b05ffa88d5
Improve Secret Empty States ( #12084 )
...
* adds conditional to render 'minus plain' icon when key doesn't exist
* shows a hyphen when KV secret doesn't have a key and/or value
* fixes tests
2021-07-21 12:47:52 -07:00
892545e41d
Document timeout setting for raft snapshots ( #12140 )
...
* Document timeout setting for raft snapshots
We don't usually put this kind of information in the documentation, but
we are aware that snapshots can be slow and I could see this message
saving someone a lot of time. Open to closing this PR though if we
definitely don't want this kind of documentation.
* Fixing link
2021-07-21 15:14:08 -04:00
877b8166f2
docs: Update Database Capabilities to include username customization ( #12130 )
...
* Update Database Capabilities docs page to include username customization column
* fix elasticdb entry, yes for 1.8+
2021-07-21 13:24:22 -05:00
33ff878946
Move awsutil over to the go-secure-stdlib version ( #12128 )
...
Unlike the other libraries that were migrated, there are no usages of
this lib in any of our plugins, and the only other known usage was in
go-kms-wrapping, which has been updated. Aliasing it like the other libs
would still keep the aws-sdk-go dep in the sdk module because of the
function signatures. So I've simply removed it entirely here.
2021-07-20 20:42:00 -04:00
9db6e16a2a
Document bootstrap API. ( #12132 )
2021-07-20 18:24:49 -04:00
185905d110
docs: remove username_template until after Vault 1.8 ( #12129 )
2021-07-20 11:46:09 -07:00
a9153d7348
builtin/logical/database: fix dropped test errors ( #12123 )
2021-07-20 11:13:50 -07:00
fb473a8b9b
Swap out stepwise for external repo version ( #12089 )
2021-07-20 13:20:23 -04:00
859b60cafc
[VAULT-1969] Add support for custom IAM usernames based on templates ( #12066 )
...
* add ability to customize IAM usernames based on templates
* add changelog
* remove unnecessary logs
* patch: add test for readConfig
* patch: add default STS Template
* patch: remove unnecessary if cases
* patch: add regex checks in username test
* patch: update genUsername to return an error instead of warnings
* patch: separate tests for default and custom templates
* patch: return truncate warning from genUsername and trigger a 400 response on errors
* patch: truncate midString to 42 chars in default template
* docs: add new username_template field to aws docs
2021-07-20 09:48:29 -07:00
4a9669a1bc
UI/database cg read role ( #12111 )
...
* Add type param to secret show, handle CG in database role show
* If roleType is passed to credential, only make one creds API call
* Clean up db role adapter and serializer
* url param roleType passed to credentials call
* Role list capabilities check for static and dynamic separately
* Add changelog
* Consistent adapter response for single or double call
* Prioritize dynamic response if control group on role/creds
2021-07-20 11:28:44 -05:00
ed361ee8da
Fix minor typo in Internals/Plugins documentation ( #12113 )
...
* fix minor plugin doc typo
* fix limits of of typo and related
* forgot to save on this typo fix
2021-07-20 07:21:24 -06:00
e98b45fc79
Fix license expiration metric name in docs. ( #12125 )
2021-07-19 19:19:32 -04:00
3990446e46
Update some metric types, fix some wording ( #12122 )
2021-07-19 14:54:24 -07:00
e899e2adfa
Add ability to optionally clone an api.Client's headers ( #12117 )
2021-07-19 17:15:31 -04:00
08de78aedd
Elaborating on telemetry persistence ( #12119 )
...
* Elaborating on telemetry persistence
Some users understand how an aggregator relates to Vault telemetry, and
some users are approaching this concept for the first time. Those newer
to the concepts benefit from some extra clarification that the metrics
sourced directly from Vault aren't stored anywhere.
Sources:
https://prometheus.io/docs/concepts/metric_types/
https://github.com/OpenObservability/OpenMetrics/blob/main/specification/OpenMetrics.md
https://docs.splunk.com/observability/metrics-and-metadata/metric-types.html
* Updated summary note
2021-07-19 16:12:29 -04:00
f7586e475d
changelog: update feature formatting for gcp and key management secrets ( #12120 )
2021-07-19 12:16:27 -07:00
afc33ba7aa
Change changelog type for openldap bug fix ( #12112 )
2021-07-16 16:37:21 -04:00
f6770be254
Add AWS Cognito secrets engine to community section of the plugins website page ( #11966 )
2021-07-16 13:22:33 -07:00
20b84c4deb
Docs: Add link to more sentinel examples ( #11931 )
2021-07-16 16:20:41 -04:00
9052ed6466
Document bolt metrics ( #12107 )
2021-07-16 11:44:30 -07:00
95008aab19
Upgrade packagespec to latest on main ( #12074 )
2021-07-16 11:33:05 -05:00
1a32ab0628
Add support for testing Azure storage backend in CI using Azurite. ( #12057 )
...
Also hack the pagination test until the upstream azurite bugfix (https://github.com/Azure/Azurite/issues/910 )
makes it into an Azurite release.
2021-07-16 10:33:53 -04:00
440cc1b830
Updating changelog link to main ( #12110 )
2021-07-16 09:39:51 -04:00
47457b1298
Add ServiceNow credential resolver docs ( #11996 )
...
* Add ServiceNow credential resolver docs
* Add information about using system CAs
* Add field mappings and troubleshooting tips
2021-07-16 10:53:14 +01:00
f7147025dd
Migrate to sdk/internalshared libs in go-secure-stdlib ( #12090 )
...
* Swap sdk/helper libs to go-secure-stdlib
* Migrate to go-secure-stdlib reloadutil
* Migrate to go-secure-stdlib kv-builder
* Migrate to go-secure-stdlib gatedwriter
2021-07-15 20:17:31 -04:00
555eb2ae0b
Add advice as a trace option to spot checks ( #12105 )
...
* Add advice as a trace option to spot checks
* typo
* Collect advice when forming the tree
2021-07-15 18:01:51 -05:00
53759228b0
Clarify token create policies behavior ( #12106 )
2021-07-15 18:13:58 -04:00
3f01d92d3b
Suppress logging during a diagnose run ( #12101 )
...
* Suppress logging during a diagnose run
* remove debugging
2021-07-15 16:54:59 -05:00
476b293a85
docs: fix heading number in SSH ( #12029 )
2021-07-15 14:25:45 -07:00
3baff15c9d
mongodbatlas: update changelog for username customization ( #12098 )
2021-07-15 15:44:03 -05:00
d1c090fe63
secrets/database: fixes external plugin reconnect after shutdown for v4 and v5 interface ( #12087 )
...
* secrets/database: fixes external plugin shutdown reconnect for v5 interface
* adds changelog entry
* fixes handling of plugin shutdown for password generation on v4 interface
2021-07-15 13:41:04 -07:00
03788bdba2
secrets/ad: change improvement to feature in changelog ( #12095 )
...
* secrets/ad: change improvement to feature in changelog
* Update per feature requirements
2021-07-15 15:55:40 -04:00
30f9bbd9f5
UI/Clarifies error message for exit test process ( #12094 )
...
* adds console log to elaborate on error message
* fixes browserstack failure
2021-07-15 12:54:42 -07:00
288bc28127
Clarify KV 2 API docs ( #12086 )
...
* initial draft of changes
* address pr comments and add changelog
* remove changelog
2021-07-15 13:09:12 -06:00
c6e047d953
changelog++
2021-07-15 13:59:53 -04:00
c20b5f1040
[VAULT-1986] Cap AWS Token TTL based on Default Lease TTL ( #12026 )
...
* fix: cap token TTL at login time based on default lease TTL
* add changelog file
* patch: update warning messages to not include 'at login'
* patch: remove default lease capping and test
* update changelog
* patch: revert warning message
2021-07-15 10:05:38 -07:00
f027a1b1ff
Revert #12061 due to failures in TestLogical_RequestSizeLimit ( #12093 )
2021-07-15 12:55:09 -04:00
491c0ca78b
Update kubernetes auth plugin with AliasLookahead fix ( #12073 )
2021-07-15 14:35:40 +01:00
16c3c4902a
Typo fix: period rotation -> periodic rotation (in transit docs) ( #12030 )
2021-07-15 08:18:09 -04:00
fe18b6f9e0
Swap out sdk/helper libs with implementations in go-secure-stdlib ( #12088 )
...
* Swap out sdk/helper libs with implementations in go-secure-stdlib
* Fix transit batch test
2021-07-15 01:56:37 -04:00
84da2424a7
Fix KV Version History queryParams on the component LinkedBlock ( #12079 )
...
* fix the issue
* add test coverage
* add documentation to link-block
* add changelog
* modify for browserstack
2021-07-14 15:38:55 -06:00
f7635ec1b8
Add namespace in error ( #12061 )
...
* hghaf099-VAULT-1303-Adding namespace in error when it is set
* casting ResponseWriter in handleMonitor to logical.NamespaceResponseWriter
* Casting ResponseWriter conditionally for http.Flusher
Adding changelog
* Improving changlog message
2021-07-14 15:55:55 -04:00
07e00882b8
[docs] secrets/identity - grammar and punctuation fixes ( #12065 )
...
* some grammar and punctuation fixes
* remove unneeded char
2021-07-14 14:35:10 -05:00
217f69f8d2
docs/stepdown-clarification ( #12077 )
2021-07-14 15:10:07 -04:00
59bf7b9b09
removed sentence from intro ( #12076 )
2021-07-14 10:08:04 -07:00
50e5e2f48a
UI: Automatically refresh page on logout ( #12035 )
2021-07-14 10:01:14 -05:00
ec4b1b69d3
Enable building darwin arm64 for 1.8.x ( #11855 ) ( #12071 )
...
* Enable building darwin arm64 for 1.8.x (#11855 )
* Changelog
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2021-07-14 09:26:37 -05:00
10f29e0503
base32.DecodeString expects length 8 for the buffer ( #11887 )
...
Add padding to the input key to ensure it reaches that length.
2021-07-14 07:38:10 -04:00
ecb5474466
Update Vault main to new API/SDK Tags. ( #12069 )
...
* Update Vault main to new api/sdk tags
* go mod tidy
* Go mod tidy
* Go mod tidy on api
* go mod download on root
2021-07-13 18:54:31 -05:00
1aa98e81f7
Make any section skippable via string contains skip checking. ( #12055 )
...
* Make any section skippable via string contains skip checking
* Fix unit test
2021-07-13 18:25:04 -05:00
claire bontempo