mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-11-22 03:01:10 +01:00
Code Issues Projects Releases Wiki Activity
12,211 Commits 2,848 Branches 460 Tags
Commit Graph

159 Commits

Author SHA1 Message Date
Jim Kalafut
60aef2b51c
Minor transform docs rewording (#9223) 2020-06-14 20:53:36 -07:00
Michael Golowka
b2441efd37
Integrate password policies into RabbitMQ secret engine (#9143) 
* Add password policies to RabbitMQ & update docs
* Also updates some parts of the password policies to aid/fix testing
 2020-06-11 16:08:20 -06:00
ncabatoff
8cabb11b48
Clarify cache setting. (#9204) 2020-06-11 16:20:36 -04:00
Andy Assareh
40ca742040
replacing "a key usage mode" as it is confusing (#9194) 
Since the context of this page is transit and encryption keys, the use of the word "key" to mean effectively common seems ill advised. Proposing an alternative wording.
 2020-06-11 07:50:31 -04:00
Theron Voran
b792adb9a1
AWS: Add iam_groups parameter to role create/update (#8811) 
Allows vault roles to be associated with IAM groups in the AWS
secrets engine, since IAM groups are a recommended way to manage
IAM user policies. IAM users generated against a vault role will
be added to the IAM Groups. For a credential type of
`assumed_role` or `federation_token`, the policies sent to the
corresponding AWS call (sts:AssumeRole or sts:GetFederation) will
be the policies from each group in `iam_groups` combined with the
`policy_document` and `policy_arns` parameters.

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
 2020-06-09 16:56:12 -07:00
Rob Taylor
62546708b4
Fixed minor typo in secrets documentation page (#8856) 2020-06-08 11:17:26 -04:00
Frederic Hemberger
49461d66a9
[docs/telemetry] Unnecessary comma in HCL example (#8817) 2020-06-08 11:07:28 -04:00
Rob Jackson
8bd298f0f5
update to include vault_format (#8876) 2020-06-08 10:40:03 -04:00
Calvin Leung Huang
a14c5da75e
docs: document raft and mlock interaction (#9093) 
* docs: document raft and mlock interaction

* docs: expand on mlock issue when raft is used

* Update website/pages/docs/configuration/index.mdx

Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>

Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
 2020-06-05 15:02:55 -07:00
Scott Miller
02e5de453e
Github markdown doesn't use "^" for superscript, have to be explicit (#9156) 2020-06-05 16:55:33 -05:00
Scott Miller
6d37057c3c
Document and give an example of the input size limits when using the FF3-1 transform. (#9151) 
* Document and give an example of the input size limits when using the FF3-1
transform.
 2020-06-05 07:45:18 -05:00
Jason O'Donnell
753a093f43
docs/k8s: Add OpenShift K8s beta documentation (#9135) 
* doc/k8s: add OpenShift examples

* Update requirements

* Update website/pages/docs/platform/k8s/helm/openshift.mdx

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>

* Fix ha example

* Fix ha doc

* Update image references

* Fix formatting

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
 2020-06-03 15:10:37 -04:00
Dave D'Amico
5fbec550a6
updated 1.3.2 and 1.4.0 upgrade guides to note AWS STS region issue fixed in 1.4.1 (#9137) 2020-06-03 10:27:45 -07:00
Theron Voran
53b8cdb8c2
Docs updates for vault-helm 0.6.0 release (#9116) 
* Docs updates for vault-helm 0.6.0 release

* added openshift and postStart values

* noting that openshift support is a beta feature
 2020-06-03 11:44:32 -04:00
Theron Voran
71fa313ee3
Docs updates for vault-k8s 0.4.0 (#9107) 
* Adding changes for vault-k8s 0.4.0

* add note about run-as-same-user rejecting root
 2020-06-03 10:06:20 -04:00
Brian Kassouf
0dca2fabc2
Fix upgrade guide (#9133) 2020-06-02 16:27:19 -07:00
Michael Golowka
aedde96bee
Update OpenLDAP Secrets Docs with Password Policies (#9088) 
* Update OpenLDAP docs to use password policies
 2020-06-02 11:34:01 -06:00
Michael Golowka
e568432f3d
Add docs for password policies (#8974) 
* Add docs for password policies
 2020-06-02 11:12:22 -06:00
Alexander Bezobchuk
9c07a78365
Merge PR #9027: Integrated Storage (Raft): Add Support for max_entry_size Config 2020-06-01 10:17:24 -04:00
dddugan
7561c04921
correct sockaddr.is_contained example (#9104) 
Syntax for sockaddr.is_contained should be outer, inner - i.e. range, IP. See https://docs.hashicorp.com/sentinel/imports/sockaddr/ for reference.
 2020-05-29 10:51:31 -07:00
ncabatoff
263dd77a8d
Update seal docs to reflect 1.3 changes. (#9086) 2020-05-29 13:28:03 -04:00
Christophe Drevet-Droguet
b78561e331
ssh certificate signing: fix documentation of extensions (#8859) 2020-05-29 13:23:19 -04:00
Elthariel
d52e530189
doc: Add an example of templated policy using k8s metadata (#9101) 2020-05-28 17:54:56 -07:00
ncabatoff
460db7dad8
Add note regarding LDAP regression. (#9038) 2020-05-27 12:29:30 -04:00
Thomas L. Kula
f31092e7ad
Allow auto_auth with templates without specifying a sink (#8812) 
For situations where you want the Vault agent to handle one or more templates but do not require the acquired credentials elsewhere.

Modify the logic in SyncServer so that if there are no sinks, ignore any new credentials. Since SyncServer is responsible for shutting down the agent, make sure it still properly shuts down in this new situation.

Solves #7988
 2020-05-26 13:52:14 -04:00
Jim Kalafut
2352718f38
Update release notes (#9064) 2020-05-21 18:51:19 -07:00
Jeff Escalante
45b9f7c1a5
🌷 Docs Website Maintenance (#8985) 
* website maintenance round
* improve docs, revert bug workaround as it was fixed
* boost memory
* remove unnecessary code
 2020-05-21 13:18:17 -04:00
Lauren Voswinkel
b0c818733d
Require TLS or plaintext flagging in MySQL configuration (#9012) 
* Adds a safety switch to configuration files.

This requires a user to either use TLS, or acknowledge that they are sending
credentials over plaintext.

* Warn if plaintext credentials will be passed

* Add true/false support to the plaintext transmission ack

* Updated website docs and ensured ToLower is used for true comparison
 2020-05-21 09:09:37 -07:00
Jason O'Donnell
6823c0ac3e
doc: clarify token helper intro (#9058) 2020-05-21 10:11:32 -04:00
Jason O'Donnell
0eba895a93
doc: add environment variable template example (#9019) 
* doc: add environment variable template example

* Update website/pages/docs/platform/k8s/injector/examples.mdx

Co-authored-by: Becca Petrin <beccapetrin@gmail.com>

Co-authored-by: Becca Petrin <beccapetrin@gmail.com>
 2020-05-18 15:51:17 -04:00
Theron Voran
b5ba59b757
docs: updating helm configuration (#8973) 
Added helm configs that were changed/added in vault-helm
0.5.0. Also corrected the data type of a few config parameters.
 2020-05-18 11:08:40 -07:00
Tyler Reid
c24cd108e2
docs: fix agent listener link (#9003) 2020-05-15 06:51:52 -05:00
Scott Miller
a2c798e71a
Soften the warning language on PKCS #1 v1.5 padding (#8988) 
* Soften the warning language on PKCS #1 v1.5 padding
 2020-05-14 12:29:21 -05:00
Jim Kalafut
4afebaf5ee
Add 1.4.1 upgrade guide (#8981) 2020-05-13 16:55:32 -07:00
Jason O'Donnell
edb372c2b0
doc: add notes about injector annotations (#8992) 2020-05-13 16:43:34 -04:00
Clement Chauplannaz
9dea6ab68f
Typo in policies.mdx (#8850) 2020-05-13 15:17:41 -04:00
ncabatoff
452923d2ae
Static roles aren't supported yet for atlas. (#8989) 2020-05-13 12:13:29 -04:00
Scott Miller
fb9e332bba
Warn in the documentation against the use of CKM_RSA_PKCS. (#8982) 
* Warn in the documentation against the use of CKM_RSA_PKCS

* tweak

* Roger roger.
 2020-05-12 10:56:41 -05:00
Vishal Nayak
260fa21483
Doc: seal migration update (#8724) 
* Doc: seal migration update

* s/Auto Unseal/KMS Seal

* Update website/pages/docs/concepts/seal.mdx

Co-Authored-By: Meggie <meggie@hashicorp.com>

* Update website/pages/docs/concepts/seal.mdx

Co-Authored-By: Meggie <meggie@hashicorp.com>

* Update website/pages/docs/concepts/seal.mdx

Co-Authored-By: Meggie <meggie@hashicorp.com>

* Update website/pages/docs/concepts/seal.mdx

Co-Authored-By: Meggie <meggie@hashicorp.com>

* Update website/pages/docs/concepts/seal.mdx

Co-Authored-By: Meggie <meggie@hashicorp.com>

* Update website/pages/docs/concepts/seal.mdx

Co-Authored-By: Meggie <meggie@hashicorp.com>

* Update website/pages/docs/concepts/seal.mdx

Co-Authored-By: Meggie <meggie@hashicorp.com>

* s/Recovery/recovery

* remove 'at this point'

* Address review comments

* Address review feedback

* Update website/pages/docs/concepts/seal.mdx

Co-Authored-By: Meggie <meggie@hashicorp.com>

* Update website/pages/docs/concepts/seal.mdx

Co-Authored-By: Meggie <meggie@hashicorp.com>

* Update website/pages/docs/concepts/seal.mdx

Co-Authored-By: Meggie <meggie@hashicorp.com>

* Address review comments

Co-authored-by: Meggie <meggie@hashicorp.com>
 2020-05-12 01:02:59 -04:00
Nicole Forrester
33ee86053b
Add vault docs redirects & remove deprecated database docs (#8922) 
* website: add redirects for old database docs
* delete deprecated database docs
 2020-05-11 14:20:40 -06:00
Aleksandr Yakimenko
29f1f63bac
Fix minor typos in docs (#8965) 2020-05-11 11:12:48 -04:00
Lauren Voswinkel
80ab8d6a45
Removing some unnecessary escape characters from Agent docs (#8957) 
* Fix formatting of the Vault Agent docs
 2020-05-09 12:52:13 -07:00
Jim Kalafut
38ad357a37
Update Azure Auth docs (#8963) 2020-05-08 16:20:08 -07:00
Jason O'Donnell
74ee689417
doc: add note about versions for helm upgrades (#8960) 
* doc: add note about versions for helm upgrades

* Fix repo search output

* Update website/pages/docs/platform/k8s/helm/run.mdx

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
 2020-05-08 16:56:39 -04:00
Theron Voran
59b14ac993
Update vault helm docs with new helm repo (#8931) 
* Update the k8s injector docs for the new helm repo

* Update vault helm docs with new helm repo
 2020-05-08 10:55:56 -07:00
Jim Kalafut
889074d1d0
Correct docs typos (#8954) 2020-05-08 08:24:38 -07:00
Calvin Leung Huang
149e8cd74e
docs: remove comparison reference in what-is-vault page (#8950) 2020-05-07 15:24:08 -07:00
Lauren Voswinkel
2abfb118c4
Fix formatting of the Vault Agent docs (#8947) 
* Fix formatting of the Vault Agent docs

* Fix up the param definitions with <code> rather than <tt>

* Use <code> only where there is a link embedded, otherwise ticks
 2020-05-07 15:10:49 -07:00
Calvin Leung Huang
bef6eae689
raft: use file paths for TLS info in the retry_join block (#8894) 
* raft: use file paths for TLS info in the retry_join stanza

* raft: maintain backward compat for existing tls params

* docs: update raft docs with new file-based TLS params

* Update godoc comment, fix docs
 2020-05-06 18:26:08 -07:00
yoyotam
338a466d4a
Update standalone-tls.mdx (#8920) 
extraEnvironmentVars should be under server, not global

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
 2020-05-06 17:03:37 -07:00