luxolus
/
open-vault
2
0
Fork 0
Code Issues 1 Pull Requests Releases Activity
14,011 Commits 1 Branch 0 Tags 214 MiB
Commit Graph

324 Commits

Author SHA1 Message Date
Austin Gebauer a7531a11ea
Updates the JWT/OIDC auth plugin (#10919) 2021-02-16 17:21:35 -08:00
Angel Garbarino 681a86f6eb
UI: Upgrade storybook (#10904) 
* upgrade storybook

* add changelog
 2021-02-11 12:16:00 -07:00
Nick Cabatoff 2108bb8e00
Use an atomic to avoid a race in runEventDemuxer. (#10901) 2021-02-11 11:50:41 -05:00
Jason O'Donnell ba9b3318d8
agent: allow auto-auth to use an existing token (#10850) 
* agent/auto-auth: add use_existing_token

* Add better logging for lookup errors

* Fix test

* changelog

* Remove preload config, add token var

* Update filename

* Update changelog

* Revert test name

* Remove unused function

* Remove redundant error message

* Short circuit authenticate for preloaded token

* Add comment for auto-auth login
 2021-02-11 09:36:03 -05:00
Ian Ferguson 865df63c76
Correct lock acquisition order in the `pathEntityMergeID` identity to fix deadlock condition (#10877) 2021-02-10 11:05:16 -05:00
Vishal Nayak bbfbb87115
cl++ (#10870) 2021-02-09 15:11:18 -05:00
Vishal Nayak 8613ba88a6
Fix quota enforcing old path issue (#10689) 
* Fix db indexing issue

* Add CL update
 2021-02-09 05:46:09 -05:00
Angel Garbarino 5ce35d1c52
Updating date-fns library from 1.x to 2.x (#10848) 
* first round of fixes and setup

* test fixes

* fix dumb options on new method

* test fix

* clean up

* fixes

* clean up

* handle utc time

* add changelog
 2021-02-08 13:13:00 -07:00
Mark Gritter d0994340fb
Fill in missing lease ID deterministically. Generate a UUID on creation. (#10855) 2021-02-08 13:46:59 -06:00
Theron Voran c62ce48b5b
Set TokenParent in the Index to be cached (#10833) 
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
 2021-02-03 18:30:41 -08:00
Calvin Leung Huang b1c4b86d7f
approle: add ttl to the secret ID generation response (#10826) 
* approle: add ttl to the secret ID generation response

* approle: move TTL derivation into helper func

* changelog: add changelog entry

* docs: update approle docs and api-docs pages
 2021-02-03 16:32:16 -08:00
Josh Black a04faad8fe
Add changelog entry for ent PR 1705 (#10827) 2021-02-03 09:35:14 -08:00
Chelsea Shaw b02533e89b
UI: Update dependencies (#10677) 
* Address dependabot deps

* Add changelog
 2021-02-01 13:38:03 -06:00
Mark Gritter 3ec15c4927
Fix use of identity/group endpoint to edit group by name (#10812) 
* Updates identity/group to allow updating a group by name (#10223)
* Now that lookup by name is outside handleGroupUpdateCommon, do not
use the second name lookup as the object to update.
* Added changelog.

Co-authored-by: dr-db <25711615+dr-db@users.noreply.github.com>
 2021-01-29 16:50:08 -06:00
Hridoy Roy fa5784d789
Pull in newest consul-template from master and all corresponding dependencies [VAULT-1392] (#10756) 
* pull in newest consul template with bugfix and all dependencies

* pull in newest consul template with bugfix and all dependencies

* Rename readme.md to README.md

* add changelog
 2021-01-29 12:30:16 -08:00
Hridoy Roy 17e20bdaa6
docs change for max request size community PR (#10723) 2021-01-27 10:02:00 -08:00
Hridoy Roy 537189cab8
make token create case insensitive [VAULT-1021] (#10743) 
* make token create case insensitive

* changelog

* comment update
 2021-01-27 09:56:54 -08:00
Meggie 4518d8a82f
More CL notes for 1.6.2 (#10792) 
* More CL notes for 1.6.2

* Update _2021Jan26.txt

* Update _2021Jan26.txt
 2021-01-27 12:03:20 -05:00
Hridoy Roy d1241b5286
changelog for entropy augmentation PR [VAULT-1179] (#10755) 
* changelog for entropy augmentation

* docs upgrade

* docs upgrade

* docs upgrade

* docs upgrade
 2021-01-26 21:06:38 -08:00
Vishal Nayak 6ce93f8cbf
changelog++ (#10748) 
Going to go ahead and merge this
 2021-01-26 19:30:42 -05:00
Aleksandr Bezobchuk 2ec8f9a222
metrics: activity log (#10514) 
* core: add vault.identity.entity.active.monthly log
* Fixed end-of-month metrics and unit test.
* Added metric covering month-to-date (not broken down by namespace.)
* Updated documentation
* Added changelog.

Co-authored-by: mgritter <mgritter@hashicorp.com>
 2021-01-26 16:37:07 -06:00
Lauren Voswinkel 2a8dd7bba7
CHANGELOG update: GCP secrets WAL issue fix (#10776) 
* CHANGELOG update: GCP secrets WAL issue fix

* Add changelog 10759.txt file
 2021-01-26 13:50:39 -08:00
Calvin Leung Huang 8fe7b403ba
changelog: add entry for PR 10705 (#10785) 2021-01-26 12:54:15 -08:00
Vishal Nayak f539117255
changelog++ (#10775) 2021-01-26 12:45:54 -05:00
Vishal Nayak 2602675402
Set namespace for template server in agent (#10757) 
* Set namespace for template server in agent

* cl++
 2021-01-25 17:37:01 -05:00
Meggie e67964e870
Changelog notes for 1.6.2 (#10737) 2021-01-20 15:52:48 -05:00
Meggie e4a457f47f
Update _1622.txt 
Fixing some formatting so the resulting changelog looks right.
 2021-01-20 15:06:23 -05:00
Mark Gritter fd55aa8378
Implement sys/seal-status and sys/leader in system backend (#10725) 
* Implement sys/seal-status and sys/leader as normal API calls
(so that they can be used in namespaces.)
* Added changelog.
 2021-01-20 14:04:24 -06:00
Josh Black 2cc9e2d914
Update to go 1.15.7 (#10730) 
* Update to go 1.15.6

* Just kidding, how about 1.15.7

* And the associated CI config

* Add changelog and update go version in more places
 2021-01-20 11:02:33 -08:00
Nick Cabatoff c2bdeb9e7d
Minimal change to ensure that the bulky leaseEntry isn't kept in memory. (#10726) 2021-01-19 17:51:41 -05:00
Hridoy Roy 0becd555cf
Protect part of emitMetrics from panic behavior during post-seal (#10708) 
* vault/core_metrics.go

* changelog

* comments
 2021-01-19 14:06:50 -08:00
Hridoy Roy 0e3bddf295
Revert "allow create to create transit keys (#10706)" (#10724) 
This reverts commit 4144ee0d3da10fbfef4d081aa72529f2e513f8e2.
 2021-01-19 11:49:57 -08:00
Hridoy Roy e8164ad09a
allow create to create transit keys (#10706) 
* allow create to create transit keys

* changelog
 2021-01-15 12:20:32 -08:00
Calvin Leung Huang eaaa2421a9
changelog: add PR 10131 to the changelog (#10688) 2021-01-12 18:24:04 -08:00
Chelsea Shaw 5a05a1b39f
UI: Fix shape of response anticipated from feature-flags endpoint (#10684) 
* Fix shape of response anticipated from feature-flags endpoint

* Add changelog
 2021-01-11 14:44:52 -06:00
Hridoy Roy f6bdda8c9c
add variable entropy readers to cert gen helpers [VAULT-1179] (#10653) 
* move entropy augmentation in cert gen to oss

* changelog

* go mod vendor

* updated helpers to allow custom entropy

* comments

* comments
 2021-01-08 09:48:27 -08:00
Chelsea Shaw 70d3185d3a
UI/managed namespace changes (#10588) 
* Redirect to url with namespace param if user logged into root namespace without permission

* Feature flag service for managing flags

* Redirect with namespace query param if no current namespace param AND managed root namespace set

* Test coverage for managed namespace changes

* Handle null body case on feature-flag response, add pretender route for feature-flags on shamir test
 2021-01-07 14:18:36 -06:00
Scott Miller c3e0d06216
Make the error response to the sys/internal/ui/mounts with no client token consistent (#10650) 
* Make the error response to the sys/internal/ui/mounts with no client token consistent

* changelog

* Don't test against an empty mount path

* One other spot

* Instead, do all token checks first and early out before even looking for the mount
 2021-01-07 11:46:08 -06:00
Mark Gritter d076d95d37
Feature flags API (#10613) 
* Added sys/internal/ui/feature-flags endpoint.
* Added documentation for new API endpoint.
* Added integration test.
Co-authored-by: swayne275 <swayne@hashicorp.com>
 2021-01-06 16:05:00 -06:00
Scott Miller 9f150de08f
Fix ip disclosure (#10649) 
* removing extra information from the returned error, to avoid leaking it to unauthenticated requests

* removing extra information from the returned error, to avoid leaking it to unauthenticated requests

* Changelog entry for #10516

* Change the error message in a way that is retains the HTTP status code

* Change changelog file num

* And right back where we started...

Co-authored-by: bruj0 <ramakandra@gmail.com>
 2021-01-05 15:32:47 -06:00
Angel Garbarino feca115ef4
Bug: Fix issue with double encoding on space in secret history route (#10596) 
* setup for concept it works, but probably not the best solution

* add comment and remove console and test var

* use normalize path higher up to fix issu

* add test for bug that fixing

* forgot a couple of changes

* changelog
 2021-01-04 09:32:52 -07:00
Nick Cabatoff 05f1a429a8
Add changelog for #1663. (#10635) 2021-01-04 11:08:39 -05:00
Nick Cabatoff d2096b251d
Add log gathering to debug command. (#10609) 2020-12-22 15:15:24 -05:00
Nick Cabatoff ea36810d97
Add changelog for ent #1659. (#10600) 2020-12-18 15:06:54 -05:00
Angel Garbarino f6ad6e47aa
add to changelog (#10601) 2020-12-18 10:26:08 -07:00
Mark Gritter 8c67bed7ae
Send a test message before committing a new audit device. (#10520) 
* Send a test message before committing a new audit device.
Also, lower timeout on connection attempts in socket device.
* added changelog
* go mod vendor (picked up some unrelated changes.)
* Skip audit device check in integration test.
Co-authored-by: swayne275 <swayne@hashicorp.com>
 2020-12-16 16:00:32 -06:00
Meggie Ladlow fc7909e153 1.5.6 & 1.6.1 changelog++ 
Also included planned extra note for enterprise PR
 2020-12-16 10:55:12 -05:00
Hridoy Roy 3490464d04
changelog for license (#10555) 2020-12-15 10:42:39 -08:00
Michel Vocks 191aa65bc3
Fix UI custom header values (#10511) 
* Fix UI custom header values

* Fix changelog entry

* Introduce param for multi values

* Fix multivalue

* multivalue should be bool

* Sort imports

* Fix conflict

* Remove changelog entry

* Revert entry delete
 2020-12-15 15:58:03 +01:00
Calvin Leung Huang 28c4b33e7a
changelog: add entry for 10558 (#10563) 2020-12-14 12:00:26 -08:00
Aleksandr Bezobchuk 3bce568535
rate limit: fix initialize defaults (#10536) 2020-12-14 14:55:52 -05:00
Josh Black a7aac342bd
Only set the namespace if the env var isn't present (#1519) (#10556) 2020-12-14 11:40:48 -08:00
Mark Gritter 1edcee0bb3
Changelog for enterprise fix. (#10560) 2020-12-14 12:43:38 -06:00
Austin Gebauer 747d49150b
Updates the OIDC/JWT auth plugin (#10546) 2020-12-14 10:07:07 -08:00
Brian Kassouf 275ca323e8
core: Record the time a node became active (#10489) 
* core: Record the time a node became active

* Update vault/core.go

Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>

* Add omitempty field

* Update vendor

* Added CL entry and fixed test

* Fix test

* Fix command package tests

Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
 2020-12-11 16:50:19 -08:00
Michael Golowka f6a746f1f5
Match influxdb changelog with correct PR (#10535) 2020-12-11 15:50:07 -07:00
Clint 4d81e3be4d
Improve consistency in error messages (#10537) 
* Improve consistency in error messages

* add changelog entry
 2020-12-11 15:21:53 -06:00
Michael Golowka 7f7581d9b6
Updated changelog for #10477 (#10518) 2020-12-11 12:59:30 -07:00
Scott Miller e177818fb3
Changelog updates for transform fixes (ENT) (#10528) 2020-12-10 13:59:30 -06:00
Nick Cabatoff 5497446d4f changelog/10456.txt 2020-12-10 06:55:24 -05:00
Nick Cabatoff 84d566db9e
Be consistent with how we report init status. (#10498) 
Also make half-joined raft peers consider storage to be initialized, whether or not they're sealed.
 2020-12-08 13:55:34 -05:00
Kloppi313 64b4487d8e
No 'v' in version HTML anchor (#10491) 
* No 'v' in version HTML anchor

The footer version output links to https://www.github.com/hashicorp/vault/blob/master/CHANGELOG.md#v160 (in Version 1.6.0) but you reach the anchor with https://github.com/hashicorp/vault/blob/master/CHANGELOG.md#160 (without 'v' before the version number)

* Removed 'v' from URL version anchor

* Create 10491.txt

Co-authored-by: Chelsea Shaw <chelshaw.dev@gmail.com>
 2020-12-08 11:21:48 -06:00
Hridoy Roy 0ada870a52
Only use entropy augmentation for root token creation [VAULT-670] (#10487) 
* Only use entropy augmentation for root token creation

* changelog

* change wording of changelog entry
 2020-12-04 09:44:04 -08:00
Michel Vocks ab72fa06ee
Add AllowedHeader and fix AllowedOrigins in the API (#10482) 
* Add AllowedHeader and fix AllowedOrigins in the API

* Update changelog entry

* Fix wrong response conversion
 2020-12-03 14:31:25 +01:00
Michel Vocks f71203c439
Fix license caching issue (#10424) 
* Fix license caching issue

* Add changelog entry
 2020-12-02 18:21:14 +01:00
Michael Golowka cc7efd393d
MySQL - Fix username generation length bug (#10433) 2020-12-01 15:24:51 -07:00
Tom Proctor bb726296b6
Add changelog for #10416 (#10473) 2020-12-01 16:08:19 +00:00
Hridoy Roy 1a1cbabd9d
changelog for vault 849 (#10435) 2020-11-30 10:28:32 -08:00
Hridoy Roy 241aa3771f
changelog with go changelog (#10434) 2020-11-30 09:24:24 -08:00
Josh Black bbd78e56b5
Add changelog entry for ent PR 1519 (#10454) 2020-11-25 14:25:03 -08:00
Josh Black b8ba047b35
Allow Vault Agent to run as a Windows service (#10231) 2020-11-23 14:24:32 -08:00
Mark Gritter ab2e28bf55
"vault operator usage" CLI for client count reporting (#10365) 
* Working draft of CLI command.
* Sort order, robustness checking.
* Text edits and check of queries_available.
* Added changelog.
 2020-11-23 14:57:35 -06:00
Chelsea Shaw 2e47e39cf7
Fix delete role issue on transform (#10417) 
* Fix bug where adding and then removing a new role on a transformation when no other roles have been created causes an error

* Update test on search-select to reflect new behavior which does not add created options to list on delete

* Add changelog
 2020-11-23 10:38:09 -06:00
Meggie 787c306caa
Templates and 1 example (#10363) 2020-11-16 14:05:28 -05:00