Commit graph

316 commits

Author SHA1 Message Date
Michael Ethridge a71798a445
TLS Cert Authentication example updates (#9735)
* TLS Cert Authentication example updates

- Updated the Cert Auth example description to clarify which CA
should issue the certificate.
- Removed `-ca-cert` parameter from examples as this caused
confusion.  Is this the auth CA or the CA of the listener?

* Return CA parameter to examples, add Note

- Returned CA parameter to login examples
- Added note above examples to explain which CA is being used in CLI
- Updated examples in API doc to use httpS
- Added note above login example to explain wich CA is being used

Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-08-27 17:47:16 -07:00
Jim Kalafut ba1adb6d22
Update Known Issues (#9847)
Provide information about AWS IAM fix versions.
2020-08-27 16:48:44 -07:00
Austin Gebauer b96f073e23
docs: fixes rollback_statements description and some punctuation (#9836) 2020-08-26 16:49:17 -07:00
Scott Miller 4c4fb54806
Aws auth fixes (#9825)
* Bring over PSIRT-37 changes from ENT

* Add additional allowed headers

* Already had this one

* Change to string slice comma separated parsing

* Add allowed_sts_header_values to read output

* Only validate AWS related request headers

* one per line

* Import ordering

* Update test

* Add X-Amz-Credential

* Reorder imports
2020-08-25 17:37:59 -05:00
Jason O'Donnell 052dea6e57
doc: update vault-helm to 0.7.0 (#9810)
* doc: update vault-helm to 0.7.0

* Fix typo in agent image

* Remove doc from sidebar

* Update website/pages/docs/platform/k8s/helm/configuration.mdx

Co-authored-by: Clint <catsby@users.noreply.github.com>

* Update website/pages/docs/platform/k8s/helm/configuration.mdx

Co-authored-by: Clint <catsby@users.noreply.github.com>

* Add note about prometheus

Co-authored-by: Clint <catsby@users.noreply.github.com>
2020-08-24 19:03:36 -04:00
Jason O'Donnell dfd5e2d532
vault-k8s: add new annotations for 0.5.0 (#9804)
* vault-k8s: add new annotations for 0.5.0

* feedback revision
2020-08-24 13:20:29 -04:00
Jim Kalafut 8815905114
Add Known Issue for AWS IAM logins (#9798)
* Add Known Issue for AWS IAM logins

* Add note about license issue
2020-08-21 15:21:56 -07:00
Andy Baran dffd0dfa4b
K8s docs cross reference (#9795)
* add links to commonly reference Learn site docs

* fixed markdown links

* Moved Deployment Guide to "Guides" subs section
2020-08-21 15:03:01 -04:00
Mark Gritter 6cd00407ad
Add vault.metrics.collection.* metrics to documentation. (#9796) 2020-08-21 13:27:30 -05:00
Meggie 275a34476c
Updates for 1.5.1, 1.4.4, 1.3.8, and 1.2.5 (#9793)
* Updates for 1.5.1, 1.4.4, 1.3.8, and 1.2.5

* Recommend against using these versions

* Re-running checks

* Update docs-navigation.js
2020-08-20 18:57:44 -04:00
ncabatoff 7f7ac71746
Document allowed_domains_template. (#9751) 2020-08-20 09:54:52 -04:00
ncabatoff f20f3747c7
New seal migration strategy doesn't work in 1.4. (#9765) 2020-08-20 09:54:28 -04:00
Junya Ogasawara 0a13195450
Reduce a required permission for OIDC with AzureAD (#9785)
`Group.Read.All` is too permissive policy to achieve external groups
feature. `GroupMembers.Read.All` is enough for that purpose.

MicroSoft Graph API Permission reference follows
https://docs.microsoft.com/en-us/graph/permissions-reference#application-permissions-23
2020-08-20 00:00:31 -07:00
Martin Hristov ac36da333d
Add note for AD domain usernames in MSSQL (#9743)
Adding a note that `vaultuser` might be part of the AD domain like `DOMAIN\vaultuser`.
2020-08-18 10:35:21 -06:00
Tom Proctor ba9d1b6fbf
Couchbase database plugin documentation (#9764) 2020-08-18 15:57:18 +01:00
Lauren Voswinkel b2a106a931
Add a section to the MySQL secrets plugin docs about x509 (#9757) 2020-08-17 16:29:51 -07:00
arnis fd6e0eb543
Update documentation for MySQL Secrets Engine (#9671)
* Update documentation for MySQL Secrets Engine

Update documentation for MySQL Database Secrets Engine to reflect changes introduced with https://github.com/hashicorp/vault/pull/9181

* Empty Commit to re-trigger tests

Co-authored-by: Lauren Voswinkel <lvoswinkel@hashicorp.com>
2020-08-17 15:30:33 -07:00
Michael Golowka edc40a1767
Correctly mark Cassandra as not supporting static roles (#9750) 2020-08-17 14:36:32 -06:00
Theron Voran f0f576f5bf
Restoring the example policies for blocking sha1 (#9677)
(In the transit api-docs)
2020-08-17 10:30:06 -07:00
ncabatoff 893e15bdbf
Document the new SSH signing algorithm option. (#9197) 2020-08-17 13:03:44 -04:00
Scott Miller 5b003b06f8
Trail of bits 018 (#9674)
* TOB-018 remediation

* Make key derivation an optional config flag, off by default, for backwards compatibility

* Fix unit tests

* Address some feedback

* Set config on unit test

* Fix another test failure

* One more conf fail

* Switch one of the test cases to not use a derive dkey

* wip

* comments
2020-08-17 11:36:16 -05:00
Alexander Bezobchuk f873863263
Merge PR #9667: Rate Limit Backoff 2020-08-16 22:09:18 -04:00
Meggie ca65131543
Added upgrade guidance on mount -> path filters (#9712) 2020-08-12 10:54:56 -04:00
Austin Gebauer 00a0d043be
docs: fix sentence in vault debug command (#9725) 2020-08-11 20:24:37 -07:00
Kyle MacDonald eb923f30b1
website: update favicon refs (#9713) 2020-08-11 13:56:25 -04:00
Geoffrey Grosenbach 967d9b85da
Updates URLs to match new paths at Learn (#9679)
Previous URLs which included a track in the querystring now go to standard paths instead.
2020-08-10 13:40:09 -07:00
Tom Proctor 494cdf5bcb
Add docs for OpenLDAP plugin's new AD schema (#9619) 2020-08-10 10:24:38 +01:00
Mark Gritter 3a9619fb05
Add explanation of "keys" field. (#9676) 2020-08-07 12:11:11 -05:00
ncabatoff b01fda0e04
Add docs for CSR signing. (#8899) 2020-08-07 10:45:12 -04:00
Austin Gebauer db9993335c
docs: fixes environment variable in azure secrets config API (#9678) 2020-08-06 17:11:18 -07:00
Zalary Young 5100624d5c
Merge PR #9628: add audit_non_hmac_request_keys to payload example for tune 2020-08-06 15:27:03 -04:00
Scott Miller 6cf859632a
Remove weird TTL special case documentation from cubbyhole (#9669) 2020-08-05 16:20:24 -05:00
aphorise c9fb408b60
Docs - /system/unseal Typo - Resolves: #9659 (#9660) 2020-08-05 08:33:47 -04:00
Jim Kalafut 9b3719d9ce
Update OpenLDAP docs (#9648)
Add link to API docs.
2020-07-31 17:25:27 -07:00
Andy Assareh 76894f7dcb
curl command incorrect: ---header should be --header (#9643) 2020-07-30 14:55:42 -07:00
Austin Gebauer 837ec00859
docs: fix gcpkms steps for asymmetric decryption and asymmetric signing (#9638) 2020-07-30 10:50:23 -07:00
Mark Gritter 51b6dfb097
Add new page documenting limits. (#9592)
* Add new page documenting limits.
* Add some identity metrics not previously documented.
* Updated limits based on compression experiments.
* Add Transit key rotation limits, and link to Transform size limit.
2020-07-29 16:18:04 -05:00
Alexander Bezobchuk 1e262e5648
Merge PR #9581: Rate Limit Quota Headers 2020-07-29 15:15:05 -04:00
Michael Golowka 1bd4502b92
Mark MongoDB Atlas as supporting static creds (#9624)
Also fixes some links that are not rendering properly with a newline
between the text and the link.
2020-07-29 11:39:53 -06:00
Austin Gebauer 082a034cfa
docs: add missing parameters to the gcpkms key create/update API (#9612) 2020-07-28 13:53:27 -07:00
Jeff Escalante 290c6d7187
Fix broken links in website footer (#9613)
* add security page and press kit

* github link correction
2020-07-28 16:22:35 -04:00
ncabatoff 43d8c304c5
Remove obsolete kms->shamir warning. Add warning about taking a backup. (#9614) 2020-07-28 16:13:57 -04:00
Jim Kalafut 70d964d420
Update OIDC docs (#9599)
Clarify that verbose logging is to the server logs.
2020-07-27 08:51:59 -07:00
ncabatoff c3c253e76c
Add upgrade note for okta issue. (#9587) 2020-07-27 11:36:17 -04:00
Scott Miller 8a5b97198c
Fix navigation for the Sentinel config and clarify module usage (#9588) 2020-07-27 09:52:46 -05:00
Austin Gebauer cca5bb3ba6
docs: fix sentence in gcp secrets by removing unneeded word (#9585) 2020-07-24 07:36:06 -07:00
Yoko 39fb31559f
Add cross-referencing links to learn tutorials (#9562)
* Add cross-referencing link to learn

* Fix grammar

* Update website/pages/docs/concepts/password-policies.mdx

Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>

Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
2020-07-23 07:56:00 -07:00
Michael Golowka 295b0573c1
Docs: Update MongoDB to support root credential rotation (#9559)
* Update MongoDB to support root credential rotation
2020-07-22 14:56:11 -06:00
Mark Gritter 5fc28fe65a
Fix links to documentation. (#9570)
* Fix links to documentation.
* Add 1.5.0 upgrade nodes to navigation.
2020-07-22 15:55:41 -05:00
ncabatoff 645e8b6521
Add upgrade note for #9555. (#9569) 2020-07-22 16:24:06 -04:00