:42:51 -07:00
1a340a87cb
docs: Add integrated storage concepts page ( #8673 )
...
* docs: Add integrated storage concepts page
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Review feedback and add recovery information
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Review feedback
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
Co-authored-by: Meggie <m.ladlow@gmail.com>
2020-04-03 15:05:55 -07:00
69118a2be8
docs: fix broken k8s auth method link ( #8675 )
2020-04-03 13:08:37 -04:00
dcbdf41bb6
Fix guide redirect w/o html extension ( #8672 )
2020-04-03 09:18:22 -07:00
fe4c38984a
Track 404 Pages with Analytics ( #8667 )
...
Co-authored-by: Jonathan Neal <jonathantneal@hotmail.com>
2020-04-02 14:37:33 -04:00
2ab01a20b4
anchor links don't hide behind the nav ( #8659 )
2020-04-02 14:26:24 -04:00
e11ea4d16e
website: update netlify redirects ( #8657 )
2020-04-01 16:21:35 -07:00
9bcb05263c
fixed some grammar issue ( #8645 )
...
* fixed some grammar issue
The sentence did read clearly so I added a change to make it read a little cleaner
* Update website/pages/docs/secrets/index.mdx
Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
2020-03-31 16:11:14 -07:00
8af56bd620
Anchor Link Fixes ( #8572 )
...
* update anchor link algorithm
* update deps
* update content component
* fix a lot of broken links
2020-03-31 15:21:16 -04:00
b6f8fcb164
Update index.mdx
2020-03-30 16:32:24 -07:00
423acfd4dd
Updates the k8s helm platform docs ( #8632 )
...
* Updates the k8s helm platform docs
- Updates to talk about the external mode
- Updates the helm install overview to show that the releases can also
be the way to install
- Rewrites the how-to to include showing how to start in each mode
- Each mode that has a guide links off to a guide
- Re-organizes the Unseal and Init to a section and places all the
various other unseals underneath it
- Moves updating below the unseal and init
- Shows some basic usage of the helm CLI with a value and file override
* Adds learn links for k8s index pages
* Adds helm dev and external vault examples
While the dev one may seem obvious I think that it's incredibly useful
to cover our bases if this is to be reference documentation. I thought
maybe the example could have ingress support for UI but do not have the
experience to recommend it.
* Adds helm docs example dev and external
- places the development first as it feels like the starting point for
some.
- places the external after HA
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-03-30 17:35:08 -04:00
c147927d5e
Update SubNav component ( #8587 )
...
Co-authored-by: Jeff Escalante <jescalan@users.noreply.github.com>
2020-03-30 13:45:05 -04:00
6550ba2b0e
Use HashiHead Component ( #8549 )
...
Co-authored-by: Jeff Escalante <jescalan@users.noreply.github.com>
2020-03-30 13:30:56 -04:00
f881b5efde
Overtabed example corrected. ( #8633 )
...
Corrected code snippet to be copy paste ready (& properly terminating).
2020-03-30 09:48:52 -07:00
d0585c175b
Add doc for Venafi Secrets Engine ( #8596 )
2020-03-27 18:46:18 -07:00
846d82e95e
docs: change code blocks to bold in k8s doc ( #8626 )
2020-03-27 12:12:51 -04:00
eeeda05ecc
Add missing API doc for DR secondary disable ( #8614 )
...
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-03-25 13:55:29 -04:00
d132332ec5
Fix grammar error in deploy.html.md ( #7971 )
...
* Fix grammer error in deploy.html.md
Changed "Initialization is the process configuring the Vault." to
"Initialization is the process of configuring the Vault."
* Fix grammer error in deploy.html.md
Change "Initialization is the process configuring the Vault."
to "Initialization is the process of configuring the Vault."
2020-03-25 10:15:27 -07:00
68baf25781
Update gc telemetry information ( #8445 )
...
* Update gc telemetry information
Fix total_gc_pause_ns units (should be ns not ms) and add gc_pause_ns description
* Update telemetry.mdx
2020-03-24 16:40:53 -07:00
ec3c4b184d
add browser support chart to website readme ( #8565 )
2020-03-24 17:25:15 -04:00
84f6b6cdac
Add the Canal Erlang client library ( #8322 )
2020-03-24 14:21:56 -07:00
f8093acdcd
fix lease command examples ( #8439 )
...
Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
2020-03-24 13:33:05 -07:00
2457fcd723
Update lease.mdx ( #8330 )
2020-03-24 11:52:36 -07:00
65ad0d87f9
fix extensions name in client signing example ( #8593 )
...
"extension" does nothing, the proper syntax seems to be "extensions"
2020-03-24 11:43:40 -07:00
9f29f6f97d
Update policies.mdx ( #8202 )
...
Minor spelling revisions
2020-03-24 11:14:36 -07:00
8af84ea9b9
bump website version to 1.3.4 ( #8595 )
2020-03-20 13:41:13 -04:00
64c55d7337
API Docs: Secrets/OpenLDAP ( #8521 )
...
* API Docs: Secrets/OpenLDAP
- Update HTTP methods to POST for unsupported (GET) methods on:
- /openldap/rotate-root
- /openldap/rotate-role/:role_name
* Update website/pages/api-docs/secret/openldap/index.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/api-docs/secret/openldap/index.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-03-20 12:00:39 -04:00
c0885b0dfc
Doc: provide info on postgres secrets connection config ( #8516 )
...
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-03-20 11:24:02 -04:00
a7eec55edf
add vsh to related tools page ( #8566 )
...
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-03-19 17:31:35 -04:00
df5c43d2c1
Raft telemetry ( #8550 )
...
* Raft telemetry
* Add descriptions and fix alignment
* Add leadership changes section
* Copy from Consul docs
* Minor changes
2020-03-17 12:51:05 -07:00
5647f978f1
Raft cli docs ( #8548 )
...
* Raft cli docs
* s/raft/Raft
* s/raft/Raft
* Update website/pages/docs/commands/operator/raft.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Mention that shamir seal requires unseal keys
Co-authored-by: Meggie <m.ladlow@gmail.com>
2020-03-17 09:46:44 -04:00
f4de04d87e
Website Deps Upgrade ( #8571 )
...
* update dependencies
* breaking change update
2020-03-16 11:56:44 -07:00
b949dc622b
Update JWT docs ( #8525 )
2020-03-14 14:45:30 -07:00
16ad0ded58
Update database docs ( #8554 )
...
Redshift was missing from the sidebars, as was a reference to static
roles in MongoDB.
2020-03-14 14:45:13 -07:00
450275f6dc
document disable_fast_negotiation ( #8542 )
2020-03-13 15:45:40 -07:00
591e574838
release process improvements ( #8564 )
2020-03-13 15:42:56 -07:00
e8d2c28ed9
[website] nextjs optimizations + IE fixes ( #8341 )
...
* add modern and polyfill optimizations
* update subnav
2020-03-13 15:34:39 -07:00
0cee7306be
Fixes reported missing link ( #8557 )
2020-03-13 14:48:03 -07:00
8890885b0d
add link checker, fix broken links ( #8326 )
2020-03-13 10:49:29 -07:00
3043c3b14a
Add print styles ( #8408 )
...
Co-authored-by: Jeff Escalante <jescalan@users.noreply.github.com>
2020-03-13 10:14:08 -07:00
eb06df6985
Set X-Frame-Options: SAMEORIGIN header for pages ( #8422 )
2020-03-13 10:08:15 -07:00
1299eb54db
website: update netlify badge in website/readme ( #8434 )
...
Co-authored-by: Mike Green <772413+mikegreen@users.noreply.github.com>
2020-03-13 10:07:38 -07:00
811bcc4c88
correct use case button styles ( #8321 )
2020-03-13 10:06:26 -07:00
7442b22f41
Replace internal ProductSubnav with @hashicorp/react-subnav ( #8473 )
2020-03-13 10:00:18 -07:00
fedfb3d171
Add a note about http_max_conns_per_client. ( #8344 )
2020-03-13 07:50:00 -04:00
8dd936d738
Remove the versus section on the website. ( #8538 )
...
* Remove the versus section on the website.
We don't keep it maintained, it's very out of date, and we don't really
like comparing ourselves to other software anyways; it's not fair to
describe other software or solutions in ways that may not align with
how they want to be described.
Co-authored-by: Jeff Escalante <jescalan@users.noreply.github.com>
2020-03-12 18:17:15 -04:00
d9a10633f8
website: update readme with known issues ( #8539 )
...
* website: update readme with known issues
* website: typo fix
* website: typo fix
* website: wrap text for better readability
2020-03-11 14:15:35 -07:00
8007845ba4
Fix SRV Lookups ( #8520 )
...
* Pin HTTP Host header for all client requests
* Drop port map scheme
* Add SRV Lookup environment var
* Lookup SRV records only when env var is specified
* Add docs
Co-Authored-By: Michel Vocks <michelvocks@gmail.com>
2020-03-11 14:22:58 +01:00
0f2aa1401c
Update LDAP docs for anonymous_group_search ( #8501 )
2020-03-09 13:21:28 -07:00
4aae569e36
Update JWT docs ( #8513 )
...
Add mention of new CLI parameters.
2020-03-09 13:19:25 -07:00
3b21385937
Add docs for GCP Secrets rotate root operation ( #8514 )
2020-03-09 13:09:03 -07:00
cf16f3e1a8
Document MSSQL revocation behaviour ( #8506 )
...
See #7725
2020-03-09 15:09:15 +01:00
f4fffa8bb8
doc: update openldap with racf schema support ( #8491 )
2020-03-06 14:46:33 -08:00
8da5bb27dd
Docs for Kubernetes Helm with Vault Enterprise ( #8283 )
2020-03-06 13:36:06 -08:00
4562b0dcff
update package lock ( #8495 )
2020-03-06 15:14:17 -05:00
1fa482e20a
Fix wording in help text ( #8438 )
...
Add "at" in "the UI is accessible at the following URL"
Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
2020-03-06 08:26:18 -08:00
9c3b2f6cc8
API Docs: edits to OpenLDAP secrets engine ( #8490 )
...
- Fix typo
- Remove trailing spaces
2020-03-06 10:18:44 -05:00
5481ffe13b
Update raft.mdx
2020-03-05 17:02:31 -08:00
d71584a64d
Doc: Raft retry join ( #8448 )
...
* Doc: Raft retry join
* Update website/pages/docs/configuration/storage/raft.mdx
Co-Authored-By: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update website/pages/docs/configuration/storage/raft.mdx
Co-Authored-By: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update website/pages/docs/configuration/storage/raft.mdx
Co-Authored-By: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update website/pages/docs/configuration/storage/raft.mdx
Co-Authored-By: Brian Kassouf <briankassouf@users.noreply.github.com>
* Address review feedback
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
2020-03-05 16:47:10 -08:00
f9c03dbb71
docs: update vault k8s to 0.3.0 ( #8479 )
...
* docs: update vault k8s to 0.3.0
* Update descriptions
* Clarify init-first annotation description
* Update website/pages/docs/platform/k8s/injector/annotations.mdx
Co-Authored-By: Jim Kalafut <jkalafut@hashicorp.com>
Co-authored-by: Jim Kalafut <jim@kalafut.net>
2020-03-05 11:21:01 -05:00
0aa0412948
Update docs-navigation.js
2020-03-04 15:57:32 -08:00
c70310896d
Add some integrated raft storage docs ( #8417 )
...
* Add migration docs for raft storage
* Add link to cluster addr config parameter
* Add raft internals page
* Fix page headers
* Add performance_multiplier docs
* Add a few more raft config options
* Add default value
* Add not about join using seals
* Update website/pages/docs/commands/operator/migrate.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/docs/configuration/storage/raft.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/docs/configuration/storage/raft.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/docs/internals/integrated-storage.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/docs/internals/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/internals/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/configuration/storage/raft.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Review feedback
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
Co-authored-by: Meggie <m.ladlow@gmail.com>
2020-03-04 12:58:51 -08:00
47dd9c0d36
Correct GCP auth permissions list. ( #8454 )
...
Remove `listInstances`, which isn't a valid permission.
2020-03-02 21:43:07 -08:00
59cd954206
docs: add audit non-hmac-* flags to command docs ( #8250 )
2020-03-02 11:36:10 -05:00
0e08162cd2
adding prometheus info to make more self-service ( #8312 )
2020-03-02 11:21:50 -05:00
5b09fc6c43
Remove unintentional duplicate string ( #8430 )
...
Same string noted in documentation twice, updating to expected string based on context.
2020-02-28 14:48:53 -05:00
6c5b85d59d
Minor docs update ( #8428 )
2020-02-27 00:11:05 -05:00
6e7cd0580c
Add MongoDB API docs ( #8389 )
2020-02-22 11:39:36 -08:00
d7fbd85fd5
docs: add enterprise note to k8s service discovery ( #8410 )
2020-02-21 17:12:27 -05:00
17efdd6336
docs: vault-helm 0.4.0 updates ( #8318 )
...
Updated docs for vault-helm 0.4.0 configuration changes, and helm 3
support (dropping helm 2). Also some spelling changes, and shortened
page titles for the k8s helm examples.
2020-02-21 12:10:38 -08:00
24ae59b317
correct the okta docs ( #8403 )
2020-02-21 11:13:42 -08:00
1bc1b45c07
Update identity token docs ( #8398 )
...
`client_id` is configurable as of version 1.4.
2020-02-21 10:59:09 -08:00
587b331d8f
docs: add openldap secret engine ( #8388 )
...
* docs: add openldap secret engine
* Update format of types
* Add to sidebars
* Fix formatting
2020-02-21 10:55:15 -05:00
5db4f3d55d
[Doc] Fix curl example syntax in the plugins reload backend ( #8380 )
...
documentation
2020-02-21 13:01:59 +01:00
348cf9f52f
Seal Migration doc update ( #8405 )
2020-02-21 06:57:48 -05:00
2980d06e5a
Docs: Add port paramter to MSSQL docs ( #8402 )
2020-02-21 08:55:21 +01:00
e9ff1dc23a
website: add alert box for 1.4.0-beta1 ( #8400 )
...
* website: add alert box for 1.4.0-beta1
* fix prerelease notification
Co-authored-by: Jeff Escalante <jescalan@users.noreply.github.com>
2020-02-20 16:46:31 -08:00
bc12855d77
update deps, product downloader ( #8404 )
2020-02-20 16:15:59 -08:00
971826a646
Add API documentation about the sys/internal/counters endpoints ( #8390 )
2020-02-19 14:47:53 -07:00
13a44b2e0b
Add docs for Kubernetes service discovery feature ( #8374 )
...
* add docs for kube service discovery
* give example with env vars only
* improve doc flow
* strip note about active being sometimes applicable
2020-02-19 13:34:18 -08:00
c263f7beb1
Update API docs for OIDC form_post mode ( #8373 )
2020-02-19 09:21:29 -08:00
d8ea61f91a
Docs: Fix anchor link to Generating JWTs ( #8368 )
2020-02-18 13:11:48 +01:00
c54c8c92bd
RSA3072 implementation in transit secrets engine ( #8151 )
...
* RSA3072 implementation in transit secrets engine
* moved new KeyType at the end of the list
So already stored keys still work properly
Co-authored-by: Jim Kalafut <jim@kalafut.net>
2020-02-15 14:40:50 -08:00
8573eefe90
enabling TLS 1.3 support for TCP listeners ( #8305 )
...
* adding support for TLS 1.3 for TCP listeners
* removed test as CI uses go 1.12
* removed Cassandra support, added deprecation notice
* re-added TestTCPListener_tls13
2020-02-15 11:40:18 -08:00
39f1d26902
Docs enforce autoauth token ( #8270 )
...
* rename UseAutoAuthForce to ForceAutoAuth, because I think it reads better
* Document 'ForceAuthAuthToken' option for Agent Cache
* Update website/pages/docs/agent/caching/index.mdx
Co-Authored-By: Jim Kalafut <jkalafut@hashicorp.com>
* Add additional tests around use_auto_auth=force and add documentation
* remove note, it's no longer correct
Co-authored-by: Jim Kalafut <jim@kalafut.net>
2020-02-14 15:48:12 -06:00
d3cda0fe2c
Guard against using Raft as a seperate HA Storage ( #8239 )
...
* Guard against using Raft as a seperate HA Storage
* Document that Raft cannot be used as a seperate ha_storage backend at this time
* remove duplicate imports from updating with master
2020-02-14 14:25:53 -06:00
0ab4c138c2
Update identity API docs ( #8351 )
2020-02-13 23:29:32 -08:00
635b957e76
Add x509 Client Auth to MongoDB Database Plugin ( #8329 )
...
* Mark deprecated plugins as deprecated
* Add redaction capability to database plugins
* Add x509 client auth
* Update vendored files
* Add integration test for x509 client auth
* Remove redaction logic pending further discussion
* Update vendored files
* Minor updates from code review
* Updated docs with x509 client auth
* Roles are required
* Disable x509 test because it doesn't work in CircleCI
* Add timeouts for container lifetime
2020-02-13 15:54:00 -07:00
ee2843a3b2
Update Oracle DB secrets docs to reflect support for static roles ( #8168 )
...
* Fix typos
* Update Oracle DB secrets docs to show support for Static Roles
* Add warning about username case sensitivity
* Remove warning about casing
* Fix typo
Co-Authored-By: Becca Petrin <beccapetrin@gmail.com>
Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
2020-02-13 15:11:33 -07:00
27ad920399
Add redshift database plugin ( #8299 )
...
* feat: add redshift database plugin
* build: update vendored libraries
* docs: add reference doc for redshift variant of the database secrets engine
* feat: set middlewear type name for better metrics naming (#8346 )
Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
2020-02-13 09:42:30 -08:00
ef687a97a6
Adding a new replication metric (WAL GC counter) ( #8241 )
...
* Adding a new replication metric (WAL GC counter)
Adding a new line about the vault.replication.wal.gc metric
* Update website/pages/docs/internals/telemetry.mdx
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
2020-02-07 23:04:59 -08:00
2ee7b76469
Bundle MongoDB Atlas ( #8309 )
2020-02-07 14:09:39 -08:00
3a4d330f64
Return error when a standby node receives a metrics request ( #8280 )
...
* Return error when a standby node receives a metrics request
* fix test
* Add documentation note
2020-02-07 09:30:25 +01:00
1081446ac9
Update vault azure api docs ( #8276 )
...
By reading the code looks like `subscription_id` and `resource_group_name` are required in the end https://github.com/hashicorp/vault-plugin-auth-azure/blob/master/path_login.go#L192-L194 .
2020-02-06 12:51:34 -08:00
85877e52a4
Fix typo in vault agent injector example docs ( #8302 )
...
Fix mispelling of `annotation`.
2020-02-05 15:57:09 -08:00
cfcb9d2218
Update seal migration docs re limitations and different scenarios ( #8298 )
2020-02-05 15:30:04 -05:00
fe80e136da
Add a specific reference to AWS IAM Unique Identifiers ( #8209 )
...
* Add specification about AWS IAM Unique Identifiers
We experienced an issue where IAM roles resources were re-provisioned with the same ARNs and no change had been made to our vault role configuration but users lost access with `-method=aws`. It wasn't immediately clear to us how IAM Unique Identifiers where being used to avoid the same situations outlined in the AWS documentation. We eventually concluded that re-provisioning the roles in our auth/aws/auth would fetch the new IAM Unique Identifiers.
I hope that this small amendment helps people avoid this problem in the future.
2020-02-04 15:31:48 -08:00
fa2544cf5e
fix <name> entity encoding for Secrets Engines Metrics section ( #8290 )
2020-02-04 15:06:10 -08:00
4f25ed2b08
Improve clarity of IAM flow explanation ( #8275 )
2020-02-03 10:14:09 -08:00
03b14d8a64
Upgrade okta sdk lib ( #8143 )
...
Upgrade to new official Okta sdk lib. Since it requires an API token, use old unofficial okta lib for no-apitoken case.
Update test to use newer field names. Remove obsolete test invalidated by #4798 . Properly handle case where an error was expected and didn't occur.
2020-02-03 12:51:10 -05:00
9dd1a863c0
update dependencies ( #8271 )
2020-01-31 14:27:39 -05:00
8f2347f93a
docs: update vault k8s to 0.2.0 ( #8269 )
...
* doc: update vault-k8s to 0.2.0
* Add debugging note
2020-01-31 11:22:39 -05:00
1c1d93a21c
Fix default max_open_connections for db plugins ( #8262 )
2020-01-30 17:33:04 +01:00
74a6d02a89
Fix broken link ( #8259 )
...
- https://www.vaultproject.io/api/secret/pki/index.html#create-update-role
- https://www.vaultproject.io/api/secret/pki/index.html#createupdate-role
2020-01-30 08:12:24 -08:00
0b7afcc728
docs: fix api path for merge entity identity doc ( #8258 )
2020-01-29 08:56:36 -08:00
f695eb737b
Add Consul TLS options to access API endpoint ( #8253 )
2020-01-29 09:44:35 +01:00
96a6857f0c
Docs: Add nomad TLS options ( #8254 )
2020-01-29 09:38:54 +01:00
0ebf3c3e40
fixing static pdf compliance letter ( #8248 )
2020-01-27 15:40:55 -05:00
890f4b63a6
Show bound_service_accounts in gce example ( #8236 )
...
Shows that the GCP auth option `bound_service_accounts` can be used
for gce-type roles as well as iam.
2020-01-27 11:48:21 -08:00
eea26c6af1
Clarify the k8s helm run docs ( #8235 )
2020-01-27 14:54:59 +01:00
efb2152759
Adding pricing module note for enterprise features ( #8217 )
...
* adding pricing module note for enterprise features
* fixing incorrectly committed go.mod
2020-01-24 19:18:22 -05:00
fc09eb1e6b
Add Kerberos agent docs ( #8220 )
...
* add kerberos agent docs
* use relative doc link
2020-01-24 14:40:41 -08:00
751b3473d0
package: mega nav version bump ( #8215 )
2020-01-24 14:52:52 -05:00
c5cbb43f39
Website: Update diagram images ( #8214 )
2020-01-24 14:52:26 -05:00
e6115388b0
patch docs sidenav to resolve a bug introduced yesterday ( #8234 )
2020-01-24 14:51:40 -05:00
36f0c05744
updating download page version ( #8233 )
2020-01-24 09:08:24 -05:00
ddf38d8391
Fix example url for sys/wrapping/rewrap ( #8222 )
2020-01-23 21:09:53 -08:00
eb592f05fb
Update API to include roleset TTL parameter ( #8231 )
...
Include documentation on including the TTL parameter for service account key rolesets. [Associated PR](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/54 )
2020-01-23 17:54:28 -08:00
8a8f9029d6
Update Kubernetes docs to include Kubernetes Auth method ( #8046 )
...
* Improve standalone with TLS example
- Documented creating a key & cert for serving Vault endpoints
- Removed unneeded configuration in custom values.yaml
- Updated examples to 1.3.0
* Add 127.0.0.1 to CSR
* Grammar & minor formatting
* Add additional DNS entry for CSR
* Split examples into individual pages
* Add Kubernetes Auth Method example
* Remove old examples file
* Fix rebase fail
* Remove global section of yaml files that aren't needed
* Fix minor typos
* Fix typos that didn't get carried over from previous PR
* Re-copy from previous examples file to resolve rebase issues
* update dependencies
Co-authored-by: Jeff Escalante <jescalan@users.noreply.github.com>
2020-01-23 13:14:01 -07:00
25d83349e0
update dependencies ( #8221 )
2020-01-23 12:44:59 -07:00
3511bf8293
[website] fix a couple broken links ( #8190 )
...
* fix a couple broken links
* extra redirect
* another shot at redirects
2020-01-22 12:31:42 -08:00
0062ad382d
[website] implement postgres/secrets redirect ( #8208 )
...
* add secrets/postgresql redirect
* change name of old path
* ensure deprecated pages are not indexed by search engines
* remove deprecated page from navigation
2020-01-22 12:29:37 -08:00
4f87851926
[website] Link Cleaning ( #8205 )
...
* update dependencies
* remove hard-coded vaultproject.io on local links
* remove 'index.html' from internal links
* remove '.html' at end of internal links
* manual review cleanup
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-01-22 12:05:41 -08:00
3b39b30e12
cleanup formatting on database index doc ( #8207 )
2020-01-22 09:57:03 -06:00
ffd90709f3
docs: update entropy augmentation page ( #8185 )
...
* docs: update entropy augmentation page
* remove .html extension in links
* remove .html extension in links
2020-01-21 15:05:53 -08:00
d9ed6b845c
Improve Helm chart example for standalone with TLS configuration ( #8022 )
...
* Improve standalone with TLS example
- Documented creating a key & cert for serving Vault endpoints
- Removed unneeded configuration in custom values.yaml
- Updated examples to 1.3.0
* Add 127.0.0.1 to CSR
* Grammar & minor formatting
* Add additional DNS entry for CSR
* Fix typos, formatting, and other minor issues
* Use correct header depth for Helm Configuration
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-01-21 15:44:14 -07:00
b7c2acccd9
Website: Fix configuration links from Helm run docs ( #8201 )
2020-01-21 13:30:35 -06:00
d1b4082fb3
Fix k8s docs for running standalone ( #8199 )
...
* instruction for HA was actually for standalone.
2020-01-21 19:46:33 +01:00
6b16f7521a
update 'learn about the configuration options' link ( #8146 )
2020-01-21 12:06:42 -06:00
1f034ee380
Fix typo in YAML markup ( #8194 )
2020-01-20 16:39:51 +01:00
fdb7416b02
Fix typo ( #8192 )
...
Fixes #8189
2020-01-18 20:18:57 -08:00
c64c2bf512
Fix k8s injector examples ( #8179 )
2020-01-18 14:47:18 +01:00
6b602ea068
update dependencies, patch nextjs config ( #8184 )
2020-01-17 17:32:35 -08:00
aebfdc7516
Strip unnecessary payload in AD root cred rotation example ( #8160 )
...
* strip unnecessary payload in example
* strip other unnecessary payload
2020-01-17 16:49:36 -08:00
df34412570
New Website! ( #8154 )
...
* new documentation website
* ci job adjustment
* update to latest version on downloads page
* remove transition-period scripts
* add netlify toml file
* fix docs patch
* fix ci config?
* revert go.mod changes
* a couple last markdown formatting fixes
2020-01-17 16:18:09 -08:00
13ebf5460c
Add TLS options per Nomad backend ( #8083 )
2020-01-15 11:03:38 +01:00
e40bbb0aaf
doc: add extraArgs example to vault-helm ( #8149 )
...
* doc: add extraArgs example
* Update website/source/docs/platform/k8s/helm/configuration.html.md
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/source/docs/platform/k8s/helm/run.html.md
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update injector installation example
* Update website/source/docs/platform/k8s/helm/configuration.html.md
Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>
* Update website/source/docs/platform/k8s/helm/run.html.md
Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-01-14 14:14:56 -05:00
feb5391767
Docs: Add vaul.token.create_root metric ( #8089 )
...
* Docs: Add vaul.token.create_root metric
* Update website/source/docs/internals/telemetry.html.md
* Add additional note
2020-01-14 15:47:10 +01:00
154b11bedd
Update Duo docs ( #8127 )
2020-01-09 15:58:52 -08:00
57a3b72cde
Docs: Add note about needing to do plugin reload on each node ( #8108 )
...
* Add note about needing to do this on each node
Specifically calling this out will heed off operators doing this on a single node and thinking it is a bug that it didn't propagate to the other nodes, secondaries, etc.
* Updated to reflect not needing to do registration on each
2020-01-08 16:09:41 -08:00
12fba35a7c
Update docs to add example of field output for KV get ( #8109 )
...
* Add example of field output
Ordering matters here and its a constant question both from customers and new folks. This will help to show the right syntax.
* minor update to spelling and force unit test rerun
* Update example actually in example area
* Clarify last example is only unix example
* removing Unix specific example
2020-01-08 15:58:10 -08:00
ba3c4ed9d7
Add reference to answer "where are the metrics listed"? ( #8110 )
2020-01-08 10:32:09 -08:00
fb9d809d91
Add changes for renewer api/agent behavior to upgrade guide
2020-01-08 12:47:49 -05:00
038d7bfc86
doc: update vault-helm to 0.3.2 ( #8119 )
2020-01-08 11:41:26 -05:00
0b5c7550a6
Fix Headings for Consul Secret Engine ( #8107 )
2020-01-07 11:46:43 -05:00
0d23c7973b
Update config.rb
2020-01-03 09:25:26 -08:00
78d47b0fe2
doc: update vault-k8s version ( #8085 )
2020-01-03 08:55:29 -05:00
0d0f5d2e98
Docs: Add a note to the token-parameter ( #8086 )
...
Adds a note that the `token` parameter may also be provided via the `CONSUL_HTTP_TOKEN` environment variable.
2020-01-03 10:48:03 +01:00
ac0bc52284
typos to email visiblity ( #8087 )
...
edited email address so they are visible, removed confusing EMAIL, email text.
2020-01-02 20:17:03 -05:00
4d917fbfdb
Update vault partner integration program docs ( #8069 )
...
* index.html.md
Vault Integration Program Refresh for CY 2020, major updates edits from Vault PM and Alliance
* fixing formatting and links
* a few more formatting updates
* Patch- Fix Typo
* Hashicorp -> HashiCorp
* embedding images
* remove checkboxes since they do not render correctly
Co-authored-by: Chris Hoffman <99742+chrishoffman@users.noreply.github.com>
Co-authored-by: Chris Griggs <cgriggs@hashicorp.com>
2020-01-02 12:16:35 -05:00
22e948839a
Fix Azure Secrets docs typo
2019-12-19 10:24:37 -08:00
eb7700c88b
doc: fix broken link in injector doc ( #8059 )
2019-12-19 12:57:24 -05:00
b2f3110e0a
doc: update helm to 0.3.0 ( #8057 )
...
* doc: update helm to 0.3.0
* Add data type to extraContainers
* Update examples
* Update image in examples
2019-12-19 12:03:51 -05:00
Scott Miller