open-vault/sdk
Mike Jarmy 510d82551a
Vault Agent Cache Auto-Auth SSRF Protection (#7627)
* implement SSRF protection header

* add test for SSRF protection header

* cleanup

* refactor

* implement SSRF header on a per-listener basis

* cleanup

* cleanup

* creat unit test for agent SSRF

* improve unit test for agent SSRF

* add VaultRequest SSRF header to CLI

* fix unit test

* cleanup

* improve test suite

* simplify check for Vault-Request header

* add constant for Vault-Request header

* improve test suite

* change 'config' to 'agentConfig'

* Revert "change 'config' to 'agentConfig'"

This reverts commit 14ee72d21fff8027966ee3c89dd3ac41d849206f.

* do not remove header from request

* change header name to X-Vault-Request

* simplify http.Handler logic

* cleanup

* simplify http.Handler logic

* use stdlib errors package
2019-10-11 18:56:07 -04:00
..
database change the default for max_open_connections for DB plugins to 4 (#7093) 2019-07-18 16:16:22 -04:00
framework AWS upgrade role entries (#7025) 2019-07-05 16:55:40 -07:00
helper Vault Agent Cache Auto-Auth SSRF Protection (#7627) 2019-10-11 18:56:07 -04:00
logical logical/request: store the entire http.Request object instead (#7412) 2019-09-06 12:40:15 -07:00
physical Port over cache refresh changes (#7599) 2019-10-08 13:23:43 -07:00
plugin Move SudoPrivilege out of SystemView (#7266) 2019-08-26 10:23:46 -04:00
queue Fixed a bunch of typos (#7146) 2019-07-18 21:10:15 -04:00
version Update version for 1.3 dev target on master 2019-09-17 11:36:55 -04:00
go.mod update go.mod and sdk/go.mod 2019-10-04 09:40:23 -07:00
go.sum Update sdk to grpc 1.22 for https://github.com/grpc/grpc-go/pull/2818 which caused intermittent ent test failures. 2019-07-24 11:45:58 -04:00
README.md

Vault SDK libs

This package provides the sdk package which contains code useful for developing Vault plugins.

Although we try not to break functionality, we reserve the right to reorganize the code at will and may occasionally cause breaks if they are warranted. As such we expect the tag of this module will stay less than v1.0.0.

For any major changes we will try to give advance notice in the CHANGES section of Vault's CHANGELOG.md.