luxolus
/
open-vault
2
0
Fork 0
Code Issues 1 Pull Requests Releases Activity
open-vault/vault
History
Jeff Mitchell 5f18b1605a Two things: 
1) Ensure that if we fail to generate a lease for a secret we attempt to revoke it

2) Ensure that any lease that is registered should never have a blank token

In theory, number 2 will let us a) find places where this *is* the case, and b) if errors are encountered when revoking tokens due to a blank client token, it suggests that the client token values are being stripped somewhere along the way, which is also instructive.
 		2017-05-03 12:17:09 -04:00
..
acl.go Allowed/Denied parameters support for globs (#2438) 2017-03-03 14:50:55 -08:00
acl_test.go Allowed/Denied parameters support for globs (#2438) 2017-03-03 14:50:55 -08:00
audit.go Add some nil checks to mounting 2017-03-04 16:43:18 -05:00
audit_test.go Audit: Add token's use count to audit response (#2437) 2017-03-08 17:36:50 -05:00
audited_headers.go Fix audit test and make audited headers more robust in map checks 2017-02-16 00:44:20 -05:00
audited_headers_test.go Compare headers case-insensitively for auditing 2017-02-15 20:35:35 -05:00
auth.go Create unified aws auth backend (#2441) 2017-04-24 15:15:50 -04:00
auth_test.go Understand local when persisting mount tables, to avoid invalidations when not necessary (#2427) 2017-03-02 14:37:59 -05:00
barrier.go More rep porting (#2391) 2017-02-16 23:09:39 -05:00
barrier_aes_gcm.go More rep porting (#2391) 2017-02-16 23:09:39 -05:00
barrier_aes_gcm_test.go More rep porting (#2391) 2017-02-16 23:09:39 -05:00
barrier_test.go vault: adding ability to reload master key 2015-05-29 14:29:55 -07:00
barrier_view.go More rep porting (#2391) 2017-02-16 23:09:39 -05:00
barrier_view_test.go Adding interface methods to logical.Backend for parity (#2242) 2017-01-07 18:18:22 -05:00
capabilities.go More rep porting (#2391) 2017-02-16 23:09:39 -05:00
capabilities_test.go Fix capabilities test case 2016-03-18 12:55:18 -04:00
cluster.go Fix double-lock 2017-03-02 10:54:31 -05:00
cluster_test.go Port some replication bits to OSS (#2386) 2017-02-16 15:15:02 -05:00
core.go Fix poison pill location 2017-03-04 10:21:27 -05:00
core_test.go Create unified aws auth backend (#2441) 2017-04-24 15:15:50 -04:00
dynamic_system_view.go Add option to disable caching per-backend. (#2455) 2017-03-08 09:20:09 -05:00
expiration.go Two things: 2017-05-03 12:17:09 -04:00
expiration_test.go Test to check that leases with valid tokens are not being cleaned up 2017-05-02 18:12:03 -04:00
generate_root.go Port some replication bits to OSS (#2386) 2017-02-16 15:15:02 -05:00
generate_root_test.go Multi value test seal (#2281) 2017-01-17 15:43:10 -05:00
init.go More rep porting (#2391) 2017-02-16 23:09:39 -05:00
init_test.go Minor ports 2016-12-05 12:28:12 -05:00
keyring.go Added JSON Decode and Encode helpers. 2016-07-06 12:25:40 -04:00
keyring_test.go Fix keyring test 2017-01-24 12:58:14 -08:00
logical_cubbyhole.go Make cubbyhole local instead of replicated. (#2397) 2017-02-18 13:51:05 -05:00
logical_cubbyhole_test.go Make cubbyhole local instead of replicated. (#2397) 2017-02-18 13:51:05 -05:00
logical_passthrough.go Rename helper 'duration' to 'parseutil'. (#2449) 2017-03-07 11:21:22 -05:00
logical_passthrough_test.go Change default TTL from 30 to 32 to accommodate monthly operations (#1942) 2016-09-28 18:32:49 -04:00
logical_system.go Merge branch 'oss' into sys-tidy-leases 2017-04-27 11:23:48 -04:00
logical_system_helpers.go Understand local when persisting mount tables, to avoid invalidations when not necessary (#2427) 2017-03-02 14:37:59 -05:00
logical_system_test.go Updating revoke/renew to prefer PUT method (#2646) 2017-04-27 10:47:43 -04:00
mount.go Add option to disable caching per-backend. (#2455) 2017-03-08 09:20:09 -05:00
mount_test.go Understand local when persisting mount tables, to avoid invalidations when not necessary (#2427) 2017-03-02 14:37:59 -05:00
policy.go Rename helper 'duration' to 'parseutil'. (#2449) 2017-03-07 11:21:22 -05:00
policy_store.go Remove now-unnecessary stanza from default policy 2017-02-16 23:30:38 -05:00
policy_store_test.go Wrapping enhancements (#1927) 2016-09-28 21:01:28 -07:00
policy_test.go Add max/min wrapping TTL ACL statements (#2411) 2017-02-27 14:42:00 -05:00
rekey.go Do some porting to make diffing easier 2017-02-24 10:45:29 -05:00
rekey_test.go More rep porting (#2391) 2017-02-16 23:09:39 -05:00
request_forwarding.go Large update to request forwarding handling. (#2426) 2017-03-02 10:03:49 -05:00
request_forwarding_service.pb.go Update protos 2017-02-02 16:20:32 -05:00
request_forwarding_service.proto Rename gRPC request forwarding method 2017-01-06 17:08:43 -05:00
request_handling.go AppRole: Support restricted use tokens (#2435) 2017-03-03 09:31:20 -05:00
request_handling_test.go JWT wrapping tokens (#2172) 2017-01-04 16:44:03 -05:00
rollback.go Make rollback attempts trace level instead of debug level 2017-02-27 09:41:56 -05:00
rollback_test.go Adding interface methods to logical.Backend for parity (#2242) 2017-01-07 18:18:22 -05:00
router.go Create unified aws auth backend (#2441) 2017-04-24 15:15:50 -04:00
router_test.go Do some porting to make diffing easier 2017-02-24 10:45:29 -05:00
seal.go Multi value test seal (#2281) 2017-01-17 15:43:10 -05:00
seal_test.go Split out TestSeal 2016-04-26 00:14:16 +00:00
seal_testing.go Update TestSeal to ignore setting the config to nil 2017-03-01 14:10:06 -08:00
testing.go Rejig core standby logic to check validity of barrier during active transition 2017-02-28 18:17:30 -05:00
token_store.go change some logging output 2017-05-03 12:14:58 -04:00
token_store_test.go Fix revoke tree test 2017-04-26 16:26:48 -07:00
util.go Removed unused methods 2017-01-03 12:51:35 -05:00
util_test.go Utility Enhancements 2016-04-05 20:32:59 -04:00
wrapping.go Port some replication bits to OSS (#2386) 2017-02-16 15:15:02 -05:00