Matthew Irish
30daed5716
UI ensure trailing slash ( #4828 )
...
* add make targets to build the ui without minifying the source
* add polyfill for string.prototype.endswith and move to npm version of string.prototype.startswith
* replace the current history state with a / on the list secrets endpoint
* add test for list with id
2018-06-25 15:30:11 -05:00
Becca Petrin
90f567b985
fetch the runes and text encoding packages ( #4831 )
2018-06-25 12:44:10 -07:00
vishalnayak
235b29f1d3
Add back upsertEntityNonLocked
2018-06-24 07:54:00 -04:00
Vishal Nayak
57c7ecfcd4
Identity: Remove unused MemDB indexes and unused functions ( #4817 )
...
* refactor delete utility
* refactor delete alias utility
* remove MemDBUpsertAlias
* Remove MemDBAliasByCanonicalID
* remove MemDBAliasesByMetadata
* remove MemDBDeleteAliasByID
* Remove MemDBUpsertEntity and MemDBEntityByNameInTxn
* Remove is.MemDBEntitiesByBucketEntryKeyHash
* Remove MemDBEntitiesByBucketEntryKeyHash and MemDBEntityByMergedEntityID
* Remove MemDBEntities
* Remove validateMemberGroupID
* Remove validateEntityID, validateGroupID, deleteAliasFromEntity
* Remove updateAliasInEntity
* Remove satisfiesMetadataFilters and UpsertGroup
* Remove MemDBUpsertGroup
* Remove deleteGroupByID
* Remove deleleGroupByName
* Remove MemDBDeleteGroupByNameInTxn
* Remove MemDBGroupsByPolicy and MemDBGroupsByPolicyInTxn
* Remove MemDBGroupIterator
* Remove MemDBGroupsByBucketEntryKeyHash
* Remove deleteGroupAlias
* Remove metadata index from entities table
* Remove unneeded indexes from entity alias and group alias schema
* Remove unneeded index from groups table schema
* Fix test
* s/entity/lockEntity
* Don't expose the memdb instance outside identity store
* More txn.Abort() corrections
* switch back to deferring abort calls
2018-06-24 07:45:53 -04:00
Logan Rakai
619dd3c6ed
Typo fix ( #4822 )
2018-06-23 16:34:25 -07:00
Logan Rakai
59b87fae53
Small grammar fix ( #4821 )
2018-06-22 21:59:39 -07:00
Jeff Mitchell
2410a11156
Add a warning to syslog
...
Ping #3617
2018-06-22 09:00:07 -04:00
Kevin Hicks
cda793f5b3
Fix typos ( #4813 )
2018-06-21 12:29:18 -07:00
Yoko
01d50cd3eb
Fixed a typo ( #4812 )
2018-06-21 11:11:30 -07:00
Steven Farage
fadb3eb6fd
Make documentation match API example ( #4809 )
...
Quick and easy change to make the passwords match.
2018-06-21 10:50:02 -07:00
Yoko
c3b7d1fbb6
Vault DR Replication Setup Guide ( #4790 )
...
* WIP DR setup guide
* Fix typos
* Added the steps to demote & disable primary
* Clarified some of the explanation
2018-06-21 08:42:35 -07:00
Brian Kassouf
f757ed93e2
changelog++
2018-06-20 09:45:32 -07:00
Brian Kassouf
cfc309a159
changelog++
2018-06-20 09:40:34 -07:00
Jim Kalafut
6011ae5721
Add DynamoDB fix to changelog
2018-06-20 09:38:28 -07:00
Jeff Mitchell
80de75fbe4
Add missing feature to changelog
2018-06-20 10:55:40 -04:00
Jeff Mitchell
9af4707e92
Cut version 0.10.3
2018-06-20 09:36:34 -04:00
Jeff Mitchell
c6180c57c8
Check for nil value in BarrierView.Put ( #4804 )
...
Fixes #4802
2018-06-20 09:32:06 -04:00
Jeff Mitchell
bf33d5d849
Prep for release
2018-06-20 09:27:04 -04:00
Jeff Mitchell
3fee2cc8dd
Simplify logic
2018-06-19 23:07:56 -04:00
Jeff Mitchell
00673fe197
Update kubernetes auth plugin
2018-06-19 23:03:22 -04:00
Jeff Mitchell
441eec9ce5
changelog++
2018-06-19 23:02:41 -04:00
Calvin Leung Huang
ac4be8d44d
Do not fail login if no policies are mapped to the user or group ( #4798 )
...
* Do not fail login if no policies are mapped to the user or group
* Remove debug line
* Remove restriction in radius
2018-06-19 23:00:22 -04:00
Jeff Mitchell
f4a2641246
changelog++
2018-06-19 22:58:03 -04:00
Becca Petrin
73cbbe2a9f
Add bound cidrs to tokens in AppRole ( #4680 )
2018-06-19 22:57:11 -04:00
Chris Hoffman
cfc7d4c6c2
changelog++
2018-06-19 20:59:44 -04:00
Chris Hoffman
52f9f7412c
correct delete path for tidy operations ( #4799 )
2018-06-19 20:58:12 -04:00
Becca Petrin
d9ac83569b
clarify aws role tag doc ( #4797 )
2018-06-19 15:59:57 -07:00
Vishal Nayak
b10c2a87fa
Refactor and rewrite the test ( #4796 )
2018-06-19 16:59:03 -04:00
Jeff Mitchell
50a65d1b51
changelog++
2018-06-19 12:58:44 -04:00
Vishal Nayak
0d8f424ab4
disallow token use if entity is invalid ( #4791 )
2018-06-19 12:57:19 -04:00
Jeff Mitchell
961d24d89a
Update ad plugin
2018-06-19 12:16:20 -04:00
Becca Petrin
71977637d4
Update Active Directory secret engine docs ( #4788 )
...
* active directory rotate root docs
* update doc
2018-06-19 09:11:46 -07:00
Calvin Leung Huang
418513bbd9
Be explicit about trailing slash on paths for list capability ( #4793 )
2018-06-19 12:10:39 -04:00
Jeff Mitchell
d37f75efd8
changelog++
2018-06-19 12:09:57 -04:00
Jeff Mitchell
cffb1183a8
Database updates ( #4787 )
...
* Database updates
* Add create/update distinction for connection config
* Add create/update distinction for role config
* Add db name and revocation statements to leases to give revocation a
shot at working if the role has been deleted
Fixes #3544
Fixes #4782
* Add create/update info to docs
2018-06-19 11:24:28 -04:00
Ryan Loomba
c558fc5f3d
fix typo in Vault Encryption as a Service Guide ( #4789 )
2018-06-18 17:32:43 -07:00
Laura Uva
4cae4abbab
Add example of min_wrapping_ttl and max_wrapping_ttl ( #4753 )
2018-06-18 19:59:21 -04:00
Jeff Mitchell
bef7db5711
Bump Kube auth dep
2018-06-18 12:24:41 -04:00
Jeff Mitchell
fccf7204b8
Bump plugins and changelog
2018-06-18 11:54:23 -04:00
vishalnayak
67783875fc
changelog++
2018-06-18 09:31:40 -04:00
Vishal Nayak
69eff9c354
return 404 when role does exist on update operations ( #4778 )
2018-06-18 09:29:05 -04:00
Jeff Mitchell
13d4a21dd9
changelog++
2018-06-16 18:23:10 -04:00
Jeff Mitchell
e52b554c0b
Add an idle timeout for the server ( #4760 )
...
* Add an idle timeout for the server
Because tidy operations can be long-running, this also changes all tidy
operations to behave the same operationally (kick off the process, get a
warning back, log errors to server log) and makes them all run in a
goroutine.
This could mean a sort of hard stop if Vault gets sealed because the
function won't have the read lock. This should generally be okay
(running tidy again should pick back up where it left off), but future
work could use cleanup funcs to trigger the functions to stop.
* Fix up tidy test
* Add deadline to cluster connections and an idle timeout to the cluster server, plus add readheader/read timeout to api server
2018-06-16 18:21:33 -04:00
Mike Fortuno
dc568f1376
Update policies.html.md ( #4780 )
...
Policy file name was incorrect, causing instructions to be unclear.
2018-06-15 15:49:09 -07:00
Mr Talbot
5551a63221
pki: add ext_key_usage to mirror key_usage and add to sign-verbatim ( #4777 )
...
* pki: add ext_key_usage parameter to role
* pki: add key_usage and ext_key_usage parameter to sign-verbatim
* pki: cleanup code as per comments
2018-06-15 18:20:43 -04:00
Jeff Mitchell
762f08eac2
Mention delegating change password privs in ad docs
2018-06-15 17:01:47 -04:00
Jeff Mitchell
164c7225f1
Remove msa info from AD page
2018-06-15 16:55:28 -04:00
Jeff Mitchell
3fc71999c6
changelog++
2018-06-15 15:35:43 -04:00
Jeff Mitchell
ebe3f09f82
Add kv rollback
( #4774 )
...
* Add `kv rollback`
Like `kv patch` this is more of a helper than anything else; it provides
a single command to fetch the current version (for CAS), read the
version you want to roll back to, and set it as the new version (using
CAS for safety).
2018-06-15 15:34:17 -04:00
Jeff Mitchell
f82404022a
changelog++
2018-06-15 15:33:45 -04:00