Commit graph

12855 commits

Author SHA1 Message Date
Vishal Nayak 60fefde1ac changelog++ 2020-09-22 14:36:25 -04:00
Lauren Voswinkel 201fc8fd4d
Add content-sha256 as a default allowed STS header (#10009)
Also, alphabetize those headers... just because.
2020-09-22 10:02:37 -07:00
ncabatoff f8599a1670
changelog++ 2020-09-22 09:57:34 -04:00
Marco Rieger b634e1964d
fix missing plaintext in bulk decrypt response (#9991)
Decrypting an ciphertext where its corresponding value equals empty, the payload property "plaintext" is missing in the response object. This fixes the problem by adding a new, distinct struct for decrypt batch response items where "omitempty" is not set.
2020-09-22 09:43:07 -04:00
Lauren Voswinkel 15e608c0ed
Update AD secret engine docs for root cred rotation (#9990) 2020-09-21 16:21:14 -07:00
Chelsea Shaw 2289c9ef1d
CRUD for transform alphabets (#9989)
includes tests for templates and alphabets
2020-09-21 15:36:07 -05:00
Meggie 9190860cc0
docs: Change sidebar labeling to use Integrated Storage (#10002)
I changed some verbiage in the page as well.
2020-09-21 15:55:36 -04:00
Theron Voran 6a23328308
changelog++ 2020-09-21 12:00:21 -07:00
Vishal Nayak daa2c2b1e4 changelog++ 2020-09-21 13:56:51 -04:00
Vishal Nayak 4f3c833b94 Vendor diff 2020-09-21 13:43:21 -04:00
Mike Green 9eb1fb1df4
minor only ha_storage clarification (#10001) 2020-09-21 13:06:03 -04:00
Sebin John 9b3e244e40
Fix doc formatting. (#9994) 2020-09-21 10:01:43 -07:00
Michael Golowka 60e0cbbc37
[DBPW 4/X] Update DB engine to support v4 and v5 interfaces with password policies (#9878) 2020-09-18 15:10:54 -06:00
Jim Kalafut f01f053c34
changelog++ 2020-09-18 13:32:08 -07:00
Chelsea Shaw a8dcc3e6d9
changelog link 2020-09-18 14:53:23 -05:00
Chelsea Shaw 5b1df8c60b
changelog ++ 2020-09-18 14:52:41 -05:00
ncabatoff 2872702995
Use a longer timeout for DeriveActiveCore in the hopes that giving more time will allow for raft leader election failure to recover. (#9988) 2020-09-18 11:07:35 -04:00
ncabatoff 27c7a77624
When expiration attempts to revoke a cert that's not in storage (perhaps due to pki tidy), don't treat that as an error. Let the lease get expired. (#9880) 2020-09-17 16:15:03 -04:00
ncabatoff 0f77d0e282
Move the code that creates Consul containers out of teststorage. This allows importers of teststorage that don't need consul to run as a non-docker test. (#9975) 2020-09-17 15:44:29 -04:00
ncabatoff abdf5dfded
Force docker API version to use. (#9985) 2020-09-17 15:24:31 -04:00
Chelsea Shaw 41bf752080
Ui/transform templates (#9981)
Add CRUD capabilities on transform templates. Disallow read or edit for built-ins.
2020-09-17 14:08:06 -05:00
ncabatoff 64301d3b22
Allow for testing Consul with a different repo that requires auth. (#9983) 2020-09-17 13:05:24 -04:00
Scott Miller 539cf44b9b
Replace GF(256) division with a constant time impl (#9932) 2020-09-16 17:36:52 -05:00
ncabatoff 8d830fc772
Upgrade bolt to get 543c40ab41 to avoid panics in tests. (#9964) 2020-09-16 15:35:43 -04:00
ncabatoff 2cb1e03c1b
Fix flaky TestCluster_ForwardRequest tests. (#9973)
We now wait to see that clients are aware of a new leader before we hit them, and we wait to see that the leader has setup the forwarding handler.
2020-09-16 15:31:06 -04:00
acahn 795b118941
Update index.mdx (#9950)
MongoDB Atlas Language modernization update
2020-09-16 12:02:34 -07:00
Chelsea Shaw c548eebddd
replace identityType with 'entity' on model (#9958) 2020-09-16 13:57:13 -05:00
Theron Voran 0617fb45fa
Adding logger to CredentialsConfig (#9969) 2020-09-16 11:47:45 -07:00
Scott Miller 1229bf7440
Add a helper function which adds glob filtration to any LIST endpoint (#9962) 2020-09-16 10:29:57 -05:00
Lauren Voswinkel 5740e1ff9e
5844 AWS Root Credential Rotation (#9921)
* strip redundant field type declarations

* root credential rotation for aws creds plugin

* Change location of mocks awsutil and update methods that no longer exist

* Update website/pages/docs/auth/aws.mdx

Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>

* Update sdk version to get the awsutil mock file

* Re-vendor modules to pass CI

* Use write lock for the entirety of AWS root cred rotation

* Update docs for AWS root cred rotation for clarity

Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-09-15 15:26:56 -07:00
mgritter e8b7fd7ea9 changelong++ 2020-09-15 15:16:13 -07:00
Mark Gritter 587ed7d499
Disable usage metrics on performance standby nodes. (#9966) 2020-09-15 17:12:28 -05:00
Chelsea Shaw 117616ce0e
Update data-test selector on info-table-item-array for testing (#9963) 2020-09-15 15:11:58 -05:00
Jim Kalafut 4f3234d8ae
changelog++ 2020-09-15 12:05:50 -07:00
Chelsea Shaw 8e62cf66bc
Ui/transformation edit update roles (#9955)
* Update or create new role after allowed_roles on transformation updated

* Update tests to include transformation create/edit and role create scenarios
2020-09-15 13:46:35 -05:00
Angel Garbarino 382a519756
Ui/transform info table row roles (#9942)
* add dynamic segement to list-root so that you can sepecify the tab you want to go to

* create new info-table-item-array component to handle array items passed into a info-table

* do not underline links if they are in an info-table-row confirmed with design

* implement the InfoTableItemArray component

* amend wildcard helper to take in regular string

* setup the logic and more logic

* fix routing to roles issue

* test for new component

* change data-test-mode to count

* handle case when wildcardCount is 0
2020-09-15 12:11:24 -06:00
Mark Gritter 243d407dac
Disable flaky test: discard_role_newer_rotation_date (#9957)
* Temporarily disable discard_role_newer_rotation_date
2020-09-15 13:10:59 -05:00
Michael Golowka 186f4db91b
DBPW - Add test helpers for DB v5 interface (#9948) 2020-09-15 12:08:27 -06:00
Lauren Voswinkel c426390e74
Update CHANGELOG.md 2020-09-15 11:01:32 -07:00
Nick Cabatoff 326a607116 Restore original 60m timeout. 2020-09-15 12:03:39 -04:00
ncabatoff 5f4aeb0948
Only do the docker cp if we have a cache to copy. (#9954) 2020-09-15 10:49:38 -04:00
ncabatoff b615da43d7
Run CI tests in docker instead of a machine. (#8948) 2020-09-15 10:01:26 -04:00
Michael Golowka e9c64d1bdd
Add DBv5 plugin serving & management functions (#9745)
This mirrors what DBv4 is doing, but with the updated interface
2020-09-14 16:03:56 -06:00
Scott G. Miller 25bce5397e changelog++ 2020-09-14 15:21:03 -05:00
Alexander Bezobchuk c97e7e3951
Merge PR #9945: Bump raft to b7cd2b3 2020-09-14 15:47:57 -04:00
Scott Miller ed131225a2
Don't open a raft snapshot file until we have a successful snapshot response. (#9894)
* Don't open the snapshot file until we have a successful response

* Check the success of Close if nothing else errors
2020-09-14 12:22:45 -05:00
Scott Miller 4062c8a5c3
Add a note on performance and availability to the HSM behavior docs (#9923) 2020-09-14 11:28:23 -05:00
Mark Gritter 92bd8eae71
Convert time to UTC, add to OpenAPI (#9924)
* Add time type to OpenAPI.
* Fix documentation and convert returned time to UTC.
* changelog++
* Vendor the SDK changes.
2020-09-11 13:29:41 -05:00
Jason O'Donnell 9a9d886a2d
doc: add VAULT_DISABLE_MLOCK env (#9933) 2020-09-11 13:57:09 -04:00
Chelsea Shaw e61da5a662
Ui/transform role edit updates transformations (#9910)
* Update transform role delete button to be ConfirmAction with dropdown

* Set backend on fetched record so that it saves correctly

* Update transformation after role transformations changed works

* Clean up transform adapter

* Add role to allowed_roles on added transformations and remove from removed transformations on role save, with flash message

* Add backend to transform role model, and update serializer to add backend to paginated results

* Clean up error message handling

* Connect backend to transform roles list response

* Capabilities on transform roles is correct

* Fix cancel button on transform role edit location

* Fix model path

* Remove unnecessary tab param from controller

* Add backend to transform model
2020-09-11 12:29:20 -05:00