mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-17 20:17:00 +02:00
Code Issues Projects Releases Wiki Activity
10,543 Commits 2,844 Branches 445 Tags 454 MiB
68b40b814c
Commit Graph

1114 Commits

Author SHA1 Message Date
Chris Bednarski
99325f2a31 Updated phrasing to note restarts, stop, and other sealing scenarios 2015-05-28 17:07:38 -07:00
Chris Bednarski
1e94e05c60 Changed phrasing for unseal key notification 2015-05-28 17:02:09 -07:00
Armon Dadgar
33bc096f43 command/rekey: adding tests 2015-05-28 15:22:42 -07:00
Armon Dadgar
da566a41fd command/rekey: first pass at rekey 2015-05-28 15:08:09 -07:00
Armon Dadgar
4a11980dc1 command/rotate: Adding new rotate command 2015-05-28 10:16:33 -07:00
Sheldon Hearn
c2390f2a29 Don't recommend exporting VAULT_TOKEN 
It's not needed by the dev server (which writes ~/.vault-token),
and breaks the Getting Started guide (e.g. #267).
 2015-05-28 14:39:35 +02:00
Armon Dadgar
db55ac7d74 command/key-status: Adding new key-status command 2015-05-27 18:17:02 -07:00
Armon Dadgar
aa867120b3 Merge pull request #251 from DavidWittman/auth-prompt-without-args 
Prompt for auth token when no args provided
 2015-05-27 11:24:33 -07:00
David Wittman
deccef209c Add test for stdin input 
Shamelessly borrowed this pattern from write_test.go
 2015-05-23 13:23:38 -05:00
David Wittman
d86fe916cb Read from stdin with auth command 2015-05-23 13:23:37 -05:00
Ian Unruh
c6b5d957de Add ability to read raw field from secret 2015-05-22 11:28:23 -07:00
Armon Dadgar
bb6addc58f command/renew: typo fix. Fixes #240 2015-05-21 11:03:25 -07:00
David Wittman
9797143038 Prompt for auth token when no args provided 
This makes `vault auth` work as documented:

> If no -method is specified, then the token is expected. If it is not
> given on the command-line, it will be asked via user input. If the
> token is "-", it will be read from stdin.
 2015-05-20 22:10:02 -05:00
Armon Dadgar
b474fa6dc5 server: Minor copy change 2015-05-20 17:49:16 -07:00
Armon Dadgar
628e102419 Merge pull request #222 from DavidWittman/config-backend-check 
Fail gracefully if a physical backend is not supplied
 2015-05-20 17:47:45 -07:00
Armon Dadgar
61f2e86f4e command/listener: Request TLS client cert. Fixes #214 2015-05-20 16:01:40 -07:00
Ian Unruh
045b5a9c84 Improve unseal CLI message 2015-05-19 00:34:18 -07:00
David Wittman
792e3a26f4 Fail gracefully if a phys backend is not supplied 2015-05-18 22:55:12 -05:00
Seth Vargo
c47ecbc9d3 Use strconv.ParseBool 2015-05-15 16:41:30 -04:00
Seth Vargo
5c93047642 Explicitly check if tls_disable == 1 2015-05-15 16:39:30 -04:00
Emil Hessman
17b599d233 command/token: add Env to Helper 
Specify environment variables on the Helper rather than on
the command line.

Fixes command/token test failures on Windows.
 2015-05-12 07:22:38 +02:00
Mitchell Hashimoto
a07bd713ca Rename skip verify env 2015-05-11 11:27:54 -07:00
Mitchell Hashimoto
51a806b266 Merge pull request #181 from jefferai/fix-ca-path-walk 
Fix CA path walking, and add TLS-related env vars.
 2015-05-11 11:26:47 -07:00
Mitchell Hashimoto
a3348b090a command: fix tests 2015-05-11 11:25:45 -07:00
Armon Dadgar
d9c5a691c8 command/token: Use cmd on windows instead of sh 2015-05-11 11:08:08 -07:00
Mitchell Hashimoto
6be7303053 command/*: -tls-skip-verify [GH-130] 2015-05-11 11:01:52 -07:00
Jeff Mitchell
e5d56747fd This adds one bugfix and one feature enhancement. 
Bugfix: When walking a given CA path, the walk gives both files and
directories to the function. However, both were being passed in to be
read as certificates, with the result that "." (the given directory for
the CA path) would cause an error. This fixes that problem by simply
checking whether the given path in the walk is a directory or a file.

Feature enhancement: VAULT_CACERT, VAULT_CAPATH, and VAULT_INSECURE now
perform as expected.
 2015-05-11 17:58:56 +00:00
Mitchell Hashimoto
8d79697948 command/meta: don't read token file if token is already set [GH-162] 2015-05-11 10:31:14 -07:00
Seth Vargo
f916e112c9 Make the VAULT_TOKEN and VAULT_ADDR copy-pastable in dev mode 
This allows someone to quickly start a dev mode server and hit the ground
running without the need to copy-paste twice.
 2015-05-07 18:32:40 -04:00
Armon Dadgar
f8cd8c9d0c Merge pull request #139 from fubar-coder/master 
Escape backslash to allow usage of dev server on Windows using MinGW
 2015-05-06 11:05:06 -07:00
Armon Dadgar
7153f9b216 Merge pull request #133 from hashicorp/f-advertise 
Attempt advertise address detection
 2015-05-04 12:13:45 -07:00
Mark Junker
e28293368a Escape backslash to allow usage of dev server on Windows using MinGW (partially fixes issue #95) 2015-05-04 09:20:40 +02:00
A.I
f42a100d03 Fix lease_renewable output 2015-05-02 19:58:48 -07:00
Armon Dadgar
942e0ecf7d command/server: Attempt advertise address detection 2015-05-02 15:57:40 -07:00
Mitchell Hashimoto
8c7771f299 Merge pull request #82 from DavidWittman/75-auth-revoked-token 
Check for invalid token when authing via cli
 2015-05-02 13:20:57 -07:00
Mitchell Hashimoto
8b961490cd command/format: add lease_renewable to output 2015-05-02 13:11:40 -07:00
David Wittman
e4ffd4ac27 Check for invalid token when authing via cli 
If a token does not exist, the Read request returns without an
error, but the secret returned is `nil`, so we need to check for
that.

Closes #75
 2015-04-28 21:50:51 -05:00
Mitchell Hashimoto
e2aa51c22b command/server: fix one race condition 2015-04-28 19:11:46 -07:00
Mitchell Hashimoto
a0376a20f0 command/server: disable mlock in dev mode 2015-04-28 15:11:39 -07:00
Mitchell Hashimoto
4d51d0f0f4 command/server: allow disabling mlock 2015-04-28 15:09:30 -07:00
Mitchell Hashimoto
e3c9a4cf4c command/server: warning if no mlock 2015-04-28 15:04:40 -07:00
Mitchell Hashimoto
283d09476a command/token: use executable path to find token helper [GH-60] 2015-04-28 14:52:55 -07:00
Matt Haggard
6185fe119a Update server.go 
Did you mean "talking?"  Or something else?
 2015-04-28 14:01:45 -06:00
Mitchell Hashimoto
bacbf6c082 command: support custom CAs 2015-04-28 09:36:03 -07:00
Mitchell Hashimoto
939123c86e command/*: lets try to remove this before 0.1.0 2015-04-28 09:20:42 -07:00
Mitchell Hashimoto
d1054ceda9 command/*: more TODO removal 2015-04-28 09:15:38 -07:00
Mitchell Hashimoto
128eea13f6 command/*: fix spacing 2015-04-28 09:15:21 -07:00
Mitchell Hashimoto
9816427b37 command/* fill in the addr 2015-04-28 09:13:32 -07:00
Armon Dadgar
0bf96348dc command/server: Catch error from core initialization. Fixes #42 2015-04-27 21:29:40 -07:00
Armon Dadgar
72d4bddf9d command/write: test output 2015-04-27 15:08:03 -07:00
Armon Dadgar
f2fe8dac79 command/write: handle writes with output 2015-04-27 14:55:43 -07:00
Armon Dadgar
5aee91ccb9 command: refactor to share output formating code 2015-04-27 14:55:29 -07:00
Jack Pearkes
226135dbf0 command/init: minor output text fix 2015-04-22 11:48:07 -07:00
Mitchell Hashimoto
dae11264ee command/status: no weird indentintg 2015-04-21 20:11:15 +02:00
Armon Dadgar
0d066ca8e7 command/status: refactor to improve output 2015-04-20 13:37:32 -07:00
Armon Dadgar
018e07cbd3 command/status: improve output when sealed 2015-04-20 12:21:35 -07:00
Armon Dadgar
126a2ebd16 command/status: improve output when sealed 2015-04-20 12:19:25 -07:00
Armon Dadgar
e4285526b2 command: Rename seal-status to status 2015-04-20 12:11:21 -07:00
Armon Dadgar
da490b3bd7 command: Adding HA status 2015-04-20 12:08:54 -07:00
Mitchell Hashimoto
6e9a966e77 command/token-create: add display name and one time use 2015-04-19 18:08:08 -07:00
Mitchell Hashimoto
be5d8d0a29 command/token-renew 2015-04-19 18:04:01 -07:00
Mitchell Hashimoto
42743eb109 command/policy-delete 2015-04-19 16:36:11 -07:00
Mitchell Hashimoto
57be6d86d5 command/read: handle 404s 2015-04-18 22:05:08 -07:00
Mitchell Hashimoto
bac7049996 command/server: can set advertise addr 2015-04-17 12:56:31 -07:00
Mitchell Hashimoto
75a319d767 command/server: config for setting stats addresses 2015-04-17 12:56:31 -07:00
Mitchell Hashimoto
b5fbc293b3 command/server: not HA possibilities when starting 2015-04-17 12:56:31 -07:00
Armon Dadgar
b25125f167 command/server: Enable telemetry. cc: @mitchellh 2015-04-14 18:44:09 -07:00
Mitchell Hashimoto
c359ba05f0 command/read: output the duration 2015-04-13 20:42:07 -07:00
Mitchell Hashimoto
4faf951f03 command/renew 2015-04-13 20:42:07 -07:00
Armon Dadgar
723860fa96 command: Set minimum TLS version to 1.2 2015-04-13 19:09:44 -07:00
Mitchell Hashimoto
dfcc241d1f command/unseal: update error message 2015-04-12 18:41:42 -07:00
Mitchell Hashimoto
a1adebf411 command/unseal: can accept key from command-line 2015-04-12 18:39:41 -07:00
Mitchell Hashimoto
b1be8e9ee8 command/meta: can force config 2015-04-12 17:51:38 -07:00
Mitchell Hashimoto
46cfb9eb97 command: can force address 2015-04-12 17:30:19 -07:00
Mitchell Hashimoto
1296128ae9 command/revoke: rename vars to leaseId 2015-04-10 20:49:10 -07:00
Mitchell Hashimoto
c30d877fa4 rename vault id to lease id all over 2015-04-10 20:35:14 -07:00
Armon Dadgar
9f577b39b4 Replace VaultID with LeaseID for terminology simplification 2015-04-08 13:35:32 -07:00
Mitchell Hashimoto
969098d686 command/auth: should let <1 args go through 2015-04-07 23:53:45 -07:00
Mitchell Hashimoto
a668846932 command/auth: unify 2015-04-07 23:29:49 -07:00
Mitchell Hashimoto
f6545f52ad command/audit-enable 2015-04-07 22:42:04 -07:00
Mitchell Hashimoto
574050b53f helper/kv-builder 2015-04-07 22:30:25 -07:00
Mitchell Hashimoto
75d72619f8 command/audit-disable 2015-04-07 18:23:50 -07:00
Mitchell Hashimoto
77139d9a8c command/audit-list 2015-04-07 18:19:44 -07:00
Mitchell Hashimoto
160aeccb03 command/token-revoke 2015-04-07 14:36:17 -07:00
Mitchell Hashimoto
1ccf891cf2 command/token-create: test 2015-04-07 14:22:18 -07:00
Mitchell Hashimoto
706e914ebf command/token-create 2015-04-07 14:20:18 -07:00
Mitchell Hashimoto
7a54437355 command/delete 2015-04-07 11:15:20 -07:00
Mitchell Hashimoto
6c6480dc4f command/remount 2015-04-07 10:46:47 -07:00
Mitchell Hashimoto
a241dac1f5 command/unmount: better output 2015-04-07 10:39:17 -07:00
Mitchell Hashimoto
490dd80a25 command/unmount 2015-04-07 10:38:51 -07:00
Mitchell Hashimoto
8f85830497 command/server: env var for dev mode 2015-04-06 10:28:17 -07:00
Mitchell Hashimoto
e4f0563dd4 credential/github: CLI handler 2015-04-06 09:53:43 -07:00
Mitchell Hashimoto
cc01f79c79 command/auth: test for other methods 2015-04-06 09:40:47 -07:00
Mitchell Hashimoto
e8fcb9e5b6 command/auth: add -method-help flag 2015-04-06 09:38:16 -07:00
Mitchell Hashimoto
cc202f9208 command/unseal: print newline after reading password 2015-04-06 09:34:08 -07:00
Mitchell Hashimoto
3e4a8a926e command/auth: framework for supporting more auth methods 2015-04-05 20:50:18 -07:00
Mitchell Hashimoto
2b12d51d70 builtin/audit: add file audit 2015-04-04 18:10:25 -07:00
Mitchell Hashimoto
d5d63ede9f command/server: tests 2015-04-04 17:43:20 -07:00
Mitchell Hashimoto
d446659956 command/server: log levels 2015-04-04 12:11:10 -07:00
Mitchell Hashimoto
a196d194a1 command/server: cleaner output 2015-04-04 12:06:41 -07:00
Mitchell Hashimoto
8e39a1e7d8 command/help 2015-04-02 22:42:05 -07:00
Mitchell Hashimoto
83d0f13a68 Revert "command/policy" 
This reverts commit da81ab3b4c.
 2015-04-01 23:07:49 -07:00
Mitchell Hashimoto
da81ab3b4c command/policy 2015-04-01 23:02:03 -07:00
Mitchell Hashimoto
6d8502c7d8 command/policy-write 2015-04-01 23:00:15 -07:00
Mitchell Hashimoto
79995a4496 command/policies: read a single policy 2015-04-01 18:50:43 -07:00
Mitchell Hashimoto
4930e3885d command/policy-list 2015-04-01 18:46:32 -07:00
Mitchell Hashimoto
c6cfac1ff8 command/auth-disable 2015-04-01 17:14:11 -07:00
Mitchell Hashimoto
1e6bc65763 command/auth-enable 2015-04-01 17:09:11 -07:00
Mitchell Hashimoto
9751f8c963 command/mounts: columnize 2015-04-01 17:01:10 -07:00
Mitchell Hashimoto
def17c5f73 command/read 2015-04-01 16:44:20 -07:00
Mitchell Hashimoto
515bd7b75b command/server: support CredentialBackends 2015-04-01 15:48:13 -07:00
Mitchell Hashimoto
ba2b05db52 command/read: better UX on vault read 2015-03-31 20:50:05 -07:00
Mitchell Hashimoto
02f3f065c9 command/revoke: prefix 2015-03-31 19:33:16 -07:00
Mitchell Hashimoto
ea234d9cbf command/revoke: revoke 2015-03-31 19:21:02 -07:00
Mitchell Hashimoto
4cbe26b726 misc typos 2015-03-31 17:27:04 -07:00
Mitchell Hashimoto
456c4b0b21 command/write: new format 2015-03-31 17:16:26 -07:00
Mitchell Hashimoto
9198a6687a command/server: dev mode 2015-03-31 16:44:47 -07:00
Mitchell Hashimoto
d803e0eadb command/mount 2015-03-31 16:29:04 -07:00
Mitchell Hashimoto
e8a692898c command/auth: validate the token 2015-03-31 15:22:52 -07:00
Mitchell Hashimoto
edde6ed160 command/seal: test should use the token 2015-03-31 11:46:55 -07:00
Mitchell Hashimoto
c6fc00c8f6 command/seal 2015-03-30 23:39:56 -07:00
Mitchell Hashimoto
5102c89221 command/meta: tests passing 2015-03-30 23:30:30 -07:00
Mitchell Hashimoto
838843e48c command/auth: add newline so reading token doesn't output 2015-03-30 23:24:41 -07:00
Mitchell Hashimoto
ca2986694c command/meta: add token to client if we have it 2015-03-30 23:10:59 -07:00
Mitchell Hashimoto
4b48996a41 command/auth: tests work wihtout vault installed 2015-03-30 11:07:31 -07:00
Mitchell Hashimoto
a6b9e87350 command/auth: setting tokens works 2015-03-30 10:55:41 -07:00
Mitchell Hashimoto
8e427cc3d4 command: load configuration 2015-03-30 10:25:24 -07:00
Mitchell Hashimoto
9abd4e4ec5 command/token: HelperPath 2015-03-30 10:11:17 -07:00
Mitchell Hashimoto
4b35cbccb6 token/disk: implement unencrypted disk store 2015-03-30 09:21:59 -07:00
Mitchell Hashimoto
224f788123 command/token: helper to read/write tokens from a helper 2015-03-29 17:42:26 -07:00
Mitchell Hashimoto
9d8d24f7fb command/auth: boilerplate 2015-03-29 16:42:45 -07:00
Mitchell Hashimoto
b89ac8e3c5 command/init: show root token 2015-03-29 16:25:53 -07:00
Mitchell Hashimoto
39f2da0fbe command: unit tests pass 2015-03-29 16:20:34 -07:00
Armon Dadgar
06e30b425e Fixing compilation errors due to API change 2015-03-24 16:20:05 -07:00
Mitchell Hashimoto
ac8570c809 main: enable AWS backend 2015-03-20 19:32:18 +01:00
Mitchell Hashimoto
92a7a763f4 command/mounts 2015-03-15 21:28:31 -07:00
Mitchell Hashimoto
4f8323cb03 command/read 2015-03-15 20:52:28 -07:00
Mitchell Hashimoto
f11c8febad command/meta: VAULT_ADDR to set the addr via env var 2015-03-15 20:41:36 -07:00
Mitchell Hashimoto
f93f1198d5 command/write: can write arbitrary data from stdin 2015-03-15 20:40:12 -07:00
Mitchell Hashimoto
8093f94c65 command/write 2015-03-15 20:35:33 -07:00
Mitchell Hashimoto
2d92c2ee10 fix all tests 2015-03-15 17:10:33 -07:00
Mitchell Hashimoto
4679dd6ada command/unseal: tests 2015-03-13 20:17:55 -07:00
Mitchell Hashimoto
db91352a52 website: imageoptim 2015-03-13 12:58:21 -07:00
Mitchell Hashimoto
e881439d0b command/seal-status 2015-03-13 12:53:09 -07:00
Mitchell Hashimoto
8de077810e command/init: tests 2015-03-13 12:53:09 -07:00
Mitchell Hashimoto
fb5530d0e0 command/init: make the output a little nicer 2015-03-13 12:53:09 -07:00
Mitchell Hashimoto
6b83c937d4 command/init 2015-03-13 12:53:08 -07:00
Mitchell Hashimoto
fcc6646a19 command/server: initial working 2015-03-13 12:53:08 -07:00
Mitchell Hashimoto
cf259c3f22 command/sever: copy the TCP keep alive listener 2015-03-13 12:53:08 -07:00
Mitchell Hashimoto
9564f8bcc2 command/server: support TLS 2015-03-13 12:53:08 -07:00
Mitchell Hashimoto
69d28396ca command/server: tcp listener 2015-03-13 12:53:08 -07:00
Mitchell Hashimoto
279a1b13d6 command/server: load config from flags 2015-03-12 15:30:07 -07:00
Mitchell Hashimoto
2bbd5fa66e command/server: add config loading 2015-03-12 15:21:11 -07:00
Mitchell Hashimoto
d7606d13d5 command/get,put 2015-03-04 11:08:13 -08:00
Mitchell Hashimoto
d8ec17588c command/seal 2015-03-04 08:56:10 -08:00
Mitchell Hashimoto
c0557579da command/unseal: forward error along 2015-03-04 00:35:02 -08:00
Mitchell Hashimoto
205857be65 helper/password: for reading passwords securely 2015-03-04 00:31:35 -08:00
Mitchell Hashimoto
a513240662 command/unseal 2015-03-03 23:57:23 -08:00
Mitchell Hashimoto
0210df0516 command/auth: document the serer options 2015-03-03 23:52:54 -08:00
Mitchell Hashimoto
4a916d9454 command/meta: server options 2015-03-03 23:49:37 -08:00
Mitchell Hashimoto
2800987dd4 command/auth 2015-03-03 23:34:32 -08:00
Mitchell Hashimoto
9cbbe58253 command: version test 2015-03-03 23:14:54 -08:00
Mitchell Hashimoto
a5c076851b scripts 2015-03-03 23:14:18 -08:00
Mitchell Hashimoto
0099f62efa basic main boilerplate stuff 2015-03-03 23:03:24 -08:00