luxolus
/
open-vault
2
0
Fork 0
Code Issues 1 Pull Requests Releases Activity
open-vault/vault
History
hghaf099 671cdbcadb
interactive CLI for mfa login (#14131) 
* Login MFA

* ENT OSS segragation (#14088)

* Delete method id if not used in an MFA enforcement config (#14063)

* Delete an MFA methodID only if it is not used by an MFA enforcement config

* Fixing a bug: mfa/validate is an unauthenticated path, and goes through the handleLoginRequest path

* adding use_passcode field to DUO config (#14059)

* add changelog

* preventing replay attack on MFA passcodes (#14056)

* preventing replay attack on MFA passcodes

* using %w instead of %s for error

* Improve CLI command for login mfa (#14106)

CLI prints a warning message indicating the login request needs to get validated

* adding the validity period of a passcode to error messages (#14115)

* interactive CLI for mfa login

* minor fixes

* bail if no input was inserted

* change label name

* interactive CLI when single methodID is returned from login request

* minor fix

* adding changelog

* addressing feedback

* a user with a terminal should be able to choose between interactive and non-interactive.  A user without a terminal should not be able to use the interactive mode.

Co-authored-by: Josh Black <raskchanky@gmail.com>
 		2022-02-24 15:16:15 -05:00
..
activity s/path/mount_path (#14164) 2022-02-18 13:44:43 -05:00
cluster reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
diagnose reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
external_tests interactive CLI for mfa login (#14131) 2022-02-24 15:16:15 -05:00
quotas Revert "MFA (#14049)" (#14135) 2022-02-17 13:17:59 -07:00
replication Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
seal Rename master key to root key (#13324) 2021-12-06 17:12:20 -08:00
tokens SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
acl.go Add HTTP PATCH support to KV (#12687) 2021-10-13 15:24:31 -04:00
acl_test.go reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
acl_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
activity_log.go Remove use of compressionutil from activitylog segments. We can leave it in for the precomputed queries since they're JSON, not protobuf. (#14239) 2022-02-23 17:33:24 -05:00
activity_log_test.go Remove use of compressionutil from activitylog segments. We can leave it in for the precomputed queries since they're JSON, not protobuf. (#14239) 2022-02-23 17:33:24 -05:00
activity_log_testing_util.go s/path/mount_path (#14164) 2022-02-18 13:44:43 -05:00
activity_log_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
audit.go
audit_broker.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
audit_test.go
audited_headers.go
audited_headers_test.go Fix some more error shadowing issues (#12990) 2021-11-01 11:43:00 -07:00
auth.go Vault 4632 auth remount oss (#14141) 2022-02-18 08:04:21 -08:00
auth_test.go Vault 4632 auth remount oss (#14141) 2022-02-18 08:04:21 -08:00
barrier.go Rename master key to root key (#13324) 2021-12-06 17:12:20 -08:00
barrier_access.go
barrier_aes_gcm.go validate cipher length before decrypting (#14098) 2022-02-18 07:37:22 -07:00
barrier_aes_gcm_test.go validate cipher length before decrypting (#14098) 2022-02-18 07:37:22 -07:00
barrier_test.go Rename master key to root key (#13324) 2021-12-06 17:12:20 -08:00
barrier_view.go
barrier_view_test.go
barrier_view_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
capabilities.go
capabilities_test.go
cluster.go
cluster_test.go
core.go interactive CLI for mfa login (#14131) 2022-02-24 15:16:15 -05:00
core_metrics.go VAULT-1564 report in-flight requests (#13024) 2021-12-08 17:34:42 -05:00
core_metrics_test.go [VAULT-3252] Disallow alias creation if entity/accessor combination exists (#12747) 2021-10-14 09:52:07 -07:00
core_test.go Ensure that fewer goroutines survive after a test completes (#14197) 2022-02-23 10:33:52 -05:00
core_util.go interactive CLI for mfa login (#14131) 2022-02-24 15:16:15 -05:00
core_util_common.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
cors.go
counters.go
counters_test.go
custom_response_headers.go reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
custom_response_headers_test.go Fix some linting errors (#12860) 2021-10-18 17:29:47 -07:00
deadlock.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
dynamic_system_view.go feature: multiplexing support for database plugins (#14033) 2022-02-17 08:50:33 -06:00
dynamic_system_view_test.go
expiration.go Ensure that fewer goroutines survive after a test completes (#14197) 2022-02-23 10:33:52 -05:00
expiration_integ_test.go
expiration_test.go reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
expiration_testing_util_common.go
expiration_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
generate_root.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
generate_root_recovery.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
generate_root_test.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
ha.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
ha_test.go
identity_lookup.go
identity_lookup_test.go
identity_store.go identity/oidc: Adds default provider, key, and allow_all assignment (#14119) 2022-02-22 08:33:19 -08:00
identity_store_aliases.go Support clearing an identity alias' custom_metadata (#13395) 2021-12-10 18:07:47 -05:00
identity_store_aliases_test.go Support clearing an identity alias' custom_metadata (#13395) 2021-12-10 18:07:47 -05:00
identity_store_entities.go Entities may have duplicate policies (#12812) 2021-10-22 19:28:31 -04:00
identity_store_entities_test.go reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
identity_store_group_aliases.go
identity_store_group_aliases_test.go
identity_store_groups.go
identity_store_groups_test.go
identity_store_oidc.go identity/oidc: Adds default provider, key, and allow_all assignment (#14119) 2022-02-22 08:33:19 -08:00
identity_store_oidc_provider.go identity/oidc: Adds default provider, key, and allow_all assignment (#14119) 2022-02-22 08:33:19 -08:00
identity_store_oidc_provider_test.go identity/oidc: Adds default provider, key, and allow_all assignment (#14119) 2022-02-22 08:33:19 -08:00
identity_store_oidc_provider_util.go identity/oidc: Adds proof key for code exchange (PKCE) support (#13917) 2022-02-15 12:02:22 -08:00
identity_store_oidc_test.go oidc: check for nil signing key on rotation (#13716) 2022-01-24 12:05:49 -06:00
identity_store_oidc_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
identity_store_oss.go Login MFA (#14025) 2022-02-17 13:08:51 -08:00
identity_store_schema.go Fix startup failures when aliases from a pre-1.9 vault version exist (#13169) 2021-11-16 14:56:34 -05:00
identity_store_structs.go Login MFA (#14025) 2022-02-17 13:08:51 -08:00
identity_store_test.go reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
identity_store_upgrade.go
identity_store_util.go Ensure that fewer goroutines survive after a test completes (#14197) 2022-02-23 10:33:52 -05:00
init.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
init_test.go
keyring.go reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
keyring_test.go Rename master key to root key (#13324) 2021-12-06 17:12:20 -08:00
lock.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
logical_cubbyhole.go
logical_cubbyhole_test.go
logical_passthrough.go
logical_passthrough_test.go
logical_raw.go Enhance sys/raw to read and write values that cannot be encoded in json (#13537) 2022-01-20 07:52:53 -05:00
logical_system.go Vault 4632 auth remount oss (#14141) 2022-02-18 08:04:21 -08:00
logical_system_activity.go OSS Port: Activity log breakdowns (#14160) 2022-02-18 13:01:28 -05:00
logical_system_helpers.go Login MFA (#14025) 2022-02-17 13:08:51 -08:00
logical_system_integ_test.go fix fmt (#14062) 2022-02-14 18:06:02 -05:00
logical_system_paths.go Revert "MFA (#14049)" (#14135) 2022-02-17 13:17:59 -07:00
logical_system_pprof.go
logical_system_quotas.go Revert "MFA (#14049)" (#14135) 2022-02-17 13:17:59 -07:00
logical_system_raft.go
logical_system_test.go add missed test (#14168) 2022-02-18 14:01:43 -08:00
logical_system_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
login_mfa.go Ensure that fewer goroutines survive after a test completes (#14197) 2022-02-23 10:33:52 -05:00
managed_key_registry.go Invalidate the ManagedKeyRegistry cache when Vault config is updated. (#14179) 2022-02-21 09:55:44 -05:00
mfa_auth_resp_priority_queue.go Login MFA (#14025) 2022-02-17 13:08:51 -08:00
mfa_auth_resp_priority_queue_test.go Login MFA (#14025) 2022-02-17 13:08:51 -08:00
mount.go Vault 4632 auth remount oss (#14141) 2022-02-18 08:04:21 -08:00
mount_test.go Vault 4632 auth remount oss (#14141) 2022-02-18 08:04:21 -08:00
mount_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
namespaces.go
namespaces_oss.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
password_policy_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
plugin_catalog.go plugin/catalog: support plugin registration when type is explicitly provided (#14142) 2022-02-17 18:40:33 -08:00
plugin_catalog_test.go
plugin_reload.go
policy.go Add HTTP PATCH support to KV (#12687) 2021-10-13 15:24:31 -04:00
policy_store.go
policy_store_test.go
policy_store_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
policy_test.go Add HTTP PATCH support to KV (#12687) 2021-10-13 15:24:31 -04:00
policy_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
raft.go Parallel retry join (#13606) 2022-01-17 10:33:03 -05:00
rekey.go Rename master key to root key (#13324) 2021-12-06 17:12:20 -08:00
rekey_test.go
request_forwarding.go
request_forwarding_rpc.go Remove another use gopsutil/host. (#13390) 2021-12-10 09:59:52 -05:00
request_forwarding_rpc_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
request_forwarding_service.pb.go Login MFA (#14025) 2022-02-17 13:08:51 -08:00
request_forwarding_service.proto Add "operator members" command to list nodes in the cluster. (#13292) 2021-11-30 14:49:58 -05:00
request_forwarding_service_grpc.pb.go
request_handling.go Fix ent diff check 2022/02/23 (#14237) 2022-02-24 11:57:40 -08:00
request_handling_test.go
request_handling_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
rollback.go
rollback_test.go
router.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
router_access.go
router_test.go Authenticate to "login" endpoint for non-existent mount path bug (#13162) 2021-11-22 17:06:59 -08:00
router_testing.go
seal.go reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
seal_access.go
seal_autoseal.go Fix a data race in the new autoseal health check (#13136) 2021-11-12 15:58:46 -06:00
seal_autoseal_test.go Ensure that fewer goroutines survive after a test completes (#14197) 2022-02-23 10:33:52 -05:00
seal_test.go
seal_testing.go Rename master key to root key (#13324) 2021-12-06 17:12:20 -08:00
seal_testing_util.go Rename master key to root key (#13324) 2021-12-06 17:12:20 -08:00
sealunwrapper.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
sealunwrapper_test.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
testing.go Ensure that fewer goroutines survive after a test completes (#14197) 2022-02-23 10:33:52 -05:00
testing_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
token_store.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
token_store_test.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
token_store_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
token_store_util_common.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
ui.go
ui_test.go
util.go
util_test.go
vault_version_time.go Port: add client ID to TWEs in activity log [vault-3136] (#12820) 2021-10-14 09:10:59 -07:00
version_store.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
version_store_test.go fix fmt (#14062) 2022-02-14 18:06:02 -05:00
wrapping.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
wrapping_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00