Commit graph

14964 commits

Author SHA1 Message Date
Austin Gebauer bcb131b31f
sdk/useragent: adds optional ability to set additional comments (#14803) 2022-03-31 10:31:11 -07:00
swayne275 1a2eccf44b
update to new raft-snapshot to avoid snapshot decompression bombs (#14797) 2022-03-30 15:25:21 -06:00
Steven Clark f31dee885b
Address semgrep 0.86.x breakage (#14771)
* Fix semgrep 0.86.5 parsing failures
 - semgrep https://github.com/returntocorp/semgrep/pull/4671 seems to have
   introduce this parsing failure within version 0.86.0 and higher
 - Workaround parsing failure by breaking out the if error check.

* Pin semgrep version to 0.86.5

* Fix formatting issues
2022-03-30 15:03:21 -04:00
Theron Voran 3a75683aa5
docs: vault-k8s v0.15.0 release (#14776)
New default agent-image and agent-inject-containers annotation.
2022-03-30 10:27:28 -07:00
Steven Clark 77feaad6fe
Address incorrect table metric value for local mounts (#14755)
* Address incorrect table metric value for local mounts

 - Reported within issue #14750 as a panic, it was identified that
   we were using the wrong value for local mounts within the table metrics.

* Add changelog
2022-03-30 13:06:49 -04:00
Jordan Reimer c3f7bf6940
Remove IE 11 as Build Target (#14757)
* removes ie 11 as build target

* updates browserstack testem config to launch tests in firefox instead of ie 11
2022-03-30 08:42:21 -06:00
Chris Capurso 2354435262
treat logical.ErrRelativePath as 400 instead of 500 (#14328)
* treat logical.ErrRelativePath as 400 instead of 500

* add changelog entry

* return UserError for logical.ErrRelativePath
2022-03-30 09:08:02 -04:00
Calvin Leung Huang 7ec5e711d0
docs: small heading fix on 1.10 release notes (#14716) 2022-03-29 15:24:33 -07:00
John-Michael Faircloth f1aa1ed3af
docs: fix plugin redirects and clarify plugin scaling (#14732)
* docs: fix plugin redirects

* update scaling external plugin text

* fix broken link in audit logs
2022-03-29 15:03:57 -05:00
Chris Capurso 1454c8ea88
add value length check to approle createHMAC (#14746)
* add value length check to approle createHMAC

* add changelog entry

* fix changelog entry
2022-03-29 14:43:35 -04:00
Steven Clark 30a404c0a0
Add PKI CA workflow test (#14760)
- Add some extra validation that the certificates issued and generated
   are signed by the expected public keys
2022-03-29 14:02:59 -04:00
Loann Le bd43500104
removed duplicate entry (#14758) 2022-03-29 10:38:30 -07:00
Joel Kenny 825ffd130a
cockroachdb: add high-availability support (#12965)
This commit adds high-availability support to the CockroachDB backend. The
locking strategy implemented is heavily influenced from the very similar
Postgres backend.
2022-03-29 13:12:06 -04:00
Angel Garbarino 0455d31b84
Remove Ivy Codemirror (#14659)
* setup

* fix mode issue

* actions

* readonly styling

* remove ivycodemirror from package json

* wip

* test coverage for json editor

* text fixes

* fix tests

* fix cursor issue

* changelog

* clean up

* fix

* address pr comments

* unused css and it overides other styling.

* fix

* fix comment
2022-03-29 10:25:16 -06:00
claire bontempo 33888c3340
remove [at] from date formatter (#14748) 2022-03-29 09:09:39 -07:00
Ben Ash 287bb77abc
Ensure that URL encoded passwords are properly redacted. (#14744)
The URL password redaction operation did not handle the case where the
database connection URL was provided as a percent-encoded string, and
its password component contained reserved characters. It attempted to
redact the password by replacing the unescaped password in the
percent-encoded URL. This resulted in the password being revealed when
reading the configuration from Vault.
2022-03-29 10:33:55 -04:00
Jordan Reimer 96a4612daa
removes remaining instances of builtin components using unknown arguments (#14747) 2022-03-29 08:28:28 -06:00
Anton Averchenkov de6d55d4a9
Update Vault to use api/v1.5.0 (#14718) 2022-03-28 12:11:03 -04:00
Chris Capurso dc4aae642a
Fix panic caused by parsing json.Number values for TypeCommaStringSlice fields (#14522)
* go-secure-stdlib/parseutil to v0.1.4

* add TypeCommaStringSlice for json.Number

* add changelog entry

* upgrade go-secure-stdlib/parseutil to v0.1.4 in sdk

* move json number TypeCommaStringSlice test

* go mod download for api; go mod tidy
2022-03-28 11:07:55 -04:00
Loann Le 905150ac3c
Vault documentation: added new vault lambda extension doc (#14717)
* added new lambda extension doc

* Suggestion to split the commands into individual code block (#14719)

* Suggestion to split the commands into individual code block

* Update lambda-extension-cache.mdx

* Update lambda-extension-cache.mdx

Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
2022-03-27 15:19:42 -07:00
Michele Degges f731e55c19
[RelAPI Onboarding] Add release API metadata file (#14679)
👋  This PR adds a `.release/release-metadata.hcl` file to the repo. This contains static metadata that will be processed and sent as part of the payload in RelAPI POST requests, which will be sent when staging and production releases are triggered.  

This can be merged now, but will not have any effect until after the RelAPI launch. This will need to be backported to all active release branches, as well. Similar additions are being added across all projects that publish to releases.hashicorp.com.
2022-03-24 18:30:52 -07:00
Chris Capurso 157a655632
Fix CLI panic caused by single backslash values (#14523)
* upgrade go-secure-stdlib/kv-builder to v0.1.2

* add kv test to ensure single backslash values no longer panic

* add changelog entry
2022-03-24 16:40:32 -04:00
VAL f9372145dd
Warn on upper case in policy name (#14670)
* Warn on upper case in policy name

* Rename name variable to be less confusing

* Use more general solution for other string issues

* Clarify changelog

* Remove unnecessary check

* Don't throw CLI warning until after past errors

* Add before and after names with quotes to show spacing changes
2022-03-24 13:29:11 -07:00
Chris Capurso 7c8e6676c0
Add input validation to getRuleInfo to prevent panic (#14501)
* return error from getRuleInfo if rule contains empty slice to prevent panic

* add changelog entry
2022-03-24 16:16:37 -04:00
Austin Gebauer e5b614ed9b
docs: adds known issue for UI sign in using OIDC auth method (#14708) 2022-03-24 12:28:21 -07:00
akshya96 e59aee02bd
Vault-4010 Unauthenticated panic when processing "help" requests (#14704)
* fix help panic

* add changelog entry
2022-03-24 12:19:14 -07:00
Loann Le c4236d55ba
fixed spelling error (#14705) 2022-03-24 11:30:41 -07:00
Anton Averchenkov 3c6439b1fc
Replace http method strings with net/http constants (#14677) 2022-03-24 13:58:03 -04:00
Austin Gebauer 7aba55c87c
docs: fix formatting in upgrade guide notes for oidc provider (#14678) 2022-03-24 10:09:03 -07:00
Scott Miller dd5aca80a1
Add a note that PKI with RSA keys only currently supports PKCS#1 v1.5 signatures (#14699) 2022-03-24 11:22:27 -05:00
Jordan Reimer d15a1abc26
updates instances of overriding computed properties (#14675) 2022-03-24 09:30:19 -06:00
Loann Le e607ffa216
incorporated feedback (#14692) 2022-03-24 08:29:21 -07:00
Loann Le 3ad9e80c33
fixed broken links (#14683) 2022-03-23 22:31:27 -07:00
Loann Le d2f07e7f38
Vault documentation: added known issues to 1.10.x upgrade guide (#14685)
* added known issues

* Update upgrade-to-1.10.x.mdx
2022-03-23 21:48:23 -07:00
Loann Le 59293712f2
add link to AAD (#14684) 2022-03-23 21:40:33 -07:00
Loann Le 8bf59fe575
Vault documentation: fixed release note version for 1.10.0 (#14680)
* fixed version number

* added redirect for rn
2022-03-23 19:19:20 -07:00
Anton Averchenkov 1222375d1a
Add context-aware functions to vault/api (#14388) 2022-03-23 17:47:43 -04:00
Anton Averchenkov e0722ba17c
Fix a few linting errors in gen_openapi.sh script (#14673) 2022-03-23 17:43:02 -04:00
Steven Clark 1358134801
PKI: Add missing default cases within switch statements (#14661)
* Misc PKI code fixes.

 - Harden the code base a bit adding default's to switch statements
   to various error handlers and processing statements.
 - Fixup some error messages to include proper values we support.

* Additional default case missing within PKI

* Fix typo in PKI error message
2022-03-23 15:19:56 -04:00
Ryan Cragun 3c8a1611ad
crt: use the latest version of actions-packaging-linux@v1 (#14641)
Use the latest version of the actions-packaging-linux@v1 to ensure that
.deb and .rpm artifacts are generated with release.

Signed-off-by: Ryan Cragun <me@ryan.ec>
2022-03-23 12:45:30 -06:00
Austin Gebauer 858efb9b3b
identity/oidc: updates documentation for PKCE, client types, and default resources (#14636)
* identity/oidc: updates documentation for PKCE, client types, and default resources

* Update website/content/docs/concepts/oidc-provider.mdx

Co-authored-by: John-Michael Faircloth <fairclothjm@users.noreply.github.com>

* Update website/content/docs/secrets/identity/oidc-provider.mdx

Co-authored-by: John-Michael Faircloth <fairclothjm@users.noreply.github.com>

* Adds note to upgrade guide

* Update website/content/api-docs/secret/identity/oidc-provider.mdx

Co-authored-by: Calvin Leung Huang <1883212+calvn@users.noreply.github.com>

* Update website/content/docs/concepts/oidc-provider.mdx

Co-authored-by: Calvin Leung Huang <1883212+calvn@users.noreply.github.com>

* list default key details

* stronger emphasis in upgrade guide

Co-authored-by: John-Michael Faircloth <fairclothjm@users.noreply.github.com>
Co-authored-by: Calvin Leung Huang <1883212+calvn@users.noreply.github.com>
2022-03-23 10:22:57 -07:00
Austin Gebauer 5c2d5d9c8e
docs/db2: adds documentation reference to db2 learn tutorial (#14655) 2022-03-23 10:08:34 -07:00
AnPucel 987cef98b1
Create OpenApi spec w/ dynamically generated plugins (#14311)
Editing script to dynamically scrape plugins from "registry.go"
2022-03-23 09:45:39 -07:00
Meggie 154c6e743b
Update website for 1.10.0 (#14647) 2022-03-23 11:52:27 -04:00
Austin Gebauer 135e6ece40
docs/ssct: service side to server side (#14654) 2022-03-23 09:12:52 -04:00
Meggie b3a4047d64
changelog++ 2022-03-23 09:05:18 -04:00
mickael-hc f13b0a74c4
docs: provide mfa configuration guidance (#14649) 2022-03-22 16:51:41 -04:00
John-Michael Faircloth 15e693bf91
docs/multiplexing: overhaul plugin documentation (#14509)
* docs/multiplexing: overhaul plugin documentation

* update nav data

* remove dupe nav data

* add external plugin section to index

* move custom plugin backends under internals/plugins

* remove ref to moved page

* revert moving custom plugin backends

* add building plugins from source section to plug dev

* add mux section to plugin arch

* add mux section to custom plugin page

* reorder custom database page

* use 'external plugin' where appropriate

* add link to plugin multiplexing

* fix example serve multiplex func call

* address review comments

* address review comments

* Minor format updates (#14590)

* mv Plugins to top-level; update upgrading plugins

* update links after changing paths

* add section on external plugin scaling characteristics

* add updates on plugin registration in plugin management page

* add plugin learn resource

* be more explicit about mux upgrade steps; add notes on when to avoid db muxing

* add plugin upgrade built-in section

* add caveats to built-in plugin upgrade

* improvements to built-in plugin override

* formatting, add redirects, correct multiplexing use case

* fix go-plugin link

* Apply suggestions from code review

Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>

* remove single item list; add link to Database interface

Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
2022-03-22 15:07:32 -05:00
Jordan Reimer dacb98ec91
Route renderTemplate Deprecation (#14646)
* removes renderTemplate usages

* adds _super to setupController override in oidc-callback route
2022-03-22 13:43:43 -06:00
Loann Le da93aff7d4
Vault documentation: added release notes for vault 1.10 (#14605)
* create release notes file

* added content for Tranform FPE

* fixed spelling errors

* modified content for scaling db plugins

* updated based on feedback

* more feedback

* removed integrated storage enhancements per feedback

* removed extra wording

* fixed broken link

* updated verbage for db2 support based on feedback

* added link to readme for caching

* fixed broken link

* fixed out of place text

* added another known issue

* modified text

* changed forward statement

* added note
2022-03-22 11:16:59 -07:00