mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-09-17 20:01:08 +02:00
Code Issues Projects Releases Wiki Activity
7,782 Commits 2,848 Branches 448 Tags
Commit Graph

7782 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jeff Mitchell
67a746be30 Add explicit maximum TTLs to token store roles. 2016-05-11 16:51:18 -04:00
Sean Chittenden
36496c90b9 Merge pull request #1395 from hashicorp/b-remove-mlock-netbsd 
Don't build mlock for NetBSD
 2016-05-10 23:33:08 -07:00
vishalnayak
306632cb68 Merge branch 'master-oss' into pr-1300 2016-05-10 20:47:07 -04:00
Sean Chittenden
2dc560e0c2
Don't build mlock for NetBSD 
NetBSD doesn't have the right symbols defined in Go for mlockall support.  The OS supports it just fine, but the definitions aren't present in Go.  If someone wanted to they could add support XOR the values from `sys/mman.h` for `MCL_CURRENT | MCL_FUTURE` which is almost certainly `0x01 | 0x02` but we're not going to do that in code due to the maintenance of a one-off just for NetBSD.  PR's welcome.
 2016-05-10 16:39:54 -07:00
Vishal Nayak
04d3da065a Merge pull request #1394 from joehillen/patch-1 
Fix default etcd address
 2016-05-10 15:52:37 -04:00
Joe Hillenbrand
2d0f8cd938 Fix default etcd address 
Should be `127.0.0.1`, not `128.0.0.1`
 2016-05-10 12:50:11 -07:00
vishalnayak
7a10134f87 Merge branch 'master-oss' into aws-auth-backend 2016-05-10 14:50:00 -04:00
Jeff Mitchell
59c9bafa12 Add dev-dynamic makefile target 2016-05-09 23:17:38 -04:00
vishalnayak
c1dd991ccf Fix the acceptance tests 2016-05-09 22:07:51 -04:00
vishalnayak
ebaff78305 Call client config internal from the locking method 2016-05-09 21:01:57 -04:00
Jeff Mitchell
49d9711322 changelog++ 2016-05-09 20:01:12 -04:00
Jeff Mitchell
765315ddbc Merge pull request #1390 from hashicorp/dont-revoke-ca-certs 
Don't revoke CA certificates with leases.
 2016-05-09 16:54:40 -07:00
Jeff Mitchell
9de0ea081a Don't revoke CA certificates with leases. 2016-05-09 19:53:28 -04:00
Jeff Mitchell
0c6f45d94c Update client code to use internal entry fetching 2016-05-09 23:26:00 +00:00
Sean Chittenden
0aad4e68a7
Bump Go to 1.6.2 for Travis (just added) 2016-05-08 22:13:41 -07:00
Jeff Mitchell
fd67b15bb0 Add more tests 2016-05-07 21:08:13 -04:00
Jeff Mitchell
8672b61bef Implement WrapInfo audit logging 2016-05-07 20:03:56 -04:00
Jeff Mitchell
fdde9e1697 Audit wrap info 2016-05-07 19:19:19 -04:00
Jeff Mitchell
e36f66000e Make WrapInfo a pointer to match secret/auth in response 2016-05-07 19:17:51 -04:00
Jeff Mitchell
f3a3fc3d55 Merge remote-tracking branch 'origin/master' into cubbyhole-the-world 2016-05-07 19:00:18 -04:00
Jeff Mitchell
a2993813e4 changelog++ 2016-05-07 19:00:09 -04:00
Jeff Mitchell
aaee4e34ac Merge pull request #1387 from hashicorp/log-display-name 
Add DisplayName to request audit object in response audit object
 2016-05-07 15:58:01 -07:00
Jeff Mitchell
28c1498151 Add DisplayName to request audit object in response audit object 2016-05-07 18:57:38 -04:00
Jeff Mitchell
c8be24741a Specify more complete wrap-ttl output in help 2016-05-07 16:45:41 -04:00
Jeff Mitchell
aab8b684df Merge response fix over from mfatw 2016-05-07 16:41:24 -04:00
Jeff Mitchell
908487191f Merge branch 'master-oss' into cubbyhole-the-world 2016-05-07 16:40:04 -04:00
Jeff Mitchell
345649f90f changelog++ 2016-05-07 16:36:02 -04:00
Jeff Mitchell
3ca09fdf30 Merge pull request #1346 from hashicorp/disable-all-caches 
Disable all caches
 2016-05-07 16:33:45 -04:00
Sean Chittenden
c69fa99474 Bump Go to 1.6.1 2016-05-07 13:30:43 -07:00
Steve Jansen
69740e57e0 Adds sts:AssumeRole support to the AWS secret backend 
Support use cases where you want to provision STS tokens
using Vault, but, you need to call AWS APIs that are blocked
for federated tokens.  For example, STS federated tokens cannot
invoke IAM APIs, such as  Terraform scripts containing
`aws_iam_*` resources.
 2016-05-05 23:32:41 -04:00
Jeff Mitchell
e0e838c1ae Merge branch 'master-oss' into cubbyhole-the-world 2016-05-05 20:45:36 -04:00
Jeff Mitchell
dd5321a86a Switch whitelist to use longest max TTL 2016-05-05 20:44:48 -04:00
Jeff Mitchell
a5cae16b5f Role tag updates 2016-05-05 15:32:14 -04:00
Jeff Mitchell
e83dbbe532 Fix HMAC being overwritten. Also some documentation, and add a lock to role operations 2016-05-05 14:51:09 -04:00
Jeff Mitchell
e7c5966da8 Guard tidy functions 2016-05-05 14:28:46 -04:00
Jeff Mitchell
c41b024f36 More updates to mutexes and adjust blacklisted roletag default safety buffer 2016-05-05 14:12:22 -04:00
Jeff Mitchell
68b76b99c8 Rename identity whitelist and roletag blacklist api endpoints 2016-05-05 13:34:50 -04:00
Jeff Mitchell
3d20107e54 Move some mutexes around 2016-05-05 12:53:27 -04:00
Jeff Mitchell
c4f26c9011 Update some mutexes in client config 2016-05-05 12:44:40 -04:00
Jeff Mitchell
1c60388900 Fall back to non-base64 cert if it can't be decoded (it's checked later anyways) 2016-05-05 11:36:28 -04:00
Jeff Mitchell
96cebf9cd1 Update commenting 2016-05-05 11:22:36 -04:00
Jeff Mitchell
3390dca953 Make the roletag blacklist the longest duration, not least 2016-05-05 11:00:41 -04:00
Jeff Mitchell
9a662ff493 Switch client code to shared awsutil code 2016-05-05 10:40:49 -04:00
Jeff Mitchell
42d9df95c1 Merge branch 'master-oss' into aws-auth-backend 2016-05-05 10:36:06 -04:00
Jeff Mitchell
902b2c4c72 changelog++ 2016-05-05 10:35:22 -04:00
Jeff Mitchell
5b23b0f347 Merge pull request #1374 from hashicorp/aws-cred-chain 
AWS cred chain helper
 2016-05-05 10:34:07 -04:00
Jeff Mitchell
56fd6fcc29 Fix up commenting 2016-05-05 10:31:50 -04:00
Jeff Mitchell
98d7f52ef2 Merge remote-tracking branch 'origin/master' into aws-cred-chain 2016-05-05 10:31:12 -04:00
Jeff Mitchell
5b9458e697 Merge pull request #1381 from hashicorp/util-update 
Updates to policy and string helpers
 2016-05-05 10:29:10 -04:00
vishalnayak
15f29c6956 Updates to policy and string helpers 2016-05-05 10:22:28 -04:00