open-vault/vault
Violet Hynes 0c80ee5cf5
VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157)
* VAULT-6613 add DetermineRoleFromLoginRequest function to Core

* Fix body handling

* Role resolution for rate limit quotas

* VAULT-6613 update precedence test

* Add changelog

* VAULT-6614 start of changes for roles in LCQs

* Expiration changes for leases

* Add role information to RequestAuth

* VAULT-6614 Test updates

* VAULT-6614 Add expiration test with roles

* VAULT-6614 fix comment

* VAULT-6614 Protobuf on OSS

* VAULT-6614 Add rlock to determine role code

* VAULT-6614 Try lock instead of rlock

* VAULT-6614 back to rlock while I think about this more

* VAULT-6614 Additional safety for nil dereference

* VAULT-6614 Use %q over %s

* VAULT-6614 Add overloading to plugin backends

* VAULT-6614 RLocks instead

* VAULT-6614 Fix return for backend factory
2022-07-05 13:02:00 -04:00
..
activity VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
cluster reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
diagnose removing prem/pro references as part of removing some build targets (#15278) 2022-05-06 09:09:42 -04:00
external_tests Replicate member_entity_ids and policies in identity/group across nodes identically (#16088) 2022-06-28 19:54:24 -04:00
quotas VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
replication Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
seal Rename master key to root key (#13324) 2021-12-06 17:12:20 -08:00
tokens VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
acl.go Add list of granting policies audit logs (#15457) 2022-05-16 16:23:08 -07:00
acl_test.go Add list of granting policies audit logs (#15457) 2022-05-16 16:23:08 -07:00
acl_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
activity_log.go Port: Use Stored Hll to Compute New Clients For Current Month (#16184) 2022-06-29 10:51:23 -07:00
activity_log_test.go Port: Use Stored Hll to Compute New Clients For Current Month (#16184) 2022-06-29 10:51:23 -07:00
activity_log_testing_util.go s/path/mount_path (#14164) 2022-02-18 13:44:43 -05:00
activity_log_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
activity_log_util_common.go Port: Use Stored Hll to Compute New Clients For Current Month (#16184) 2022-06-29 10:51:23 -07:00
activity_log_util_common_test.go Port: Use Stored Hll to Compute New Clients For Current Month (#16184) 2022-06-29 10:51:23 -07:00
audit.go Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
audit_broker.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
audit_test.go Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
audited_headers.go vault: deprecate errwrap.Wrapf() (#11577) 2021-05-11 13:12:54 -04:00
audited_headers_test.go Fix some more error shadowing issues (#12990) 2021-11-01 11:43:00 -07:00
auth.go Remove dead code in setupCredentials() (#15194) 2022-04-27 10:47:04 -04:00
auth_test.go fix regression on Core.pluginDirectory when backend is builtin (#15027) 2022-04-14 15:54:23 -05:00
barrier.go Rename master key to root key (#13324) 2021-12-06 17:12:20 -08:00
barrier_access.go
barrier_aes_gcm.go validate cipher length before decrypting (#14098) 2022-02-18 07:37:22 -07:00
barrier_aes_gcm_test.go validate cipher length before decrypting (#14098) 2022-02-18 07:37:22 -07:00
barrier_test.go Rename master key to root key (#13324) 2021-12-06 17:12:20 -08:00
barrier_view.go
barrier_view_test.go Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
barrier_view_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
capabilities.go Adds ability to define an inline policy and internal metadata on tokens (#12682) 2021-10-07 10:36:22 -07:00
capabilities_test.go
cluster.go Add endpoints to provide ability to modify logging verbosity (#16111) 2022-06-27 11:39:53 -04:00
cluster_test.go Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
core.go VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
core_metrics.go Avoid deadlocking on stateLock in emitMetrics (#15693) 2022-05-31 12:15:39 -04:00
core_metrics_test.go oss changes (#15487) 2022-05-18 09:16:13 -07:00
core_test.go Add build date (#14957) 2022-04-19 14:28:08 -04:00
core_util.go VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
core_util_common.go move unused GetCoreConfigInternal to common file to prevent ent panics (#16165) 2022-06-27 14:41:56 -07:00
cors.go Migrate to sdk/internalshared libs in go-secure-stdlib (#12090) 2021-07-15 20:17:31 -04:00
counters.go [VAULT-2852] deprecate req counters in oss (#12197) 2021-07-29 10:21:40 -07:00
counters_test.go [VAULT-2852] deprecate req counters in oss (#12197) 2021-07-29 10:21:40 -07:00
custom_response_headers.go reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
custom_response_headers_test.go vault: fix dropped test errors (#14402) 2022-03-08 12:32:27 -07:00
deadlock.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
dynamic_system_view.go Adds Vault version prerelease and metadata to logical.PluginEnvironment (#14851) 2022-04-04 22:31:01 -07:00
dynamic_system_view_test.go core: set namespace within GeneratePasswordFromPolicy (#12635) 2021-09-27 09:08:07 -07:00
expiration.go VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
expiration_integ_test.go Revert the WithContext changes to vault tests (#14947) 2022-04-07 15:12:58 -04:00
expiration_test.go VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
expiration_testing_util_common.go [VAULT-1981] Add OSS changes (#11999) 2021-07-06 17:12:24 -05:00
expiration_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
generate_root.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
generate_root_recovery.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
generate_root_test.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
ha.go Correct drift between ENT and OSS (#15966) 2022-06-14 17:53:19 -07:00
ha_test.go Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
identity_lookup.go
identity_lookup_test.go
identity_store.go prevent deleting MFA method through an invalid path (#15482) 2022-05-31 14:22:04 -04:00
identity_store_aliases.go Support clearing an identity alias' custom_metadata (#13395) 2021-12-10 18:07:47 -05:00
identity_store_aliases_test.go Support clearing an identity alias' custom_metadata (#13395) 2021-12-10 18:07:47 -05:00
identity_store_entities.go Clone identity objects to prevent races. (#15123) 2022-04-22 13:04:34 -04:00
identity_store_entities_test.go reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
identity_store_group_aliases.go Refactor usages of Core in IdentityStore so they can be decoupled. (#12461) 2021-08-30 15:31:11 -04:00
identity_store_group_aliases_test.go
identity_store_groups.go return bad request instead of server error for identity group cycle detection (#15912) 2022-06-10 10:15:31 -04:00
identity_store_groups_test.go return bad request instead of server error for identity group cycle detection (#15912) 2022-06-10 10:15:31 -04:00
identity_store_oidc.go identity/token: fix duplicate keys in well-known (#14543) 2022-03-16 18:48:10 -07:00
identity_store_oidc_provider.go identity/oidc: Adds default provider, key, and allow_all assignment (#14119) 2022-02-22 08:33:19 -08:00
identity_store_oidc_provider_test.go oidc provider: add test case for clients sharing keys (#14555) 2022-03-18 16:21:21 -05:00
identity_store_oidc_provider_util.go identity/oidc: Adds proof key for code exchange (PKCE) support (#13917) 2022-02-15 12:02:22 -08:00
identity_store_oidc_test.go unit test: fix oidc periodicfunc flaky test (#15320) 2022-05-09 13:43:23 -05:00
identity_store_oidc_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
identity_store_oss.go Login MFA (#14025) 2022-02-17 13:08:51 -08:00
identity_store_schema.go Fix startup failures when aliases from a pre-1.9 vault version exist (#13169) 2021-11-16 14:56:34 -05:00
identity_store_structs.go Login MFA (#14025) 2022-02-17 13:08:51 -08:00
identity_store_test.go oss changes (#15487) 2022-05-18 09:16:13 -07:00
identity_store_upgrade.go
identity_store_util.go Replicate member_entity_ids and policies in identity/group across nodes identically (#16088) 2022-06-28 19:54:24 -04:00
init.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
init_test.go Shutdown Test Cores when Tests Complete (#10912) 2021-02-12 13:04:48 -07:00
keyring.go reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
keyring_test.go Rename master key to root key (#13324) 2021-12-06 17:12:20 -08:00
lock.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
logical_cubbyhole.go vault: deprecate errwrap.Wrapf() (#11577) 2021-05-11 13:12:54 -04:00
logical_cubbyhole_test.go
logical_passthrough.go Migrate to sdk/internalshared libs in go-secure-stdlib (#12090) 2021-07-15 20:17:31 -04:00
logical_passthrough_test.go Migrate to sdk/internalshared libs in go-secure-stdlib (#12090) 2021-07-15 20:17:31 -04:00
logical_raw.go Enhance sys/raw to read and write values that cannot be encoded in json (#13537) 2022-01-20 07:52:53 -05:00
logical_system.go Dynamic parameter for mountpaths in OpenApi Spec generation(#15835) 2022-06-30 07:43:04 -07:00
logical_system_activity.go Activity Log Filtering Limit Parameter (#16000) 2022-06-15 15:41:31 -07:00
logical_system_helpers.go Login MFA (#14025) 2022-02-17 13:08:51 -08:00
logical_system_integ_test.go Fix plugin reload mounts (#15579) 2022-05-25 13:37:42 -05:00
logical_system_paths.go Dynamic parameter for mountpaths in OpenApi Spec generation(#15835) 2022-06-30 07:43:04 -07:00
logical_system_pprof.go Add support for unauthenticated pprof access on a per-listener basis,… (#11324) 2021-04-19 14:30:59 -04:00
logical_system_quotas.go VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
logical_system_raft.go Add autopilot automated upgrades and redundancy zones (#15521) 2022-05-20 16:49:11 -04:00
logical_system_test.go VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
logical_system_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
login_mfa.go VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
managed_key_registry.go Invalidate the ManagedKeyRegistry cache when Vault config is updated. (#14179) 2022-02-21 09:55:44 -05:00
mfa_auth_resp_priority_queue.go Login MFA (#14025) 2022-02-17 13:08:51 -08:00
mfa_auth_resp_priority_queue_test.go Login MFA (#14025) 2022-02-17 13:08:51 -08:00
mount.go Small refactor of mount entry manipulation (#16024) 2022-06-17 08:52:43 -04:00
mount_test.go Allow looking up mount entries by their backend UUIDs (#15217) 2022-04-29 16:15:29 -04:00
mount_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
namespaces.go Refactor usages of Core in IdentityStore so they can be decoupled. (#12461) 2021-08-30 15:31:11 -04:00
namespaces_oss.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
password_policy_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
plugin_catalog.go Fix bug where id not existing in multiplexing map causes panic (#16094) 2022-06-22 14:29:25 -04:00
plugin_catalog_test.go plugin multiplexing: add catalog test coverage (#14398) 2022-03-08 10:33:24 -06:00
plugin_reload.go Fix plugin reload mounts (#15579) 2022-05-25 13:37:42 -05:00
policy.go Add list of granting policies audit logs (#15457) 2022-05-16 16:23:08 -07:00
policy_store.go Adds ability to define an inline policy and internal metadata on tokens (#12682) 2021-10-07 10:36:22 -07:00
policy_store_test.go Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
policy_store_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
policy_test.go Add HTTP PATCH support to KV (#12687) 2021-10-13 15:24:31 -04:00
policy_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
raft.go Add endpoints to provide ability to modify logging verbosity (#16111) 2022-06-27 11:39:53 -04:00
rekey.go Rename master key to root key (#13324) 2021-12-06 17:12:20 -08:00
rekey_test.go Shutdown Test Cores when Tests Complete (#10912) 2021-02-12 13:04:48 -07:00
request_forwarding.go Add autopilot automated upgrades and redundancy zones (#15521) 2022-05-20 16:49:11 -04:00
request_forwarding_rpc.go Use the incoming request version to populate follower state (#15806) 2022-06-06 08:44:24 -07:00
request_forwarding_rpc_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
request_forwarding_service.pb.go VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
request_forwarding_service.proto Add autopilot automated upgrades and redundancy zones (#15521) 2022-05-20 16:49:11 -04:00
request_forwarding_service_grpc.pb.go Update protobuf & grpc libraries and protoc plugins (#12679) 2021-09-29 18:25:15 -07:00
request_handling.go VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
request_handling_test.go SSCT Optimizations (OSS) (#14323) 2022-03-01 12:24:45 -08:00
request_handling_util.go VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
rollback.go Run a more strict formatter over the code (#11312) 2021-04-08 09:43:39 -07:00
rollback_test.go When tainting a route during setup, pre-calculate the namespace specific path (#15067) 2022-04-26 09:13:45 -07:00
router.go Skip metric increment during existence check (#12763) 2022-05-05 10:22:19 -07:00
router_access.go
router_test.go When tainting a route during setup, pre-calculate the namespace specific path (#15067) 2022-04-26 09:13:45 -07:00
router_testing.go
seal.go reformat using 'make fmt' (#13794) 2022-01-27 10:06:34 -08:00
seal_access.go Migrate built in auto seal to go-kms-wrapping (#8118) 2020-01-10 20:39:52 -05:00
seal_autoseal.go Fix a data race in the new autoseal health check (#13136) 2021-11-12 15:58:46 -06:00
seal_autoseal_test.go Fix autoseal health check race by passing metrics sink in CoreConfig (#14196) 2022-03-01 09:00:39 -05:00
seal_test.go Shamir seals now come in two varieties: legacy and new-style. (#7694) 2019-10-18 14:46:00 -04:00
seal_testing.go Rename master key to root key (#13324) 2021-12-06 17:12:20 -08:00
seal_testing_util.go Rename master key to root key (#13324) 2021-12-06 17:12:20 -08:00
sealunwrapper.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
sealunwrapper_test.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
testing.go Add endpoints to provide ability to modify logging verbosity (#16111) 2022-06-27 11:39:53 -04:00
testing_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
token_store.go oss changes (#15487) 2022-05-18 09:16:13 -07:00
token_store_test.go VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
token_store_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00
token_store_util_common.go SSCT Tokens Feature [OSS] (#14109) 2022-02-17 11:43:07 -08:00
ui.go Add Semgrep Rules to OSS (#14513) 2022-03-18 11:14:03 -07:00
ui_test.go Fix UI custom header values (#10511) 2020-12-15 15:58:03 +01:00
util.go
util_test.go
vault_version_time.go Add build date (#14957) 2022-04-19 14:28:08 -04:00
version_store.go Add build date (#14957) 2022-04-19 14:28:08 -04:00
version_store_test.go Add build date (#14957) 2022-04-19 14:28:08 -04:00
wrapping.go VAULT-6614 Enable role based quotas for lease-count quotas (OSS) (#16157) 2022-07-05 13:02:00 -04:00
wrapping_util.go Convert to Go 1.17 go:build directive (#13579) 2022-01-05 12:02:03 -06:00