open-vault

luxolus/open-vault

Fork 0

Commit graph

Author	SHA1	Message	Date
Lars Lehtonen	5af6d5f07f	builtin/logical/aws: fix dropped test error (#12417 )	2021-08-26 15:55:39 +01:00
Theron Voran	e1a432a167	AWS: Add iam_groups parameter to role create/update (#8811 ) Allows vault roles to be associated with IAM groups in the AWS secrets engine, since IAM groups are a recommended way to manage IAM user policies. IAM users generated against a vault role will be added to the IAM Groups. For a credential type of `assumed_role` or `federation_token`, the policies sent to the corresponding AWS call (sts:AssumeRole or sts:GetFederation) will be the policies from each group in `iam_groups` combined with the `policy_document` and `policy_arns` parameters. Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>	2020-06-09 16:56:12 -07:00

Author

SHA1

Message

Date

Lars Lehtonen

5af6d5f07f

builtin/logical/aws: fix dropped test error (#12417 )

2021-08-26 15:55:39 +01:00

Theron Voran

e1a432a167

AWS: Add iam_groups parameter to role create/update (#8811 )

Allows vault roles to be associated with IAM groups in the AWS
secrets engine, since IAM groups are a recommended way to manage
IAM user policies. IAM users generated against a vault role will
be added to the IAM Groups. For a credential type of
`assumed_role` or `federation_token`, the policies sent to the
corresponding AWS call (sts:AssumeRole or sts:GetFederation) will
be the policies from each group in `iam_groups` combined with the
`policy_document` and `policy_arns` parameters.

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>

2020-06-09 16:56:12 -07:00

2 commits