Commit graph

13073 commits

Author SHA1 Message Date
Jace Tan 74cadeb8e5
Fix typo in usage description of operator init -status flag (#10618)
This commit fixes a typo in the operator init -status flag's usage
description and aligns it with that found on https://www.vaultproject.io/docs/commands/operator/init#status.
2020-12-23 13:12:44 -07:00
Nick Cabatoff d2096b251d
Add log gathering to debug command. (#10609) 2020-12-22 15:15:24 -05:00
Scott Miller 2eafeee15f
Avoid disclosing IP addresses in unauthenticated requests (#10579)
* removing extra information from the returned error, to avoid leaking it to unauthenticated requests

* removing extra information from the returned error, to avoid leaking it to unauthenticated requests

* Change the error message in a way that is retains the HTTP status code

Co-authored-by: bruj0 <ramakandra@gmail.com>
2020-12-22 10:30:03 -06:00
Nick Cabatoff ea36810d97
Add changelog for ent #1659. (#10600) 2020-12-18 15:06:54 -05:00
swayne275 a961bdc318
Fix setting Activity Log enable flag through the API (#10594)
* fix setting enable, update tests

* improve wording

* fix typo - left the testing enabled set in originally

* improve warning handling

* move from nested if to switch - TIL
2020-12-18 11:20:32 -07:00
Angel Garbarino f6ad6e47aa
add to changelog (#10601) 2020-12-18 10:26:08 -07:00
Jeff Escalante ec620a7765
Implement MDX Remote (#10581)
* implement mdx remote

* fix an unfenced code block

* fix partials path

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
2020-12-17 16:53:33 -05:00
Meggie 210618d2b9
Updating version to 1.6.1 (#10566)
Will merge this after the release is done.
2020-12-17 12:52:03 -05:00
Meggie 8dded674ee
changelog++
CVE #
2020-12-16 17:44:00 -05:00
Mark Gritter 8c67bed7ae
Send a test message before committing a new audit device. (#10520)
* Send a test message before committing a new audit device.
Also, lower timeout on connection attempts in socket device.
* added changelog
* go mod vendor (picked up some unrelated changes.)
* Skip audit device check in integration test.
Co-authored-by: swayne275 <swayne@hashicorp.com>
2020-12-16 16:00:32 -06:00
Angel Garbarino 5ac1c93c4a
Update CHANGELOG.md 2020-12-16 09:47:55 -07:00
Angel Garbarino f120922ab3
Bug Fix: allow click of label and box for box-radio component (#10586)
* make glimmer component and remove extra lable, fix styling

* remove commented out code

* remove extra label for when disabled as well
2020-12-16 09:46:34 -07:00
Meggie Ladlow fc7909e153 1.5.6 & 1.6.1 changelog++
Also included planned extra note for enterprise PR
2020-12-16 10:55:12 -05:00
Alex Cahn a605f9ddd6
Update to add the newly released Couchbase DB SE (#10580)
* Update to add the newly released Couchbase DB SE

* Update website/pages/docs/plugin-portal/index.mdx

Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>

Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-12-15 16:55:38 -08:00
Ronen Botzer c602f9999f
A Database Secrets Engine plugin for Aerospike (#10522)
* A Database Secrets Engine plugin for Aerospike

* Order the subsections consistently
2020-12-15 15:13:56 -08:00
Michael Golowka d71f228968
Add note about default password generation in Azure 2020-12-15 13:16:58 -07:00
Scott G. Miller ffc375817e Revert "Disclosure of internal IP addresses from unauthenticated request (#10516)"
This reverts commit 9934f75f1daa21de3137c1cd16423a15d594709b.
2020-12-15 13:57:32 -06:00
Aleksandr Bezobchuk ae6267cc9b
core: add warning when disabling activity (#10485) 2020-12-15 14:11:28 -05:00
Hridoy Roy 3490464d04
changelog for license (#10555) 2020-12-15 10:42:39 -08:00
Rodrigo D. L 1adb11c413
Disclosure of internal IP addresses from unauthenticated request (#10516)
* removing extra information from the returned error, to avoid leaking it to unauthenticated requests

* removing extra information from the returned error, to avoid leaking it to unauthenticated requests

Co-authored-by: Scott Miller <smiller@hashicorp.com>
2020-12-15 11:08:50 -06:00
Michel Vocks 191aa65bc3
Fix UI custom header values (#10511)
* Fix UI custom header values

* Fix changelog entry

* Introduce param for multi values

* Fix multivalue

* multivalue should be bool

* Sort imports

* Fix conflict

* Remove changelog entry

* Revert entry delete
2020-12-15 15:58:03 +01:00
Tomas Gustavsson fc9fa540af
Add PrimeKey EJBCA as partner secrets plugin (#10531)
* Add PrimeKey EJBCA as partner secrets plugin

* Update website/pages/docs/plugin-portal/index.mdx

* Update website/pages/docs/plugin-portal/index.mdx

Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-12-14 17:37:09 -08:00
acahn b969a23f84
Update index.mdx (#10574)
Modernizing the Partner language as part of the evolution of the partner program.
2020-12-14 17:08:44 -08:00
swayne275 cdf933adf1
say how many leases there are when threshold exceeded (#10567) 2020-12-14 16:00:19 -07:00
Calvin Leung Huang 28c4b33e7a
changelog: add entry for 10558 (#10563) 2020-12-14 12:00:26 -08:00
Aleksandr Bezobchuk 3bce568535
rate limit: fix initialize defaults (#10536) 2020-12-14 14:55:52 -05:00
Calvin Leung Huang 058532406b
mod: update secrets-gcp to latest (#10558) 2020-12-14 11:42:53 -08:00
Josh Black a7aac342bd
Only set the namespace if the env var isn't present (#1519) (#10556) 2020-12-14 11:40:48 -08:00
Mark Gritter 1edcee0bb3
Changelog for enterprise fix. (#10560) 2020-12-14 12:43:38 -06:00
Austin Gebauer 747d49150b
Updates the OIDC/JWT auth plugin (#10546) 2020-12-14 10:07:07 -08:00
Kyle MacDonald acd0cd037c
website: redirect raft snapshot url to automated storage snapshots (#10553) 2020-12-14 12:48:58 -05:00
Brian Kassouf 275ca323e8
core: Record the time a node became active (#10489)
* core: Record the time a node became active

* Update vault/core.go

Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>

* Add omitempty field

* Update vendor

* Added CL entry and fixed test

* Fix test

* Fix command package tests

Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
2020-12-11 16:50:19 -08:00
Calvin Leung Huang f137c945d7
ha: update godoc on grabLockOrStop (#10547) 2020-12-11 16:04:00 -08:00
Michael Golowka f6a746f1f5
Match influxdb changelog with correct PR (#10535) 2020-12-11 15:50:07 -07:00
Clint 4d81e3be4d
Improve consistency in error messages (#10537)
* Improve consistency in error messages

* add changelog entry
2020-12-11 15:21:53 -06:00
Michael Golowka 1911e92dca
Add template helper library (#10500) 2020-12-11 13:23:08 -07:00
Michael Golowka 7f7581d9b6
Updated changelog for #10477 (#10518) 2020-12-11 12:59:30 -07:00
Jamie Finnigan 6ae858d721
enable GitHub code scanning workflow (#10526) 2020-12-10 15:34:34 -08:00
Scott Miller e177818fb3
Changelog updates for transform fixes (ENT) (#10528) 2020-12-10 13:59:30 -06:00
Nick Cabatoff a73e834fda
Fail build if go mod vendor changes anything. (#10524) 2020-12-10 10:09:21 -05:00
Nick Cabatoff 5497446d4f changelog/10456.txt 2020-12-10 06:55:24 -05:00
Seth Bunce a6a437a1ce
fix deadlock on core state lock (#10456)
* fix race that can cause deadlock on core state lock

The bug is in the grabLockOrStop function. For specific concurrent
executions the grabLockOrStop function can return stopped=true when
the lock is still held. A comment in grabLockOrStop indicates that the
function is only used when the stateLock is held, but grabLockOrStop is
being used to acquire the stateLock. If there are concurrent goroutines
using grabLockOrStop then some concurrent executions result in
stopped=true being returned when the lock is acquired.

The fix is to add a lock and some state around which the parent and
child goroutine in the grabLockOrStop function can coordinate so that
the different concurrent executions can be handled.

This change includes a non-deterministic unit test which reliably
reproduces the problem before the fix.

* use rand instead of time for random test stopCh close

Using time.Now().UnixNano()%2 ends up being system dependent because
different operating systems and hardware have different clock
resolution. A lower resolution will return the same unix time for a
longer period of time.

It is better to avoid this issue by using a random number generator.
This change uses the rand package default random number generator. It's
generally good to avoid using the default random number generator,
because it creates extra lock contention. For a test it should be fine.
2020-12-10 06:50:11 -05:00
Nick Cabatoff 6c5183abda
Fix link to autosnap api docs. (#10521) 2020-12-09 16:19:15 -05:00
danielehc 98f516aa58
Add details on Consul token ttl (#10470)
* Add details on Consul token ttl

* Update website/pages/docs/secrets/consul/index.mdx

Co-authored-by: Kent 'picat' Gruber <kent@hashicorp.com>

Co-authored-by: Kent 'picat' Gruber <kent@hashicorp.com>
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-12-09 08:20:21 -05:00
Nick Cabatoff b425be1a93
Fix race with test that mutates KeyRotateGracePeriod: make the global be a Core field instead. (#10512) 2020-12-08 13:57:44 -05:00
Nick Cabatoff 84d566db9e
Be consistent with how we report init status. (#10498)
Also make half-joined raft peers consider storage to be initialized, whether or not they're sealed.
2020-12-08 13:55:34 -05:00
Kloppi313 64b4487d8e
No 'v' in version HTML anchor (#10491)
* No 'v' in version HTML anchor

The footer version output links to https://www.github.com/hashicorp/vault/blob/master/CHANGELOG.md#v160 (in Version 1.6.0) but you reach the anchor with https://github.com/hashicorp/vault/blob/master/CHANGELOG.md#160 (without 'v' before the version number)

* Removed 'v' from URL version anchor

* Create 10491.txt

Co-authored-by: Chelsea Shaw <chelshaw.dev@gmail.com>
2020-12-08 11:21:48 -06:00
Michael Golowka 7269d32e50
InfluxDB - Check for errors in the response too (#10384) 2020-12-07 16:18:59 -07:00
Kyle Rarey 6fec9f68e3
Correct key length in Transit storage limits (#10422)
The AES256-GCM96 key was mis-labeled as AES128 under Transit storage limits. Corrected the table.

Co-authored-by: Mark Gritter <mgritter@hashicorp.com>
2020-12-07 11:43:24 -06:00
Mike Wickett 6a6f1d67c8
website: fix broken link to api docs (#10501) 2020-12-04 11:55:20 -08:00