Jeff Mitchell
33ff878946
Move awsutil over to the go-secure-stdlib version ( #12128 )
...
Unlike the other libraries that were migrated, there are no usages of
this lib in any of our plugins, and the only other known usage was in
go-kms-wrapping, which has been updated. Aliasing it like the other libs
would still keep the aws-sdk-go dep in the sdk module because of the
function signatures. So I've simply removed it entirely here.
2021-07-20 20:42:00 -04:00
Nick Cabatoff
9db6e16a2a
Document bootstrap API. ( #12132 )
2021-07-20 18:24:49 -04:00
Calvin Leung Huang
185905d110
docs: remove username_template until after Vault 1.8 ( #12129 )
2021-07-20 11:46:09 -07:00
Lars Lehtonen
a9153d7348
builtin/logical/database: fix dropped test errors ( #12123 )
2021-07-20 11:13:50 -07:00
Jeff Mitchell
fb473a8b9b
Swap out stepwise for external repo version ( #12089 )
2021-07-20 13:20:23 -04:00
vinay-gopalan
859b60cafc
[VAULT-1969] Add support for custom IAM usernames based on templates ( #12066 )
...
* add ability to customize IAM usernames based on templates
* add changelog
* remove unnecessary logs
* patch: add test for readConfig
* patch: add default STS Template
* patch: remove unnecessary if cases
* patch: add regex checks in username test
* patch: update genUsername to return an error instead of warnings
* patch: separate tests for default and custom templates
* patch: return truncate warning from genUsername and trigger a 400 response on errors
* patch: truncate midString to 42 chars in default template
* docs: add new username_template field to aws docs
2021-07-20 09:48:29 -07:00
Chelsea Shaw
4a9669a1bc
UI/database cg read role ( #12111 )
...
* Add type param to secret show, handle CG in database role show
* If roleType is passed to credential, only make one creds API call
* Clean up db role adapter and serializer
* url param roleType passed to credentials call
* Role list capabilities check for static and dynamic separately
* Add changelog
* Consistent adapter response for single or double call
* Prioritize dynamic response if control group on role/creds
2021-07-20 11:28:44 -05:00
swayne275
ed361ee8da
Fix minor typo in Internals/Plugins documentation ( #12113 )
...
* fix minor plugin doc typo
* fix limits of of typo and related
* forgot to save on this typo fix
2021-07-20 07:21:24 -06:00
Nick Cabatoff
e98b45fc79
Fix license expiration metric name in docs. ( #12125 )
2021-07-19 19:19:32 -04:00
Pratyoy Mukhopadhyay
3990446e46
Update some metric types, fix some wording ( #12122 )
2021-07-19 14:54:24 -07:00
Ben Ash
e899e2adfa
Add ability to optionally clone an api.Client's headers ( #12117 )
2021-07-19 17:15:31 -04:00
Meggie
08de78aedd
Elaborating on telemetry persistence ( #12119 )
...
* Elaborating on telemetry persistence
Some users understand how an aggregator relates to Vault telemetry, and
some users are approaching this concept for the first time. Those newer
to the concepts benefit from some extra clarification that the metrics
sourced directly from Vault aren't stored anywhere.
Sources:
https://prometheus.io/docs/concepts/metric_types/
https://github.com/OpenObservability/OpenMetrics/blob/main/specification/OpenMetrics.md
https://docs.splunk.com/observability/metrics-and-metadata/metric-types.html
* Updated summary note
2021-07-19 16:12:29 -04:00
Austin Gebauer
f7586e475d
changelog: update feature formatting for gcp and key management secrets ( #12120 )
2021-07-19 12:16:27 -07:00
Jason O'Donnell
afc33ba7aa
Change changelog type for openldap bug fix ( #12112 )
2021-07-16 16:37:21 -04:00
Dave Shepherd
f6770be254
Add AWS Cognito secrets engine to community section of the plugins website page ( #11966 )
2021-07-16 13:22:33 -07:00
Mike Green
20b84c4deb
Docs: Add link to more sentinel examples ( #11931 )
2021-07-16 16:20:41 -04:00
Josh Black
9052ed6466
Document bolt metrics ( #12107 )
2021-07-16 11:44:30 -07:00
Scott Miller
95008aab19
Upgrade packagespec to latest on main ( #12074 )
2021-07-16 11:33:05 -05:00
Nick Cabatoff
1a32ab0628
Add support for testing Azure storage backend in CI using Azurite. ( #12057 )
...
Also hack the pagination test until the upstream azurite bugfix (https://github.com/Azure/Azurite/issues/910 )
makes it into an Azurite release.
2021-07-16 10:33:53 -04:00
Meggie
440cc1b830
Updating changelog link to main ( #12110 )
2021-07-16 09:39:51 -04:00
Tom Proctor
47457b1298
Add ServiceNow credential resolver docs ( #11996 )
...
* Add ServiceNow credential resolver docs
* Add information about using system CAs
* Add field mappings and troubleshooting tips
2021-07-16 10:53:14 +01:00
Jeff Mitchell
f7147025dd
Migrate to sdk/internalshared libs in go-secure-stdlib ( #12090 )
...
* Swap sdk/helper libs to go-secure-stdlib
* Migrate to go-secure-stdlib reloadutil
* Migrate to go-secure-stdlib kv-builder
* Migrate to go-secure-stdlib gatedwriter
2021-07-15 20:17:31 -04:00
Scott Miller
555eb2ae0b
Add advice as a trace option to spot checks ( #12105 )
...
* Add advice as a trace option to spot checks
* typo
* Collect advice when forming the tree
2021-07-15 18:01:51 -05:00
Mike Green
53759228b0
Clarify token create policies behavior ( #12106 )
2021-07-15 18:13:58 -04:00
Scott Miller
3f01d92d3b
Suppress logging during a diagnose run ( #12101 )
...
* Suppress logging during a diagnose run
* remove debugging
2021-07-15 16:54:59 -05:00
Yahya
476b293a85
docs: fix heading number in SSH ( #12029 )
2021-07-15 14:25:45 -07:00
John-Michael Faircloth
3baff15c9d
mongodbatlas: update changelog for username customization ( #12098 )
2021-07-15 15:44:03 -05:00
Austin Gebauer
d1c090fe63
secrets/database: fixes external plugin reconnect after shutdown for v4 and v5 interface ( #12087 )
...
* secrets/database: fixes external plugin shutdown reconnect for v5 interface
* adds changelog entry
* fixes handling of plugin shutdown for password generation on v4 interface
2021-07-15 13:41:04 -07:00
Jason O'Donnell
03788bdba2
secrets/ad: change improvement to feature in changelog ( #12095 )
...
* secrets/ad: change improvement to feature in changelog
* Update per feature requirements
2021-07-15 15:55:40 -04:00
claire bontempo
30f9bbd9f5
UI/Clarifies error message for exit test process ( #12094 )
...
* adds console log to elaborate on error message
* fixes browserstack failure
2021-07-15 12:54:42 -07:00
Angel Garbarino
288bc28127
Clarify KV 2 API docs ( #12086 )
...
* initial draft of changes
* address pr comments and add changelog
* remove changelog
2021-07-15 13:09:12 -06:00
Meggie
c6e047d953
changelog++
2021-07-15 13:59:53 -04:00
vinay-gopalan
c20b5f1040
[VAULT-1986] Cap AWS Token TTL based on Default Lease TTL ( #12026 )
...
* fix: cap token TTL at login time based on default lease TTL
* add changelog file
* patch: update warning messages to not include 'at login'
* patch: remove default lease capping and test
* update changelog
* patch: revert warning message
2021-07-15 10:05:38 -07:00
Nick Cabatoff
f027a1b1ff
Revert #12061 due to failures in TestLogical_RequestSizeLimit ( #12093 )
2021-07-15 12:55:09 -04:00
Tom Proctor
491c0ca78b
Update kubernetes auth plugin with AliasLookahead fix ( #12073 )
2021-07-15 14:35:40 +01:00
Danny Hermes
16c3c4902a
Typo fix: period rotation -> periodic rotation (in transit docs) ( #12030 )
2021-07-15 08:18:09 -04:00
Jeff Mitchell
fe18b6f9e0
Swap out sdk/helper libs with implementations in go-secure-stdlib ( #12088 )
...
* Swap out sdk/helper libs with implementations in go-secure-stdlib
* Fix transit batch test
2021-07-15 01:56:37 -04:00
Angel Garbarino
84da2424a7
Fix KV Version History queryParams on the component LinkedBlock ( #12079 )
...
* fix the issue
* add test coverage
* add documentation to link-block
* add changelog
* modify for browserstack
2021-07-14 15:38:55 -06:00
hghaf099
f7635ec1b8
Add namespace in error ( #12061 )
...
* hghaf099-VAULT-1303-Adding namespace in error when it is set
* casting ResponseWriter in handleMonitor to logical.NamespaceResponseWriter
* Casting ResponseWriter conditionally for http.Flusher
Adding changelog
* Improving changlog message
2021-07-14 15:55:55 -04:00
John-Michael Faircloth
07e00882b8
[docs] secrets/identity - grammar and punctuation fixes ( #12065 )
...
* some grammar and punctuation fixes
* remove unneeded char
2021-07-14 14:35:10 -05:00
Mike Green
217f69f8d2
docs/stepdown-clarification ( #12077 )
2021-07-14 15:10:07 -04:00
Loann Le
59bf7b9b09
removed sentence from intro ( #12076 )
2021-07-14 10:08:04 -07:00
Chelsea Shaw
50e5e2f48a
UI: Automatically refresh page on logout ( #12035 )
2021-07-14 10:01:14 -05:00
Scott Miller
ec4b1b69d3
Enable building darwin arm64 for 1.8.x ( #11855 ) ( #12071 )
...
* Enable building darwin arm64 for 1.8.x (#11855 )
* Changelog
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2021-07-14 09:26:37 -05:00
Martin Lee
10f29e0503
base32.DecodeString expects length 8 for the buffer ( #11887 )
...
Add padding to the input key to ensure it reaches that length.
2021-07-14 07:38:10 -04:00
Scott Miller
ecb5474466
Update Vault main to new API/SDK Tags. ( #12069 )
...
* Update Vault main to new api/sdk tags
* go mod tidy
* Go mod tidy
* Go mod tidy on api
* go mod download on root
2021-07-13 18:54:31 -05:00
Scott Miller
1aa98e81f7
Make any section skippable via string contains skip checking. ( #12055 )
...
* Make any section skippable via string contains skip checking
* Fix unit test
2021-07-13 18:25:04 -05:00
Arnav Palnitkar
d1cc297cd9
Handle form validation for open api form ( #11963 )
...
* Handle form validation for open api form
- Added required validator for all the default fields
* Fixed field group error and adedd comments
* Fixed acceptance tests
* Added changelog
* Fix validation in edit mode
- Handle read only inputs during edit mode
* Minor improvements
* Restrict validation only for userpass
2021-07-13 15:50:27 -07:00
Jeff Mitchell
e520e470a6
Update SDK and API to new tagged versions
2021-07-13 14:52:01 -07:00
Jeff Mitchell
c1f058f18b
Bump API's SDK version
2021-07-13 14:50:49 -07:00