luxolus/open-vault
2
0
Fork 0
Code Issues 1 Pull requests Releases Activity
2730 commits 1 branch 0 tags 214 MiB
Commit graph

2730 commits

This branch
This branch
All branches
Author SHA1 Message Date
Jeff Mitchell 0c1caad503 Merge pull request #981 from tanuck/master 
Docs typo in server command
 2016-01-28 08:59:38 -05:00
Jeff Mitchell dd1b94fbd6 Remove eager loading 2016-01-28 08:59:05 -05:00
Raja Nadar e4438d9705 fixed the return type of /ssh/lookup api 2016-01-28 01:04:35 -08:00
Raja Nadar b8fa5c6fd4 fix return type of post /ssh/creds 
added sample json for both otp and dynamic credentials
 2016-01-28 00:56:59 -08:00
James Tancock 5d7537ff85 Docs typo in server command 2016-01-28 08:26:49 +00:00
Raja Nadar 7aabad7808 better description 2016-01-27 21:58:54 -08:00
Raja Nadar 67da86eeab fixing the return type of verify otp 
it seems to be 200 on valid OTP and 204 on invalid OTP. (i think it should be an error.. 400 or 404)
but for the moment, fixing the docs to match the existing behavior.
 2016-01-27 20:04:11 -08:00
Jeff Mitchell be83340b14 Embed the cache directly 2016-01-27 21:59:20 -05:00
Devin Christensen 737df30939 Improve naming 
Hopefully this naming scheme will be more straightforward.
 2016-01-27 17:15:48 -07:00
Jeff Mitchell ccd10668f0 changelog++ 2016-01-27 17:27:53 -05:00
Jeff Mitchell 1ebae324ce Merge pull request #942 from wikiwi/fix-ssh-open-con 
Cleanly close SSH connections
 2016-01-27 17:18:54 -05:00
Jeff Mitchell 7776aebdfc changelog++ 2016-01-27 17:18:17 -05:00
Jeff Mitchell b7a49922a9 Update etcd sync option to be a string. 
Ping #921
 2016-01-27 17:15:52 -05:00
Jeff Mitchell b0bd06f5a4 Merge pull request #921 from faradayio/hosted-etcd-support 
Load-balanced etcd support
 2016-01-27 17:09:43 -05:00
Jeff Mitchell 0279c60d9e changelog++ 2016-01-27 17:07:54 -05:00
Jeff Mitchell 01102f0d06 Merge pull request #975 from vetinari/ldapbind 
Implement LDAP username/password binding support, as well as anonymous search.
 2016-01-27 17:06:45 -05:00
Jeff Mitchell 48c9f79896 Implement locking in the transit backend. 
This ensures that we can safely rotate and modify configuration
parameters with multiple requests in flight.

As a side effect we also get a cache, which should provide a nice
speedup since we don't need to decrypt/deserialize constantly, which
would happen even with the physical LRU.
 2016-01-27 17:03:21 -05:00
Jeff Mitchell df4469cc4e Update contribution guide 2016-01-27 15:17:11 -05:00
Armon Dadgar 9dc9264629 Merge pull request #791 from hashicorp/contributing-guide 
Adds a CONTRIBUTING guide
 2016-01-27 11:52:16 -08:00
Jeff Mitchell 92a0fae392 Changelog formatting 2016-01-27 14:33:41 -05:00
Jeff Mitchell 6d21bb7b98 Changelog formatting 2016-01-27 14:05:20 -05:00
Jeff Mitchell dd89018511 changelog++ 2016-01-27 13:43:53 -05:00
Jeff Mitchell b7a8d529fe Merge pull request #977 from hashicorp/transit-key-archiving 
Transit key archiving
 2016-01-27 13:42:30 -05:00
Jeff Mitchell d1b2bf3183 Move archive location; also detect first load of a policy after archive 
is added and cause the keys to be copied to the archive.
 2016-01-27 13:41:37 -05:00
Jeff Mitchell 369d0bbad0 Address review feedback 2016-01-27 13:41:37 -05:00
Jeff Mitchell e5a58109ec Store all keys in archive always 2016-01-27 13:41:37 -05:00
Jeff Mitchell 30ffc18c19 Add unit tests 2016-01-27 13:41:37 -05:00
Jeff Mitchell 5000711a67 Force min decrypt version to 1 if it's zero, which allows fixing problematic archiving logic 2016-01-27 13:41:37 -05:00
Jeff Mitchell 7a27dd5cb3 Fix logic bug when restoring keys 2016-01-27 13:41:37 -05:00
Jeff Mitchell 004b35be36 Fix decrementing instead of incrementing 2016-01-27 13:41:37 -05:00
Jeff Mitchell beafe25508 Initial transit key archiving work 2016-01-27 13:41:37 -05:00
Jeff Mitchell 1769984368 Bump godeps 2016-01-27 13:41:26 -05:00
Hanno Hecker 0db33274b7 discover bind dn with anonymous binds 2016-01-27 17:06:27 +01:00
Hanno Hecker 22c22095d2 samaccountname as login example 2016-01-27 09:25:05 +01:00
Hanno Hecker c6acb340a8 docs for binddn/bindpass 2016-01-27 07:51:10 +01:00
Jeff Mitchell 5f379ccfb6 Merge pull request #976 from hashicorp/audit-panic 
Use reflect.Value.String() rather than a type assertion.
 2016-01-26 13:05:05 -05:00
Jeff Mitchell 658a995eed Bump travis to 1.5.3 2016-01-26 12:47:45 -05:00
Jeff Mitchell ef84e04fd7 Add unit test for audit change 2016-01-26 12:47:04 -05:00
Jeff Mitchell f0c66f0b8c Use reflect.Value.String() rather than a type assertion. 
Fixes a panic in hashstructure/auditing that can occur with custom
string types.

Fixes #973
 2016-01-26 12:32:50 -05:00
Hanno Hecker 4606cd1492 fix stupid c&p error 2016-01-26 16:15:25 +01:00
Hanno Hecker 6a570345a0 add binddn/bindpath to search for the users bind DN 2016-01-26 15:56:41 +01:00
Jeff Mitchell 1107a068b7 Merge pull request #972 from rajanadar/patch-7 
added the delete api details to generic backend
 2016-01-26 09:49:06 -05:00
Jeff Mitchell bc04e4eec2 Merge pull request #971 from rajanadar/patch-6 
added the delete api details to cubbyhole
 2016-01-26 09:48:47 -05:00
Jeff Mitchell 92d42aa6c7 Merge pull request #969 from rajanadar/patch-4 
fixing the description of the /lookup/<token> api
 2016-01-26 09:48:22 -05:00
Jeff Mitchell c1f4957fe9 Merge pull request #970 from rajanadar/patch-5 
fixing an incorrect json response field name
 2016-01-26 09:47:54 -05:00
Raja Nadar 741c23cb4a added the delete api details to generic backend 
documentation was missing this api description
 2016-01-25 23:56:33 -08:00
Raja Nadar 64c9eb969d added the delete api details to cubbyhole 
cubbyhole delete api details were missing. added them.
 2016-01-25 23:47:33 -08:00
Raja Nadar f02aa2c2c0 fixing an incorrect json response field name 
changed a read-role api response field from 'revocation_cql' to 'rollback_cql'
didn't verify it using a real cassandra server test, but looked at the source code json schema definition here: 

https://github.com/hashicorp/vault/blob/master/builtin/logical/cassandra/path_roles.go
func pathRoles(b *backend) *framework.Path 

please feel free to discard the PR, if i am looking at the wrong source location or something.
 2016-01-25 23:42:20 -08:00
Raja Nadar cf9b3c7c66 fixing the description of the /lookup/<token> api 2016-01-25 23:26:29 -08:00
Jeff Mitchell aede2fcb3e Merge pull request #968 from nickithewatt/aws-policies-docs 
AWS secret backend use of existing policy - docs
 2016-01-25 23:02:25 -05:00