mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-16 03:27:01 +02:00
Code Issues Projects Releases Wiki Activity
10,543 Commits 2,843 Branches 445 Tags 454 MiB
68b40b814c
Commit Graph

714 Commits

Author SHA1 Message Date
Madalyn
3c25b19aac
update OpenAPI output to use DisplayAttributes struct (#6928) 2019-06-21 11:08:08 -04:00
Jim Kalafut
8411a3e4a5
Update LDAP "groups" parameter to use TypeCommaStringSlice (#6942) 
No functional change, but the updated type plays nicer with the
OpenAPI-driven UI.
 2019-06-20 15:36:54 -07:00
Jeff Mitchell
4ff90013cd
Use a role cache to avoid separate locking paths (#6926) 
* Use a role cache to avoid separate locking paths

Due to the various locked/nonlocked paths we had a case where we weren't
always checking for secondary status before trying to upgrade. This
broadly simplifies things by using a cache to store the current role
values (avoiding a lot of storage hits) and updating the cache on any
write, delete, or invalidation.
 2019-06-20 10:31:31 -04:00
Calvin Leung Huang
94226122bb
auth/aws: guard against malformed assumed role ARNs (#6917) 
* auth/aws: guard against malformed assumed role ARNs

* revert helper func changes
 2019-06-18 15:51:40 -07:00
Jim Kalafut
7c6c6fd5c0
Fix gofmt (#6764) 2019-05-20 15:15:05 -07:00
Jim Kalafut
c9ac721887
Fix Okta auth to allow group names containing slashes (#6665) 
This PR also adds CollectKeysPrefix which allows a more memory efficient
key scan for those cases where the result is immediately filtered by
prefix.
 2019-05-01 14:56:18 -07:00
Calvin Leung Huang
c24559c5e3 cert/tests: fix tests due to cert expiry (#6647) 2019-04-26 16:49:30 -07:00
ncabatoff
0f1569b7f5
Merge multiple functions for creating consul containers into one. (#6612) 
Merge both functions for creating mongodb containers into one.
Add retries to docker container cleanups.
Require $VAULT_ACC be set to enable AWS tests.
 2019-04-22 12:26:10 -04:00
Jeff Mitchell
126ea804e5
Fix a dropped Okta error (#6592) 2019-04-16 13:05:50 -04:00
Jeff Mitchell
8054cc660f Update to api 1.0.1 and sdk 0.1.8 2019-04-15 14:10:07 -04:00
Jeff Mitchell
278bdd1f4e
Switch to go modules (#6585) 
* Switch to go modules

* Make fmt
 2019-04-13 03:44:06 -04:00
Jeff Mitchell
550e92a5ec Fix build breakages 2019-04-12 22:01:13 -04:00
Becca Petrin
936192c392
Merge pull request #6268 from hashicorp/6234-aws-region 
Add region to CLI for generating AWS login data
 2019-04-12 16:15:38 -07:00
Jeff Mitchell
f95571a361 Move ldaputil and tlsutil over to sdk 2019-04-12 18:26:54 -04:00
Jeff Mitchell
a920c10be6 Move password to sdk 2019-04-12 18:12:13 -04:00
Jeff Mitchell
7ae6fb56ff Move policyutil to sdk 2019-04-12 18:08:46 -04:00
Jeff Mitchell
cf03949594 Move cidrutil to sdk 2019-04-12 18:03:59 -04:00
Jeff Mitchell
170521481d
Create sdk/ and api/ submodules (#6583) 2019-04-12 17:54:35 -04:00
Becca Petrin
8d7d80bb28 Merge branch 'opensource-master' into 6234-aws-region 2019-04-03 11:37:33 -07:00
Jeff Mitchell
5dbd372a0f Clean up test artifacts 2019-04-02 15:09:31 -04:00
Jeff Mitchell
dcedd047da
Fix failing cert test due to cert expiration (#6520) 
This introduces a way to just generate new certs for each test. It
doesn't port everything over but we can over time.
 2019-04-02 14:49:42 -04:00
Calvin Leung Huang
548f02803a
Update builtin/credential/aws/cli.go 
Co-Authored-By: tyrannosaurus-becks <beccapetrin@posteo.net>
 2019-04-01 15:37:02 -07:00
Becca Petrin
043ca6263e merge master 2019-04-01 13:52:44 -07:00
T.K
4bcf0ec963 changed misspelled english words (#6432) 2019-03-19 09:32:45 -04:00
Iskander (Alex) Sharipov
dcfdb3d5d5 all: fix no-op append calls (#6360) 
Append call in form of `append(s)` has no effect,
it just returns `s`. Sometimes such invocation is a sign
of a programming error, so it's better to remove these.

Signed-off-by: Iskander Sharipov <quasilyte@gmail.com>
 2019-03-14 13:40:30 -07:00
Martin
7a1db4e6a6 Fix inverted description for ldap/users$ and ldap/groups$ endpoints (#6406) 2019-03-13 11:02:45 -07:00
Becca Petrin
73a2280626
Support env vars for STS region (#6284) 2019-02-28 09:31:06 -08:00
Joel Thompson
63e55b8520 Coax AWS SDK to use right region for STS 2019-02-20 22:57:39 -05:00
Becca Petrin
99bd2afbb3 allow aws region in cli login 2019-02-20 16:43:21 -08:00
madalynrose
d8e9adc9d3
Update OpenAPI responses to include information the UI can use (#6204) 2019-02-14 12:42:44 -05:00
Jeff Mitchell
3bb2dbbdfb Make fmt 2019-02-08 09:12:55 -05:00
Naoki Ainoya
47166fc9ca add missing key bound_cidrs in pathCertRead Response (#6080) 2019-02-07 22:41:38 -05:00
Jeff Mitchell
c0739a0f23
Add more perf standby guards (#6149) 2019-02-01 16:56:57 -05:00
Jeff Mitchell
47d339fce1 Revert "Refactor common token fields and operations into a helper (#5953)" 
This reverts commit 66c226c593.
 2019-02-01 11:23:40 -05:00
Joel Thompson
043b20e46f Fix typo in help text (#6136) 
Small typo introduced in #6133
 2019-01-31 08:53:54 -08:00
Jeff Mitchell
66c226c593
Refactor common token fields and operations into a helper (#5953) 2019-01-30 16:23:28 -05:00
Jeff Mitchell
9e86438ccd Add role ID to token metadata and internal data 2019-01-30 16:17:31 -05:00
Jeff Mitchell
b6f40b5fec Add role_id as an alias name source for AWS and change the defaults 2019-01-30 15:51:45 -05:00
Jeff Mitchell
0b3dc6d489 Fix typo in comment 2019-01-17 13:28:27 -05:00
Vishal Nayak
77978055fe
Add option to configure ec2_alias values (#5846) 
* Add option to configure ec2_alias values

* Doc updates

* Fix overwriting of previous config value

* s/configEntry/config

* Fix formatting

* Address review feedback

* Address review feedback
 2019-01-09 18:28:29 -05:00
Jim Kalafut
a54603039d Run goimports across the repository (#6010) 
The result will still pass gofmtcheck and won't trigger additional
changes if someone isn't using goimports, but it will avoid the
piecemeal imports changes we've been seeing.
 2019-01-08 16:48:57 -08:00
Brian Kassouf
7ab4cc5bda
Update path_role.go (#5820) 2018-11-19 13:40:36 -08:00
Jeff Mitchell
f5ea1f87de fmt 2018-11-07 16:52:01 -05:00
Becca Petrin
fb89af7cfa
Run all builtins as plugins (#5536) 2018-11-06 17:21:24 -08:00
Calvin Leung Huang
f63bcdf106
Call wg.Add(1) outside of goroutine (#5716) 2018-11-06 16:36:13 -08:00
Jeff Mitchell
19878efdf1 Fix build 2018-10-27 14:06:20 -04:00
Jeff Mitchell
d2c23d5386
Change ordering of user lookup vs. password hashing (#5614) 
* Change ordering of user lookup vs. password hashing

This fixes a very minor information leak where someone could brute force
the existence of a username. It's not perfect as the underlying storage
plays a part but bcrypt's slowness puts that much more in the noise.
 2018-10-27 10:43:08 -07:00
Jeff Mitchell
f32e2694c7 fmt 2018-10-20 21:09:51 -04:00
Jeff Mitchell
db2bdbbebd Merge branch 'master-oss' into 1.0-beta-oss 2018-10-19 09:25:17 -04:00
Evgeniy Zakharochkin
bad2f6d073 ability to add NAS Identifier header to radius request (#5465) 2018-10-18 13:41:14 -04:00