Commit graph

12471 commits

Author SHA1 Message Date
Calvin Leung Huang fbe2a86693
pki: use revocationInfo.RevocationTimeUTC when revoking certs with ti… (#9609)
* pki: use revocationInfo.RevocationTimeUTC when revoking certs with tidy_revoked_certs set to true

* update comment

* tidy: use same time snapshot for OR comparison
2020-07-30 15:10:26 -07:00
Andy Assareh 76894f7dcb
curl command incorrect: ---header should be --header (#9643) 2020-07-30 14:55:42 -07:00
Austin Gebauer 837ec00859
docs: fix gcpkms steps for asymmetric decryption and asymmetric signing (#9638) 2020-07-30 10:50:23 -07:00
ncabatoff 1154b36b56
Log sanitized config at startup and when it changes. (#9637)
Co-authored-by: Aleksandr Bezobchuk <aleks.bezobchuk@gmail.com>
2020-07-30 13:15:00 -04:00
Chelsea Shaw 3792fea313
changelog ++ 2020-07-30 11:18:52 -05:00
Chelsea Shaw 4eb156f707
Ui/ember blueprint updates (#9627)
* Import layout in blueprint if generator used with --in flag

* Generated story works with hot reloading out of the box
2020-07-30 11:15:03 -05:00
Chelsea Shaw fb05f1efe8
Ui/ttl wrap (#9632)
* Use TtlPicker2 in wrap-ttl component
* Fix tests around wrap-ttl
2020-07-30 10:12:45 -05:00
Mark Gritter 51b6dfb097
Add new page documenting limits. (#9592)
* Add new page documenting limits.
* Add some identity metrics not previously documented.
* Updated limits based on compression experiments.
* Add Transit key rotation limits, and link to Transform size limit.
2020-07-29 16:18:04 -05:00
Alexander Bezobchuk 1e262e5648
Merge PR #9581: Rate Limit Quota Headers 2020-07-29 15:15:05 -04:00
Michael Golowka 1bd4502b92
Mark MongoDB Atlas as supporting static creds (#9624)
Also fixes some links that are not rendering properly with a newline
between the text and the link.
2020-07-29 11:39:53 -06:00
Nick Cabatoff 6a6afb1d0c Revert hack to nightly test workflow. 2020-07-29 13:10:08 -04:00
Nick Cabatoff ea1f4cb634 Hack nightly test workflow to trigger a cache-populating build now. 2020-07-29 12:23:15 -04:00
ncabatoff b2873e44b0
Use the go test cache to reduce circleci test time (#8838) 2020-07-29 12:20:49 -04:00
Scott Miller 16ca436dd8
Increase expiration timeouts on leases to avoid races in NoopBackend (#9600)
* Increase expiration timeouts on leases to avoid races in NoopBackend

* Set timeouts depending on whether they are relevant to the test: 1s for irrelevant, back to 20ms if they are

* revert one more
2020-07-29 10:13:47 -05:00
Alexander Bezobchuk 479777fcfe
Merge PR #9615: tests: attempt build tag fix 2020-07-28 21:43:14 -04:00
Austin Gebauer 082a034cfa
docs: add missing parameters to the gcpkms key create/update API (#9612) 2020-07-28 13:53:27 -07:00
Jeff Escalante 290c6d7187
Fix broken links in website footer (#9613)
* add security page and press kit

* github link correction
2020-07-28 16:22:35 -04:00
ncabatoff 43d8c304c5
Remove obsolete kms->shamir warning. Add warning about taking a backup. (#9614) 2020-07-28 16:13:57 -04:00
Clint 164f34f243
Update CHANGELOG.md
Fix ordering of bug fix updates
2020-07-28 09:25:11 -05:00
Clint fa91774df9
Update CHANGELOG.md 2020-07-28 09:24:39 -05:00
Clint 5e80919d77
Forward requests for rotate-root on Performance secondary / standbys (#9606) 2020-07-28 09:22:32 -05:00
Austin Gebauer 0d95166183
changelog++ 2020-07-27 13:58:37 -07:00
ncabatoff b491c6d72a
Fix parsing of seal stanzas that have an array for purpose (#9589)
Hexadecimal integers will be converted to decimal, which is unfortunate but shouldn't have any negative effects other than perhaps confusion in the `vault debug` output.
2020-07-27 16:28:52 -04:00
ncabatoff 003bccd16e
Eliminate global that caused race tests to fail in ent with an internal config setting. (#9604) 2020-07-27 16:10:26 -04:00
Ivan Buymov a837322897
update gocql version for cassandra physical backend (#9602) 2020-07-27 15:18:43 -04:00
aphorise 7e2f80b8c4
Always provide version & storage type in status output (#9598) 2020-07-27 14:33:57 -04:00
Chelsea Shaw 389f57ffa8
Ui/ttl form (#9572)
* Add TtlForm and extend TtlPicker2 from new component
2020-07-27 11:02:31 -05:00
Jim Kalafut 70d964d420
Update OIDC docs (#9599)
Clarify that verbose logging is to the server logs.
2020-07-27 08:51:59 -07:00
ncabatoff c3c253e76c
Add upgrade note for okta issue. (#9587) 2020-07-27 11:36:17 -04:00
Scott Miller 8a5b97198c
Fix navigation for the Sentinel config and clarify module usage (#9588) 2020-07-27 09:52:46 -05:00
Austin Gebauer 2386a687ef
changelog++ 2020-07-24 15:25:01 -07:00
Austin Gebauer 8bc5232fdb
Update GCP secrets plugin (#9591) 2020-07-24 15:10:25 -07:00
Meggie 8aa18c401c
changelog++
Add note to 1.3 that when we released path filters we deprecated mount filters.
2020-07-24 17:37:05 -04:00
Austin Gebauer da27957d64
changelog++ 2020-07-24 08:41:24 -07:00
Austin Gebauer cca5bb3ba6
docs: fix sentence in gcp secrets by removing unneeded word (#9585) 2020-07-24 07:36:06 -07:00
ncabatoff 0247a7533e
Upgrade to newer okta lib for pagination, fetch all groups using it (#9580) 2020-07-24 09:05:08 -04:00
ncabatoff bbd991a008
Fix 1.5 regression that meant non-string values in the seal stanza would fail config parsing, preventing startup. (#9555) 2020-07-23 13:53:00 -04:00
Yoko 39fb31559f
Add cross-referencing links to learn tutorials (#9562)
* Add cross-referencing link to learn

* Fix grammar

* Update website/pages/docs/concepts/password-policies.mdx

Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>

Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
2020-07-23 07:56:00 -07:00
Austin Gebauer b9f16e57d8
changelog++ 2020-07-22 15:58:32 -07:00
Austin Gebauer 4f08c33ce4
Updates the JWT/OIDC auth plugin (#9552) 2020-07-22 15:42:17 -07:00
Meggie 1fe0404d6a
Update CHANGELOG.md
Adding 1.5 features section
2020-07-22 18:03:01 -04:00
Brian Kassouf 8f8a85a151
raft: Update raft library dependency (#9571) 2020-07-22 14:49:51 -07:00
Michael Golowka 295b0573c1
Docs: Update MongoDB to support root credential rotation (#9559)
* Update MongoDB to support root credential rotation
2020-07-22 14:56:11 -06:00
Mark Gritter 5fc28fe65a
Fix links to documentation. (#9570)
* Fix links to documentation.
* Add 1.5.0 upgrade nodes to navigation.
2020-07-22 15:55:41 -05:00
ncabatoff 645e8b6521
Add upgrade note for #9555. (#9569) 2020-07-22 16:24:06 -04:00
Mark Gritter 5d9a1caba1
Add upgrade note for #9553. (#9563)
* Add upgrade note for #9553.
* Note that these are metrics introduced in 1.5.0.
* Added link to docs.
2020-07-22 14:47:48 -05:00
Alexander Bezobchuk f3587c341b
Merge PR #9089: Initial 1.5.0 Upgrade Doc 2020-07-22 15:23:02 -04:00
Austin Gebauer 56bc00bed8
Adds documentation for OIDC provider specific extension for G Suite (#9454)
* docs: adds documentation for JWT/OIDC google provider specific handling

* use may instead of will for identity group alias association

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>

* adds missed parentheses

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>

* adds missed parentheses

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>

* reword sentence referring to key file for Google service account

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>

* add styles to emphasize security step

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
2020-07-22 12:18:58 -07:00
Scott Miller 068e080c27
Add sentinel configuration stanza documentation to OSS (#9558) 2020-07-22 13:07:51 -05:00
ncabatoff ee6e2344dd
Fix a race caused by assignment to core.metricSink (#9560) 2020-07-22 13:52:10 -04:00