Vitaly Velikodny
1bb9992c92
fix #8092 : add the note to docs about impossible to create a custom token with 's.' prefix ( #8195 )
...
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-06-29 12:20:23 -04:00
Josh Black
6306faa3d2
Update documentation with more details for allowed_parameters ( #9279 )
2020-06-29 09:01:33 -07:00
Vishal Nayak
c6876fe00f
Resource Quotas: Rate Limiting ( #9330 )
2020-06-26 17:13:16 -04:00
Theron Voran
505bb596d3
docs: default for the auth-path annotation ( #9313 )
...
Updating the default for the auth-path annotation in the k8s injector
docs.
2020-06-25 09:36:23 -07:00
Jason O'Donnell
9a19916d53
doc: update vault helm enterprise image examples ( #9299 )
...
* doc: update vault helm enterprise image examples
* fix tar reference
2020-06-23 16:20:34 -04:00
Calvin Leung Huang
c45bdca0b3
raft: add support for using backend for ha_storage ( #9193 )
...
* raft: initial work on raft ha storage support
* add note on join
* add todo note
* raft: add support for bootstrapping and joining existing nodes
* raft: gate bootstrap join by reading leader api address from storage
* raft: properly check for raft-only for certain conditionals
* raft: add bootstrap to api and cli
* raft: fix bootstrap cli command
* raft: add test for setting up new cluster with raft HA
* raft: extend TestRaft_HA_NewCluster to include inmem and consul backends
* raft: add test for updating an existing cluster to use raft HA
* raft: remove debug log lines, clean up verifyRaftPeers
* raft: minor cleanup
* raft: minor cleanup
* Update physical/raft/raft.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update vault/ha.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update vault/ha.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update vault/logical_system_raft.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update vault/raft.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update vault/raft.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* address feedback comments
* address feedback comments
* raft: refactor tls keyring logic
* address feedback comments
* Update vault/raft.go
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
* Update vault/raft.go
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
* address feedback comments
* testing: fix import ordering
* raft: rename var, cleanup comment line
* docs: remove ha_storage restriction note on raft
* docs: more raft HA interaction updates with migration and recovery mode
* docs: update the raft join command
* raft: update comments
* raft: add missing isRaftHAOnly check for clearing out state set earlier
* raft: update a few ha_storage config checks
* Update command/operator_raft_bootstrap.go
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
* raft: address feedback comments
* raft: fix panic when checking for config.HAStorage.Type
* Update vault/raft.go
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
* Update website/pages/docs/commands/operator/raft.mdx
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
* raft: remove bootstrap cli command
* Update vault/raft.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update vault/raft.go
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
* raft: address review feedback
* raft: revert vendored sdk
* raft: don't send applied index and node ID info if we're HA-only
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-06-23 12:04:13 -07:00
Mark Gritter
6bd17d7e91
Document new and previously undocumented telemetry metrics: ( #9283 )
...
usage metrics
vault.route.*
vault.core.unsealed
2020-06-23 13:49:45 -05:00
Calvin Leung Huang
4a5bef48c4
docs: add additional info around transform for tweak and template type ( #9203 )
2020-06-23 10:32:54 -07:00
Austin Gebauer
965f95239a
docs: clarify when plugin executables must also be given mlock syscall ability ( #9275 )
2020-06-22 10:05:15 -07:00
Johnathan Schmidt
ab4e072bb6
Add the static-roles feature for MSSQL ( #9062 )
2020-06-19 23:01:06 -07:00
Michael Golowka
7502813335
Add password_policy field to Azure docs ( #9249 )
...
* Add password_policy field
* Updated vault-plugin-secrets-azure to v0.6.1
* A bunch of other libraries also got updated at the same time because of the plugin update
2020-06-18 13:25:59 -06:00
Calvin Leung Huang
2e7e63f78c
docs: add sample revocation for mongodb ( #9245 )
2020-06-17 08:25:56 -07:00
Scott Miller
632c86ecc1
Add new Telemetry config options ( #9238 )
...
* Add new Telemetry config options
Add cluster_name, maximum_gauge_cardinality, and usage_gauge_period
configuration options to the config stanza.
Update unit tests.
Document.
Co-authored-by: Mark Gritter <mgritter@hashicorp.com>
2020-06-17 10:07:33 -05:00
Jason O'Donnell
e8db47f92d
docs/agent: add overview for consul template fetches ( #9227 )
...
* docs/vault-k8s: add overview for consul template fetches
* Add dynamic role link
* move to agent documentation, add link
* fix typo in certificate doc
* fix note about leased secrets
* update secret vs token, add note to pki
* add more secret vs token notes
* add note about caching
2020-06-15 15:49:35 -04:00
Austin Gebauer
d9fbd04a33
docs: fix typo in gcp and gcpkms secrets ( #9228 )
2020-06-15 11:57:51 -07:00
Matt Whiteley
922f9374c6
Fix typo ( #9217 )
...
correct parameter is `leader_ca_cert_file`
2020-06-15 14:36:15 -04:00
Michael Golowka
1a8b7765bc
Add password policies to Active Directory secret engine ( #9144 )
...
* Also updates AD docs to reflect password policies
2020-06-15 10:36:17 -06:00
Jim Kalafut
320e9ecb92
Minor transform docs rewording ( #9223 )
2020-06-14 20:53:36 -07:00
Roman Iuvshyn
889c9d6f06
add disable_iss_validation option to k8s auth docs ( #9142 )
2020-06-11 19:02:20 -07:00
Michael Golowka
a89f09802d
Integrate password policies into RabbitMQ secret engine ( #9143 )
...
* Add password policies to RabbitMQ & update docs
* Also updates some parts of the password policies to aid/fix testing
2020-06-11 16:08:20 -06:00
ncabatoff
9cc77b94a8
Clarify cache setting. ( #9204 )
2020-06-11 16:20:36 -04:00
Jeff Hemmen
7a2eabde69
Simple typos ( #9119 )
2020-06-11 14:22:49 -04:00
Andy Assareh
e8a36eb752
replacing "a key usage mode" as it is confusing ( #9194 )
...
Since the context of this page is transit and encryption keys, the use of the word "key" to mean effectively common seems ill advised. Proposing an alternative wording.
2020-06-11 07:50:31 -04:00
Theron Voran
e1a432a167
AWS: Add iam_groups parameter to role create/update ( #8811 )
...
Allows vault roles to be associated with IAM groups in the AWS
secrets engine, since IAM groups are a recommended way to manage
IAM user policies. IAM users generated against a vault role will
be added to the IAM Groups. For a credential type of
`assumed_role` or `federation_token`, the policies sent to the
corresponding AWS call (sts:AssumeRole or sts:GetFederation) will
be the policies from each group in `iam_groups` combined with the
`policy_document` and `policy_arns` parameters.
Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
2020-06-09 16:56:12 -07:00
ncabatoff
315d1ba9c5
Explain what lease tidy does. ( #9178 )
2020-06-09 16:54:06 -04:00
joe miller
15661719fa
document all of the supported elliptic curves ( #8722 )
2020-06-08 11:26:56 -04:00
Rob Taylor
76e78605a9
Fixed minor typo in secrets documentation page ( #8856 )
2020-06-08 11:17:26 -04:00
Frederic Hemberger
4e13db3912
[docs/telemetry] Unnecessary comma in HCL example ( #8817 )
2020-06-08 11:07:28 -04:00
Rob Jackson
38ca50cdd9
update to include vault_format ( #8876 )
2020-06-08 10:40:03 -04:00
Tomas Bäckman
6e97db6d68
Add note about flag -target=recovery for auto-unseal mode ( #9163 )
2020-06-08 09:26:49 -04:00
Austin Gebauer
bf2ce8d1cb
docs: fix port number in curl command for aws rotate root iam creds ( #9157 )
2020-06-05 16:00:49 -07:00
Calvin Leung Huang
0565e28592
docs: document raft and mlock interaction ( #9093 )
...
* docs: document raft and mlock interaction
* docs: expand on mlock issue when raft is used
* Update website/pages/docs/configuration/index.mdx
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
2020-06-05 15:02:55 -07:00
Scott Miller
e2d5d92b77
Github markdown doesn't use "^" for superscript, have to be explicit ( #9156 )
2020-06-05 16:55:33 -05:00
Scott Miller
f8f4ae4ab2
Document and give an example of the input size limits when using the FF3-1 transform. ( #9151 )
...
* Document and give an example of the input size limits when using the FF3-1
transform.
2020-06-05 07:45:18 -05:00
Jason O'Donnell
e0e29a9586
docs/k8s: Add OpenShift K8s beta documentation ( #9135 )
...
* doc/k8s: add OpenShift examples
* Update requirements
* Update website/pages/docs/platform/k8s/helm/openshift.mdx
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
* Fix ha example
* Fix ha doc
* Update image references
* Fix formatting
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-06-03 15:10:37 -04:00
Dave D'Amico
a60ba90a20
updated 1.3.2 and 1.4.0 upgrade guides to note AWS STS region issue fixed in 1.4.1 ( #9137 )
2020-06-03 10:27:45 -07:00
Theron Voran
7622bee530
Docs updates for vault-helm 0.6.0 release ( #9116 )
...
* Docs updates for vault-helm 0.6.0 release
* added openshift and postStart values
* noting that openshift support is a beta feature
2020-06-03 11:44:32 -04:00
Theron Voran
fa17e22050
Docs updates for vault-k8s 0.4.0 ( #9107 )
...
* Adding changes for vault-k8s 0.4.0
* add note about run-as-same-user rejecting root
2020-06-03 10:06:20 -04:00
Brian Kassouf
fbd9fd4510
Fix upgrade guide ( #9133 )
2020-06-02 16:27:19 -07:00
Michael Golowka
5ca4d819d1
Update OpenLDAP Secrets Docs with Password Policies ( #9088 )
...
* Update OpenLDAP docs to use password policies
2020-06-02 11:34:01 -06:00
Michael Golowka
bd587da491
Add docs for password policies ( #8974 )
...
* Add docs for password policies
2020-06-02 11:12:22 -06:00
Alexander Bezobchuk
9dd67cbeb6
Merge PR #9027 : Integrated Storage (Raft): Add Support for max_entry_size Config
2020-06-01 10:17:24 -04:00
dddugan
a098e313a9
correct sockaddr.is_contained example ( #9104 )
...
Syntax for sockaddr.is_contained should be outer, inner - i.e. range, IP. See https://docs.hashicorp.com/sentinel/imports/sockaddr/ for reference.
2020-05-29 10:51:31 -07:00
Jeff Escalante
0e3229a3d8
add missing styles for mdx components ( #9103 )
2020-05-29 13:29:24 -04:00
ncabatoff
9987b71a36
Update seal docs to reflect 1.3 changes. ( #9086 )
2020-05-29 13:28:03 -04:00
Christophe Drevet-Droguet
932c1834cc
ssh certificate signing: fix documentation of extensions ( #8859 )
2020-05-29 13:23:19 -04:00
Elthariel
3a07bd0bc4
doc: Add an example of templated policy using k8s metadata ( #9101 )
2020-05-28 17:54:56 -07:00
ncabatoff
d8c52a4b44
Add note regarding LDAP regression. ( #9038 )
2020-05-27 12:29:30 -04:00
Thomas L. Kula
3ce9615992
Allow auto_auth with templates without specifying a sink ( #8812 )
...
For situations where you want the Vault agent to handle one or more templates but do not require the acquired credentials elsewhere.
Modify the logic in SyncServer so that if there are no sinks, ignore any new credentials. Since SyncServer is responsible for shutting down the agent, make sure it still properly shuts down in this new situation.
Solves #7988
2020-05-26 13:52:14 -04:00
ncabatoff
175bff872c
Add some notes on what tidy does and how to see if your cluster can handle it ( #9036 )
2020-05-26 09:19:36 -04:00
Jim Kalafut
a9d7d34ede
Update release notes ( #9064 )
2020-05-21 18:51:19 -07:00
Jeff Escalante
8eed94b072
🌷 Docs Website Maintenance ( #8985 )
...
* website maintenance round
* improve docs, revert bug workaround as it was fixed
* boost memory
* remove unnecessary code
2020-05-21 13:18:17 -04:00
Lauren Voswinkel
8fc08f8c91
Require TLS or plaintext flagging in MySQL configuration ( #9012 )
...
* Adds a safety switch to configuration files.
This requires a user to either use TLS, or acknowledge that they are sending
credentials over plaintext.
* Warn if plaintext credentials will be passed
* Add true/false support to the plaintext transmission ack
* Updated website docs and ensured ToLower is used for true comparison
2020-05-21 09:09:37 -07:00
Jason O'Donnell
4b2a72c616
doc: clarify token helper intro ( #9058 )
2020-05-21 10:11:32 -04:00
Jason O'Donnell
1845ef6d2e
doc: add environment variable template example ( #9019 )
...
* doc: add environment variable template example
* Update website/pages/docs/platform/k8s/injector/examples.mdx
Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
2020-05-18 15:51:17 -04:00
Theron Voran
b7a9fb8566
docs: updating helm configuration ( #8973 )
...
Added helm configs that were changed/added in vault-helm
0.5.0. Also corrected the data type of a few config parameters.
2020-05-18 11:08:40 -07:00
Csongor Halmai
dd8c10bb76
fix missing line-continuation in sample code ( #9005 )
2020-05-15 08:29:32 -04:00
Tyler Reid
fbbd4fcf2d
docs: fix agent listener link ( #9003 )
2020-05-15 06:51:52 -05:00
Scott Miller
d1ba50384a
Soften the warning language on PKCS #1 v1.5 padding ( #8988 )
...
* Soften the warning language on PKCS #1 v1.5 padding
2020-05-14 12:29:21 -05:00
Jim Kalafut
5825b23013
Add 1.4.1 upgrade guide ( #8981 )
2020-05-13 16:55:32 -07:00
Jason O'Donnell
f65cd64696
doc: add notes about injector annotations ( #8992 )
2020-05-13 16:43:34 -04:00
Clement Chauplannaz
c33cd93b93
Typo in policies.mdx ( #8850 )
2020-05-13 15:17:41 -04:00
Steven Robertson
d9c5a6130a
fixes roleset GET to say 'read' instead of 'delete' ( #8799 )
2020-05-13 15:13:34 -04:00
ncabatoff
98f32a94a9
Static roles aren't supported yet for atlas. ( #8989 )
2020-05-13 12:13:29 -04:00
Scott Miller
8805a7b45c
Warn in the documentation against the use of CKM_RSA_PKCS. ( #8982 )
...
* Warn in the documentation against the use of CKM_RSA_PKCS
* tweak
* Roger roger.
2020-05-12 10:56:41 -05:00
Vishal Nayak
72c4e3c7af
Doc: seal migration update ( #8724 )
...
* Doc: seal migration update
* s/Auto Unseal/KMS Seal
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* s/Recovery/recovery
* remove 'at this point'
* Address review comments
* Address review feedback
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Update website/pages/docs/concepts/seal.mdx
Co-Authored-By: Meggie <meggie@hashicorp.com>
* Address review comments
Co-authored-by: Meggie <meggie@hashicorp.com>
2020-05-12 01:02:59 -04:00
Nicole Forrester
77ad037d9c
Add vault docs redirects & remove deprecated database docs ( #8922 )
...
* website: add redirects for old database docs
* delete deprecated database docs
2020-05-11 14:20:40 -06:00
Aleksandr Yakimenko
182bfc86f8
Fix minor typos in docs ( #8965 )
2020-05-11 11:12:48 -04:00
Lauren Voswinkel
a1f674c53c
Removing some unnecessary escape characters from Agent docs ( #8957 )
...
* Fix formatting of the Vault Agent docs
2020-05-09 12:52:13 -07:00
Jim Kalafut
446370d94c
Update Azure Auth docs ( #8963 )
2020-05-08 16:20:08 -07:00
Jason O'Donnell
656685a253
doc: add note about versions for helm upgrades ( #8960 )
...
* doc: add note about versions for helm upgrades
* Fix repo search output
* Update website/pages/docs/platform/k8s/helm/run.mdx
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-05-08 16:56:39 -04:00
Theron Voran
564f71a397
Update vault helm docs with new helm repo ( #8931 )
...
* Update the k8s injector docs for the new helm repo
* Update vault helm docs with new helm repo
2020-05-08 10:55:56 -07:00
Jim Kalafut
c922532f2e
Correct docs typos ( #8954 )
2020-05-08 08:24:38 -07:00
Calvin Leung Huang
49cb9eea09
docs: remove comparison reference in what-is-vault page ( #8950 )
2020-05-07 15:24:08 -07:00
Lauren Voswinkel
7e9ac9bbec
Fix formatting of the Vault Agent docs ( #8947 )
...
* Fix formatting of the Vault Agent docs
* Fix up the param definitions with <code> rather than <tt>
* Use <code> only where there is a link embedded, otherwise ticks
2020-05-07 15:10:49 -07:00
Kyle MacDonald
5e1b1c7320
website: add link to certification on /community ( #8942 )
2020-05-07 12:44:06 -04:00
Calvin Leung Huang
e7af25b969
raft: use file paths for TLS info in the retry_join block ( #8894 )
...
* raft: use file paths for TLS info in the retry_join stanza
* raft: maintain backward compat for existing tls params
* docs: update raft docs with new file-based TLS params
* Update godoc comment, fix docs
2020-05-06 18:26:08 -07:00
yoyotam
69fa1965de
Update standalone-tls.mdx ( #8920 )
...
extraEnvironmentVars should be under server, not global
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-05-06 17:03:37 -07:00
Michael Golowka
67087f291e
Fix capabilities to show MSSQL static roles aren't supported ( #8935 )
2020-05-06 10:56:01 -06:00
Vladimir Dimitrov
34f01920e9
Added plugin reload function to api ( #8777 )
...
* Added plugin reload function to api
* Apply suggestions from code review
Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>
* go mod vendor
* addressing comments
* addressing comments
* add docs
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-05-04 11:14:23 -07:00
Michael Golowka
d5be4fbd6a
Improve documentation around database plugins ( #8892 )
...
* Adds a summary to the top of each plugin's page showing the capabilities that the plugin has.
* Fixed sidebar sorting (they weren't quite alpabetical)
* Improved instructions for using the Oracle plugin
* Added note about using the pluggable database rather than the container database
* Replaced admin/root usernames with super-user ones to encourage users to not use the root user in Vault
* Included suggestions to rotate the root user's password when the plugin is capable
* Improve documentation around rotating the root user's password
* Fixed various typos
2020-05-01 15:05:05 -06:00
Scott Miller
f5b2394aca
Add documentation warning against the use of SHA-1, and policy advice on how to block it ( #8885 )
2020-05-01 13:46:04 -05:00
ncabatoff
997fe6152c
Add overlooked role params. ( #8898 )
2020-04-30 13:05:20 -04:00
grantorchard
4d8c7d3f19
Update index.mdx ( #8895 )
2020-04-30 09:25:59 -07:00
Becca Petrin
62d266e9b7
Add AWS auth metadata changes to upgrade guide ( #8887 )
...
* add aws auth metadata changes to upgrade guide
2020-04-29 21:52:03 -07:00
Theron Voran
3c0f80f1dc
Update the vault-helm ingress config docs ( #8881 )
...
The chart defines the `backend` stanza, so the `path` list should
just be path strings. More typos: `tls.hosts` is a list, not a
string.
2020-04-29 12:10:26 -07:00
Yong Wen Chua
f0720205c3
[auth/gcp] Add missing permission to documentation ( #8689 )
...
* [auth/gcp] Add missing permission to documentation
Signed-off-by: Yong Wen Chua <lawliet89@users.noreply.github.com>
* Clarified group aliases
2020-04-29 09:42:59 -07:00
Becca Petrin
405fbaface
document new gcp auth metadata fields ( #8879 )
2020-04-29 09:38:13 -07:00
Becca Petrin
74c1bf6894
document aws auth metadata ( #8880 )
2020-04-29 07:36:38 -07:00
Michael Golowka
34106136cd
GCP Auth docs - Move iam_alias
and gce_alias
to config instead of role ( #8862 )
...
Move `iam_alias` and `gce_alias` to config instead of role
2020-04-28 13:55:07 -06:00
Jim Kalafut
de2d7b5260
Update OIDC configuration docs ( #8771 )
2020-04-27 15:59:40 -07:00
Calvin Leung Huang
ec8448ab56
token: disallow periods on custom token IDs ( #8646 )
...
* token: disallow periods on custom token IDs
* docs: update token API docs
2020-04-27 09:39:33 -07:00
Michael Golowka
1dbc6d3dd0
Add 'iam_alias' and 'gce_alias' fields to API docs ( #8822 )
2020-04-27 09:54:51 -06:00
Michael Hofer
62ee11ef02
Fix typo in Entropy Augmentation docs sales contact link ( #8851 )
2020-04-26 14:24:48 -07:00
Clement Chauplannaz
5f3a64595b
Typo in response-wrapping.mdx ( #8849 )
2020-04-26 10:00:32 -07:00
Brian Kassouf
21cdba6fb5
identity: Add batch entity deletion endpoint ( #8785 )
...
* identity: Add batch entity deletion endpoint
* Update the parameter description
* Update error message
* Update helper/storagepacker/storagepacker.go
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Review feedback
* Update vault/identity_store_entities.go
Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-04-23 15:25:13 -07:00
Jeff Escalante
ec1d92a95a
Add changelog url to data file for website ( #8810 )
...
* pull changelog url from config file
* add fallback if url is empty
2020-04-22 16:27:34 -04:00
Vishal Nayak
2ff08ee932
Doc: update sys/mounts API response ( #8800 )
2020-04-21 23:57:49 -04:00
Calvin Leung Huang
2659c34910
raft: check for nil on concrete type in SetupCluster ( #8784 )
...
* raft: check for nil on concrete type in SetupCluster
* raft: move check to its own func
* raft: func cleanup
* raft: disallow disable_clustering = true when raft storage is used
* docs: update disable_clustering to mention new behavior
2020-04-21 13:45:07 -07:00
Adrienne Cohea
858549450a
Documentation: In Transit, for the Trim Key API endpoint, correct the sample payload. ( #8763 )
2020-04-17 11:20:17 -07:00
Mike Green
e58cce958b
Clarify version that sink mode is in ( #8764 )
...
Clarifying customer experience. Ie, don't try this on 1.2.1
2020-04-17 11:16:21 -07:00
Ryan Canty
49c937ff2c
Added docs for PR in Vault GCP Secrets repo ( #8728 )
2020-04-16 14:57:50 -07:00
Michael Golowka
cfad0ebe16
Clarify key rotation capabilities for Azure auto-unseal ( #8745 )
...
* Clarify key rotation capabilities for Azure auto-unseal
* Fix alignment
Co-authored-by: Vishal Nayak <vishalnayakv@gmail.com>
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-04-15 12:52:16 -04:00
Becca Petrin
8767f17ef4
Add AWS auth info to upgrade guide ( #8731 )
...
* add aws auth info to upgrade guide
* elaborate on who is effected and add more versions
* use partials for repeated doc text
* add new pages to side nav
2020-04-13 14:52:10 -07:00
Jason O'Donnell
584160f2a2
doc: add client tls parameters to openldap ( #8730 )
2020-04-13 13:57:51 -04:00
Becca Petrin
8e1ecefe59
minor docs updates ( #8725 )
2020-04-13 10:03:05 -07:00
Martin Hristov
82c03b6c2c
Fixing a docs typo ( #8729 )
...
Vauld -> Vault
2020-04-13 10:16:52 -06:00
Calvin Leung Huang
ca34b7b3f1
docs: add section on transformations for the transform engine ( #8718 )
...
* docs: add section on transformations for the transform engine
* docs: emphasize on caveat for internal tweak source
2020-04-10 17:00:48 -07:00
Melissa Plunkett
774afb0ee6
Update mongodbatlas.mdx ( #8720 )
...
Users copying and pasting the command are running into issues w/ the newlines so squashing example to one line.
2020-04-09 15:21:09 -07:00
Jeff Escalante
fbfed414bd
Routing Fixes ( #8703 )
...
* fix a couple of .html extension links
* remove trailing slash config
* fix redirects, broken links, incorrect anchor link formats
2020-04-09 13:56:59 -04:00
Jeffrey Hogan
8f80cd8b9d
Fix "List Template" table path ( #8692 )
2020-04-08 15:58:40 -07:00
Calvin Leung Huang
e8cc90e8b6
raft: disallow ha_storage stanza when raft storage is used ( #8707 )
2020-04-08 13:07:42 -07:00
Mike Jarmy
8645089708
document upgrading to 1.4.0 ( #8704 )
2020-04-08 14:48:46 -04:00
Meggie
f75de0ded5
Remove the warning about raft storage being in beta. ( #8699 )
2020-04-08 12:13:04 -04:00
Calvin Leung Huang
a8dae1cca6
site: update to version 1.4.0, remove rc download box ( #8693 )
2020-04-07 11:07:37 -07:00
Brian Kassouf
24056ea929
Update integrated-storage.mdx
2020-04-07 10:14:56 -07:00
Jim Kalafut
f08ba0bf55
Transform docs
2020-04-07 10:02:31 -07:00
Jason O'Donnell
ffb66ebc83
docs: add vault helm enterprise examples ( #8678 )
...
* docs: add vault helm enterprise examples
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-dr-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-dr-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-perf-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-perf-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-perf-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-dr-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Fix website build
* Shorten sidebar titles
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-dr-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Update website/pages/docs/platform/k8s/helm/examples/enterprise-perf-with-raft.mdx
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
* Fix sidebar
* Fix sidebar titles
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-04-07 12:56:50 -04:00
Greg Chevalley
52f43020f0
Update standalone-tls.mdx ( #8685 )
...
little typo when decoding the kube CA
2020-04-06 09:42:51 -07:00
Brian Kassouf
1a340a87cb
docs: Add integrated storage concepts page ( #8673 )
...
* docs: Add integrated storage concepts page
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Review feedback and add recovery information
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/concepts/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Review feedback
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
Co-authored-by: Meggie <m.ladlow@gmail.com>
2020-04-03 15:05:55 -07:00
Jason O'Donnell
69118a2be8
docs: fix broken k8s auth method link ( #8675 )
2020-04-03 13:08:37 -04:00
Jeff Escalante
fe4c38984a
Track 404 Pages with Analytics ( #8667 )
...
Co-authored-by: Jonathan Neal <jonathantneal@hotmail.com>
2020-04-02 14:37:33 -04:00
Jeff Escalante
2ab01a20b4
anchor links don't hide behind the nav ( #8659 )
2020-04-02 14:26:24 -04:00
Angel Rivera
9bcb05263c
fixed some grammar issue ( #8645 )
...
* fixed some grammar issue
The sentence did read clearly so I added a change to make it read a little cleaner
* Update website/pages/docs/secrets/index.mdx
Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
2020-03-31 16:11:14 -07:00
Jeff Escalante
8af56bd620
Anchor Link Fixes ( #8572 )
...
* update anchor link algorithm
* update deps
* update content component
* fix a lot of broken links
2020-03-31 15:21:16 -04:00
Brian Kassouf
b6f8fcb164
Update index.mdx
2020-03-30 16:32:24 -07:00
Lynn Frank
423acfd4dd
Updates the k8s helm platform docs ( #8632 )
...
* Updates the k8s helm platform docs
- Updates to talk about the external mode
- Updates the helm install overview to show that the releases can also
be the way to install
- Rewrites the how-to to include showing how to start in each mode
- Each mode that has a guide links off to a guide
- Re-organizes the Unseal and Init to a section and places all the
various other unseals underneath it
- Moves updating below the unseal and init
- Shows some basic usage of the helm CLI with a value and file override
* Adds learn links for k8s index pages
* Adds helm dev and external vault examples
While the dev one may seem obvious I think that it's incredibly useful
to cover our bases if this is to be reference documentation. I thought
maybe the example could have ingress support for UI but do not have the
experience to recommend it.
* Adds helm docs example dev and external
- places the development first as it feels like the starting point for
some.
- places the external after HA
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-03-30 17:35:08 -04:00
Jonathan Neal
6550ba2b0e
Use HashiHead Component ( #8549 )
...
Co-authored-by: Jeff Escalante <jescalan@users.noreply.github.com>
2020-03-30 13:30:56 -04:00
aphorise
f881b5efde
Overtabed example corrected. ( #8633 )
...
Corrected code snippet to be copy paste ready (& properly terminating).
2020-03-30 09:48:52 -07:00
Ryan Treat
d0585c175b
Add doc for Venafi Secrets Engine ( #8596 )
2020-03-27 18:46:18 -07:00
Jason O'Donnell
846d82e95e
docs: change code blocks to bold in k8s doc ( #8626 )
2020-03-27 12:12:51 -04:00
Michel Vocks
eeeda05ecc
Add missing API doc for DR secondary disable ( #8614 )
...
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-03-25 13:55:29 -04:00
Shang Jian Ding
d132332ec5
Fix grammar error in deploy.html.md ( #7971 )
...
* Fix grammer error in deploy.html.md
Changed "Initialization is the process configuring the Vault." to
"Initialization is the process of configuring the Vault."
* Fix grammer error in deploy.html.md
Change "Initialization is the process configuring the Vault."
to "Initialization is the process of configuring the Vault."
2020-03-25 10:15:27 -07:00
Colum McGaley
68baf25781
Update gc telemetry information ( #8445 )
...
* Update gc telemetry information
Fix total_gc_pause_ns units (should be ns not ms) and add gc_pause_ns description
* Update telemetry.mdx
2020-03-24 16:40:53 -07:00
Alexis Vanier
84f6b6cdac
Add the Canal Erlang client library ( #8322 )
2020-03-24 14:21:56 -07:00
Brian Walendzinski
f8093acdcd
fix lease command examples ( #8439 )
...
Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
2020-03-24 13:33:05 -07:00
Martins Sipenko
2457fcd723
Update lease.mdx ( #8330 )
2020-03-24 11:52:36 -07:00
Adrian Todorov
65ad0d87f9
fix extensions name in client signing example ( #8593 )
...
"extension" does nothing, the proper syntax seems to be "extensions"
2020-03-24 11:43:40 -07:00
Jasmin Young
9f29f6f97d
Update policies.mdx ( #8202 )
...
Minor spelling revisions
2020-03-24 11:14:36 -07:00
Mike Jarmy
8af84ea9b9
bump website version to 1.3.4 ( #8595 )
2020-03-20 13:41:13 -04:00
Brian Shumate
64c55d7337
API Docs: Secrets/OpenLDAP ( #8521 )
...
* API Docs: Secrets/OpenLDAP
- Update HTTP methods to POST for unsupported (GET) methods on:
- /openldap/rotate-root
- /openldap/rotate-role/:role_name
* Update website/pages/api-docs/secret/openldap/index.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/api-docs/secret/openldap/index.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-03-20 12:00:39 -04:00
Ross Vandegrift
c0885b0dfc
Doc: provide info on postgres secrets connection config ( #8516 )
...
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-03-20 11:24:02 -04:00
Karl Fischer
a7eec55edf
add vsh to related tools page ( #8566 )
...
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-03-19 17:31:35 -04:00
Vishal Nayak
df5c43d2c1
Raft telemetry ( #8550 )
...
* Raft telemetry
* Add descriptions and fix alignment
* Add leadership changes section
* Copy from Consul docs
* Minor changes
2020-03-17 12:51:05 -07:00
Vishal Nayak
5647f978f1
Raft cli docs ( #8548 )
...
* Raft cli docs
* s/raft/Raft
* s/raft/Raft
* Update website/pages/docs/commands/operator/raft.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Mention that shamir seal requires unseal keys
Co-authored-by: Meggie <m.ladlow@gmail.com>
2020-03-17 09:46:44 -04:00
Jeff Escalante
f4de04d87e
Website Deps Upgrade ( #8571 )
...
* update dependencies
* breaking change update
2020-03-16 11:56:44 -07:00
Jim Kalafut
b949dc622b
Update JWT docs ( #8525 )
2020-03-14 14:45:30 -07:00
Jim Kalafut
16ad0ded58
Update database docs ( #8554 )
...
Redshift was missing from the sidebars, as was a reference to static
roles in MongoDB.
2020-03-14 14:45:13 -07:00
Becca Petrin
450275f6dc
document disable_fast_negotiation ( #8542 )
2020-03-13 15:45:40 -07:00
Jeff Escalante
591e574838
release process improvements ( #8564 )
2020-03-13 15:42:56 -07:00
Yoko
0cee7306be
Fixes reported missing link ( #8557 )
2020-03-13 14:48:03 -07:00
Jeff Escalante
8890885b0d
add link checker, fix broken links ( #8326 )
2020-03-13 10:49:29 -07:00
Jonathan Neal
3043c3b14a
Add print styles ( #8408 )
...
Co-authored-by: Jeff Escalante <jescalan@users.noreply.github.com>
2020-03-13 10:14:08 -07:00
Jonathan Neal
7442b22f41
Replace internal ProductSubnav with @hashicorp/react-subnav ( #8473 )
2020-03-13 10:00:18 -07:00
ncabatoff
fedfb3d171
Add a note about http_max_conns_per_client. ( #8344 )
2020-03-13 07:50:00 -04:00
Jeff Mitchell
8dd936d738
Remove the versus section on the website. ( #8538 )
...
* Remove the versus section on the website.
We don't keep it maintained, it's very out of date, and we don't really
like comparing ourselves to other software anyways; it's not fair to
describe other software or solutions in ways that may not align with
how they want to be described.
Co-authored-by: Jeff Escalante <jescalan@users.noreply.github.com>
2020-03-12 18:17:15 -04:00
Daniel Spangenberg
8007845ba4
Fix SRV Lookups ( #8520 )
...
* Pin HTTP Host header for all client requests
* Drop port map scheme
* Add SRV Lookup environment var
* Lookup SRV records only when env var is specified
* Add docs
Co-Authored-By: Michel Vocks <michelvocks@gmail.com>
2020-03-11 14:22:58 +01:00
Jim Kalafut
0f2aa1401c
Update LDAP docs for anonymous_group_search ( #8501 )
2020-03-09 13:21:28 -07:00
Jim Kalafut
4aae569e36
Update JWT docs ( #8513 )
...
Add mention of new CLI parameters.
2020-03-09 13:19:25 -07:00
Jim Kalafut
3b21385937
Add docs for GCP Secrets rotate root operation ( #8514 )
2020-03-09 13:09:03 -07:00
Daniel Spangenberg
cf16f3e1a8
Document MSSQL revocation behaviour ( #8506 )
...
See #7725
2020-03-09 15:09:15 +01:00
Jason O'Donnell
f4fffa8bb8
doc: update openldap with racf schema support ( #8491 )
2020-03-06 14:46:33 -08:00
Becca Petrin
8da5bb27dd
Docs for Kubernetes Helm with Vault Enterprise ( #8283 )
2020-03-06 13:36:06 -08:00
Caine Jette
1fa482e20a
Fix wording in help text ( #8438 )
...
Add "at" in "the UI is accessible at the following URL"
Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
2020-03-06 08:26:18 -08:00
Brian Shumate
9c3b2f6cc8
API Docs: edits to OpenLDAP secrets engine ( #8490 )
...
- Fix typo
- Remove trailing spaces
2020-03-06 10:18:44 -05:00
Brian Kassouf
5481ffe13b
Update raft.mdx
2020-03-05 17:02:31 -08:00
Brian Kassouf
d71584a64d
Doc: Raft retry join ( #8448 )
...
* Doc: Raft retry join
* Update website/pages/docs/configuration/storage/raft.mdx
Co-Authored-By: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update website/pages/docs/configuration/storage/raft.mdx
Co-Authored-By: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update website/pages/docs/configuration/storage/raft.mdx
Co-Authored-By: Brian Kassouf <briankassouf@users.noreply.github.com>
* Update website/pages/docs/configuration/storage/raft.mdx
Co-Authored-By: Brian Kassouf <briankassouf@users.noreply.github.com>
* Address review feedback
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
2020-03-05 16:47:10 -08:00
Jason O'Donnell
f9c03dbb71
docs: update vault k8s to 0.3.0 ( #8479 )
...
* docs: update vault k8s to 0.3.0
* Update descriptions
* Clarify init-first annotation description
* Update website/pages/docs/platform/k8s/injector/annotations.mdx
Co-Authored-By: Jim Kalafut <jkalafut@hashicorp.com>
Co-authored-by: Jim Kalafut <jim@kalafut.net>
2020-03-05 11:21:01 -05:00
Brian Kassouf
c70310896d
Add some integrated raft storage docs ( #8417 )
...
* Add migration docs for raft storage
* Add link to cluster addr config parameter
* Add raft internals page
* Fix page headers
* Add performance_multiplier docs
* Add a few more raft config options
* Add default value
* Add not about join using seals
* Update website/pages/docs/commands/operator/migrate.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/docs/configuration/storage/raft.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/docs/configuration/storage/raft.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/docs/internals/integrated-storage.mdx
Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>
* Update website/pages/docs/internals/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/internals/integrated-storage.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Update website/pages/docs/configuration/storage/raft.mdx
Co-Authored-By: Meggie <m.ladlow@gmail.com>
* Review feedback
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
Co-authored-by: Meggie <m.ladlow@gmail.com>
2020-03-04 12:58:51 -08:00
Jim Kalafut
47dd9c0d36
Correct GCP auth permissions list. ( #8454 )
...
Remove `listInstances`, which isn't a valid permission.
2020-03-02 21:43:07 -08:00
Calvin Leung Huang
59cd954206
docs: add audit non-hmac-* flags to command docs ( #8250 )
2020-03-02 11:36:10 -05:00
Mike Green
0e08162cd2
adding prometheus info to make more self-service ( #8312 )
2020-03-02 11:21:50 -05:00
Stuart Purgavie
5b09fc6c43
Remove unintentional duplicate string ( #8430 )
...
Same string noted in documentation twice, updating to expected string based on context.
2020-02-28 14:48:53 -05:00
Jim Kalafut
6c5b85d59d
Minor docs update ( #8428 )
2020-02-27 00:11:05 -05:00
Jim Kalafut
6e7cd0580c
Add MongoDB API docs ( #8389 )
2020-02-22 11:39:36 -08:00
Jason O'Donnell
d7fbd85fd5
docs: add enterprise note to k8s service discovery ( #8410 )
2020-02-21 17:12:27 -05:00
Theron Voran
17efdd6336
docs: vault-helm 0.4.0 updates ( #8318 )
...
Updated docs for vault-helm 0.4.0 configuration changes, and helm 3
support (dropping helm 2). Also some spelling changes, and shortened
page titles for the k8s helm examples.
2020-02-21 12:10:38 -08:00
Becca Petrin
24ae59b317
correct the okta docs ( #8403 )
2020-02-21 11:13:42 -08:00
Jim Kalafut
1bc1b45c07
Update identity token docs ( #8398 )
...
`client_id` is configurable as of version 1.4.
2020-02-21 10:59:09 -08:00
Jason O'Donnell
587b331d8f
docs: add openldap secret engine ( #8388 )
...
* docs: add openldap secret engine
* Update format of types
* Add to sidebars
* Fix formatting
2020-02-21 10:55:15 -05:00
tionebsalocin
5db4f3d55d
[Doc] Fix curl example syntax in the plugins reload backend ( #8380 )
...
documentation
2020-02-21 13:01:59 +01:00
Vishal Nayak
348cf9f52f
Seal Migration doc update ( #8405 )
2020-02-21 06:57:48 -05:00
Daniel Fanara
2980d06e5a
Docs: Add port paramter to MSSQL docs ( #8402 )
2020-02-21 08:55:21 +01:00
Calvin Leung Huang
e9ff1dc23a
website: add alert box for 1.4.0-beta1 ( #8400 )
...
* website: add alert box for 1.4.0-beta1
* fix prerelease notification
Co-authored-by: Jeff Escalante <jescalan@users.noreply.github.com>
2020-02-20 16:46:31 -08:00
Angel Garbarino
971826a646
Add API documentation about the sys/internal/counters endpoints ( #8390 )
2020-02-19 14:47:53 -07:00
Becca Petrin
13a44b2e0b
Add docs for Kubernetes service discovery feature ( #8374 )
...
* add docs for kube service discovery
* give example with env vars only
* improve doc flow
* strip note about active being sometimes applicable
2020-02-19 13:34:18 -08:00
Jim Kalafut
c263f7beb1
Update API docs for OIDC form_post mode ( #8373 )
2020-02-19 09:21:29 -08:00
Markus Nilsson
d8ea61f91a
Docs: Fix anchor link to Generating JWTs ( #8368 )
2020-02-18 13:11:48 +01:00
JulesRenz
c54c8c92bd
RSA3072 implementation in transit secrets engine ( #8151 )
...
* RSA3072 implementation in transit secrets engine
* moved new KeyType at the end of the list
So already stored keys still work properly
Co-authored-by: Jim Kalafut <jim@kalafut.net>
2020-02-15 14:40:50 -08:00
Gerardo Di Giacomo
8573eefe90
enabling TLS 1.3 support for TCP listeners ( #8305 )
...
* adding support for TLS 1.3 for TCP listeners
* removed test as CI uses go 1.12
* removed Cassandra support, added deprecation notice
* re-added TestTCPListener_tls13
2020-02-15 11:40:18 -08:00
Clint
39f1d26902
Docs enforce autoauth token ( #8270 )
...
* rename UseAutoAuthForce to ForceAutoAuth, because I think it reads better
* Document 'ForceAuthAuthToken' option for Agent Cache
* Update website/pages/docs/agent/caching/index.mdx
Co-Authored-By: Jim Kalafut <jkalafut@hashicorp.com>
* Add additional tests around use_auto_auth=force and add documentation
* remove note, it's no longer correct
Co-authored-by: Jim Kalafut <jim@kalafut.net>
2020-02-14 15:48:12 -06:00
Clint
d3cda0fe2c
Guard against using Raft as a seperate HA Storage ( #8239 )
...
* Guard against using Raft as a seperate HA Storage
* Document that Raft cannot be used as a seperate ha_storage backend at this time
* remove duplicate imports from updating with master
2020-02-14 14:25:53 -06:00
Jim Kalafut
0ab4c138c2
Update identity API docs ( #8351 )
2020-02-13 23:29:32 -08:00
Michael Golowka
635b957e76
Add x509 Client Auth to MongoDB Database Plugin ( #8329 )
...
* Mark deprecated plugins as deprecated
* Add redaction capability to database plugins
* Add x509 client auth
* Update vendored files
* Add integration test for x509 client auth
* Remove redaction logic pending further discussion
* Update vendored files
* Minor updates from code review
* Updated docs with x509 client auth
* Roles are required
* Disable x509 test because it doesn't work in CircleCI
* Add timeouts for container lifetime
2020-02-13 15:54:00 -07:00
Michael Golowka
ee2843a3b2
Update Oracle DB secrets docs to reflect support for static roles ( #8168 )
...
* Fix typos
* Update Oracle DB secrets docs to show support for Static Roles
* Add warning about username case sensitivity
* Remove warning about casing
* Fix typo
Co-Authored-By: Becca Petrin <beccapetrin@gmail.com>
Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
2020-02-13 15:11:33 -07:00
Jeff Malnick
27ad920399
Add redshift database plugin ( #8299 )
...
* feat: add redshift database plugin
* build: update vendored libraries
* docs: add reference doc for redshift variant of the database secrets engine
* feat: set middlewear type name for better metrics naming (#8346 )
Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
2020-02-13 09:42:30 -08:00
Darshana Sivakumar
ef687a97a6
Adding a new replication metric (WAL GC counter) ( #8241 )
...
* Adding a new replication metric (WAL GC counter)
Adding a new line about the vault.replication.wal.gc metric
* Update website/pages/docs/internals/telemetry.mdx
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
2020-02-07 23:04:59 -08:00
Jim Kalafut
2ee7b76469
Bundle MongoDB Atlas ( #8309 )
2020-02-07 14:09:39 -08:00
Michel Vocks
3a4d330f64
Return error when a standby node receives a metrics request ( #8280 )
...
* Return error when a standby node receives a metrics request
* fix test
* Add documentation note
2020-02-07 09:30:25 +01:00
Vlad Ungureanu
1081446ac9
Update vault azure api docs ( #8276 )
...
By reading the code looks like `subscription_id` and `resource_group_name` are required in the end https://github.com/hashicorp/vault-plugin-auth-azure/blob/master/path_login.go#L192-L194 .
2020-02-06 12:51:34 -08:00
Brian Choy
85877e52a4
Fix typo in vault agent injector example docs ( #8302 )
...
Fix mispelling of `annotation`.
2020-02-05 15:57:09 -08:00
ncabatoff
cfcb9d2218
Update seal migration docs re limitations and different scenarios ( #8298 )
2020-02-05 15:30:04 -05:00
Dan Lafeir
fe80e136da
Add a specific reference to AWS IAM Unique Identifiers ( #8209 )
...
* Add specification about AWS IAM Unique Identifiers
We experienced an issue where IAM roles resources were re-provisioned with the same ARNs and no change had been made to our vault role configuration but users lost access with `-method=aws`. It wasn't immediately clear to us how IAM Unique Identifiers where being used to avoid the same situations outlined in the AWS documentation. We eventually concluded that re-provisioning the roles in our auth/aws/auth would fetch the new IAM Unique Identifiers.
I hope that this small amendment helps people avoid this problem in the future.
2020-02-04 15:31:48 -08:00
Jamie Finnigan
fa2544cf5e
fix <name> entity encoding for Secrets Engines Metrics section ( #8290 )
2020-02-04 15:06:10 -08:00
glerb
4f25ed2b08
Improve clarity of IAM flow explanation ( #8275 )
2020-02-03 10:14:09 -08:00
ncabatoff
03b14d8a64
Upgrade okta sdk lib ( #8143 )
...
Upgrade to new official Okta sdk lib. Since it requires an API token, use old unofficial okta lib for no-apitoken case.
Update test to use newer field names. Remove obsolete test invalidated by #4798 . Properly handle case where an error was expected and didn't occur.
2020-02-03 12:51:10 -05:00
Jason O'Donnell
8f2347f93a
docs: update vault k8s to 0.2.0 ( #8269 )
...
* doc: update vault-k8s to 0.2.0
* Add debugging note
2020-01-31 11:22:39 -05:00
Daniel Spangenberg
1c1d93a21c
Fix default max_open_connections for db plugins ( #8262 )
2020-01-30 17:33:04 +01:00
Sarai
74a6d02a89
Fix broken link ( #8259 )
...
- https://www.vaultproject.io/api/secret/pki/index.html#create-update-role
- https://www.vaultproject.io/api/secret/pki/index.html#createupdate-role
2020-01-30 08:12:24 -08:00
Raoof Mohammed
0b7afcc728
docs: fix api path for merge entity identity doc ( #8258 )
2020-01-29 08:56:36 -08:00
Michel Vocks
f695eb737b
Add Consul TLS options to access API endpoint ( #8253 )
2020-01-29 09:44:35 +01:00
Michel Vocks
96a6857f0c
Docs: Add nomad TLS options ( #8254 )
2020-01-29 09:38:54 +01:00
Chris Hoffman
0ebf3c3e40
fixing static pdf compliance letter ( #8248 )
2020-01-27 15:40:55 -05:00
Theron Voran
890f4b63a6
Show bound_service_accounts in gce example ( #8236 )
...
Shows that the GCP auth option `bound_service_accounts` can be used
for gce-type roles as well as iam.
2020-01-27 11:48:21 -08:00
Daniel Spangenberg
eea26c6af1
Clarify the k8s helm run docs ( #8235 )
2020-01-27 14:54:59 +01:00
Chris Hoffman
efb2152759
Adding pricing module note for enterprise features ( #8217 )
...
* adding pricing module note for enterprise features
* fixing incorrectly committed go.mod
2020-01-24 19:18:22 -05:00
Becca Petrin
fc09eb1e6b
Add Kerberos agent docs ( #8220 )
...
* add kerberos agent docs
* use relative doc link
2020-01-24 14:40:41 -08:00
Nicole Forrester
c5cbb43f39
Website: Update diagram images ( #8214 )
2020-01-24 14:52:26 -05:00
Aaron Bedra
ddf38d8391
Fix example url for sys/wrapping/rewrap ( #8222 )
2020-01-23 21:09:53 -08:00
Mike Ruth
eb592f05fb
Update API to include roleset TTL parameter ( #8231 )
...
Include documentation on including the TTL parameter for service account key rolesets. [Associated PR](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/54 )
2020-01-23 17:54:28 -08:00
Michael Golowka OR 1=1); DROP TABLE users; --
8a8f9029d6
Update Kubernetes docs to include Kubernetes Auth method ( #8046 )
...
* Improve standalone with TLS example
- Documented creating a key & cert for serving Vault endpoints
- Removed unneeded configuration in custom values.yaml
- Updated examples to 1.3.0
* Add 127.0.0.1 to CSR
* Grammar & minor formatting
* Add additional DNS entry for CSR
* Split examples into individual pages
* Add Kubernetes Auth Method example
* Remove old examples file
* Fix rebase fail
* Remove global section of yaml files that aren't needed
* Fix minor typos
* Fix typos that didn't get carried over from previous PR
* Re-copy from previous examples file to resolve rebase issues
* update dependencies
Co-authored-by: Jeff Escalante <jescalan@users.noreply.github.com>
2020-01-23 13:14:01 -07:00
Jeff Escalante
3511bf8293
[website] fix a couple broken links ( #8190 )
...
* fix a couple broken links
* extra redirect
* another shot at redirects
2020-01-22 12:31:42 -08:00
Jeff Escalante
0062ad382d
[website] implement postgres/secrets redirect ( #8208 )
...
* add secrets/postgresql redirect
* change name of old path
* ensure deprecated pages are not indexed by search engines
* remove deprecated page from navigation
2020-01-22 12:29:37 -08:00
Jeff Escalante
4f87851926
[website] Link Cleaning ( #8205 )
...
* update dependencies
* remove hard-coded vaultproject.io on local links
* remove 'index.html' from internal links
* remove '.html' at end of internal links
* manual review cleanup
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-01-22 12:05:41 -08:00
Clint
3b39b30e12
cleanup formatting on database index doc ( #8207 )
2020-01-22 09:57:03 -06:00
Calvin Leung Huang
ffd90709f3
docs: update entropy augmentation page ( #8185 )
...
* docs: update entropy augmentation page
* remove .html extension in links
* remove .html extension in links
2020-01-21 15:05:53 -08:00
Michael Golowka OR 1=1); DROP TABLE users; --
d9ed6b845c
Improve Helm chart example for standalone with TLS configuration ( #8022 )
...
* Improve standalone with TLS example
- Documented creating a key & cert for serving Vault endpoints
- Removed unneeded configuration in custom values.yaml
- Updated examples to 1.3.0
* Add 127.0.0.1 to CSR
* Grammar & minor formatting
* Add additional DNS entry for CSR
* Fix typos, formatting, and other minor issues
* Use correct header depth for Helm Configuration
Co-Authored-By: Theron Voran <tvoran@users.noreply.github.com>
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-01-21 15:44:14 -07:00
Clint
b7c2acccd9
Website: Fix configuration links from Helm run docs ( #8201 )
2020-01-21 13:30:35 -06:00
DDd
d1b4082fb3
Fix k8s docs for running standalone ( #8199 )
...
* instruction for HA was actually for standalone.
2020-01-21 19:46:33 +01:00
Clint
6b16f7521a
update 'learn about the configuration options' link ( #8146 )
2020-01-21 12:06:42 -06:00
Mikko Ekström
1f034ee380
Fix typo in YAML markup ( #8194 )
2020-01-20 16:39:51 +01:00
Jim Kalafut
fdb7416b02
Fix typo ( #8192 )
...
Fixes #8189
2020-01-18 20:18:57 -08:00
Daniel Spangenberg
c64c2bf512
Fix k8s injector examples ( #8179 )
2020-01-18 14:47:18 +01:00
Becca Petrin
aebfdc7516
Strip unnecessary payload in AD root cred rotation example ( #8160 )
...
* strip unnecessary payload in example
* strip other unnecessary payload
2020-01-17 16:49:36 -08:00
Jeff Escalante
df34412570
New Website! ( #8154 )
...
* new documentation website
* ci job adjustment
* update to latest version on downloads page
* remove transition-period scripts
* add netlify toml file
* fix docs patch
* fix ci config?
* revert go.mod changes
* a couple last markdown formatting fixes
2020-01-17 16:18:09 -08:00