c283930983
fix issue where unwrapping a response with an auth block wouldn't work ( #4611 )
2018-05-22 16:49:29 -05:00
1414eb5e32
Add a switch for the demo server to use version 2 kv mount by default
2018-05-22 17:31:36 -04:00
59a91dc472
changelog++
2018-05-22 16:52:18 -04:00
e55a3c7e9b
Update to TrustedCAFile for etcd as CAFile is deprecated and removed in latest libs
2018-05-22 15:46:39 -04:00
18f23f68a1
Specify go-oidc v2 for update-deps
2018-05-22 15:42:54 -04:00
44678e9ada
Fix possible nil pointer on mapping method ( #4609 )
2018-05-22 12:10:36 -07:00
11646db916
Seal Wrap / FIPS 140-2 Compliance guide ( #4558 )
...
* WIP - Seal Wrap guide
* WIP: Seal Wrap guide
* Added a brief description about the Seal Wrap guide
* Incorporated feedbacks
* Updated FIPS language
Technically everything looks great. I've updated some of the language here as "compliance" could be interpreted to mean that golang's crypto and xcrypto libraries have been certified compliant with FIPS. Unfortunately they have not, and Leidos' cert is only about how Vault can operate in tandem with FIPS-certified modules.
It's a very specific update, but it's an important one for some VE customers.
Looks great - thanks!
* Removed 'Compliance' from title
* typo fix
2018-05-22 11:23:11 -07:00
d60360ddbe
Add instructions for both kvv1 and kvv2 to getting started policies info
2018-05-22 14:07:12 -04:00
d88e4d5019
Mount Filters guide ( #4536 )
...
* WIP: Mount filter guide
* WIP
* Mount filter guide for CLI, API, and UI
* updated the next step
* Updated the verification steps
* Added a note about the unseal key on secondaries
* Added more details
* Added a reference to mount filter guide
* Added a note about generating a new root token
* Added a note about local secret engine
2018-05-22 08:57:36 -07:00
bc50ec113a
changelog++
2018-05-22 10:39:24 -04:00
3db5a6adaa
updating link
2018-05-22 10:00:20 -04:00
013e4e4d81
Fix typo ( #4607 )
2018-05-22 08:30:13 -04:00
4c1d8013f3
move fields and field parsing to helper ( #4603 )
2018-05-21 17:04:26 -07:00
ae43f2c25e
adding options information to mount endpoint ( #4606 )
2018-05-21 16:39:43 -04:00
7ec2cb5f37
Update CHANGELOG.md
2018-05-21 14:54:05 -04:00
e42a99ced3
update hmac form and component to use 'algorithm' instead of 'hash-algorithm' ( #4604 )
2018-05-21 14:50:54 -04:00
fb04064967
Restrict userpass logins & tokens by CIDR ( #4557 )
2018-05-21 11:47:28 -07:00
bc4372741f
Don't reload singleton mounts ( #4593 )
2018-05-21 11:05:04 -07:00
d0402f5084
changelog++
2018-05-21 09:21:24 -04:00
c737778c8d
Make description of prehashed a bit more friendly
2018-05-21 09:08:22 -04:00
cec2123a98
changelog++
2018-05-19 13:25:27 -04:00
72200603c6
Fix role writing not allowing key_type of any ( #4596 )
...
Fixes #4595
2018-05-19 10:24:43 -07:00
3a568b6175
Update key_type parameter description
2018-05-19 12:20:37 -04:00
701275aa21
Bump travis go version
2018-05-19 12:07:13 -04:00
6d93ea4d77
Docs: Clarify that revoking token revokes dynamic secrets ( #4592 )
2018-05-18 23:27:53 -07:00
0e627dc4c6
Update issue templates
2018-05-18 17:49:30 -04:00
9653b539a6
Update issue templates
2018-05-18 17:46:31 -04:00
84e1c87d3c
Update issue templates
2018-05-18 17:20:36 -04:00
c03d80e81d
changelog++
2018-05-18 16:35:01 -04:00
6b345ccdef
Use copystructure when assigning allowed/denied params from nil check ( #4585 )
...
Fixes #4582
2018-05-18 13:33:49 -07:00
90d305a322
Optimize revokeSalted by not calling view.List twice ( #4465 )
...
* Optimize revokeSalted by not calling view.List twice
* Minor comment update
* Do not go through the orphaning dance if we are revoking the entire tree
* Update comment
2018-05-18 12:14:42 -07:00
95958dd9f9
Use a token store with an initialized exp mananger in TestTokenStore_RevokeSelf ( #4590 )
2018-05-18 12:13:37 -07:00
484b32d3da
Update go-retryablehttp de
2018-05-18 15:11:44 -04:00
d7017c7924
Return as internal error on failed token lookup ( #4589 )
2018-05-18 10:14:31 -07:00
c42276bc3a
Update command in UI DR guide to non-deprecated version ( #4588 )
2018-05-18 09:43:12 -07:00
5a35dac726
Add missing drsecondarycode to health API docs
2018-05-18 12:39:13 -04:00
08720c93ec
Return ts.Lookup error on handleCreateCommon ( #4587 )
...
* Return ts.Lookup error on handleCreateCommon
* Fix test
2018-05-18 09:30:03 -07:00
30dc66221c
Flip documented resolve_aws_unique_id value
...
Fixes #4583
2018-05-18 12:05:52 -04:00
9813794bc2
Add documentation for MySQL 5.6 root rotation ( #4584 )
...
The default root rotation statement for MySQL is only valid for 5.7 and
up. This commit adds example documentation for 5.6.
Fixes #4567
2018-05-18 08:56:11 -07:00
9050bc809b
Rename Google Container Engine to Google Kubernetes Engine ( #4586 )
2018-05-18 08:19:56 -07:00
6bfceb7f28
physical/zookeeper: Re-try to release lock in case of failure ( #4569 )
2018-05-17 15:52:50 -07:00
124271c1ec
Merge pull request #4580 from tavislikedavis/patch-1
...
Update policies.html.md
2018-05-17 09:14:35 -07:00
38f5f5f783
Updated for new syntax
2018-05-17 09:14:12 -07:00
4ab7275c95
Merge pull request #4575 from avoidik/patch-2
...
Add more essential notes into production hardening guide
2018-05-17 09:05:34 -07:00
63963a73a6
Update production.html.md
2018-05-17 09:05:08 -07:00
5dcfc63ee6
Fix GCP API parameter docs
2018-05-17 08:54:25 -07:00
21e79035e0
Move UI docs from enterprise to OSS ( #4565 )
2018-05-17 08:48:10 -07:00
3bd38517eb
Update KV response code ( #4568 )
...
Creating/Updating a secret in KV-V2 produces a status code `200` with a response body of `application/json`, whereas the previous documentation notated a `204 (empty body)` expected response code.
2018-05-17 08:46:19 -07:00
50e05056d3
Update policies.html.md
2018-05-16 14:35:30 -05:00
18c96d66f9
changelog++
2018-05-16 13:31:56 -04:00
Matthew Irish