mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-09-04 13:31:14 +02:00
Code Issues Projects Releases Wiki Activity
7,782 Commits 2,843 Branches 446 Tags
Commit Graph

7782 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Michael S. Fischer
c6120c26d9 Update aws-ec2 configuration help 
Updated to reflect enhanced functionality and clarify necessary
permissions.
 2016-10-05 12:40:58 -07:00
Jeff Mitchell
22619b6786
Cut version 0.6.2 v0.6.2 2016-10-05 14:31:35 -04:00
Jeff Mitchell
d7615b0477 Don't use quoted identifier for the username 2016-10-05 14:31:19 -04:00
Jeff Mitchell
f911375ca4 Update upgrade guide 2016-10-05 14:10:27 -04:00
Jeff Mitchell
9c30bf07e5 changelog++ 2016-10-05 14:08:31 -04:00
Jeff Mitchell
37df43d534 Postgres revocation sql, beta mode (#1972) 2016-10-05 13:52:59 -04:00
Jeff Mitchell
5394fc77e0 Prep for 0.6.2 2016-10-05 08:23:31 -04:00
Paweł Rozlach
261cc52cbc Post-review fixes for file/zk recursive empty prefix delete 2016-10-05 08:08:00 -04:00
Jeff Mitchell
2af3c499bf changelog++ 2016-10-04 23:17:29 -04:00
vishalnayak
fd234e4c9a changelog++ 2016-10-04 22:53:15 -04:00
Vishal Nayak
2711249e08 Merge pull request #1964 from mesosphere/prozlach/nested_secrets_handling_fix 
Nested secrets handling fix for zookeeper and file based backend.
 2016-10-04 22:45:37 -04:00
Jeff Mitchell
5ce55a2ebc Update website with breaking change information 2016-10-04 22:35:56 -04:00
Jeff Mitchell
3c26e396a8 changelog++ 2016-10-04 22:15:14 -04:00
Jeff Mitchell
b7c68ebd86 changelog++ 2016-10-04 22:07:06 -04:00
Jeff Mitchell
ae2f9632f9 changelog++ 2016-10-04 21:57:10 -04:00
Vishal Nayak
3d9009b315 Merge pull request #1967 from hashicorp/mysql-revoke-sql 
Refactor mysql's revoke SQL
 2016-10-04 20:01:54 -04:00
vishalnayak
9c8ceb14d6 changelog++ 2016-10-04 19:47:37 -04:00
vishalnayak
e90acaeb6c Refactor mysql's revoke SQL 2016-10-04 19:30:25 -04:00
Vishal Nayak
b22b4edc71 Merge pull request #1914 from jpweber/mysql-revoke 
Mysql revoke with non-wildcard hosts
 2016-10-04 17:44:15 -04:00
Jim Weber
6b9b646e8a removed an unused ok variable. Added warning and force use for default queries if role is nil 2016-10-04 17:15:29 -04:00
vishalnayak
317210bb69 changelog++ 2016-10-04 16:18:47 -04:00
Pawel Rozlach
3156098a5b Fix file backend so that it properly removes nested secrets. 
This patch makes file backend properly remove nested secrets, without leaving
empty directory artifacts, no matter how nested directories were.
 2016-10-04 21:56:12 +02:00
Pawel Rozlach
d13c10ffe3 Fix zookeeper backend so that properly deletes/lists secrets. 
This patch fixes two bugs in Zookeeper backends:
 * backend was determining if the node is a leaf or not basing on the number
   of the childer given node has. This is incorrect if you consider the fact
   that deleteing nested node can leave empty prefixes/dirs behind which have
   neither children nor data inside. The fix changes this situation by testing
   if the node has any data set - if not then it is not a leaf.
 * zookeeper does not delete nodes that do not have childern just like consul
   does and this leads to leaving empty nodes behind. In order to fix it, we
   scan the logical path of a secret being deleted for empty dirs/prefixes and
   remove them up until first non-empty one.
 2016-10-04 21:56:12 +02:00
Pawel Rozlach
7b5f467d9b Add tests for nested/prefixed secrets removal. 
Current tests were not checking if backends are properly removing
nested secrets. We follow here the behaviour of Consul backend, where
empty "directories/prefixes" are automatically removed by Consul itself.
 2016-10-04 21:55:33 +02:00
Vishal Nayak
a72b7698bb Merge pull request #1961 from hashicorp/aws-ec2-auth-rsa-signature 
aws-ec2-auth using identity doc and RSA digest
 2016-10-04 15:45:12 -04:00
vishalnayak
4e471c41fb Minor doc updates 2016-10-04 15:46:09 -04:00
vishalnayak
18a59edb43 Address review feedback 2 2016-10-04 15:30:42 -04:00
vishalnayak
84c8caefca Address review feedback 2016-10-04 15:05:44 -04:00
Vishal Nayak
4ffd3ec392 Merge pull request #1957 from hashicorp/website-list-userpass 
Added user listing endpoint to userpass docs
 2016-10-04 14:10:49 -04:00
Jim Weber
1ec0a2d403 fixed an incorrect assignment 2016-10-03 21:51:40 -04:00
vishalnayak
dda2e81895 Add only relevant certificates 2016-10-03 20:34:28 -04:00
vishalnayak
437ddeaadc aws-ec2 config endpoints support type option to distinguish certs 2016-10-03 20:25:07 -04:00
Jim Weber
1b591fb6d5 More resilient around cases of missing role names and using the default when needed. 2016-10-03 20:20:00 -04:00
vishalnayak
1317753f18 Authenticate aws-ec2 instances using identity document and its RSA signature 2016-10-03 18:57:41 -04:00
Vishal Nayak
a3b58b7454 Merge pull request #1960 from hashicorp/atlas-listener-docs 
document the atlas listener
 2016-10-03 16:13:32 -04:00
Matthew Irish
61c88389ed add documentation for cluster_name and link atlas listener docs 2016-10-03 15:04:33 -05:00
Jim Weber
67d991f4ab Refactored logic some to make sure we can always fall back to default revoke statments 
Changed rolename to role
made default sql revoke statments a const
 2016-10-03 15:59:56 -04:00
Jim Weber
179c07075a fixed some more issues I had with the tests. 2016-10-03 15:58:09 -04:00
Jim Weber
aa5bb3b354 renamed rolname to role 2016-10-03 15:57:47 -04:00
Jim Weber
c9e783caaa Removed file that should not have been added in the first place. 2016-10-03 14:53:22 -04:00
Jim Weber
003d0df191 Reduced duplicated code and fixed comments and simple variable name mistakes 2016-10-03 14:53:05 -04:00
Matthew Irish
3113c8c984 document the atlas listener 2016-10-03 10:41:50 -05:00
Jim Weber
10855b070f Added test for revoking mysql user with wild card host and non-wildcard host 2016-10-02 22:28:54 -04:00
Jim Weber
47465e782c saving role name to the Secret Internal data. Default revoke query added 
The rolename is now saved to the secret internal data for fetching
later during the user revocation process. No longer deriving the role
name from request path

Added support for default revoke SQL statements that will provide the
same functionality as before. If not revoke SQL statements are provided
the default statements are used.

Cleaned up personal ignores from the .gitignore file
 2016-10-02 18:53:16 -04:00
Jeff Mitchell
40b250200c changelog++ 2016-10-02 14:55:48 -04:00
Jeff Mitchell
0765d8e938 Switch default case of disable cluster. (#1959) 2016-10-02 14:54:01 -04:00
Jeff Mitchell
8942f2938d changelog++ 2016-10-02 13:29:52 -04:00
vishalnayak
5235b9899a Added docs for reading and deleting username 2016-09-30 16:13:57 -04:00
vishalnayak
6b0be2d5c4 Added user listing endpoint to userpass docs 2016-09-30 15:47:33 -04:00
Jeff Mitchell
905d01cf8e Update changelog and website for GH-1958 2016-09-30 15:08:38 -04:00