Commit Graph

13225 Commits

Author SHA1 Message Date
Josh Black efd2571016
Add changelog entry for ent PR 1691 (#11139) 2021-03-19 10:07:48 -07:00
Mark Gritter f42093f64f
Changelog for orphan status fix (#11137) 2021-03-19 11:38:07 -05:00
Jason O'Donnell 921979a40f
docs: update vault-k8s to 0.9.0 (#11138)
* docs: update vault-k8s to 0.9.0

* Fix typos

* Update website/content/docs/platform/k8s/injector/examples.mdx

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>

* Update website/content/docs/platform/k8s/injector/annotations.mdx

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>

* Add links for auto-auth

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2021-03-19 11:34:58 -04:00
Scott Miller 689dd3722f
Document mysql (#11112)
* Document MySQL

* Document snapshot, restore, and export-decoded (#11110)

* Update website/content/api-docs/secret/transform.mdx

Co-authored-by: Josh Black <raskchanky@users.noreply.github.com>

* Add parseTime note

Co-authored-by: Josh Black <raskchanky@users.noreply.github.com>
2021-03-19 10:34:41 -05:00
Johan Leinfors 820b3b1bf0
fix uninitialized tlsConfig in influxdb plugin (#10899) 2021-03-18 20:14:15 -07:00
Theron Voran 6ea82f6d1a
agent: drop dockertest dep in cacheboltdb test (#11145)
ioutils --> ioutil
2021-03-18 17:46:40 -07:00
Josh Black 5fcc629847
Add log shipper configuration docs (#11014)
* Add log shipper configuration docs

* Fix indentation issue

* Add telemetry

* Updates to logshipper docs

* Add CCC related replication config docs. (#11087)

Co-authored-by: Josh Black <raskchanky@users.noreply.github.com>

* Correct formatting

Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
2021-03-18 16:41:13 -07:00
Scott Miller 535bcf289e
Fix handling of minimum operations, and forward rotate/config requests to Primary (#11116)
* Boost max_operations to the greater of that specified or absoluteMinOperations

* Forward rotation config requests to the primary

* Reject rotation configs outside the min/max range

* Minor wording fix
2021-03-18 15:08:47 -05:00
99 cf66f37c88
Packagespec 0.2.2 (#11130) 2021-03-18 11:28:41 -07:00
Nick Cabatoff 9c5f018938
Rework agent retry config, extend it to cover proxy cache as well (#11113)
Remove template_retry config section.  Add new vault.retry section which only has num_retries field; if num_retries is 0 or absent, default it to 12 for backwards compat with pre-1.7 template retrying.  Setting num_retries=-1 disables retries.

Configured retries are used for both templating and api proxy, though if template requests go through proxy (currently requires persistence enabled) we'll only configure retries for the latter to avoid duplicate retrying.  Though there is some duplicate retrying already because whenever the template server does a retry when not going through the proxy, the Vault client it uses allows for 2 behind-the-scenes retries for some 400/500 http error codes.
2021-03-18 14:14:09 -04:00
Clint 5353279e75
Add command to look up a lease by ID (#11129)
* snapshot

* basic test

* update command and add documentation

* update help text

* typo

* add changelog for lease lookup command

* run go mod vendor

* remove tabs from help output
2021-03-18 11:11:09 -05:00
aphorise eb36b68710
Corrected links for Consul Consistency Modes (#10862) 2021-03-17 16:05:30 -07:00
aphorise 5b6e2bb77a
Docs - Plugin register operator & example add (#10864) 2021-03-17 16:04:51 -07:00
Hridoy Roy 261e7c6b17
Docs: Key Rotation For Tokenization [VAULT-1482] (#10921)
* first docs pass

* filled in read output

* transform docs changes

* transform docs changes

* transform docs changes

* transform docs changes

* transform docs changes

* transform docs changes

* transform docs changes
2021-03-17 14:29:13 -07:00
Brad 266582628a
Add missing option to raft storage docs (#11041) 2021-03-17 17:25:28 -04:00
Nick Cabatoff 411495514c
Add a test for server stabilization (#11128) 2021-03-17 17:23:13 -04:00
Chelsea Shaw 509c31604d
UI/fix backend db connection (#11127)
* Update adapter so any named database backend will work

* Add test for deleting database connection
2021-03-17 15:48:40 -05:00
Hridoy Roy 2213611fa4
fix for mysql flaky test (#11102) 2021-03-17 12:08:34 -07:00
Chelsea Shaw a17edd9d0f
UI: Connection "Add Role" automatically populates database in form (#11119)
* Database role create form sets url param itemKey as database on init

* add test for new functionality

* Add changelog
2021-03-17 11:32:27 -05:00
Andy Assareh 4ce8896b29
Add note that static role is rotated upon creation (#11126)
It does not appear to be documented that Vault must rotate the password upon static role creation in order to know the password, as it is not provided.
2021-03-17 11:27:04 -05:00
Austin Gebauer f5e7c2d9a8
Updates docs for jwt_supported_algs in JWT/OIDC auth method (#11115) 2021-03-16 14:17:53 -07:00
Angel Garbarino d89ef3c369
Remove Skip from flaky test left over from Ember Upgrade (#11065)
* remove skip

* remove skip from create test

* some changes

* small changes to address local failures

* replace page object with dom click to help with flaky control group test

* small fix that seems to help control group failures

* some skipping to bring back my sanity

* focusing on the section-cert-test for pki

* another try at the secret cert test

* skipping to focus on secret-certs

* fingers crossed for pki role test

* hopefully some help with control group

* more on control groups

* trying for one less skip here

* create test remove skips

* remove skip

* remove comment

* back to skip this test

* shouldn't make sense but it does, changed the name to hit it first in acceptance test and that works

* redirect testing

* remove catch because that was not the issue, it never got triggered

* cleanup

* clean up

* remove comments and add catch
2021-03-16 12:23:48 -06:00
Hridoy Roy e9e83ff864
Add FF3-1 Tweak Guidance Docs [VAULT-1036] (#10978)
* ff3 guidance docs

* docs upgrade

* address PR comments
2021-03-16 07:57:50 -07:00
Austin Gebauer 145d08dc44
Updates the JWT/OIDC auth plugin to v0.9.1 (#11107) 2021-03-15 17:26:54 -07:00
Evgeniy Kosov cf39c9e161
Wrap sign error from an external lib (#10301) 2021-03-15 16:26:06 -06:00
Alvaro Miranda Aguilera 3fb284c217
Update oracle.mdx (#11101) 2021-03-15 14:13:40 -06:00
Scott Miller da982c3982
Upgrade notes for the transform engine upgrade bug fix. (#11098)
* Add upgrade notes for the Transform storage upgrade bug

* sidenav

* Reword to encourage upgrade when available
2021-03-12 19:59:50 -06:00
Vishal Nayak 158803d656
Add autopilot to CL (#11104) 2021-03-12 17:14:01 -05:00
Mark Gritter 8bbf92ef70
Fix typo in limits.mdx (#11103) 2021-03-12 15:46:41 -06:00
Nick Cabatoff 66e10f64bc
Fix a bug in Agent's handling of consistency headers: they should be ignored when computing cache ID. (#11099) 2021-03-12 12:42:06 -05:00
Scott Miller 47570ca490
Add transform upgrade bug fix changelog (#11090) 2021-03-12 09:52:41 -06:00
Mike Wickett 933aa782bc
Update alert banner (#11083)
* Update alert banner

* Update website/data/alert-banner.js

Co-authored-by: Zachary Shilton <4624598+zchsh@users.noreply.github.com>

Co-authored-by: Zachary Shilton <4624598+zchsh@users.noreply.github.com>
2021-03-11 15:46:34 -05:00
Chelsea Shaw 994d48c892
UI: Add null check before getting userRootNamespace from storage (#11094)
* Add null check before getting userRootNamespace from storage

* Add changelog
2021-03-11 13:09:43 -06:00
Vishal Nayak fb2df6ca73
Fix autopilot fsm race (#11091)
* Fix autopilot fsm race

* No need to grab backend's lock
2021-03-11 13:14:11 -05:00
Scott Miller c4e8d51c9d
Add upgrade notes for the Transform storage upgrade bug (#11075)
* Add upgrade notes for the Transform storage upgrade bug

* sidenav
2021-03-11 11:23:19 -06:00
Nick Cabatoff 79b4b0f58c
changelog++ (#11086) 2021-03-11 10:29:31 -05:00
Nick Cabatoff 5a2f0cbe51
OSS changes from ent fix for openbsd memory lookups. (#11088) 2021-03-11 10:25:15 -05:00
Meggie 39ff8b071f
Make 1.7.0-rc1 the latest version (#11082) 2021-03-10 20:03:55 -05:00
Meggie 0a60534b24
changelog++ 2021-03-10 19:34:44 -05:00
Lauren Voswinkel 809d127488
Add changelog entry for Snowflake DB support being added (#11078) 2021-03-10 16:09:13 -08:00
Lauren Voswinkel 30b9f5d379
Add changelog entry for #10953 (#11077) 2021-03-10 15:54:15 -08:00
Vishal Nayak 9839e76192
Remove unneeded fields from state output (#11073) 2021-03-10 12:08:12 -05:00
Liwei Fu 170a0800e6
Make cert domain name validation case insensitive (#10959)
* make cert domain name validation case insensitive

* reafctor TestPki_PermitFQDNs mutliple cases

* TestPki_PermitFQDNS: fail uppercase alt_name

* add change log

* fix tests

* use EqualFold for potential utf-8 string comparison

Co-authored-by: Freyert <Freyert@users.noreply.github.com>
2021-03-09 21:28:27 -08:00
Vishal Nayak 586a5a73f0
Fix diff (#11057) 2021-03-08 13:20:01 -05:00
Brian Kassouf aa00b53ba1
Make sure we sanitize the rotation config on each clone (#11050)
* Make sure we sanitize the rotation config on each clone

* Add regression test for missing rotation config

* use Equals

* simplify

Co-authored-by: Scott G. Miller <smiller@hashicorp.com>
2021-03-08 10:59:21 -06:00
Vishal Nayak e5b6ec4d05
Reset IsDead upon each heartbeat (#11049) 2021-03-05 19:50:36 -05:00
Calvin Leung Huang 0a6e7ab94b
mod: update plugin versions for 1.7.0 (#11046)
* mod: update plugin versions for 1.7.0

* command/agent: fix TestCFEndToEnd test
2021-03-04 18:32:51 -08:00
Jacob Friedman 5305c439d4
Update init.mdx (#11044)
* Update init.mdx

Updated operator init documentation to try to avoid steering customers towards running Auto Unseal seals with recovery-shares=1 and recovery-threshold=1. This is a bad security posture, as it can allow a single user with access to that recovery share to create root tokens and do other very sensitive tasks.

Also rewrote parts of the HSM/KMS Options section to indicate that recovery-related options are not solely for HSM-mode Vault but are for ANY Auto Unseal seal.

* Update website/content/docs/commands/operator/init.mdx

Adding an appropriate number of recovery-pgp-keys

Co-authored-by: Yoko <yoko@hashicorp.com>

Co-authored-by: Yoko <yoko@hashicorp.com>
2021-03-04 15:57:47 -08:00
Angel Garbarino 990850b094
change rotation from 5s to 24hr and remove console log (#11043) 2021-03-04 11:31:49 -07:00
Brian Kassouf 3bb29e0584 go mod vendor 2021-03-03 15:07:58 -08:00