92f937c021
Remove Trailing White space in Kubernetes Doc ( #3360 )
...
Removed a trailing white space from which caused `Error loading data: Invalid key/value pair ' ': format must be key=value` if copying the example
```
vault write auth/kubernetes/role/demo \
bound_service_account_names=vault-auth \
bound_service_account_namespaces=default \
policies=default \
ttl=1h
```
2017-12-02 14:12:39 -05:00
74bd27bdb5
Missing command for vault PUT operation ( #3355 )
2017-12-02 13:43:37 -05:00
f79a15ddcd
Update some rekey docs
...
Fixes #3306
2017-12-02 13:34:52 -05:00
7b14f41872
Fix docs up to current standards
...
Signed-off-by: Nicolas Corrarello <nicolas@corrarello.com>
2017-11-29 16:53:42 +00:00
b3799697a2
Rename policy into policies
2017-11-29 16:31:17 +00:00
a6d3119e3e
Pull master into f-nomad
...
Signed-off-by: Nicolas Corrarello <nicolas@corrarello.com>
2017-11-29 15:56:37 +00:00
3b5cbe54fd
Added clarification to KV documentation about default CLI behavior and how to preserve non-string type values ( #3596 )
2017-11-27 11:43:49 -05:00
fa4af18b73
Docs: policy update for multiple policies, fixes #3611 ( #3613 )
2017-11-27 09:54:38 -05:00
89a0919250
Fix typo in s3 storage backend docs ( #3603 )
2017-11-23 13:28:33 -08:00
5f02a64206
docs: encryption/decryption now supports asymmetric keys ( #3599 )
2017-11-21 12:25:28 -05:00
422c1898c8
Update upgrade guide with HSM info
2017-11-16 11:04:46 -05:00
00dfc1c4de
Docs: Remove 'none' as algorithm options ( #3587 )
2017-11-15 09:09:45 -05:00
141548fb33
Add now-necessary mfa import to sentinel MFA example
2017-11-14 21:42:43 -05:00
85a5a75835
Add token_reviewer_jwt to the kubernetes docs ( #3586 )
2017-11-14 13:27:09 -08:00
b3a7d8ecf3
adding licensing docs ( #3585 )
2017-11-14 16:15:09 -05:00
8fedef3d99
Docs change for Policy API ( #3584 )
...
vault 0.9.0 deprecated the term `rules` in favor of the
term `policy` in several of the /sys/policy APIs.
The expected return state of 200 SUCCESS_NO_DATA only happens
if the `policy` term is used. A response including the
deprecation notice and a 204 SUCCESS_WITH_DATA status code
is returned when `rules` is applied.
2017-11-14 14:26:26 -05:00
2b481defe4
Upgrade to 0.9 ( #3583 )
...
* Upgrade to 0.9
* Add link to sidebar
* Remove items that were already in 0.8 upgrade guide
2017-11-14 13:32:09 -05:00
3c7f194797
Doc: Add groups to identity concepts ( #3581 )
...
* Add groups to the concepts page
* s/pulled-in and pulled-out/synced against
* Remove double spaces
2017-11-14 13:27:49 -05:00
68052f18d0
Flip seal pages upside down to put examples first
2017-11-14 13:12:35 -05:00
4efcfe03d1
Add an auto-unseal page to the docs
...
This helps with SEO and also is where I'd expect auto unsealing to be referenced.
2017-11-14 13:12:20 -05:00
b09d042173
Use super to show enterprise
2017-11-14 13:11:55 -05:00
8ba71a67e5
Minor website wording updates
2017-11-14 12:34:28 -05:00
40e3883788
Fix some broken links
2017-11-14 12:32:03 -05:00
7ac167f8a4
Sync docs
2017-11-14 06:13:11 -05:00
77442f8640
Prep for 0.9.0
2017-11-14 06:08:56 -05:00
5d976794d4
API refactoring and doc updates ( #3577 )
...
* Doc updates and API refactoring
* fix tests
* change metadata fieldtype to TypeKVPairs
* Give example for TypeKVPairs in CLI for metadata
* Update API docs examples to reflect the native expected value for TypeKVPairs
* Don't mention comma separation in the docs for TypeCommaStringSlice
* s/groups/group; s/entities/entity; s/entity-aliases/entity-alias; s/group-aliases/group-alias
* Address review feedback
* Fix formatting
* fix sidebar links
2017-11-13 20:59:42 -05:00
96e80e38e8
Updated the Replication guide to make it clear that it is focused on Performance Replication. Added a link to our general info page for information on DR Replication. Removed some statements about DR not being available yet. ( #3502 )
2017-11-13 11:55:04 -05:00
697a506b7b
DOCS: Update telemetry docs - fixes #3557 ( #3571 )
2017-11-13 09:58:04 -05:00
87feab4492
Docs update related to new top-level config values ( #3556 )
...
* Add new top level config value docs, add VAULT_API_ADDR, purge old references
* Fix indentation
* Update wording on ha.html
* Add section on split data/HA mode
* Fix grammar
2017-11-10 20:06:07 -05:00
645c068011
transit doc update ( #3564 )
2017-11-09 16:17:54 -05:00
f2a98cc662
Fix curl commands ( #3558 )
...
Curl commands require HCL within JSON to work.
2017-11-09 10:16:09 -05:00
b7deec2bec
Add docs for /sys/rekey-recovery-key ( #3520 )
2017-11-08 14:22:30 -05:00
01ff6293e0
Doc fix for Create/Update Token API ( #3548 )
...
`orphan` is intended to be default to False. Docs indicate this
is default to True. Simple change to update the docs only.
2017-11-07 18:06:44 -05:00
2c8cd19e14
auth/aws: Make disallow_reauthentication and allow_instance_migration mutually exclusive ( #3291 )
2017-11-06 17:12:07 -05:00
de8c0dce99
minor cleanup
2017-11-06 16:34:20 -05:00
4109473134
More Mount Conflict Detection ( #2919 )
2017-11-06 15:29:09 -05:00
57c9afa357
added AWS enpoint handling ( #3416 )
2017-11-06 13:31:38 -05:00
d7305a4681
Add note on support for using rec keys on /sys/rekey ( #3517 )
2017-11-06 12:18:15 -05:00
af649c60d0
Add third party tools list to website ( #3488 )
2017-11-06 12:11:02 -05:00
17310654a1
Add PKCS8 marshaling to PKI ( #3518 )
2017-11-06 12:05:07 -05:00
5a317a1a32
Updated documentation
2017-11-06 15:13:50 +00:00
93917743df
Update SSH list roles docs ( #3536 )
2017-11-03 18:00:46 -04:00
e4e4a7ba67
Capabilities responds considering policies on entities and groups ( #3522 )
...
* Capabilities endpoint will now return considering policies on entities and groups
* refactor the policy derivation into a separate function
* Docs: Update docs to reflect the change in capabilities endpoint
2017-11-03 11:20:10 -04:00
06923430cc
docs: s/persona/alias ( #3529 )
2017-11-03 11:17:59 -04:00
52df62d4ff
Encrypt/Decrypt/Sign/Verify using RSA in Transit backend ( #3489 )
...
* encrypt/decrypt/sign/verify RSA
* update path-help and doc
* Fix the bug which was breaking convergent encryption
* support both 2048 and 4096
* update doc to contain both 2048 and 4096
* Add test for encrypt, decrypt and rotate on RSA keys
* Support exporting RSA keys
* Add sign and verify test steps
* Remove 'RSA' from PEM header
* use the default salt length
* Add 'RSA' to PEM header since openssl is expecting that
* export rsa keys as signing-key as well
* Comment the reasoning behind the PEM headers
* remove comment
* update comment
* Parameterize hashing for RSA signing and verification
* Added test steps to check hash algo choice for RSA sign/verify
* fix test by using 'prehashed'
2017-11-03 10:45:53 -04:00
a7acc23034
docs: Add config/ca delete operation ( #3525 )
2017-11-03 06:19:21 -04:00
3d8d887676
Add ability to require parameters in ACLs ( #3510 )
2017-11-02 07:18:49 -04:00
d540985926
Unifying Storage and API path in role
2017-10-31 21:06:10 +00:00
0fc65cabc7
Minor/Cosmetic fixes
2017-10-31 19:11:24 +00:00
0345dca20f
Should these names not reference Vault? ( #3506 )
...
Since we are in the Vault docs, should these names not reference Vault instead of Nomad?
2017-10-30 11:04:38 -05:00
963f516ac9
Fix C&P in docs.
...
Fixes #3454
2017-10-27 16:43:26 -04:00
b16084fdaf
aws-ec2: Avoid audit logging of custom nonces ( #3381 )
2017-10-27 11:23:15 -04:00
c575435040
Updated cli arg to reflect text description ( #3487 )
2017-10-27 09:44:56 -05:00
a71add2973
Add a doc for the token helper ( #3411 )
...
* Add token helper docs.
* Update it so the new token helpers page appears in the navigation.
2017-10-27 09:42:33 -05:00
5ff1485a3e
Correct typos in the sys/raw documentation ( #3484 )
2017-10-24 10:33:57 -04:00
e4065e33d2
copying general purpose tools from transit backend to /sys/tools ( #3391 )
2017-10-20 10:59:17 -04:00
df29bc4fc0
updating mssql docs ( #3477 )
2017-10-19 11:21:29 -04:00
d150f374fd
Match plugin name from releases ( #3453 )
2017-10-19 11:10:42 -04:00
6c6e2a3baa
Correct typo: DELET to DELETE ( #3452 )
2017-10-13 10:11:04 -04:00
fdd76563eb
Add a note about the instant client libraries ( #3434 )
...
* Add a note about the instant client libraries
* Update oracle.html.md
2017-10-12 09:40:06 -04:00
af24163abd
Implement signing of pre-hashed data ( #3448 )
...
Transit backend sign and verify endpoints now support algorithm=none
2017-10-11 11:48:51 -04:00
a2808db1af
Fix docs ( #3449 )
2017-10-11 11:29:26 -04:00
d5decccbfe
Update index.html.md ( #3433 )
...
Fixed typo in json property used to create custom secret_id
2017-10-11 09:25:43 -04:00
cbe41b590f
add GCP APIs that need to be enabled to GCP auth docs, small doc fixes ( #3446 )
2017-10-11 09:18:32 -04:00
3380fd647d
Adding Nomad docs to the nav. Minor cosmetics fixes
2017-10-06 16:03:06 +01:00
cfd27317d8
Small typo corrections for policies doc ( #3413 )
2017-10-06 09:38:00 -04:00
d7bb311db3
A few simple fixes for the Github API docs ( #3432 )
2017-10-06 06:13:47 -04:00
974332c2c5
upgrade ldap api docs to refrect 0.8.3 change to returned json of policies ( #3421 )
2017-10-04 15:40:28 -04:00
e3ce60eb1f
Allow entering PKI URLs as arrays. ( #3409 )
...
Fixes #3407
2017-10-03 16:13:57 -04:00
b6ec6351af
fix spellings errors ( #3400 )
2017-09-29 11:52:42 -04:00
b207b76f14
Updated API Docs with the Global Token Parameter
2017-09-29 11:23:47 +01:00
f56e191020
Fix spelling errors ( #3390 )
2017-09-28 07:54:40 -04:00
43540e9c32
Fix grammatical error ( #3395 )
...
Also changed capitalization for consistency.
2017-09-28 06:28:48 -04:00
b1db3765ca
Kubernetes Docs Update ( #3386 )
...
* Update Kubnernetes Docs
* Add a note about alpha clusters on GKE
* Fix JSON formatting
* Update kubernetes.html.md
* Fix a few review comments
2017-09-27 14:02:18 -07:00
abcf4b3bb2
docs: Added certificate deletion operation API ( #3385 )
2017-09-26 20:28:52 -04:00
17a15cd594
Add option to disable client certificate requesting. ( #3373 )
...
Fixes #3372
2017-09-25 14:41:46 -04:00
2b4561dccb
Adding Nomad Secret Backend API documentation
2017-09-21 09:18:35 -05:00
5178e5f5f2
Adding Nomad secret backend documentation
2017-09-20 17:31:28 -05:00
19e4d8b6c3
Spelling fix ( #3351 )
2017-09-19 15:25:39 -04:00
bad1555919
Bump version
2017-09-19 10:54:01 -04:00
9b0d594d02
Kubernetes auth ( #3350 )
...
* Import the kubernetes credential backend
* Add kubernetes docs
* Escape * characters
* Revert "Import the kubernetes credential backend"
This reverts commit f12627a9427bcde7e73cea41dea19d0922f94789.
* Update the vendored directory
2017-09-19 09:27:26 -05:00
d4a5362835
Clarify backup data that is being stored ( #3345 )
2017-09-19 07:44:34 -05:00
ed3d75d0b1
Add GCE docs for GCP Auth Backend ( #3341 )
2017-09-19 07:44:05 -05:00
2abddb248e
Fix a few quirks in the GCP auth backend's docs. ( #3322 )
2017-09-19 07:41:41 -05:00
e99640f462
Add 'pid_file' config option ( #3321 )
...
* add pid_file config option
* address review feedback
* address review comments
2017-09-16 17:09:37 -04:00
8529972bfb
Updated https://www.vaultproject.io/api/system/replication-dr.html#generate-dr-secondary-token to be a POST rather than GET. This was reported by a customer and I confirmed that this should be a logical.UpdateOperation rather than ReadOperation ( 24f2b961fd/vault/replication_api.go (L121)). ( #3342 )
2017-09-15 16:19:16 -04:00
1029ad3b33
Rename "generic" secret backend to "kv" ( #3292 )
2017-09-15 09:02:29 -04:00
a2d2f1a543
Adding support for base_url for Okta api ( #3316 )
...
* Adding support for base_url for Okta api
* addressing feedback suggestions, bringing back optional group query
* updating docs
* cleaning up the login method
* clear out production flag if base_url is set
* docs updates
* docs updates
2017-09-15 00:27:45 -04:00
9d73c81f38
Disable the `sys/raw` endpoint by default ( #3329 )
...
* disable raw endpoint by default
* adding docs
* config option raw -> raw_storage_endpoint
* docs updates
* adding listing on raw endpoint
* reworking tests for enabled raw endpoints
* root protecting base raw endpoint
2017-09-15 00:21:35 -04:00
2e60b20eae
update enterprise urls /docs/vault-enterprise -> /docs/enterprise ( #3333 )
2017-09-13 15:37:40 -04:00
2c640950e0
Fixed docs to reflect correct HTTP method for /sys/config/auditing endpoing ( #3331 )
...
Updated documentation to reflect "Read Single Audit Request Header" endpoint is GET-based.
2017-09-13 11:59:27 -07:00
cb6ac1e926
Change behavior of TTL in sign-intermediate ( #3325 )
...
* Fix using wrong public key in sign-self-issued
* Change behavior of TTL in sign-intermediate
This allows signing CA certs with an expiration past the signer's
NotAfter.
It also change sign-self-issued to replace the Issuer, since it's
potentially RFC legal but stacks won't validate it.
Ref: https://groups.google.com/d/msg/vault-tool/giP69-n2o20/FfhRpW1vAQAJ
2017-09-13 11:42:45 -04:00
cfa74e6a95
remove token header from login samples ( #3320 )
2017-09-11 18:14:05 -04:00
886a0acee6
Fix navigation and prameters in the 'gcp' auth backend docs. ( #3317 )
2017-09-11 15:26:24 -04:00
12cde76112
fix: add missing comma to payload ( #3308 )
2017-09-11 12:03:43 -04:00
57a7002210
Update AWS CloudHSM comparison. ( #3311 )
...
* Update AWS CloudHSM comparison.
* Update hsm.html.md
* Update hsm.html.md
2017-09-10 12:54:05 -04:00
c747caac2a
Fix cassandra tests, explicitly set cluster port if provided ( #3296 )
...
* Fix cassandra tests, explicitly set cluster port if provided
* Update cassandra.yml test-fixture
* Add port as part of the config option, fix tests
* Remove hostport splitting in cassandraConnectionProducer.createSession
* Include port in API docs
2017-09-07 23:04:40 -04:00
a3f97c5e3e
fix typo in policies documentation ( #3302 )
2017-09-07 11:55:24 -04:00
567f2ce1f1
Fix docs for Certificate authentication ( #3301 )
...
Fix discrepencies in the documentation for TLS Certificate
authentication. The Delete CRL method has a misleading title and
description.
2017-09-07 10:28:14 -04:00
25976b340e
Fixed small typo in RabbitMQ secret backend. ( #3300 )
...
Fixed `name` param for the Delete Role API in the RabbitMQ secret backend.
2017-09-07 10:00:32 -04:00
Marc Sensenich