Karl Gutwin
|
151ec72d00
|
Add configuration options for default lease duration and max lease duration.
|
2015-07-30 09:42:49 -04:00 |
|
Armon Dadgar
|
41b72a4d39
|
vault: provide view to backend initializer for setup
|
2015-06-30 17:30:43 -07:00 |
|
Armon Dadgar
|
8bc99f8c23
|
helper/uuid: single generateUUID definition
|
2015-06-30 12:38:32 -07:00 |
|
Armon Dadgar
|
496ebe561c
|
vault: cleanups for the audit log changes
|
2015-06-29 15:27:28 -07:00 |
|
Nate Brown
|
b667ef4c71
|
Collapsing audit response logging to a single point
|
2015-06-18 19:48:26 -07:00 |
|
Nate Brown
|
4ec685dc1a
|
Logging authentication errors and bad token usage
|
2015-06-18 18:30:18 -07:00 |
|
Armon Dadgar
|
dbf6cf6e6d
|
vault: support core shutdown
|
2015-06-17 18:23:59 -07:00 |
|
Armon Dadgar
|
5c75a6c5c7
|
vault: ensure token renew does not double register
|
2015-06-17 15:22:50 -07:00 |
|
Armon Dadgar
|
daffef08db
|
vault: reload master key before keyring
|
2015-05-29 14:30:03 -07:00 |
|
Armon Dadgar
|
4f5fde039f
|
vault: all rekey commands should fail as standby
|
2015-05-29 11:52:37 -07:00 |
|
Armon Dadgar
|
5aaad32af8
|
vault: ensure upgrades are cleaned up
|
2015-05-28 16:52:06 -07:00 |
|
Armon Dadgar
|
db0afc9ebe
|
vault: move upgrade logic out of core
|
2015-05-28 16:43:44 -07:00 |
|
Armon Dadgar
|
82ef0b1ac7
|
vault: handle read of key upgrades
|
2015-05-28 16:11:31 -07:00 |
|
Armon Dadgar
|
c60970e743
|
vault: prevent rekey on standby
|
2015-05-28 15:26:35 -07:00 |
|
Armon Dadgar
|
01e890653c
|
vault: more logging
|
2015-05-28 14:15:06 -07:00 |
|
Armon Dadgar
|
0877160754
|
vault: minor rekey cleanups
|
2015-05-28 12:07:52 -07:00 |
|
Armon Dadgar
|
361c722c5c
|
vault: first pass at rekey
|
2015-05-28 11:40:01 -07:00 |
|
Armon Dadgar
|
3bcd32228d
|
vault: lease renewal should not create new lease entry
|
2015-05-15 17:47:39 -07:00 |
|
Armon Dadgar
|
843d9e6484
|
vault: verify login endpoint never returns a secret
|
2015-05-09 11:51:58 -07:00 |
|
Armon Dadgar
|
13ab31f4b5
|
vault: ensure InternalData is never returned from the core
|
2015-05-09 11:47:46 -07:00 |
|
Armon Dadgar
|
c7496772d4
|
vault: defer barrier initialization until as late as possible
|
2015-05-08 11:06:39 -07:00 |
|
Armon Dadgar
|
a6eef6bba3
|
vault: Guard against an invalid seal config
|
2015-05-08 11:05:31 -07:00 |
|
Mitchell Hashimoto
|
727e0e90cd
|
vault: validate advertise addr is valid URL [GH-106]
|
2015-05-02 13:28:33 -07:00 |
|
Mitchell Hashimoto
|
e80111502b
|
vault: way more verbose error if mlock fails [GH-59]
|
2015-04-28 18:56:16 -07:00 |
|
Mitchell Hashimoto
|
b5f8f3b05a
|
vault: add helper/mlock for doing mlock
|
2015-04-28 14:59:43 -07:00 |
|
Mitchell Hashimoto
|
2e55c3de68
|
vault: ability to toggle mlock on core
|
2015-04-27 16:40:14 -07:00 |
|
Armon Dadgar
|
2f0995d650
|
vault: Swap the HAEnabled check with the sealed check
|
2015-04-20 12:19:09 -07:00 |
|
Armon Dadgar
|
c5f914cb34
|
vault: Lock memory when possible
|
2015-04-19 13:42:47 -07:00 |
|
Armon Dadgar
|
4473abd6ce
|
vault: core enforcement of limited use tokens
|
2015-04-17 11:57:56 -07:00 |
|
Armon Dadgar
|
b65e1b3e22
|
vault: using a constant to make @mitchellh feel better
|
2015-04-15 17:19:59 -07:00 |
|
Armon Dadgar
|
76b69b2514
|
vault: thread the display name through
|
2015-04-15 14:12:34 -07:00 |
|
Armon Dadgar
|
9f7143cf44
|
vault: expose the current leader
|
2015-04-14 16:53:40 -07:00 |
|
Armon Dadgar
|
445f64eb39
|
vault: leader should advertise address
|
2015-04-14 16:44:48 -07:00 |
|
Armon Dadgar
|
ec8a41d2d2
|
vault: rename internal variable
|
2015-04-14 16:11:39 -07:00 |
|
Armon Dadgar
|
2820bec479
|
vault: testing standby mode
|
2015-04-14 16:06:58 -07:00 |
|
Armon Dadgar
|
a0e1b90b81
|
vault: reject operation if standby
|
2015-04-14 14:09:11 -07:00 |
|
Armon Dadgar
|
d7102e2661
|
vault: first pass at HA standby mode
|
2015-04-14 14:06:15 -07:00 |
|
Armon Dadgar
|
255e0fbda4
|
vault: enable physical cache in core
|
2015-04-14 11:08:04 -07:00 |
|
Armon Dadgar
|
512b3d7afd
|
vault: Adding metrics profiling
|
2015-04-08 16:43:17 -07:00 |
|
Armon Dadgar
|
466c7575d3
|
Replace VaultID with LeaseID for terminology simplification
|
2015-04-08 13:35:32 -07:00 |
|
Armon Dadgar
|
eaa483ff87
|
vault: Enforce default and max length leasing
|
2015-04-03 15:42:34 -07:00 |
|
Armon Dadgar
|
eec6c27fae
|
vault: Special case auth/token/create
|
2015-04-02 18:05:23 -07:00 |
|
Armon Dadgar
|
c6479642e9
|
vault: integrate login with expiration manager
|
2015-04-02 17:52:11 -07:00 |
|
Armon Dadgar
|
4138e43f00
|
vault: Adding audit trail for login
|
2015-04-01 14:48:37 -07:00 |
|
Armon Dadgar
|
3d3e18793b
|
vault: Integrate audit logging with core
|
2015-04-01 14:33:48 -07:00 |
|
Armon Dadgar
|
b657b74a97
|
vault: Minor rework for clarity
|
2015-04-01 14:11:26 -07:00 |
|
Armon Dadgar
|
c83f46606b
|
vault: Simpify token checking logic
|
2015-04-01 14:03:17 -07:00 |
|
Mitchell Hashimoto
|
2c9ebecda7
|
vault: register zero lease entries with the expiration manager
/cc @armon - would appreciate a review on this one
|
2015-03-31 21:01:12 -07:00 |
|
Armon Dadgar
|
a6bc60c7d6
|
vault: Adding AuditBroker and basic tests
|
2015-03-31 13:22:40 -07:00 |
|
Mitchell Hashimoto
|
0666bda865
|
vault: require root token for seal
|
2015-03-31 09:59:02 -07:00 |
|