Commit graph

81 commits

Author SHA1 Message Date
Alexander Bezobchuk ea13485c7d
Merge PR #9502: Resource Quotas: Remove 'burst' Param from Rate Limiter 2020-07-16 14:34:43 -04:00
Vishal Nayak 4e4cb5289a
Fetch quota by name before updating it (#9466)
* Fix quotas update

* Update doc
2020-07-15 13:25:00 -04:00
Alexander Bezobchuk a282864793
Merge PR #9342: Resource Quotas Doc 2020-07-07 11:42:01 -04:00
Josh Black 44a7e3661d
Update replication status API docs with new fields (#9215) 2020-06-29 15:11:17 -07:00
Theron Voran 06700a7110
Adding docs for azure-specific handling in jwt-oidc (#9287)
Co-authored-by: Jason O'Donnell <2160810+jasonodonnell@users.noreply.github.com>
2020-06-29 10:46:41 -07:00
Vitaly Velikodny 1bb9992c92
fix #8092: add the note to docs about impossible to create a custom token with 's.' prefix (#8195)
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-06-29 12:20:23 -04:00
Calvin Leung Huang c45bdca0b3
raft: add support for using backend for ha_storage (#9193)
* raft: initial work on raft ha storage support

* add note on join

* add todo note

* raft: add support for bootstrapping and joining existing nodes

* raft: gate bootstrap join by reading leader api address from storage

* raft: properly check for raft-only for certain conditionals

* raft: add bootstrap to api and cli

* raft: fix bootstrap cli command

* raft: add test for setting up new cluster with raft HA

* raft: extend TestRaft_HA_NewCluster to include inmem and consul backends

* raft: add test for updating an existing cluster to use raft HA

* raft: remove debug log lines, clean up verifyRaftPeers

* raft: minor cleanup

* raft: minor cleanup

* Update physical/raft/raft.go

Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>

* Update vault/ha.go

Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>

* Update vault/ha.go

Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>

* Update vault/logical_system_raft.go

Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>

* Update vault/raft.go

Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>

* Update vault/raft.go

Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>

* address feedback comments

* address feedback comments

* raft: refactor tls keyring logic

* address feedback comments

* Update vault/raft.go

Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>

* Update vault/raft.go

Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>

* address feedback comments

* testing: fix import ordering

* raft: rename var, cleanup comment line

* docs: remove ha_storage restriction note on raft

* docs: more raft HA interaction updates with migration and recovery mode

* docs: update the raft join command

* raft: update comments

* raft: add missing isRaftHAOnly check for clearing out state set earlier

* raft: update a few ha_storage config checks

* Update command/operator_raft_bootstrap.go

Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>

* raft: address feedback comments

* raft: fix panic when checking for config.HAStorage.Type

* Update vault/raft.go

Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>

* Update website/pages/docs/commands/operator/raft.mdx

Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>

* raft: remove bootstrap cli command

* Update vault/raft.go

Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>

* Update vault/raft.go

Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>

* raft: address review feedback

* raft: revert vendored sdk

* raft: don't send applied index and node ID info if we're HA-only

Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-06-23 12:04:13 -07:00
Calvin Leung Huang 4a5bef48c4
docs: add additional info around transform for tweak and template type (#9203) 2020-06-23 10:32:54 -07:00
Michael Golowka 7502813335
Add password_policy field to Azure docs (#9249)
* Add password_policy field
* Updated vault-plugin-secrets-azure to v0.6.1
* A bunch of other libraries also got updated at the same time because of the plugin update
2020-06-18 13:25:59 -06:00
Calvin Leung Huang 2e7e63f78c
docs: add sample revocation for mongodb (#9245) 2020-06-17 08:25:56 -07:00
Michael Golowka 1a8b7765bc
Add password policies to Active Directory secret engine (#9144)
* Also updates AD docs to reflect password policies
2020-06-15 10:36:17 -06:00
Roman Iuvshyn 889c9d6f06
add disable_iss_validation option to k8s auth docs (#9142) 2020-06-11 19:02:20 -07:00
Michael Golowka a89f09802d
Integrate password policies into RabbitMQ secret engine (#9143)
* Add password policies to RabbitMQ & update docs
* Also updates some parts of the password policies to aid/fix testing
2020-06-11 16:08:20 -06:00
Jeff Hemmen 7a2eabde69
Simple typos (#9119) 2020-06-11 14:22:49 -04:00
Theron Voran e1a432a167
AWS: Add iam_groups parameter to role create/update (#8811)
Allows vault roles to be associated with IAM groups in the AWS
secrets engine, since IAM groups are a recommended way to manage
IAM user policies. IAM users generated against a vault role will
be added to the IAM Groups. For a credential type of
`assumed_role` or `federation_token`, the policies sent to the
corresponding AWS call (sts:AssumeRole or sts:GetFederation) will
be the policies from each group in `iam_groups` combined with the
`policy_document` and `policy_arns` parameters.

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
2020-06-09 16:56:12 -07:00
ncabatoff 315d1ba9c5
Explain what lease tidy does. (#9178) 2020-06-09 16:54:06 -04:00
joe miller 15661719fa
document all of the supported elliptic curves (#8722) 2020-06-08 11:26:56 -04:00
Austin Gebauer bf2ce8d1cb
docs: fix port number in curl command for aws rotate root iam creds (#9157) 2020-06-05 16:00:49 -07:00
Michael Golowka 5ca4d819d1
Update OpenLDAP Secrets Docs with Password Policies (#9088)
* Update OpenLDAP docs to use password policies
2020-06-02 11:34:01 -06:00
Michael Golowka bd587da491
Add docs for password policies (#8974)
* Add docs for password policies
2020-06-02 11:12:22 -06:00
Christophe Drevet-Droguet 932c1834cc
ssh certificate signing: fix documentation of extensions (#8859) 2020-05-29 13:23:19 -04:00
ncabatoff 175bff872c
Add some notes on what tidy does and how to see if your cluster can handle it (#9036) 2020-05-26 09:19:36 -04:00
Jeff Escalante 8eed94b072
🌷 Docs Website Maintenance (#8985)
* website maintenance round
* improve docs, revert bug workaround as it was fixed
* boost memory
* remove unnecessary code
2020-05-21 13:18:17 -04:00
Csongor Halmai dd8c10bb76
fix missing line-continuation in sample code (#9005) 2020-05-15 08:29:32 -04:00
Steven Robertson d9c5a6130a
fixes roleset GET to say 'read' instead of 'delete' (#8799) 2020-05-13 15:13:34 -04:00
Nicole Forrester 77ad037d9c
Add vault docs redirects & remove deprecated database docs (#8922)
* website: add redirects for old database docs
* delete deprecated database docs
2020-05-11 14:20:40 -06:00
Michael Golowka d5be4fbd6a
Improve documentation around database plugins (#8892)
* Adds a summary to the top of each plugin's page showing the capabilities that the plugin has.
* Fixed sidebar sorting (they weren't quite alpabetical)
* Improved instructions for using the Oracle plugin
  * Added note about using the pluggable database rather than the container database
* Replaced admin/root usernames with super-user ones to encourage users to not use the root user in Vault
* Included suggestions to rotate the root user's password when the plugin is capable
* Improve documentation around rotating the root user's password
* Fixed various typos
2020-05-01 15:05:05 -06:00
Scott Miller f5b2394aca
Add documentation warning against the use of SHA-1, and policy advice on how to block it (#8885) 2020-05-01 13:46:04 -05:00
ncabatoff 997fe6152c
Add overlooked role params. (#8898) 2020-04-30 13:05:20 -04:00
Becca Petrin 405fbaface
document new gcp auth metadata fields (#8879) 2020-04-29 09:38:13 -07:00
Becca Petrin 74c1bf6894
document aws auth metadata (#8880) 2020-04-29 07:36:38 -07:00
Michael Golowka 34106136cd
GCP Auth docs - Move iam_alias and gce_alias to config instead of role (#8862)
Move `iam_alias` and `gce_alias` to config instead of role
2020-04-28 13:55:07 -06:00
Calvin Leung Huang ec8448ab56
token: disallow periods on custom token IDs (#8646)
* token: disallow periods on custom token IDs

* docs: update token API docs
2020-04-27 09:39:33 -07:00
Michael Golowka 1dbc6d3dd0
Add 'iam_alias' and 'gce_alias' fields to API docs (#8822) 2020-04-27 09:54:51 -06:00
Brian Kassouf 21cdba6fb5
identity: Add batch entity deletion endpoint (#8785)
* identity: Add batch entity deletion endpoint

* Update the parameter description

* Update error message

* Update helper/storagepacker/storagepacker.go

Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>

* Review feedback

* Update vault/identity_store_entities.go

Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com>

Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com>
2020-04-23 15:25:13 -07:00
Vishal Nayak 2ff08ee932
Doc: update sys/mounts API response (#8800) 2020-04-21 23:57:49 -04:00
Adrienne Cohea 858549450a
Documentation: In Transit, for the Trim Key API endpoint, correct the sample payload. (#8763) 2020-04-17 11:20:17 -07:00
Ryan Canty 49c937ff2c
Added docs for PR in Vault GCP Secrets repo (#8728) 2020-04-16 14:57:50 -07:00
Jason O'Donnell 584160f2a2
doc: add client tls parameters to openldap (#8730) 2020-04-13 13:57:51 -04:00
Becca Petrin 8e1ecefe59
minor docs updates (#8725) 2020-04-13 10:03:05 -07:00
Martin Hristov 82c03b6c2c
Fixing a docs typo (#8729)
Vauld -> Vault
2020-04-13 10:16:52 -06:00
Jeff Escalante fbfed414bd
Routing Fixes (#8703)
* fix a couple of .html extension links
* remove trailing slash config
* fix redirects, broken links, incorrect anchor link formats
2020-04-09 13:56:59 -04:00
Jeffrey Hogan 8f80cd8b9d
Fix "List Template" table path (#8692) 2020-04-08 15:58:40 -07:00
Jim Kalafut f08ba0bf55 Transform docs 2020-04-07 10:02:31 -07:00
Jeff Escalante 8af56bd620
Anchor Link Fixes (#8572)
* update anchor link algorithm
* update deps
* update content component
* fix a lot of broken links
2020-03-31 15:21:16 -04:00
Brian Kassouf b6f8fcb164
Update index.mdx 2020-03-30 16:32:24 -07:00
Michel Vocks eeeda05ecc
Add missing API doc for DR secondary disable (#8614)
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-03-25 13:55:29 -04:00
Alexis Vanier 84f6b6cdac
Add the Canal Erlang client library (#8322) 2020-03-24 14:21:56 -07:00
Brian Shumate 64c55d7337
API Docs: Secrets/OpenLDAP (#8521)
* API Docs: Secrets/OpenLDAP

- Update HTTP methods to POST for unsupported (GET) methods on:
  - /openldap/rotate-root
  - /openldap/rotate-role/:role_name

* Update website/pages/api-docs/secret/openldap/index.mdx

Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>

* Update website/pages/api-docs/secret/openldap/index.mdx

Co-Authored-By: Vishal Nayak <vishalnayak@users.noreply.github.com>

Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-03-20 12:00:39 -04:00
Karl Fischer a7eec55edf
add vsh to related tools page (#8566)
Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>
2020-03-19 17:31:35 -04:00