24d0af39b4
Initial sketch for client TLS auth
2015-06-29 15:33:16 -04:00
e81f966842
Set SkipSSLVerify default to false, add warning in help message
2015-06-24 13:38:14 -06:00
a0be7af858
Fixing key-status if audit logging is on
2015-06-24 10:57:05 -07:00
d3225dae07
cleanup the code a bit
2015-06-24 10:09:29 -06:00
84371ea734
allow skipping SSL verification on ldap auth
2015-06-24 10:05:45 -06:00
3902626163
Merge pull request #310 from jefferai/f-pki
...
Initial PKI backend implementation
2015-06-21 11:12:22 +01:00
2ddd4392cc
Merge pull request #365 from swills/passwd
...
allow building on FreeBSD
2015-06-21 11:09:19 +01:00
4edb78bf42
Merge pull request #368 from sergiopatino/master
...
Fix typo in link to Atlas URL on Community page.
2015-06-21 11:08:57 +01:00
3e58e8fff2
Fix typo in link to Atlas URL.
...
Missing a colon after https!
2015-06-21 02:41:26 -07:00
94e89537a1
Fixing tests
2015-06-19 14:04:32 -07:00
31ab086063
Doing a little better with http response codes
2015-06-19 14:00:48 -07:00
7244094509
allow building on FreeBSD
...
Allow this file to build on FreeBSD
2015-06-19 16:59:24 -04:00
390f769d1a
Add unit tests for certutil, and fix a whitespace stripping issue.
...
Commit contents (C)2015 Akamai Technologies, Inc. <opensource@akamai.com>
2015-06-19 16:06:56 -04:00
e086879fa3
Merge remote-tracking branch 'upstream/master' into f-pki
2015-06-19 13:01:26 -04:00
a6fc48b854
A few things:
...
* Add comments to every non-obvious (e.g. not basic read/write handler type) function
* Remove revoked/ endpoint, at least for now
* Add configurable CRL lifetime
* Cleanup
* Address some comments from code review
Commit contents (C)2015 Akamai Technologies, Inc. <opensource@akamai.com>
2015-06-19 12:48:18 -04:00
0809378c9b
audit: some tests
2015-06-19 03:31:19 -07:00
91611a32c9
Fixing tests
2015-06-18 20:14:20 -07:00
b667ef4c71
Collapsing audit response logging to a single point
2015-06-18 19:48:26 -07:00
3a860fe5c1
Actually not logging auth in the response if nil
2015-06-18 19:48:00 -07:00
4ec685dc1a
Logging authentication errors and bad token usage
2015-06-18 18:30:18 -07:00
c55f103c58
Adding error and remote_address to audit log lines
2015-06-18 17:17:18 -07:00
fcb0bddb01
cli: adding path-help to common commands list
2015-06-18 17:12:21 -07:00
9772a72772
command/read: Ensure only a single argument. Fixes #304
2015-06-18 16:00:41 -07:00
c54868120a
command/path-help: rename command, better error if sealed. Fixes #234
2015-06-18 15:56:42 -07:00
e2b0f5dae8
vault: improve lease error message. Fixes #338
2015-06-18 15:37:08 -07:00
07fef2db8b
Merge branch 'pradeepchhetri-master'
2015-06-18 14:31:16 -07:00
28ddff305c
physical/mysql: cleanup and documentation
2015-06-18 14:31:00 -07:00
3e296cdebd
Merge branch 'master' of https://github.com/pradeepchhetri/vault into pradeepchhetri-master
2015-06-18 13:55:25 -07:00
3533d87746
command/write: adding force flag for when no data fields are necessary. Fixes #357
2015-06-18 13:51:06 -07:00
7394c7bd8d
command/server: fixing output weirdness
2015-06-18 13:48:18 -07:00
7bd1e7d826
command/auth: warn earlier about VAULT_TOKEN
2015-06-18 13:48:04 -07:00
34f495a354
Refactor to allow only issuing CAs to be set and not have things blow up. This is useful/important for e.g. the Cassandra backend, where you may want to do TLS with a specific CA cert for server validation, but not actually do client authentication with a client cert.
...
Commit contents (C)2015 Akamai Technologies, Inc. <opensource@akamai.com>
2015-06-18 15:22:58 -04:00
9e00ca769a
Restructure a little bit to make the helper library fully standalone. This makes it easier to move around later if desired, and for use by external programs.
...
Commit contents (C)2015 Akamai Technologies, Inc. <opensource@akamai.com>
2015-06-18 06:42:57 -04:00
28f18119e0
command/auth: warn about the VAULT_TOKEN env var. Fixes #195
2015-06-17 19:19:02 -07:00
89a12c99fc
Merge pull request #355 from hashicorp/f-transit
...
Improving the transit backend
2015-06-17 18:55:29 -07:00
7e6f44e39e
website: document transit upsert behavior
2015-06-17 18:51:58 -07:00
d34861b811
secret/transit: allow policies to be upserted
2015-06-17 18:51:05 -07:00
93ee9f6b76
website: update the transit documentation
2015-06-17 18:45:29 -07:00
f53d31a580
secret/transit: Use special endpoint to get underlying keys. Fixes #219
2015-06-17 18:42:23 -07:00
3a2adcb3b8
cmomand/read: strip path prefix if necessary. Fixes #343
2015-06-17 18:33:15 -07:00
6bc2b06de4
server: graceful shutdown for fast failover. Fixes #308
2015-06-17 18:24:56 -07:00
dbf6cf6e6d
vault: support core shutdown
2015-06-17 18:23:59 -07:00
1f963ec1bb
command/token-create: provide more useful output. Fixes #337
2015-06-17 16:59:50 -07:00
ffeb6ea76c
vault: allow increment to be duration string. Fixes #340
2015-06-17 15:58:20 -07:00
6b23b14773
logical/framework: adding a new duration type to convert to seconds
2015-06-17 15:56:26 -07:00
5c75a6c5c7
vault: ensure token renew does not double register
2015-06-17 15:22:50 -07:00
272089887f
Merge pull request #354 from hashicorp/f-lease
...
Fixing various issues around leasing
2015-06-17 15:04:16 -07:00
45d3c512fb
builtin: fixing API change in logical framework
2015-06-17 14:34:11 -07:00
ae421f75b7
vault: fixing issues with token renewal
2015-06-17 14:28:13 -07:00
f39b522681
logical/framework: allow the lease max to come from existing lease
2015-06-17 14:24:12 -07:00
Karl Gutwin