Commit graph

307 commits

Author SHA1 Message Date
Meggie 275a34476c
Updates for 1.5.1, 1.4.4, 1.3.8, and 1.2.5 (#9793)
* Updates for 1.5.1, 1.4.4, 1.3.8, and 1.2.5

* Recommend against using these versions

* Re-running checks

* Update docs-navigation.js
2020-08-20 18:57:44 -04:00
ncabatoff 7f7ac71746
Document allowed_domains_template. (#9751) 2020-08-20 09:54:52 -04:00
ncabatoff f20f3747c7
New seal migration strategy doesn't work in 1.4. (#9765) 2020-08-20 09:54:28 -04:00
Junya Ogasawara 0a13195450
Reduce a required permission for OIDC with AzureAD (#9785)
`Group.Read.All` is too permissive policy to achieve external groups
feature. `GroupMembers.Read.All` is enough for that purpose.

MicroSoft Graph API Permission reference follows
https://docs.microsoft.com/en-us/graph/permissions-reference#application-permissions-23
2020-08-20 00:00:31 -07:00
Martin Hristov ac36da333d
Add note for AD domain usernames in MSSQL (#9743)
Adding a note that `vaultuser` might be part of the AD domain like `DOMAIN\vaultuser`.
2020-08-18 10:35:21 -06:00
Tom Proctor ba9d1b6fbf
Couchbase database plugin documentation (#9764) 2020-08-18 15:57:18 +01:00
Lauren Voswinkel b2a106a931
Add a section to the MySQL secrets plugin docs about x509 (#9757) 2020-08-17 16:29:51 -07:00
arnis fd6e0eb543
Update documentation for MySQL Secrets Engine (#9671)
* Update documentation for MySQL Secrets Engine

Update documentation for MySQL Database Secrets Engine to reflect changes introduced with https://github.com/hashicorp/vault/pull/9181

* Empty Commit to re-trigger tests

Co-authored-by: Lauren Voswinkel <lvoswinkel@hashicorp.com>
2020-08-17 15:30:33 -07:00
Michael Golowka edc40a1767
Correctly mark Cassandra as not supporting static roles (#9750) 2020-08-17 14:36:32 -06:00
Theron Voran f0f576f5bf
Restoring the example policies for blocking sha1 (#9677)
(In the transit api-docs)
2020-08-17 10:30:06 -07:00
ncabatoff 893e15bdbf
Document the new SSH signing algorithm option. (#9197) 2020-08-17 13:03:44 -04:00
Scott Miller 5b003b06f8
Trail of bits 018 (#9674)
* TOB-018 remediation

* Make key derivation an optional config flag, off by default, for backwards compatibility

* Fix unit tests

* Address some feedback

* Set config on unit test

* Fix another test failure

* One more conf fail

* Switch one of the test cases to not use a derive dkey

* wip

* comments
2020-08-17 11:36:16 -05:00
Alexander Bezobchuk f873863263
Merge PR #9667: Rate Limit Backoff 2020-08-16 22:09:18 -04:00
Meggie ca65131543
Added upgrade guidance on mount -> path filters (#9712) 2020-08-12 10:54:56 -04:00
Austin Gebauer 00a0d043be
docs: fix sentence in vault debug command (#9725) 2020-08-11 20:24:37 -07:00
Kyle MacDonald eb923f30b1
website: update favicon refs (#9713) 2020-08-11 13:56:25 -04:00
Geoffrey Grosenbach 967d9b85da
Updates URLs to match new paths at Learn (#9679)
Previous URLs which included a track in the querystring now go to standard paths instead.
2020-08-10 13:40:09 -07:00
Tom Proctor 494cdf5bcb
Add docs for OpenLDAP plugin's new AD schema (#9619) 2020-08-10 10:24:38 +01:00
Mark Gritter 3a9619fb05
Add explanation of "keys" field. (#9676) 2020-08-07 12:11:11 -05:00
ncabatoff b01fda0e04
Add docs for CSR signing. (#8899) 2020-08-07 10:45:12 -04:00
Austin Gebauer db9993335c
docs: fixes environment variable in azure secrets config API (#9678) 2020-08-06 17:11:18 -07:00
Zalary Young 5100624d5c
Merge PR #9628: add audit_non_hmac_request_keys to payload example for tune 2020-08-06 15:27:03 -04:00
Scott Miller 6cf859632a
Remove weird TTL special case documentation from cubbyhole (#9669) 2020-08-05 16:20:24 -05:00
aphorise c9fb408b60
Docs - /system/unseal Typo - Resolves: #9659 (#9660) 2020-08-05 08:33:47 -04:00
Jim Kalafut 9b3719d9ce
Update OpenLDAP docs (#9648)
Add link to API docs.
2020-07-31 17:25:27 -07:00
Andy Assareh 76894f7dcb
curl command incorrect: ---header should be --header (#9643) 2020-07-30 14:55:42 -07:00
Austin Gebauer 837ec00859
docs: fix gcpkms steps for asymmetric decryption and asymmetric signing (#9638) 2020-07-30 10:50:23 -07:00
Mark Gritter 51b6dfb097
Add new page documenting limits. (#9592)
* Add new page documenting limits.
* Add some identity metrics not previously documented.
* Updated limits based on compression experiments.
* Add Transit key rotation limits, and link to Transform size limit.
2020-07-29 16:18:04 -05:00
Alexander Bezobchuk 1e262e5648
Merge PR #9581: Rate Limit Quota Headers 2020-07-29 15:15:05 -04:00
Michael Golowka 1bd4502b92
Mark MongoDB Atlas as supporting static creds (#9624)
Also fixes some links that are not rendering properly with a newline
between the text and the link.
2020-07-29 11:39:53 -06:00
Austin Gebauer 082a034cfa
docs: add missing parameters to the gcpkms key create/update API (#9612) 2020-07-28 13:53:27 -07:00
Jeff Escalante 290c6d7187
Fix broken links in website footer (#9613)
* add security page and press kit

* github link correction
2020-07-28 16:22:35 -04:00
ncabatoff 43d8c304c5
Remove obsolete kms->shamir warning. Add warning about taking a backup. (#9614) 2020-07-28 16:13:57 -04:00
Jim Kalafut 70d964d420
Update OIDC docs (#9599)
Clarify that verbose logging is to the server logs.
2020-07-27 08:51:59 -07:00
ncabatoff c3c253e76c
Add upgrade note for okta issue. (#9587) 2020-07-27 11:36:17 -04:00
Scott Miller 8a5b97198c
Fix navigation for the Sentinel config and clarify module usage (#9588) 2020-07-27 09:52:46 -05:00
Austin Gebauer cca5bb3ba6
docs: fix sentence in gcp secrets by removing unneeded word (#9585) 2020-07-24 07:36:06 -07:00
Yoko 39fb31559f
Add cross-referencing links to learn tutorials (#9562)
* Add cross-referencing link to learn

* Fix grammar

* Update website/pages/docs/concepts/password-policies.mdx

Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>

Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
2020-07-23 07:56:00 -07:00
Michael Golowka 295b0573c1
Docs: Update MongoDB to support root credential rotation (#9559)
* Update MongoDB to support root credential rotation
2020-07-22 14:56:11 -06:00
Mark Gritter 5fc28fe65a
Fix links to documentation. (#9570)
* Fix links to documentation.
* Add 1.5.0 upgrade nodes to navigation.
2020-07-22 15:55:41 -05:00
ncabatoff 645e8b6521
Add upgrade note for #9555. (#9569) 2020-07-22 16:24:06 -04:00
Mark Gritter 5d9a1caba1
Add upgrade note for #9553. (#9563)
* Add upgrade note for #9553.
* Note that these are metrics introduced in 1.5.0.
* Added link to docs.
2020-07-22 14:47:48 -05:00
Alexander Bezobchuk f3587c341b
Merge PR #9089: Initial 1.5.0 Upgrade Doc 2020-07-22 15:23:02 -04:00
Austin Gebauer 56bc00bed8
Adds documentation for OIDC provider specific extension for G Suite (#9454)
* docs: adds documentation for JWT/OIDC google provider specific handling

* use may instead of will for identity group alias association

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>

* adds missed parentheses

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>

* adds missed parentheses

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>

* reword sentence referring to key file for Google service account

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>

* add styles to emphasize security step

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-07-22 12:18:58 -07:00
Scott Miller 068e080c27
Add sentinel configuration stanza documentation to OSS (#9558) 2020-07-22 13:07:51 -05:00
Alexander Bezobchuk b642b1ddd7
Merge PR #9544: docs: add pages to sidebar 2020-07-22 09:28:56 -04:00
Meggie 692200c47b
Link to release notes on downloads page (#9546)
* Link to release notes on downloads page

* Per Jeff E's comment linking to index
2020-07-21 18:11:32 -04:00
Austin Gebauer 66c8032fb5
docs: specify which JWT/OIDC role params support JSON pointer syntax in API docs (#9518) 2020-07-21 11:20:10 -07:00
Austin Gebauer 87172c3fbb
docs: changes the default alias names in the GCP auth API docs to role_id for both IAM and GCE (#9494) 2020-07-21 10:22:24 -07:00
Jason O'Donnell a3e0620cd4
doc: add k8s probe notes to helm doc (#9543) 2020-07-21 12:40:43 -04:00