Commit graph

5175 commits

Author SHA1 Message Date
Jeff Mitchell e0c9bfd926 Add WithOptions methods to audit/auth enabling (#2383) 2017-02-16 11:37:27 -05:00
Frank Gevaerts 0044ea8917 Update hsm.html.md (#2381) 2017-02-16 07:25:22 -05:00
Jeff Mitchell c96fe56d44 Fix copypasta, thanks tests 2017-02-16 01:32:39 -05:00
Jeff Mitchell 71fa0779ed changelog++ 2017-02-16 01:05:32 -05:00
Jeff Mitchell 817bec0955 Add Organization support to PKI backend. (#2380)
Fixes #2369
2017-02-16 01:04:29 -05:00
Jeff Mitchell 7e5ad5c8e5 changelog++ 2017-02-16 00:55:29 -05:00
Vishal Nayak eb4ef0f6e0 cidrutil: added test data points (#2378) 2017-02-16 00:51:02 -05:00
Jeff Mitchell 45e6e2e95f Merge pull request #2379 from hashicorp/issue-2362
Compare headers case-insensitively for auditing
2017-02-16 00:46:25 -05:00
Jeff Mitchell e60b24431a Fix audit test and make audited headers more robust in map checks 2017-02-16 00:44:20 -05:00
Jeff Mitchell acb7391b12 Compare headers case-insensitively for auditing
Fixes #2362
2017-02-15 20:35:35 -05:00
Phil Watts e2de7ec7fe Edit to the language of the description of disable_mlock on the configuration documentation page. Previous wording could lead to confusion as to the recommended setting of the disable_mlock option. (#2377) 2017-02-15 11:09:27 -05:00
vishalnayak 31166918a4 changelog++ 2017-02-15 10:59:15 -05:00
Vishal Nayak 81c95b36eb aws-ec2 auth: Return the role period in seconds (#2374)
* aws-ec2 auth: Return the role period in seconds

* cast return values to int64 for comparison with expected values
2017-02-15 10:57:57 -05:00
Vishal Nayak b86e9bc09f aws-ec2 auth: fix docs (#2375) 2017-02-15 06:29:27 -05:00
Jeff Mitchell ce3e536f85 changelog++ 2017-02-14 16:29:00 -05:00
Jeff Mitchell 04b4a6aa50 Fix Okta auth issue when a user has no policies and/or groups set. (#2371)
Fixes #2367
2017-02-14 16:28:16 -05:00
Jeff Mitchell f88defce49 changelog++ 2017-02-10 19:57:53 -05:00
Tommy Murphy ca06bc0b53 audit: support a configurable prefix string to write before each message (#2359)
A static token at the beginning of a log line can help systems parse
logs better. For example, rsyslog and syslog-ng will recognize the
'@cee: ' prefix and will parse the rest of the line as a valid json message.
This is useful in environments where there is a mix of structured and
unstructured logs.
2017-02-10 16:56:28 -08:00
Jeff Mitchell 864156773a Update go-cleanhttp 2017-02-10 19:34:41 -05:00
P.Nikolajevs (pl) 2a79627a2e Update libraries.html.md (#2360) 2017-02-10 09:39:18 -08:00
Tommy Murphy 65b274299f docs: transit parameter is actually deletion_allowed (#2356) 2017-02-09 15:10:28 -05:00
Seth Vargo 9eeb5bc342 Merge pull request #2358 from hashicorp/sethvargo-patch-1
Change cache to 4h
2017-02-09 14:39:18 -05:00
Seth Vargo 12ba3f7640 Cache assets longer 2017-02-09 14:39:12 -05:00
Seth Vargo 231238a6f8 Change cache to 4h 2017-02-09 14:37:12 -05:00
vishalnayak 2bbc247ab4 use net.JoinHostPort 2017-02-08 18:39:09 -05:00
Jeff Mitchell 72db329d67 Add support for backup/multiple LDAP URLs. (#2350) 2017-02-08 14:59:24 -08:00
vishalnayak be6bc824e8 changelog++ 2017-02-08 13:52:29 -05:00
Jeff Mitchell 388d8cd191 Correct port parsing. (#2354)
* Correct port parsing.

Fixes #2351

* use strings.Contains instead of strings.HasSuffix

* Make the error message point to the wrong input
2017-02-08 13:50:17 -05:00
Jack Harris d5b1cc7ebe Add correct output to unmount documentation (#2352)
Simply adding the actual output of: 'vault unmount generic/'
2017-02-08 10:40:56 -05:00
Jeff Mitchell 96eef720d6 Bump deps 2017-02-08 02:13:15 -05:00
Jeff Mitchell cfda231851 changelog++ 2017-02-08 00:49:42 -05:00
Jeff Mitchell a217be589c Merge pull request #2154 from fcantournet/default-ldap-username
ldap auth via cli defaults username to env (#2137)
2017-02-07 21:47:59 -08:00
Jeff Mitchell a2f07acbc4 Use Getenv instead of LookupEnv
This prevents returning empty username if LOGNAME is set but empty and USER is set but not empty.
2017-02-07 21:47:06 -08:00
Jeff Mitchell f05b482e46 Update error text 2017-02-07 21:44:23 -08:00
Jeff Mitchell 4b2b28e085 Push test functions to a var for overriding 2017-02-07 20:44:31 -05:00
Brian Kassouf e62c83a96c changelog++ 2017-02-07 16:42:47 -08:00
Jeff Mitchell f9c67273f3 Add audited headers to sidebar 2017-02-07 17:02:14 -05:00
Jeff Mitchell 6612744576 Add Okta docs to sidebar 2017-02-07 16:57:28 -05:00
Jeff Mitchell 57ffbb988b
Cut version 0.6.5 2017-02-07 16:19:49 -05:00
Jeff Mitchell b1ad99ebba Prep for 0.6.5 release 2017-02-07 16:11:32 -05:00
Jeff Mitchell e41f7fd52a Bump dockerfile Go version 2017-02-07 16:08:31 -05:00
Jeff Mitchell 8f957579d8 Update some help text for RADIUS 2017-02-07 16:06:27 -05:00
Jeff Mitchell 1b319398df changelog++ 2017-02-07 16:05:43 -05:00
Matteo Sessa 29d9d5676e RADIUS Authentication Backend (#2268) 2017-02-07 16:04:27 -05:00
Jeff Mitchell f3de9f57ce Add etcd API info 2017-02-07 11:33:02 -08:00
Brian Kassouf 2923934813 Merge pull request #2326 from hashicorp/pr-2161
Add Socket Audit Backend
2017-02-07 11:27:25 -08:00
Brian Kassouf 128de55742 Added a warning about the dropped socket connection edge case 2017-02-07 11:06:36 -08:00
Brian Vans 29b3cc6b00 Fixing a few typos in the docs (#2344) 2017-02-07 11:55:29 -05:00
Jeff Mitchell f1cfb060f6 Remove errant unlock of state lock 2017-02-07 11:08:52 -05:00
Brian Kassouf a566097657 Add info about UNIX sockets 2017-02-06 15:56:58 -08:00