mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-26 00:51:08 +02:00
Code Issues Projects Releases Wiki Activity
7,782 Commits 2,840 Branches 445 Tags
Commit Graph

7782 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jeff Mitchell
e56f1beda9 Fix some broken links 2017-11-14 12:32:03 -05:00
Jeff Mitchell
bdac185447
Cut version 0.9.0 v0.9.0 2017-11-14 11:57:40 -05:00
Jeff Mitchell
be83081134 changelog++ 2017-11-14 11:56:05 -05:00
Jeff Mitchell
f056cf9119 Sync docs 2017-11-14 06:13:11 -05:00
Jeff Mitchell
40334714dd Prep for 0.9.0 2017-11-14 06:08:56 -05:00
Jeff Mitchell
4a60247941
Fix mount path for credential values in aliases (#3580) 2017-11-14 01:31:10 -05:00
Jeff Mitchell
c1ed4a06de Bump go version in Dockerfile 2017-11-14 01:16:59 -05:00
Calvin Leung Huang
2a7f3e95ab Acquire state lock at the start of UnsealWithRecoveryKeys (#3579) 
* Acquire state lock from the start of UnsealWithRecoveryKeys, add metrics

* Change metrics variable
 2017-11-13 22:05:22 -05:00
Vishal Nayak
b659e94a3b
API refactoring and doc updates (#3577) 
* Doc updates and API refactoring

* fix tests

* change metadata fieldtype to TypeKVPairs

* Give example for TypeKVPairs in CLI for metadata

* Update API docs examples to reflect the native expected value for TypeKVPairs

* Don't mention comma separation in the docs for TypeCommaStringSlice

* s/groups/group; s/entities/entity; s/entity-aliases/entity-alias; s/group-aliases/group-alias

* Address review feedback

* Fix formatting

* fix sidebar links
 2017-11-13 20:59:42 -05:00
Brian Kassouf
58ce26a6af Update the path for generating DR Operation tokens (#3578) 2017-11-13 20:28:34 -05:00
Vlad Ungureanu
81f968fbe2 Remove unused recovery field in dynamodb backend (#3569) 2017-11-13 15:46:02 -05:00
Chris Hoffman
def7b5c510
generate token functions to share common names (#3576) 2017-11-13 15:44:26 -05:00
Joel Thompson
8aeea21416 auth/aws: Check credential availability before auth (#3465) 
Checks to ensure we can get a valid credential from the credential chain
when using the vault CLI to do AWS auth.

Fixes #3383
 2017-11-13 15:43:24 -05:00
Jeff Mitchell
5be2e8e3b3 grpclogfaker should use or, not and, to check whether to log 2017-11-13 15:37:00 -05:00
Jeff Mitchell
c77196cea2
Port over bits (#3575) 2017-11-13 15:31:32 -05:00
Laura Uva
c09165b5ff Updated the Replication guide to make it clear that it is focused on Performance Replication. Added a link to our general info page for information on DR Replication. Removed some statements about DR not being available yet. (#3502) 2017-11-13 11:55:04 -05:00
Jeff Mitchell
82dcd8d076
Plumb more seal wrap stuff through and move to outside layer of mount options (#3572) 2017-11-13 11:22:22 -05:00
Jeff Mitchell
bf30fe7ccb Fix typo in test (and failure) 2017-11-13 10:35:36 -05:00
Brian Shumate
ac95095a99 DOCS: Update telemetry docs - fixes #3557 (#3571) 2017-11-13 09:58:04 -05:00
Jeff Mitchell
74d9a382c8 Fix client test 2017-11-12 12:34:56 -05:00
Calvin Leung Huang
56b5c8e8bd
Docs update related to new top-level config values (#3556) 
* Add new top level config value docs, add VAULT_API_ADDR, purge old references

* Fix indentation

* Update wording on ha.html

* Add section on split data/HA mode

* Fix grammar
 2017-11-10 20:06:07 -05:00
Jeff Mitchell
e71fd54ae2 changelog++ 2017-11-10 18:18:07 -05:00
Jeff Mitchell
75d88abbb6
Make -client-cert and -client-key work when the server doesn't know (#3568) 
about the CA used to sign the cert.

Stop swallowing an error in meta.

Fixes #2946
 2017-11-10 18:16:50 -05:00
Jeff Mitchell
8171eedc25 Populate config error in three node test function 2017-11-10 17:44:25 -05:00
Vishal Nayak
93c5d288d2
avoid empty group alias names (#3567) 2017-11-10 16:51:37 -05:00
Jeff Mitchell
b445783d65 Don't output log level twice in three node mode 2017-11-10 16:33:16 -05:00
Jeff Mitchell
547e18f9ed Add core numbers to output in dev three node 2017-11-10 16:21:46 -05:00
Brian Kassouf
6fc21d88e2
Add API methods for creating a DR Operation Token and make generate root accept strategy types (#3565) 
* Add API and Command code for generating a DR Operation Token

* Update generate root to accept different token strategies
 2017-11-10 10:19:42 -08:00
Jeff Mitchell
46be396b13 If kv entry is sealwrapped and is response-wrapped ensure it carries through 2017-11-10 12:56:31 -05:00
Brian Shumate
9c1694e773 Debug level logging of socket audit backend config at startup (#3560) 2017-11-10 12:08:36 -05:00
vishalnayak
06caa45c74 changelog++ 2017-11-10 11:39:20 -05:00
Vishal Nayak
017c0ec283
Avoid race conditions in AppRole (#3561) 
* avoid race conditions in approle

* return a warning from role read if secondary index is missing

* Create a role ID index if a role is missing one

* Fix locking in approle read and add test

* address review feedback
 2017-11-10 11:32:04 -05:00
Vishal Nayak
31484b7d55
transit doc update (#3564) 2017-11-09 16:17:54 -05:00
Jeff Mitchell
d5b4011f89 Change test cluster to request client cert rather than verify if given 2017-11-09 15:55:23 -05:00
Jeff Mitchell
973656d987
Add ability to send seal wrap response info into cubbyhole request. (#3562) 
Ref 84f80db4bf499ce7345615cc2def77e7d48bc690
 2017-11-09 12:47:42 -05:00
Jeff Mitchell
84f80db4bf
Seal wrap requesting in logical.Request wrapinfo (#3559) 2017-11-09 10:32:49 -05:00
Jeff Mitchell
0c3db8eaca Remove allow_base_domain from PKI role output. 
It was never used in a release, in favor of allow_bare_domains.

Fixes #1452 (again)
 2017-11-09 10:24:36 -05:00
James Soubry
859bd4fa1d Fix curl commands (#3558) 
Curl commands require HCL within JSON to work.
 2017-11-09 10:16:09 -05:00
Vishal Nayak
0f80114981
Merge identity alias lookups into either entity or group lookup endpoints (#3538) 
* merge identity alias lookups into either entity or group lookups

* Address review feedback

* address review feedback
 2017-11-09 01:29:19 -05:00
Jeff Mitchell
4535c8c38d Don't read out an internal role member in PKI 2017-11-08 18:20:53 -05:00
Chris Hoffman
c198732551 converting identity metadata to use TypeKVPairs (#3549) 2017-11-08 14:51:40 -05:00
Calvin Leung Huang
b9348ebf4c Add docs for /sys/rekey-recovery-key (#3520) 2017-11-08 14:22:30 -05:00
Calvin Leung Huang
faccf38997 Move HA-related config values to top level (#3550) 
* Move HA-related config values to top level

* Add config2.hcl test-fixture
 2017-11-08 14:19:41 -05:00
Jeff Mitchell
a00f83e715 Put back original test cluster client redirect behavior 2017-11-08 10:15:56 -05:00
Bharath B
ba0eac153a Remove symbols from vault binary (#3369) 2017-11-08 07:53:08 -05:00
Jeff Mitchell
d8a701d05c
Minor mount logic updates (#3553) 2017-11-07 20:30:02 -05:00
Calvin Leung Huang
45bae9b685
Use RFC3339Nano for AuditRequestEntry.Time (#3551) 2017-11-07 18:09:54 -05:00
Paul Pieralde
91d2c05a34 Doc fix for Create/Update Token API (#3548) 
`orphan` is intended to be default to False. Docs indicate this
is default to True. Simple change to update the docs only.
 2017-11-07 18:06:44 -05:00
Jeff Mitchell
541ce9afc5
Fix potential panic reading local mount tables (#3552) 2017-11-07 18:04:37 -05:00
Jeff Mitchell
91ef8ad02e Fix regression involving cluster listener 2017-11-07 17:27:13 -05:00