997a5ace91
Prevent raft transactions from containing overlarge keys. ( #13286 )
2021-11-26 08:38:39 -05:00
f85908e1df
Return an error when trying to store a too-large key with Raft ( #13282 )
2021-11-25 14:07:03 -05:00
8b6477a0f0
http: fix dropped test error ( #13247 )
2021-11-24 14:08:22 -08:00
6ea0df030e
Update Vault Agent intro ( #13267 )
...
* Update Vault Agent intro
* Update website/content/docs/agent/index.mdx
Co-authored-by: Brian Shumate <brianshumate@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Brian Shumate <brianshumate@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Brian Shumate <brianshumate@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
* Update website/content/docs/agent/index.mdx
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
Co-authored-by: Brian Shumate <brianshumate@users.noreply.github.com>
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
2021-11-24 12:41:11 -08:00
4e05632881
recognize ed25519 key type and return PKCS8 format ( #13257 )
...
* return pkcs8 format for ed25519 curve
convertRespToPKCS8 does not recognize the ed25519 key. Changes
to recognize ed25519 key and return its PKCS8 format
2021-11-24 14:24:06 -05:00
fe981470ad
Update 13200.txt changelog ( #13263 )
...
* Update 13200.txt
2021-11-24 13:38:15 -05:00
eeb41dc76e
Allowing Unwrap w/ Newline files ( #13044 )
2021-11-24 10:13:45 -08:00
f1b18bd990
Don't claim that Vault obfuscates the environment variable for sensitive values, this doesn't work at least in recent version of Go, as Go makes a copy of the environment, so we're only modifying that one, and not the one visible to the rest of the system ( #13252 )
2021-11-24 11:50:34 -06:00
c4764433a8
Add ability to capture container logs, and have mssql test helper use it ( #13272 )
2021-11-24 12:01:38 -05:00
ea2728a229
add settled after generating EC cert ( #13265 )
2021-11-24 10:17:32 -05:00
19c33125c9
secrets/azure: fix API docs rendering of code block ( #13245 )
2021-11-23 22:38:06 -08:00
44e36ab88b
component test fixes ( #13266 )
2021-11-23 18:10:15 -07:00
5af2b699fe
Respect WithWrappingToken for all secret ID's in approle auth ( #13241 )
2021-11-23 15:53:48 -08:00
06f83ba8e6
enhance test metrics ( #13262 )
2021-11-23 14:56:30 -07:00
516f18f736
KV automatic delete state issue in UI ( #13166 )
...
* converts secret-v2-version model to native class -- fixes issues with cached values for deleted prop
* adds changelog entry
* adds disabled state to ToolbarLink component and disables create new version action when users cannot read metadata
* updates secret-edit acceptance test
2021-11-23 14:17:37 -07:00
201526e983
skip hash bits verification for ed25519 ( #13254 )
...
* skip hash bits verification for ed25519 #13253
The default value or *hashBits is 0 and will fail
at ValidateSignatureLength for ed25519. ed25519
specifies its own hash, so avoid hashBits validation for
ed25519 curve.
2021-11-23 15:28:18 -05:00
9640d35136
Unify HTTPResponseWriter and StatusHeaderResponseWriter ( #13200 )
...
* Unify NewHTTPResponseWriter ant NewStatusHeaderResponseWriter to fix ResponseWriter issues
* adding changelog
* removing unnecessary function from the WrappingResponseWriter interface
* changing logical requests responseWriter type
* reverting change to HTTPResponseWriter
2021-11-23 14:30:25 -05:00
15b06780ab
remove nil response to 404 translation for PatchOperation ( #13167 )
...
* remove nil response to 404 translation for PatchOperation
* go get vault-plugin-secrets-kv@master
2021-11-23 13:57:22 -05:00
e8c9affee1
UI/Fix node-forge EC error ( #13238 )
...
* add catch for node-forge error handling
* update comment
* adds changelog
* alphabetize attrs and add canParse attr
* show alert banner if unable to parse metadata
* add test to check info banner renders
2021-11-23 13:51:02 -05:00
d7c54b50e7
fix bolt 32 bit test ( #13249 )
2021-11-23 10:50:15 -08:00
3c6f68f9c4
Docs/custom metadata updates ( #13244 )
...
* adding custom_metadata read and update changes
* adding custom metadata changes
2021-11-23 09:40:44 -08:00
0082cc4a5b
Correct flag name: -dev-kv-v1, not dev-kv-1. ( #13250 )
2021-11-23 12:17:51 -05:00
c01b993bd3
Fix regression in returning empty value for approle cidrlist. ( #13235 )
2021-11-23 12:13:47 -05:00
fe0dd6f867
Add InitialMmapSize to bolt options ( #13178 )
2021-11-22 20:16:57 -08:00
f77223bfe5
Authenticate to "login" endpoint for non-existent mount path bug ( #13162 )
...
* changing response from missing client token to permission denied
* removing todo comment
* fix tests
* adding changelog
* fixing changelog
2021-11-22 17:06:59 -08:00
d5f4fbecc1
identity/oidc: optional nonce parameter for authorize request ( #13231 )
2021-11-22 09:42:22 -08:00
3bad83f76f
Prevent CWE-190/AllocationSizeOverflow in KDF ( #13237 )
...
In the Counter-mode KBKDF implementation, due to the nature of the PRF
(being implemented as a function rather than a hash.Hash instance), we
need to allocate a buffer capable of storing the entire input to the
PRF. This consists of the user-supplied context with 8 additional bytes
(4 before and 4 after) of encoded integers.
If the user supplies a maximally-sized context, the internally allocated
buffer's size computation will overflow, resulting in a runtime panic.
Guard against this condition.
Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
2021-11-22 12:25:50 -05:00
5236fe93aa
Add a new parameter "allowed_managed_keys" to mount config ( #13202 )
...
* Add a new parameter "allowed_managed_keys" to mount config
* Adjust formatting in mount.go
* Add changelog entry
2021-11-21 19:08:38 -06:00
19fe708fc6
README.md of website/ with WARNING on rebuilding ( #13027 )
...
* README.md of website/ with WARNING on rebuilding
* Update README.md
2021-11-19 13:15:37 -08:00
3818adf3f8
Fix missing changelog ( #13230 )
2021-11-19 12:59:00 -08:00
10d146125a
Updates to 1.9 documentation ( #13228 )
...
* incorporated feedback
* fixed link
* fixed link again
* found another error
2021-11-19 12:46:47 -08:00
980cc8f182
auth/kubernetes: add changelog for issuer deprecation ( #13221 )
...
* add kubenetes issuer config deprecation
* changelog++
* add Vault specific PR in deprecation section
* ordering
2021-11-19 09:50:31 -08:00
79ec6b7f3d
docs: updated for vault-k8s 0.14.1 vault-helm 0.18.0 ( #13199 )
...
* version bumps
* updated chart options
2021-11-18 18:08:35 -08:00
9622e36b82
Docs deprecate token issuer validation ( #13019 )
...
* change default vaule for disable_iss_validation to be true
* mark as deprecated | remove issuer from sample
* deprecation section
* additional informaiton about when fields will be removed
* additional deprecation note under csi provider
* punctuation
* make the deprecation note more noticable
* missing issuer sentence | remove whitespace
* Update website/content/docs/platform/k8s/csi/index.mdx
Co-authored-by: Ben Ash <32777270+benashz@users.noreply.github.com>
* cleanup
* additional deprecation comments
* fix discovery link
* highlight
* no need to configure the issuer
Co-authored-by: Ben Ash <32777270+benashz@users.noreply.github.com>
2021-11-18 15:16:54 -08:00
73d3204b8f
OIDC: add note on PKCE support for code flow ( #13206 )
...
* OIDC: add note on PKCE support for code flow
* add changelog
* remove changelong
2021-11-18 13:46:34 -06:00
4127092fdd
fixed errors in file ( #13205 )
2021-11-18 10:50:26 -08:00
d563882933
docs: move deprecation notices down the navbar ( #13201 )
...
Moved from one of the first items in the navbar down to one of the last. They are not high priority information and should be grouped with upgrade and release notes.
2021-11-18 10:26:30 -08:00
ba5ad97e78
UI/Make revocation time and credential dates human-readable ( #13196 )
...
* adds date time helper to generated creds
* makes revocation time human-readable
2021-11-18 10:14:48 -08:00
e43f2bb80c
Add sb extract to enable Storybook composition ( #12808 )
...
* Add sb extract to enable Storybook composition
Ref: hashicorp/cloud-ui#1457 and https://github.com/hashicorp/design-system-website/blob/main/taskbox/.storybook/main.js
* Add metadata to enable SB extract
* Change dir location
* Change location of stories
* Move cp stories.json to build:storybook step
2021-11-18 09:19:46 -06:00
c933664eeb
docs: fixing the injector.webhookAnnotations annotation ( #13181 )
2021-11-17 18:19:33 -08:00
42abf7ed2e
Updated Vault 1.9 documentation ( #13194 )
...
* post 1-9 doc changes
* fixed endpoint sample
* Update website/content/docs/release-notes/1.9.0.mdx
Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
2021-11-17 14:23:48 -08:00
f6d8904540
Use new auth modules + Login method in Go client docs ( #13189 )
2021-11-17 11:52:38 -08:00
176fae22cc
changelog++
2021-11-17 14:05:11 -05:00
5af1db7992
Removing draft note ( #13187 )
2021-11-17 13:22:55 -05:00
d9e3dde39a
Prep work for docs cutover ( #13186 )
...
* Some prep work for docs cutover
* Rerun Vercel
2021-11-17 13:09:18 -05:00
f7a7b4a32b
Raft Snapshot Restore Bug ( #13107 )
...
* fixes issue restoring raft snapshot
* adds changelog entry
2021-11-17 10:30:59 -07:00
d9d9a7353e
Form field component ttl picker not initially enabling ( #13177 )
...
* fixes issue with ttl picker not initially enabling in form field component
* adds changelog entry
* updates test
* updates initial ttl toggle state for default 0s value
2021-11-17 10:21:17 -07:00
dd11865597
Return a UserError if aead.Open() fails to align with documentation ( #10914 )
...
Return a UserError is aead.Open() fails and assume by that stage there is a problem with the user input for said decryption
2021-11-17 11:40:43 -05:00
a01e1a4101
docs/identity: fix template parameter for groups ( #13176 )
2021-11-17 08:25:37 -08:00
3458c22df0
Vault-2257: don't log token error on DR Secondary ( #13137 )
...
* don't log token error on DR Secondary
* stop gauge collector expiration errors on dr secondary
* don't check dr secondary for token create
* see if CI hits panic
* Revert "don't check dr secondary for token create"
This reverts commit c036a1a544d3a20d29d046f1ee239ab1563ce4d9.
* don't check dr secondary for token create
* Revert "see if CI hits panic"
This reverts commit 1e15aa535cac6e4d1684aaf47c8746c094068eb8.
* remove condition on log
2021-11-17 09:21:54 -07:00
Nick Cabatoff