Commit graph

10087 commits

Author SHA1 Message Date
ncabatoff ef1926b5e4 Agent auto auth wrapping new config checks (#6479)
* Simplify Run(): the function that was being sent over a channel doesn't
need to close over anything except latestToken, and we don't need to
create a new one each iteration.  Instead just pass the relevant items,
namely the token and sink to work on.

* Disallow the following config combinations:
1. auto_auth.method.wrap_ttl > 0 and multiple file sinks
2. auto_auth.method.wrap_ttl > 0 and single file sink with wrap_ttl > 0
3. auto_auth.method.wrap_ttl > 0 and cache.use_auto_auth_token = true

* Expose errors that occur when APIProxy is forwarding request to Vault.

* Fix merge issues.
2019-04-05 16:12:54 -04:00
Jeff Mitchell 437a1303fb changelog++ 2019-04-05 14:37:30 -04:00
Jeff Mitchell 00295cd598
Save the original request body for forwarding (#6538)
* Save the original request body for forwarding

If we are forwarding a request after initial parsing the request body is
already consumed. As a result a forwarded call containing a request body
will have the body be nil. This saves the original request body for a
given request via a TeeReader and uses that in cases of forwarding past
body consumption.
2019-04-05 14:36:34 -04:00
Jeff Mitchell 900bbf5113 Pull JWT auth plugin and update CL 2019-04-05 09:24:43 -04:00
Vishal Nayak f4876b744c Fix handling member group IDs (#6527)
* Process member_group_ids only if supplied
2019-04-05 09:12:39 -04:00
Jim Kalafut 6d95619037
changelog++ 2019-04-04 15:04:59 -07:00
Jeff Mitchell a2c6022010 Update kv dep 2019-04-04 17:27:13 -04:00
Jeff Mitchell eec3f9afb2
Handle JWT checks with namespaced service tokens (#6536)
Some checks would fail because we considered a token with two dots a
JWT, but service tokens in namespaces also fit this bill.
2019-04-04 17:13:09 -04:00
Jeff Mitchell c076c8429f Update kv deps 2019-04-04 16:54:10 -04:00
Jeff Mitchell 85b12d3404 Sync testhelper file 2019-04-04 15:36:43 -04:00
ncabatoff b08963779c Apply the bits from ent pr 852 that are relevant to OSS. (#6528) 2019-04-04 13:02:44 -04:00
Calvin Leung Huang ee46fd4362
core: port over CG and perf standby handling bits (#6530) 2019-04-03 14:16:49 -07:00
Noelle Daley eed91ba84d
Add storybook (#6496)
* add storybook

* add storybook files

* add ToggleButton and AlertBanner stories

* add knobs addon

* add notes addon

* add ToggleButton and AlertsBanner notes

* move panel to right

* add ICon

* create story blueprint

* add header to blueprint

* upgrade to storybook 5.0.1

* add confirm-action stories

* move addon panel to bottom

* update ConfirmAction

* add jsdoc comments to alert banner component

* add AlertInline

* set showPanel to true in blueprint

* include newly generated markdown for stories

* adjust code example for toggle button

* add json-to-markdown to package.json

* update AuthForm

* add Storybook readme

* add AlertPopup

* add story markdown custom template

* make storybook dependencies optional

* center all stories

* use message-types helper to dynamically render alerts

* hide panel

* nest alert stories

* move icons into table

* separate homelink into multiple stories

* add homelink with nav example

* remove see links from alert-banner

* add script to autogenerate markdown from component and add it to stories

* add viewport addon and remove centered addon

* update README to include markdown generation

* remove @see links from jsdoc comments

* update README to include jsdoc example

* update alert banner md

* get rid of trailing ######

* update jsdoc and regenerate notes files

* update i-con md

* Update ui/scripts/gen-story-md.js

Co-Authored-By: noelledaley <noelledaley@users.noreply.github.com>

* Update ui/scripts/gen-story-md.js

Co-Authored-By: noelledaley <noelledaley@users.noreply.github.com>

* add storybook docs to vault ui readme

* add jsdoc comments to component blueprint, automatically import md file in story blueprint

* add template template to component blueprint override

* apply basic theme to storybook

* remove comment

* make sure all stories are using auto generated md

* storybook: show optional props in brackets

* storybook: 🔪 HomeLink

* storybook: show AuthConfigForm stories with knobs
2019-04-03 14:06:20 -07:00
Matthew Irish bec4846953
sync testem.js changes (#6529) 2019-04-03 14:50:00 -05:00
Jeff Mitchell b67c8a1198 Bump normal test timeout 2019-04-03 14:31:56 -04:00
Jan Brun Rasmussen cb37b2b4f3 Update OIDC docs for Azure (#6524)
Add section for configuration of external groups for Azure AD
2019-04-03 08:27:55 -07:00
Matthew Irish da63f3e3d7
changelog++ 2019-04-03 09:46:42 -05:00
Maarten van der Hoef d98b477a7e Spelling fix (#6523) 2019-04-03 06:57:32 -07:00
Jim Kalafut a939613f78 Reset retry count after a successful lock check (#6522) 2019-04-02 17:08:49 -07:00
Brian Kassouf 4b5092b375 Pull in updates 2019-04-02 16:37:44 -07:00
Jim Kalafut 15b833b0c8
changelog++ 2019-04-02 16:30:58 -07:00
Artem Alexandrov ae422eea9f Fix getCN during group fetching in auth/ldap (#6518)
* Fix getCN during group fetching in auth/ldap

* #6518 Change strings.ToLower to strings.EqualFold
2019-04-02 16:25:03 -07:00
Mahmoud Abdelsalam 6479a73f3a Fix dynamodb HA lock race (#6512)
* Fix DynamoDB HA race issue

* Add test for race condition (which fails on the released DynamoDB code)
2019-04-02 16:19:21 -07:00
Jeff Mitchell 0e93244b14 Clean up test artifacts 2019-04-02 15:09:31 -04:00
Jeff Mitchell a6d6d55c03
Fix failing cert test due to cert expiration (#6520)
This introduces a way to just generate new certs for each test. It
doesn't port everything over but we can over time.
2019-04-02 14:49:42 -04:00
Naoki Ainoya 7f488601f8 fix typo in gcpckms.html.md, cloudkms.cryptoKeys.get (#6515)
ref: https://github.com/hashicorp/vault/pull/6327/files#r270674452
2019-04-02 10:45:23 -07:00
Matthew Irish 387bb63466
reset pageFilter when the model changes (#6511)
* reset pageFilter when the model changes

* add test selectors for list and show secret pages

* add acceptance test to verify that pageFilter is closed after navigating away from the list page

* only clear on exit
2019-04-02 11:26:58 -05:00
Gavin Williams 197e717c29 [docs] Fix a minor issue with Azure secrets docs (#6517)
This will ensure that the docs render correctly.
2019-04-02 10:09:07 -05:00
Joshua Ogle 326723c02a
Merge pull request #6506 from hashicorp/ui-copy-guidelines
UI: Consistent capitalization
2019-04-01 21:48:05 -06:00
Joshua Ogle 052530b2bc
Merge branch 'master' into ui-copy-guidelines 2019-04-01 21:47:56 -06:00
Joshua Ogle 834940059e
Merge branch 'master' into ui-copy-guidelines 2019-04-01 21:47:33 -06:00
Brian Kassouf f53b728d38
Update plugin.go 2019-04-01 16:45:59 -07:00
Jim Kalafut 8a237e3ea5
Clarify config option wording (#6503)
Fixes #6123
2019-04-01 16:14:12 -07:00
ncabatoff 6652235e2a Highlight a sometimes surprising Vault behaviour: token revocation leads (#6489)
to lease revocation.
2019-04-01 15:34:30 -07:00
Joshua Ogle 2caefba5df
Merge branch 'master' into ui-copy-guidelines 2019-04-01 16:20:04 -06:00
Matthew Irish 274540dc43
Update ui/app/templates/partials/replication/enable.hbs
Co-Authored-By: joshuaogle <joshua@joshuaogle.com>
2019-04-01 16:16:13 -06:00
Matthew Irish 7f1557b2c1
Update ui/app/templates/partials/replication/update-primary.hbs
Co-Authored-By: joshuaogle <joshua@joshuaogle.com>
2019-04-01 16:16:02 -06:00
Matthew Irish 85e289bbec
Update ui/app/templates/components/wizard/secrets-display-role.hbs
Co-Authored-By: joshuaogle <joshua@joshuaogle.com>
2019-04-01 16:15:54 -06:00
Matthew Irish d5e812d49b
Update ui/app/templates/components/wizard/kv-engine.hbs
Co-Authored-By: joshuaogle <joshua@joshuaogle.com>
2019-04-01 16:15:41 -06:00
Matthew Irish c292a4846b
Update ui/app/templates/components/mount-backend-form.hbs
Co-Authored-By: joshuaogle <joshua@joshuaogle.com>
2019-04-01 16:15:31 -06:00
Jeff Mitchell 312a4c4702 Update go-jose 2019-04-01 17:55:07 -04:00
Joshua Ogle 4756db3030
Merge branch 'master' into ui-copy-guidelines 2019-04-01 14:57:27 -06:00
Jeff Mitchell f8db986144 Update plugins 2019-04-01 16:31:15 -04:00
Jeff Mitchell 922927fd42 changelog++ 2019-04-01 16:28:29 -04:00
Alessandro De Blasis c96362d466 agent: allow AppRole Auto-Auth when bind_secret_id = false (#6324)
* agent: allow AppRole Auto-Auth when bind_secret_id = false
2019-04-01 16:27:54 -04:00
Jeff Mitchell 74ed0bd97c changelog++ 2019-04-01 16:27:16 -04:00
ncabatoff d8043c544f Add support in Agent for running cache+auto_auth without any sinks (#6468)
* Add support in Agent for running cache+auto_auth without any sinks
configured.

* Add missing fixture.
2019-04-01 16:26:41 -04:00
Jeff Mitchell cedd35bf7d changelog++ 2019-04-01 16:09:48 -04:00
Matt Greenfield 080d4652f0 Fix uri_sans param being ignored when use_csr_values=false (#6505) 2019-04-01 16:08:22 -04:00
Jim Kalafut 30e48141bb
changelog++ 2019-04-01 13:05:36 -07:00