7bd9665a46
docs: better sentence flow ( #6705 )
...
Fixed for sentence flow: "When you bring up your server back up" to "When you bring your server back up".
2019-05-09 06:24:06 -04:00
6623478406
Adds docs for session_token for awskms ( #6691 )
2019-05-07 08:27:06 -07:00
4b2193333a
Correct type for tls_skip_verify
...
Parses as boolean but needs to be represented as a string in configuration.
2019-05-06 16:02:36 -05:00
236d7c5e52
Add certificate auto-auth method to vault agent ( #6652 )
...
* adding auto auth for cert auth methods
* Adding Docs for Cert Auto-auth method
* fixes errors in docs
* wrong documentation title
* repariting a few typos in the docs and being very clear about where the certificates should be configured
* clarifying the name parameter documentation
* Fixes gofmt issues in command/agent.go
* Fix typo in docs
* Add nil check to Config for cert auto-auth and add test with and without a specified name
2019-05-06 10:39:27 -04:00
96ffab761e
Fixed Typos ( #6686 )
...
Fixed typos: enviroment/environment x3.
2019-05-06 07:24:37 -04:00
91ed2c98a8
fix typo
2019-05-03 17:21:58 -05:00
c18bf7709a
Fixed Typo ( #6678 )
...
Fixed typo: telemtery/telemetry
2019-05-03 09:09:25 -07:00
15d8df84a0
Fixed Typo ( #6672 )
...
Fixed typo: overwritting/overwriting.
2019-05-02 11:59:01 -04:00
86f39accf9
azurekeyvault doc fixed typos ( #6663 )
2019-05-01 13:37:01 -07:00
8d676312ee
Fixed Typo
...
Fixed typo: recomended/recommended.
2019-05-01 00:24:59 -07:00
520677fa9e
[Doc]: PKI Fix allowed_uri_sans spelling mistake ( #6660 )
...
The doc of the PKI Role sample response currently reads:
`"allow_uri_sans": ["example.com","spiffe://*"],`
It should read:
`"allowed_uri_sans": ["example.com","spiffe://*"],`
2019-04-30 17:48:51 -07:00
e42e6d4ee3
Fixed Type ( #6649 )
...
Fixed typo. Changed procede to proceed.
2019-04-29 14:06:31 -07:00
e2a0026964
Fixed Typo ( #6650 )
...
Fixed spelling: accesing/accessing.
2019-04-29 14:06:00 -07:00
ba37546c08
Merge pull request #6642 from hashicorp/update-ad-docs
...
Update Active Directory secrets engine docs with new field
2019-04-29 13:48:09 -07:00
e724d2f332
changes from feedback
2019-04-26 16:31:11 -07:00
8f8ac67222
Minor GCP docs fixes ( #6644 )
2019-04-26 10:52:52 -07:00
9b1b58f52a
Add delete roleset option ( #6635 )
2019-04-26 10:48:34 -07:00
5737117129
Fixed typo ( #6643 )
...
Fixed type where zome should be zone.
2019-04-26 10:33:19 -07:00
7183bc9594
update ad docs with new field
2019-04-26 09:40:26 -07:00
ffbe2c378d
docs: added support for .net standard 2.0 as well ( #6620 )
...
.net standard 2.0 support
2019-04-23 14:50:16 -04:00
22a6e54957
Merge pull request #6380 from povils/aws_user_path
...
AWS add user_path option for role.
2019-04-23 09:05:35 -07:00
e56a4b96bd
Docs: add -type flag to token create command ( #6621 )
2019-04-23 10:58:50 +02:00
681d13fe27
Link directly to the hints ( #6623 )
...
* Link directly to the hints
* Wrap
2019-04-22 16:10:38 -07:00
fb0a55614b
Add type to documentation for create in token auth API ( #6622 )
...
* Add type to documentation for create in token auth API
* Wrapped
2019-04-22 12:15:21 -07:00
67f5bbe88f
AWS backend: Add user_path option for role.
2019-04-22 18:07:21 +02:00
4381d922bb
Update base64 decrypt command documentation ( #6614 )
...
* Update base64 decrypt command
* update to use --decode
* Apply suggestions from code review
Co-Authored-By: djiang <djiang09@gmail.com>
2019-04-18 22:40:13 -07:00
5aed4f0f76
Add some missing default values ( #6611 )
2019-04-18 22:24:20 -07:00
09aa4c7c15
Typo fixes ( #6610 )
2019-04-18 22:20:46 -07:00
9a7eb54a68
Merge branch '1.1.2' into master-oss
2019-04-18 18:49:49 -04:00
fdea46f507
Prep for 1.1.2
2019-04-18 13:27:09 -04:00
b62468063a
Adding common prefix known issue to upgrade guide ( #6575 )
...
* Adding common prefix known issue to upgrade guide
* addressing feedback
2019-04-16 21:15:39 -04:00
e959b92040
Add known issue section to the upgrade guide ( #6593 )
2019-04-16 10:53:06 -07:00
213b9fd1cf
Update to api 1.0.1 and sdk 0.1.8
2019-04-15 14:10:07 -04:00
6ded269700
Merge pull request #6268 from hashicorp/6234-aws-region
...
Add region to CLI for generating AWS login data
2019-04-12 16:15:38 -07:00
8bcb533a1b
Create sdk/ and api/ submodules ( #6583 )
2019-04-12 17:54:35 -04:00
75480642cf
Update JWT docs for bound_claims improvements ( #6559 )
2019-04-12 14:08:02 -07:00
f20772310b
Merge branch 'opensource-master' into 6234-aws-region
2019-04-12 11:13:17 -07:00
a24474df5f
Fixed small issues in identity group alias API docs ( #6569 )
2019-04-12 09:05:37 +02:00
494a332e96
Add upgrade guide for 1.1.1 ( #6573 )
2019-04-11 17:34:40 -07:00
3fba024c5f
Update audit hmac'ing information on website docs
2019-04-11 16:38:43 -04:00
a7038a871e
Prep for 1.1
2019-04-11 11:16:22 -04:00
22587672ec
Minor updates to OIDC docs ( #6551 )
2019-04-08 15:08:55 -07:00
307cc20712
Correct gcp api doc
2019-04-08 18:55:36 +06:00
5b26b699db
docs: add Usage section in Namespaces docs ( #6542 )
2019-04-06 12:22:48 -04:00
4a4eab50a1
Merge branch 'opensource-master' into 6234-aws-region
2019-04-03 11:37:33 -07:00
cb37b2b4f3
Update OIDC docs for Azure ( #6524 )
...
Add section for configuration of external groups for Azure AD
2019-04-03 08:27:55 -07:00
7f488601f8
fix typo in gcpckms.html.md, `cloudkms.cryptoKeys.get` ( #6515 )
...
ref: https://github.com/hashicorp/vault/pull/6327/files#r270674452
2019-04-02 10:45:23 -07:00
197e717c29
[docs] Fix a minor issue with Azure secrets docs ( #6517 )
...
This will ensure that the docs render correctly.
2019-04-02 10:09:07 -05:00
8a237e3ea5
Clarify config option wording ( #6503 )
...
Fixes #6123
2019-04-01 16:14:12 -07:00
6652235e2a
Highlight a sometimes surprising Vault behaviour: token revocation leads ( #6489 )
...
to lease revocation.
2019-04-01 15:34:30 -07:00
339cfcaaf8
merge master
2019-04-01 13:52:44 -07:00
c96362d466
agent: allow AppRole Auto-Auth when bind_secret_id = false ( #6324 )
...
* agent: allow AppRole Auto-Auth when bind_secret_id = false
2019-04-01 16:27:54 -04:00
e8f14b6554
grammar fix and space stripping ( #6507 )
...
- remove the 'a' and comma from 'When using a Auto Unseal, there are...'
because everything needs to be in a single sentence
- strip extra spaces after end of propositions (there were 2 spaces
instead of normally 1)
Resolves:
Related:
Signed-off-by: Daniel Andrei Minca <mandrei17@gmail.com>
2019-04-01 08:23:46 -04:00
63705661b4
Add missing = in dynamodb_table tf ( #6493 )
2019-03-28 08:24:56 -07:00
bc48dd1cc8
Update OIDC docs ( #6485 )
2019-03-27 11:47:05 -07:00
5a3937f9c1
Small typo fix to transit.html.md ( #6482 )
2019-03-26 17:32:26 -05:00
5579e3cea5
Document sentinel namespace "token.namespace". ( #6429 )
2019-03-26 12:22:49 -07:00
b72e3b8de1
Fixed typo in GCP auth docs ( #6461 )
...
* Fixed typo in GCP auth docs
2019-03-25 14:12:09 -04:00
1a191d80ff
Update text around seal migration in 1.1
2019-03-25 12:44:22 -04:00
ac9885053e
Fix sidebar order ( #6464 )
2019-03-23 17:00:44 -05:00
29f3e0ed62
Add Docs For Prometheus Metrics ( #6434 )
...
Prometheus metrics were added as part of the Vault v1.1.0 release in PR #5308 .
But no documentation was created. Adds the telemetry configuration docs and
the API docs.
2019-03-23 16:53:43 -05:00
cdcd269b47
Add missing serial_number parameter from pki docs
2019-03-23 12:14:32 -04:00
6193d4a0ac
update AWS Auth API docs to show that role_id is the default for ec2_alias and iam_alias (auth/aws/config/identity endpoint) ( #6460 )
2019-03-22 15:09:54 -05:00
602d1e1a75
Remove response code info from non-overview API docs as it can be misinterpreted and is always the same anyways ( #6459 )
2019-03-22 11:15:37 -05:00
c545e863fc
Fixed grammatical issue in Auth Methods overview ( #6456 )
2019-03-22 10:36:14 -05:00
0794d89d9d
Minor updates to JWT docs
2019-03-22 01:15:59 -04:00
8e2942258f
Fixing grammar in behavioral overview ( #6451 )
2019-03-21 20:49:52 -07:00
7d945f2ddd
Fix misleading Agent Auth Overview doc page ( #6443 )
...
* Fix misleading Agent Auth Overview doc page
The example configuration in the Vault Agent Overview page is using wrong syntax
The configuration block is `cache` but doc is referencing it as `caching`
* Update website/source/docs/agent/index.html.md
Co-Authored-By: danlsgiga <danlsgiga@gmail.com>
2019-03-20 12:42:31 -04:00
e399d39f0e
Remove beta docs ( #6431 )
2019-03-18 16:38:54 -07:00
d5dd532714
Minor grammar edits
2019-03-18 16:07:10 -04:00
3ea735045f
Prep for release
2019-03-18 15:16:30 -04:00
fab1fde145
Move listener config from 'cache' block to top-level 'listener' blocks. Allow cache without auto-auth. ( #6421 )
...
* Since we want to use the Agent listener for #6384 , move listener config
from top-level 'cache' block to new top-level 'listeners' block.
* Make agent config allow cache and listener blocks without auto-auth
configured.
2019-03-15 14:58:53 -04:00
4ee5f7dffe
Docs: Update Agent overview page ( #6420 )
...
* Updated agent docs
* Updated overview agent page
* Updated complete links to short links
2019-03-15 12:33:31 -04:00
85fb1784b5
Cassandra plugin: Support for datacenter aware deployments ( #6127 )
...
* Added option 'local_datacenter' to Casssandra database plugin for DC aware Casssandra deployments.
* Fixed spelling errors in Cassandra database plugin.
* Added website documentation.
* Added local_datacenter to Cassanra database plugin.
* Reverted datacenter-aware change in deprecated Cassandra builtin secret engine.
2019-03-14 13:37:28 -07:00
f7907c2809
Agent: Listener refactoring and socket file system permissions ( #6397 )
...
* Listener refactoring and file system permissions
* added listenerutil and move some common code there
* Added test for verifying socket file permissions
* Change default port of agent to 8200
* address review feedback
* Address review feedback
* Read socket options from listener config
2019-03-14 11:53:14 -07:00
b86edf3d8e
Fix table
2019-03-14 12:24:11 -04:00
4eaf4112e7
Add namespace properties to Sentinel docs
2019-03-14 12:22:02 -04:00
cb08ec433b
Update aws docs ( #6408 )
2019-03-13 17:31:22 -07:00
fd182f9099
Update hashi-consent-manager to v1.0.8 ( #6401 )
2019-03-12 18:29:37 -07:00
8c8553b065
Add a bit on testing upgrades in advance
2019-03-09 11:57:51 -05:00
d2beb6e312
Update login command docs
2019-03-08 15:37:38 -05:00
42acb433e6
correct quotes in docs layout ( #6368 )
2019-03-07 17:00:24 -08:00
e795a244b3
policy capabilities: write --> update ( #6373 )
2019-03-07 16:34:47 -05:00
4b7f595b4c
docs: pki - adding missing ext_key_usage_oids desc ( #6367 )
...
Adding missing entries
Just copied over the FieldSchema descriptions
2019-03-07 14:07:10 -05:00
1238545276
Fixed typo ( #6363 )
...
Fixed typo, rolset -> roleset
2019-03-07 09:50:13 -05:00
54c70efd88
update path for mounting plugin ( #6351 )
2019-03-06 15:57:03 -08:00
66734fb03c
docs/agent-caching: update cache-clear endpoint ( #6354 )
2019-03-06 11:13:43 -08:00
1c34a1d21e
update partnership doc ( #6352 )
2019-03-06 10:27:12 -08:00
0ebce62537
docs/agent-caching: add note about compatibility with older server versions
2019-03-05 14:12:04 -08:00
d0b9454518
Agent Cache doc updates ( #6331 )
...
* Agent Cache doc updates
* doc update
* Add renewal management section
* doc updates
* paraphrase the orphan token case
2019-03-05 15:19:52 -05:00
d8f39d54c9
Change agent's port to 8007 ( #6348 )
2019-03-05 12:57:17 -05:00
1274a8d3d4
Update JWT plugin dependency and docs ( #6345 )
2019-03-05 09:46:04 -08:00
1909b20217
merge master
2019-03-05 09:39:53 -08:00
8a57b90b47
Transit Auto Seal Docs ( #6332 )
...
* adding transit seal docs
* add missing backtick
2019-03-05 08:45:44 -05:00
a34099b9bb
Use HashTypeMap and remove structs in batch HMAC ( #6334 )
2019-03-04 14:49:29 -08:00
04c174214c
Batch hmac - ( #5850 ) ( #5875 )
2019-03-04 12:26:20 -08:00
7b395315dd
fix doc to add missing permission to use gcpkms seal ( #6327 )
2019-03-04 11:46:06 -05:00
d71b0e7b10
Add missing consistency param in docs for Cassandra in combined DB ( #6330 )
2019-03-04 10:21:33 -05:00
5dbd09cf2f
Merge pull request #6250 from chrissphinx/patch-1
...
fix example that was out-of-date
2019-02-28 10:28:24 -08:00
76f42975d6
Merge pull request #6251 from paulftw/patch-1
...
[Documentation] Update secrets-engines.html.md
2019-02-28 10:09:29 -08:00
4ecaa1b597
Merge pull request #6304 from bradjones1/patch-2
...
RabbitMQ 'vhost' parameter on roles endpoint should be 'vhosts'
2019-02-28 10:03:47 -08:00
7b4a184a52
Merge pull request #6224 from hashicorp/dp.fix-consul-storage-doc-6171
...
Fix example in documentation. Resolves [issue 6171]
2019-02-28 09:55:55 -08:00
4cf21cda87
Merge pull request #6221 from emilymye/website
...
Remove unsupported config delete for GCP auth docs
2019-02-28 09:52:52 -08:00
5829774e91
Support env vars for STS region ( #6284 )
2019-02-28 09:31:06 -08:00
b496fea4ad
Etcd timeouts ( #6285 )
...
* Configurable lock and request etcd timeouts.
If etcd cluster placed on slow servers - request timeouts may be much greater, then hardcoded default values.
Also, in etcd setup, like above - may be need to greater lock timeout.
* Configurable lock and request etcd timeouts.
Docs.
* Use user friendly timeout syntax.
To allow specify more readable time values.
2019-02-27 18:34:29 -08:00
4120aa2da0
Specify the userpass name creating the alias entity ( #6289 )
2019-02-27 18:28:33 -08:00
e9891013b3
Fix typo on Seal page of concepts docs ( #6290 )
2019-02-27 18:27:36 -08:00
62f454c972
Documenting -dev-plugin-dir vault server option ( #6307 )
...
Based on an answer from Brian Kassouf on the Google Group: https://groups.google.com/d/msg/vault-tool/7Qf9Hn1w3jA/yGUIKZxHGAAJ
2019-02-27 18:24:49 -08:00
da99b6d088
RabbitMQ 'vhost' parameter on roles endpoint should be 'vhosts'
...
In deploying this, I noted that passing `vhost` was unsuccessful, yet `vhosts` is.
2019-02-27 15:19:54 -07:00
1d16601b7f
Agent caching docs superscript beta
2019-02-26 10:36:24 -05:00
dee2e1797d
Add Beta superscript to caching docs
2019-02-26 10:28:55 -05:00
2ab27e6087
Agent doc update for beta testers
2019-02-26 10:20:55 -05:00
f04b4d1668
Change agent's default port number to 8100
2019-02-26 10:02:12 -05:00
5b5ec851c7
Agent caching docs ( #6272 )
...
* WIP agent caching docs
* More docs updates
* Add caching/index.html to docs_detailed_categories.yml
* Some more docs updates
* Some more docs updates
* updates
* address review feedback
* fix sample config
* Update website/source/docs/agent/caching/index.html.md
Co-Authored-By: calvn <cleung2010@gmail.com>
* fix config for sidebar display
* Add environment variable to the docs
2019-02-26 09:57:17 -05:00
9bac5158cd
Update JWT docs for OIDC feature ( #6270 )
2019-02-21 17:06:23 -08:00
81cfa79d02
add note about sts region to doc
2019-02-21 16:57:52 -08:00
481c38c7d0
adding 1.1 upgrade docs ( #6279 )
2019-02-21 17:41:06 -05:00
40399cb387
Update config.rb
2019-02-20 17:24:53 -08:00
65b8ad9187
allow aws region in cli login
2019-02-20 16:43:21 -08:00
5cd0e97654
release prep
2019-02-20 11:12:09 -08:00
acb97878b4
Update secrets-engines.html.md
...
That sentence sounds weird to me. I think this way is better.
2019-02-17 12:35:20 +02:00
fda98fdb4a
fix example that was out-of-date
...
showing how to allow users auth'd with userpass method to modify their own passwords
2019-02-16 14:04:05 -05:00
e8bc0e7ab2
Revert "Add trailing slash for example in Vault Consul Storage Backend documentation. Fixes [issue 6171]"
...
This reverts commit 7726fdd1aaf7848dc5af9d4867e76bd1588f7bac.
Revert to go through proper PR. Apologies.
2019-02-14 13:40:17 -07:00
8cf24e8551
Docs EA update 1.0 ( #6219 )
...
* Confirm RA against Vault 1.0
Change product_version frontmatter to ea_version and increase to 1.0
* Update frontmatter key
Change product_version frontmatter to ea_version
2019-02-13 10:06:54 -05:00
c7ceffba30
Update configuration/listener documentation ( #6228 )
...
- Clarify that PROXY protocol version 1 is currently supported
- Add missing backtick to fix formatting issue
2019-02-13 09:27:05 -05:00
72880b965a
Add trailing slash for example in Vault Consul Storage Backend documentation. Fixes [issue 6171]
2019-02-12 17:05:31 -07:00
ed6d45eece
Revert "Add trailing slash for example in Vault Consul Storage Backend documentation. Fixes [issue 6171]"
...
This reverts commit b275f2a1e6d74400bb3cf702d1e03c90d31624cb.
Pushed to master, my apologies. Will do proper PR for this.
2019-02-12 16:49:34 -07:00
f11a29d13c
Add trailing slash for example in Vault Consul Storage Backend documentation. Fixes [issue 6171]
2019-02-12 16:47:17 -07:00
79c8f05dee
remove unsupported config delete docs
2019-02-12 13:48:30 -08:00
8a6cd92f85
Update transit docs
2019-02-12 14:27:17 -05:00
3fb3ee3f49
Bump versions for release
2019-02-12 08:55:58 -05:00
58ba07f666
Make this easier for new users ( #6211 )
2019-02-11 17:34:22 -05:00
0db43e697b
Add signed key constraints to SSH CA [continued] ( #6030 )
...
* Adds the ability to enforce particular ssh key types and minimum key
lengths when using Signed SSH Certificates via the SSH Secret Engine.
2019-02-11 13:03:26 -05:00
604e8dd0f0
Added socket keep alive option to Cassandra plugin. ( #6201 )
2019-02-10 18:34:50 -05:00
1ddd194c28
Added missing backslash in iam identity guide ( #6193 )
2019-02-08 09:56:36 -08:00
707c6d1813
Add SHA1 signing/verification support to transit engine ( #6037 )
...
* Add SHA1 signing/verification support to transit engine
* Update signing/verification endpoint documentation to include sha1 hash algorithm
2019-02-07 15:31:31 -08:00
13e60dbb40
Add Vault supported log levels ( #6185 )
...
Documentation : Add the supported log level configurations
`Supported log levels: Trace, Debug, Error, Warn, Info.`
2019-02-07 11:27:08 -08:00
ea56be1e69
Fix section heading size ( #6137 )
2019-02-07 11:18:58 -08:00
f9cb767d9c
Fixed typo (newtwork -> network) ( #6177 )
2019-02-07 13:06:38 -05:00
ea61e8fbec
Remove refresh_interval from kvv1 API docs and CLI docs since kv get doesn't use it
2019-02-06 21:51:08 -05:00
39893a1e15
Fix wrong file name in service definition ( #6174 )
2019-02-06 15:43:03 -05:00
97a73d6bf8
Revert "fixed trailing slash in consul.html.md example"
...
This reverts commit 4310bb58c83285ebd9cfcb302b70d1db432a11e2.
Accidental push to master, my apologies. See PR https://github.com/hashicorp/vault/pull/6175
2019-02-05 17:42:15 -07:00
778e6add49
fixed trailing slash in consul.html.md example
2019-02-05 17:01:39 -07:00
5f249d4005
Add allowed_response_headers ( #6115 )
2019-02-05 16:02:15 -05:00
86f096449b
Replace special hyphen ( #6165 )
2019-02-05 10:48:26 -08:00
18c8f390f9
Update AppRole API docs ( #6047 )
...
- Use consistent "Create/Update" heading text style
2019-02-04 11:17:16 -05:00
e2429522fa
Removed typo ( #6162 )
2019-02-04 11:13:37 -05:00
5e374d5cd1
Add libvault to the list of elixir libraries ( #6158 )
2019-02-04 11:12:29 -05:00
a9392f9840
Adding a mention for 'kv-v2' as type ( #6151 )
2019-02-01 11:26:08 -08:00
adccccae69
Update example output for PKI serial -> serial_number
...
Fixes #6146
2019-02-01 10:29:34 -05:00
b2cc9ebd3a
Remove regenerate-key docs as it no longer exists
2019-02-01 09:29:40 -05:00
47accf8086
Add role_id as an alias name source for AWS and change the defaults
2019-01-30 15:51:45 -05:00
4363453017
Docs: Azure auth example using metadata service ( #6124 )
...
There are probably better ways to massage this but I think it would be helpful to have something like this included
2019-01-30 12:13:39 -08:00
a643664c5b
bump dato and rack to fix website builds
2019-01-30 11:10:49 -07:00
2337df4b2b
Update documentation for command operator unseal ( #6117 )
...
- Add migrate command option
2019-01-28 10:27:51 -05:00
cd2f7bbde8
Adding support for SSE in the S3 storage backend. ( #5996 )
2019-01-26 16:48:08 -05:00
34af3daeb0
docs: update agent sample config ( #6096 )
2019-01-24 07:25:03 -05:00
3f1a7d4fdd
Update to latest etcd and use the new repository packages ( #6087 )
...
This will be necessary for go mod work
Additionally, the srv api has changed. This adapts to it.
2019-01-23 14:35:03 -05:00
5e126f6de8
Implement JWS-compatible signature marshaling ( #6077 )
...
This currently only applies to ECDSA signatures, and is a toggleable
option.
2019-01-23 12:31:34 -05:00
1aaacda3ec
small fixes to docs and indexes
2019-01-18 02:14:57 +01:00
0f2fcfb6f1
Update JWT docs with new jwt_supported_algs parameter ( #6069 )
2019-01-17 15:27:20 -08:00
e5c6b421e0
Fixed the broken link ( #6052 )
...
* Fixed the broken link
* Fixing the broken link
* Fixes redirect to Tokens guide
The separate redirect within learn.hashicorp.com will be fixed on its own repo.
2019-01-16 17:06:28 -08:00
e09f058ada
Adding the CLI flag placement info ( #6027 )
...
* Adding the CLI flag placement info
* Adding the definition of 'options' and 'args'
* tweaked the wording a little bit
* Added more description in the example
* Added a link to 'Flags' in the doc for options def
2019-01-15 11:24:50 -08:00
f75f4e75c7
Prepare for 1.0.2
2019-01-15 11:25:11 -05:00
960eb45014
Remove unnecessary permission
2019-01-10 16:18:10 -08:00
e726f13957
Simplify permission requirements for GCP things ( #6012 )
2019-01-10 10:05:21 -08:00
f9dacbf221
Add docker-credential-vault-login to Third-Party Tools ( #6003 )
...
* Added Docker credential helper to list of Third-Party tools
* website/source/api/relatedtools.html.md: Fixed a typo
2019-01-10 10:46:18 -05:00
9a4de34dce
Allowed characters in paths ( #6015 )
2019-01-10 10:39:20 -05:00
0c30f46587
Add option to configure ec2_alias values ( #5846 )
...
* Add option to configure ec2_alias values
* Doc updates
* Fix overwriting of previous config value
* s/configEntry/config
* Fix formatting
* Address review feedback
* Address review feedback
2019-01-09 18:28:29 -05:00
0a97f95ff4
Document upper limit on Transit encryption size ( #6014 )
2019-01-08 17:57:43 -08:00
0d3845c537
Influxdb secret engine built-in plugin ( #5924 )
...
* intial work for influxdb secret plugin
* fixed typo
* added comment
* added documentation
* added tests
* fixed tests
* added vendoring
* minor testing issue with hardcoded values
* minor fixes
2019-01-08 17:26:16 -08:00
91d432fc85
FoundationDB backend TLS support and housekeeping ( #5800 )
...
* Fix typo in documentation
* Update fdb-go-install.sh for new release tags
* Exclude FoundationDB bindings from vendoring, delete vendored copy
FoundationDB bindings are tightly coupled to the server version and
client library version used in a specific deployment. Bindings need
to be installed using the fdb-go-install.sh script, as documented in
the foundationdb backend documentation.
* Add TLS support to FoundationDB backend
TLS support appeared in FoundationDB 5.2.4, raising the minimum API version
for TLS-aware FoundationDB code to 520.
* Update documentation for FoundationDB TLS support
2019-01-08 09:01:44 -08:00
46cbfb0e4b
Fix formatting ( #6009 )
...
The new markdown parser is less forgiving
2019-01-08 08:51:37 -08:00
a22275d4e0
remove extra analytics page call ( #5997 )
2019-01-07 11:18:55 -05:00
4265579aaa
Fix small typo in azure.html.md ( #6004 )
2019-01-07 10:03:22 -05:00
c065b46f42
Remove duplicate "Users can" from policy md ( #6002 )
2019-01-07 07:02:28 -08:00
c3f1043c24
Reduce required permissions for the GCPCKMS auto-unsealer ( #5999 )
...
This changes the behavior of the GCPCKMS auto-unsealer setup to attempt
encryption instead of a key lookup. Key lookups are a different API
method not covered by roles/cloudkms.cryptoKeyEncrypterDecrypter. This
means users must grant an extended scope to their service account
(granting the ability to read key data) which only seems to be used to
validate the existence of the key.
Worse, the only roles that include this permission are overly verbose
(e.g. roles/viewer which gives readonly access to everything in the
project and roles/cloudkms.admin which gives full control over all key
operations). This leaves the user stuck between choosing to create a
custom IAM role (which isn't fun) or grant overly broad permissions.
By changing to an encrypt call, we get better verification of the unseal
permissions and users can reduce scope to a single role.
2019-01-04 16:29:31 -05:00
1917bb406d
Fix audit docs ( #6000 )
...
These appear to have been converted to (bad) HTML. This returns them to
their original markdown format.
2019-01-04 13:45:50 -06:00
ecdacbb90a
Update DG to Vault 1.0 ( #5855 )
...
* Update DG to Vault 1.0
* as per comments - chrishoffman
* Removed stray bracket and added quotes
* updated as per conversations with Dan
2019-01-03 10:10:37 -05:00
46576acff3
website: add print styles for docs ( #5958 )
2019-01-03 09:24:10 -05:00
2e92372710
Docs: Add Auto Unseal Rekey example ( #5952 )
...
* Add KMS Rekey example
I've had customers looking for AWS KMS rekeying examples today - when using pgp keys.
This example would have clarified what they needed to do.
* Replaced KMS reference with Auto Unseal
``` bash
Rekey an Auto Unseal vault and encrypt the resulting recovery keys with PGP:
```
2019-01-03 09:23:43 -05:00
d7f31fe5e4
Merge pull request #5892 from jen20/jen20/dynamodb-capacity-doc
...
docs: Clarify the utility of DynamoDB capacities
2018-12-20 11:54:26 -08:00
d108843a0a
Merge pull request #5947 from hmalphettes/master
...
Docs: JWT API - List Roles: fix the path
2018-12-20 09:15:57 -08:00
f4ea0e001f
Merge pull request #5940 from hashicorp/je.website-local-run-docs
...
Improve local development instruction
2018-12-20 09:11:13 -08:00
0ebb30938c
website: fix simple typo ( #5979 )
2018-12-19 14:46:54 -08:00
004ca032e8
add MSSQL storage docs to sidebar ( #5978 )
2018-12-19 14:06:42 -06:00
c1fa76e9e2
Docs: Add example for Vault init Auto Unseal with PGP Keys ( #5951 )
...
* Add example for AWS KMS AutoUnseal with PGP Keys
A customer could not figure how to get this working today.
This example would have helped them. We don't mention KMS anywhere in this section.
* Changed reference from AWS KMS to Auto Unseal
``` bash
Initialize Auto Unseal, but encrypt the recovery keys with pgp keys:
```
2018-12-18 11:42:10 -05:00
b95fbbafe9
Docs: Fix project resource name in gcp roleset documentation ( #5966 )
...
The resource name when referring to a GCP project needs to have a "s". This PR adds the missing letter in the documentation.
2018-12-17 16:22:02 -08:00
689163e7ed
Upgrade guide for 0.11.6
2018-12-14 12:22:50 -05:00
8e229fed4a
Prep for release
2018-12-14 10:42:59 -05:00
4e06fd698e
update help output examples and mention openapi fragment support ( #5954 )
2018-12-14 09:12:03 -05:00
d9d47bb252
Update Consul ACL example
...
Fixes #5831
2018-12-13 17:18:28 -05:00
726d79d854
Merge branch 'master' into master
2018-12-14 05:21:41 +08:00
1d847b3acc
Add sidebar link for approle autoauth docs
2018-12-13 09:51:47 -05:00
6ea6844ef9
JWT API - List Roles: fix the path
...
With vault-1.0.0 and vault-0.11.4 a different path is needed to list the jwt registered roles:
```
$ vault list auth/jwt/roles
No value found at auth/jwt/roles/
$ vault list auth/jwt/role
Keys
----
myrole
```
I hope this helps!
2018-12-13 06:27:30 +08:00
f24a4f189e
Fixed markdown for cert documentation ( #5735 )
2018-12-12 15:27:28 -05:00
286b3f4e9f
auth/aws: Clarify docs for cross-account access with IAM auth ( #5900 )
...
The docs hadn't been updated to reflect the ability to do cross-account
AWS IAM auth, and so it was a bit confusing as to whether that was
supported. This removes the ambiguity by explicitly mentioning AWS IAM
principals.
2018-12-12 15:21:27 -05:00
cfa008896d
Added comma for readability ( #5941 )
...
Signed-off-by: Bert Roos <Bert-R@users.noreply.github.com>
2018-12-12 09:23:20 -05:00
53c6b36613
Fixing a couple of small typos ( #5942 )
2018-12-12 05:56:58 -08:00
eddfd7ff23
improve bootstrap script and local development instructions
2018-12-11 19:46:52 -05:00
Justin Weissig