Hridoy Roy
22cab6185d
[VAULT-1441] Fix race that allowed remounting on path used by another mount ( #11453 )
...
* remount concurrent test fix
* changelog
* Update changelog/11453.txt
Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
2021-04-24 09:05:41 -07:00
Austin Gebauer
490474a502
secrets/database: Fixes marshalling bug for json.Number types ( #11451 )
2021-04-23 14:07:26 -07:00
Tiago Pascoal
4f987907c3
Fix: send extensions instead of extension to sign endpoint ( #11194 )
2021-04-23 14:56:17 -05:00
Nick Cabatoff
a21e7139ff
Update tests to reflect new HC public pgp keys. ( #11446 )
2021-04-23 12:32:46 -04:00
Zachary Shilton
c8f56671a4
website: resolve unlinked content ( #11391 )
...
* website: temp support for unlinked content
* website: add GitHub check for unlinked content
* website: add hotfix for brand coloration issue
2021-04-22 13:41:07 -04:00
Yoko
bc91eef281
[Docs] Add relevant Learn tutorial links ( #11440 )
...
* Add cross-links to matching Learn tutorials
* Undo automatic format update by Atom
* Fix a typo
* Fix a grammartical error
2021-04-22 10:09:31 -07:00
Lars Lehtonen
d8f7dd364a
builtin: deprecate errwrap.Wrapf() throughout ( #11430 )
...
* audit: deprecate errwrap.Wrapf()
* builtin/audit/file: deprecate errwrap.Wrapf()
* builtin/crediential/app-id: deprecate errwrap.Wrapf()
* builtin/credential/approle: deprecate errwrap.Wrapf()
* builtin/credential/aws: deprecate errwrap.Wrapf()
* builtin/credentials/token: deprecate errwrap.Wrapf()
* builtin/credential/github: deprecate errwrap.Wrapf()
* builtin/credential/cert: deprecate errwrap.Wrapf()
* builtin/logical/transit: deprecate errwrap.Wrapf()
* builtin/logical/totp: deprecate errwrap.Wrapf()
* builtin/logical/ssh: deprecate errwrap.Wrapf()
* builtin/logical/rabbitmq: deprecate errwrap.Wrapf()
* builtin/logical/postgresql: deprecate errwrap.Wrapf()
* builtin/logical/pki: deprecate errwrap.Wrapf()
* builtin/logical/nomad: deprecate errwrap.Wrapf()
* builtin/logical/mssql: deprecate errwrap.Wrapf()
* builtin/logical/database: deprecate errwrap.Wrapf()
* builtin/logical/consul: deprecate errwrap.Wrapf()
* builtin/logical/cassandra: deprecate errwrap.Wrapf()
* builtin/logical/aws: deprecate errwrap.Wrapf()
2021-04-22 11:20:59 -04:00
Angel Garbarino
2e35e9578c
UI/obscure secret on input ( #11284 )
...
* new font and add as font-family to be used in masked-input
* clean up logic
* refactor for displayOnly
* start cert masking
* work on certificates
* upload cert work
* fix global styling
* fix styling for class no longer used
* make mask by default and remove option
* glimmerize start and certificate on LDAP a file field
* glimmerize actions
* first part of glimmerizing text-file still need to do some clean up
* not doing awesome over here
* getting ready to un-glimmer
* unglimmerize
* remove placeholder based on conversations with design
* clean up text-file
* cleanup
* fix class bindings
* handle class binding
* set up for test
* fix elementId
* track down index
* update masked-input test
* add more to the masked-input test
* test-file test
* fix broken test
* clear old style
* clean up
* remove pgp key masked font, this really needs to be refactored to text-file component
* changelog
* cover other certificate view
* add allowCopy
* address some pr styling comments
* improve test coverage
* fix some issues
* add attr.options.masked
2021-04-22 08:58:37 -06:00
Michael Golowka
29d91d09ff
Add note about root_rotation_statements workaround for special chars ( #11378 )
2021-04-21 12:58:48 -07:00
Nick Cabatoff
a62202eb87
Document unauth pprof and the new pprof endpoints. ( #11413 )
2021-04-21 15:21:59 -04:00
Austin Gebauer
81744c4094
Updates docs for G Suite config in JWT/OIDC auth method ( #11418 )
2021-04-21 10:59:37 -07:00
Jim Kalafut
97a230a828
Update website version ( #11432 )
2021-04-21 10:48:51 -07:00
Jim Kalafut
6b968b402b
Changelog updates for 1.7.1/1.6.4/1.5.8 ( #11426 )
2021-04-21 10:44:14 -07:00
Nick Cabatoff
7ee6acf780
Fix a couple of 64bit-isms. ( #11429 )
2021-04-21 09:53:25 -04:00
Josh Black
06809930a3
Add HTTP response headers for hostname and raft node ID (if applicable) ( #11289 )
2021-04-20 15:25:04 -07:00
Arnav Palnitkar
45e2bfcad7
Fixed duplicate path issue for kv engine ( #11423 )
...
- Ids used to collide in ember data while creating a secret with any existing
path name from a different kv engine
2021-04-20 12:11:21 -07:00
Nick Cabatoff
b7ed30afed
Poll until token disappears from storage. ( #11424 )
2021-04-20 14:55:10 -04:00
Nick Cabatoff
75ec35421d
Refactor TestTokenStore_CubbyholeTidy so that it can be tested on ent with a non-root namespace. ( #11422 )
2021-04-20 14:49:25 -04:00
claire bontempo
1f6633fd56
Grammar typo fix ( #11357 )
...
* fixes are/is typo
* reverts change - need to checkout to new branch
* fixes is/are typo
2021-04-20 10:11:35 -05:00
Brian Kassouf
c400dfdd3d
core/token: fix panic looking up invalid batch tokens ( #11415 )
2021-04-19 18:26:51 -07:00
Arnav Palnitkar
a43ea992a9
Updated search select component styling ( #11360 )
...
* Updated search select component styling
- Fixed styling for better readability and access to delete action
* Added changelog file
2021-04-19 15:40:18 -07:00
Nick Cabatoff
474c4e8134
Make cubbyhole revocation/tidying compatible with cubbys in namespaces. ( #11408 )
2021-04-19 17:28:04 -04:00
Chelsea Shaw
449a45baaa
Add root rotation statement support to mongoDB ( #11404 )
...
* Add root rotation statement support to mongoDB
* Add changelog
2021-04-19 15:40:44 -05:00
xka5h
034442b9ee
Update index.mdx to fix link to vault agent as a windows service link ( #11356 )
...
* Update index.mdx
fixed link for windows agent
* removing the 's' in agents
Co-authored-by: Bryce Kalow <bkalow@hashicorp.com>
Co-authored-by: Bryce Kalow <bkalow@hashicorp.com>
2021-04-19 11:36:43 -07:00
Nick Cabatoff
a8023e0fdb
Add support for unauthenticated pprof access on a per-listener basis,… ( #11324 )
...
* Add support for unauthenticated pprof access on a per-listener basis, as we do for metrics.
* Add missing pprof sub-targets like 'allocs' and 'block'. Capture the goroutine subtarget a second time in text form. This is mostly a convenience, but also I think the pprof format might be a bit lossy?
2021-04-19 14:30:59 -04:00
Noah Fontes
0f45cd37ea
Add community-maintained OAuth 2.0/OIDC secrets plugin to plugin portal docs ( #11280 )
2021-04-19 11:20:50 -07:00
Calvin Leung Huang
a8cafab083
pki: fix tidy removal on revoked entries ( #11367 )
...
* pki: fix tidy removal on revoked entries
* add CL entry
2021-04-19 09:40:40 -07:00
Austin Gebauer
18999489d9
Updates the JWT/OIDC auth plugin to v0.9.3 ( #11388 )
2021-04-19 09:14:17 -07:00
Michael Golowka
4279bc8b34
Validate hostnames when using TLS in Cassandra ( #11365 )
2021-04-16 15:52:35 -06:00
Nick Cabatoff
541ae8636c
On lease deletion, also delete non-orphan batch token parent index ( #11377 )
2021-04-16 17:03:22 -04:00
Michael Golowka
771b963a04
Cassandra DB plugin: Allow special chars in usernames ( #11262 )
2021-04-16 14:01:15 -06:00
Nick Cabatoff
684ebf0928
Don't cut off stack traces at 32MB. ( #11364 )
2021-04-16 15:55:05 -04:00
Nick Cabatoff
b07a10331f
Add metrics for requests forwarded by standbys. ( #11366 )
2021-04-16 14:02:20 -04:00
Nick Cabatoff
242d258e94
Fix goroutine leak caused by updating rate quotas ( #11371 )
...
Make sure that when we modify a rate quota, we stop the existing goroutine before starting the new one.
2021-04-16 14:00:01 -04:00
Nick Cabatoff
50a471a5e1
Add config docs for leader_tls_servername. ( #11369 )
2021-04-16 09:40:42 -04:00
Nick Cabatoff
7a359ef658
Add CL for #11252 . ( #11368 )
2021-04-16 09:33:47 -04:00
Nick Cabatoff
4312c2381e
Clarify non-explicit cloud auth for autosnapshots. ( #11370 )
2021-04-16 09:14:52 -04:00
Nick Cabatoff
33dd025278
When a standby does a ForwardRequest, it's not using the request context, and thus not getting timed out properly when it takes too long. ( #11322 )
...
The rpcClientConnContext is still used to terminate gRPC internal/dialer-related goroutines, but the actual RPC is now timed out when the request times out, e.g. due to the default max request duration. This mirrors what we do with the parallel forwarding code in ENT.
2021-04-15 10:23:26 -04:00
Jim Kalafut
30a8b79d6d
Update changelog ( #11359 )
...
Add PR link
2021-04-14 16:47:55 -07:00
Jim Kalafut
917633e89d
Update Changelog ( #11358 )
...
These two C/L were not backported to the 1.7 release branch.
2021-04-14 16:42:09 -07:00
Chelsea Shaw
a3c396991c
UI/database mssql ( #11231 )
...
Add MSSQL plugin support in database secrets engine
2021-04-14 16:07:07 -05:00
Jason O'Donnell
cc107171e2
docs: update vault-helm to 0.11.0 ( #11355 )
...
* docs: update vault-helm to 0.11.0
* Update website/content/docs/platform/k8s/helm/configuration.mdx
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
* Update website/content/docs/platform/k8s/helm/configuration.mdx
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
* Update configuration.mdx
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
2021-04-14 11:20:26 -04:00
Tom Proctor
1139ce7cce
Add documentation for vault-csi-provider namespace config ( #11344 )
2021-04-14 14:53:15 +01:00
Jason O'Donnell
0363fcd3fb
docs: update vault-k8s to 0.10.0 ( #11354 )
2021-04-14 09:46:28 -04:00
Kendall Strautman
2541433166
patch(docs): fix link color ( #11352 )
2021-04-13 15:59:43 -04:00
Tom Proctor
f932999bda
Add TFE/TFC auth plugin to plugin portal ( #11348 )
...
* Add TFE/TFC auth plugin to plugin portal
As requested in #11202 , this is an auth plugin designed to be run within TFE/TFC.
* Expand acronyms
2021-04-13 10:22:38 -07:00
Jeff Escalante
873f5edd2c
fix a couple typos ( #11343 )
2021-04-12 16:47:34 -04:00
Hridoy Roy
996f114ad7
TLS Diagnose Formatting Fixes ( #11342 )
...
* diagnose formatting fixes
* diagnose formatting fixes
2021-04-12 10:55:33 -07:00
Hridoy Roy
fde9f2f71d
Add More TLS Tests and Verification of TLS Root Certificate ( #11300 )
...
* tls tests and root verification
* make the certificate verification check correct for non root CA case
* add expiry test
* addressed comments but struggling with the bug in parsing Cas and inters from single file:
* final checks on tls and listener
* cleanup
2021-04-12 08:39:40 -07:00
Vishal Nayak
9bf4fe2f64
Add HA only autopilot to changelog ( #11339 )
2021-04-12 09:57:45 -04:00