open-vault

Author	SHA1	Message	Date
Jeff Mitchell	67b85b8f7f	Error rather than skip Consul acceptance tests if Consul isn't found	2016-03-07 10:09:36 -05:00
Jeff Mitchell	6b0f79f499	Address review feedback	2016-03-07 10:07:04 -05:00
Jeff Mitchell	cc1f5207b3	Merge branch 'master' into token-roles	2016-03-07 10:03:54 -05:00
Jeff Mitchell	4a3d3ef300	Use better error message on LDAP renew failure	2016-03-07 09:34:16 -05:00
vishalnayak	73943546c3	Documentation for capabilities and capabilities-self APIs	2016-03-07 06:13:56 -05:00
vishalnayak	aab24113b0	test cases for capabilities endpoint	2016-03-05 00:03:55 -05:00
vishalnayak	9946a2d8b5	refactoring changes due to acl.Capabilities	2016-03-04 18:55:48 -05:00
vishalnayak	99e61b595f	changelog++	2016-03-04 18:23:08 -05:00
Vishal Nayak	580d9b9b58	Merge pull request #1176 from hashicorp/github-error-response Change expiration.RenewToken's response from logical.Auth to logical.Response	2016-03-04 18:08:55 -05:00
vishalnayak	402444c002	review rework 2	2016-03-04 18:08:13 -05:00
vishalnayak	2f5e65ae24	review rework	2016-03-04 15:35:58 -05:00
vishalnayak	35e71f3ebc	Place the response nil check before resp.IsError()	2016-03-04 15:13:04 -05:00
vishalnayak	86dca39141	Fix testcase	2016-03-04 15:03:01 -05:00
vishalnayak	da9152169b	changed response of expiration manager's renewtoken to logical.response	2016-03-04 14:56:51 -05:00
vishalnayak	9217c49184	Adding acl.Capabilities to do the path matching	2016-03-04 12:04:26 -05:00
vishalnayak	7fe871e60a	Removing the 'Message' field	2016-03-04 10:36:03 -05:00
vishalnayak	3730e095ac	testcase changes	2016-03-04 10:36:03 -05:00
vishalnayak	b67ab8ab7c	Test files for capabilities endpoint	2016-03-04 10:36:03 -05:00
vishalnayak	816f1f8631	self review rework	2016-03-04 10:36:03 -05:00
vishalnayak	286e63a648	Handled root token use case	2016-03-04 10:36:03 -05:00
vishalnayak	5b1100a84f	remove changes from token_store.go	2016-03-04 10:36:03 -05:00
vishalnayak	07f9486ecb	Added capabilities and capabilities-self endpoints to http muxer	2016-03-04 10:36:03 -05:00
vishalnayak	abfbc74bd4	Remove capabilities changes from logical_system.go	2016-03-04 10:36:03 -05:00
vishalnayak	a885f9e8d2	Refactor http/sys_capabilities.go	2016-03-04 10:36:03 -05:00
vishalnayak	f1fd5247ad	Add vault/capabilities.go	2016-03-04 10:36:02 -05:00
vishalnayak	5749a6718c	Added sys/capabililties endpoint	2016-03-04 10:36:02 -05:00
Jeff Mitchell	0998e1cdf9	Update help text exporting dev mode listen address. Ping #1160	2016-03-03 18:10:14 -05:00
Jeff Mitchell	a976f4f628	changelog++	2016-03-03 13:47:00 -05:00
Jeff Mitchell	a03ecb64ce	Merge pull request #1172 from hashicorp/sanitize-mount-paths Create a unified function to sanitize mount paths.	2016-03-03 13:46:38 -05:00
Jeff Mitchell	7394f97439	Fix out-of-date comment	2016-03-03 13:37:51 -05:00
Jeff Mitchell	0d46fb4696	Create a unified function to sanitize mount paths. This allows mount paths to start with '/' in addition to ensuring they end in '/' before leaving the system backend.	2016-03-03 13:13:47 -05:00
Jeff Mitchell	eb37750951	changelog++	2016-03-03 12:33:38 -05:00
Jeff Mitchell	3e7bca82a1	Merge pull request #1146 from hashicorp/step-down Provide 'sys/step-down' and 'vault step-down'	2016-03-03 12:30:08 -05:00
Jeff Mitchell	9bf6c40974	Add default case for if the step down channel is blocked	2016-03-03 12:29:30 -05:00
Jeff Mitchell	f4d8d04faf	changelog++	2016-03-03 12:06:42 -05:00
Jeff Mitchell	bd7b285ab0	changelog++	2016-03-03 12:04:48 -05:00
Jeff Mitchell	c58a9b2c10	Merge pull request #1170 from hashicorp/strip-leading-slash-policies Strip leading paths in policies.	2016-03-03 12:03:56 -05:00
Jeff Mitchell	9717ca5931	Strip leading paths in policies. It appears to be a common mistake, but they won't ever match. Fixes #1167	2016-03-03 11:32:48 -05:00
Jeff Mitchell	f1edaed395	changelog++	2016-03-03 11:12:15 -05:00
Jeff Mitchell	bd2a314a4e	Merge pull request #1169 from hashicorp/dev-mode-address Add the ability to specify dev mode address via CLI flag and envvar.	2016-03-03 11:10:51 -05:00
Jeff Mitchell	62f1b3f91c	Remove unneeded sleeps in test code	2016-03-03 11:09:27 -05:00
Jeff Mitchell	41dba5dd5d	Move descriptions into const block	2016-03-03 11:04:05 -05:00
Jeff Mitchell	5c55c34d6b	Update cubbyhole text to be more explicit. Fixes #1165	2016-03-03 10:58:58 -05:00
Jeff Mitchell	69c853fd2f	Add the ability to specify dev mode address via CLI flag and envvar. Fixes #1160	2016-03-03 10:48:52 -05:00
Jeff Mitchell	750b33c51b	Add ability to control dev root token id with VAULT_DEV_ROOT_TOKEN_ID env var, and change the CLI flag to match. Ping #1160	2016-03-03 10:24:44 -05:00
Chris Hoffman	08c9a075d8	Adding Godeps for mssql	2016-03-03 10:16:59 -05:00
Jeff Mitchell	cd86226845	Add forced revocation. In some situations, it can be impossible to revoke leases (for instance, if someone has gone and manually removed users created by Vault). This can not only cause Vault to cycle trying to revoke them, but it also prevents mounts from being unmounted, leaving them in a tainted state where the only operations allowed are to revoke (or rollback), which will never successfully complete. This adds a new endpoint that works similarly to `revoke-prefix` but ignores errors coming from a backend upon revocation (it does not ignore errors coming from within the expiration manager, such as errors accessing the data store). This can be used to force Vault to abandon leases. Like `revoke-prefix`, this is a very sensitive operation and requires `sudo`. It is implemented as a separate endpoint, rather than an argument to `revoke-prefix`, to ensure that control can be delegated appropriately, as even most administrators should not normally have this privilege. Fixes #1135	2016-03-03 10:13:59 -05:00
Chris Hoffman	0b4a8f5b94	Adding mssql secret backend	2016-03-03 09:19:17 -05:00
Jeff Mitchell	6ed5d10580	Remove proxy function as it's unneeded now	2016-03-02 14:55:51 -05:00
Jeff Mitchell	8ecba87807	Merge pull request #1163 from hashicorp/mux-cleanup Remove sys_policy from special handling as it's implemented in	2016-03-02 14:48:30 -05:00

1 2 3 4 5 ...

3073 commits