mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-17 12:07:02 +02:00
Code Issues Projects Releases Wiki Activity
10,543 Commits 2,844 Branches 445 Tags 454 MiB
68b40b814c
Commit Graph

2583 Commits

Author SHA1 Message Date
Matias Ozdy
3b0bb64c2a Add missing = in dynamodb_table tf (#6493) 2019-03-28 08:24:56 -07:00
Jim Kalafut
225676ae98
Update OIDC docs (#6485) 2019-03-27 11:47:05 -07:00
Thomas Kula
061c390009 Small typo fix to transit.html.md (#6482) 2019-03-26 17:32:26 -05:00
ncabatoff
c4f1f157f2 Document sentinel namespace "token.namespace". (#6429) 2019-03-26 12:22:49 -07:00
Ryan Canty
92047cf149 Fixed typo in GCP auth docs (#6461) 
* Fixed typo in GCP auth docs
 2019-03-25 14:12:09 -04:00
Jeff Mitchell
6da6250754 Update text around seal migration in 1.1 2019-03-25 12:44:22 -04:00
Jim Kalafut
f7d4f461b8
Fix sidebar order (#6464) 2019-03-23 17:00:44 -05:00
Sean Malloy
ffd437aa60 Add Docs For Prometheus Metrics (#6434) 
Prometheus metrics were added as part of the Vault v1.1.0 release in PR #5308.
But no documentation was created. Adds the telemetry configuration docs and
the API docs.
 2019-03-23 16:53:43 -05:00
Jeff Mitchell
5611b7136d Add missing serial_number parameter from pki docs 2019-03-23 12:14:32 -04:00
Laura Gjerman-Uva
482688aafe update AWS Auth API docs to show that role_id is the default for ec2_alias and iam_alias (auth/aws/config/identity endpoint) (#6460) 2019-03-22 15:09:54 -05:00
Jeff Mitchell
d096f62d8d
Remove response code info from non-overview API docs as it can be misinterpreted and is always the same anyways (#6459) 2019-03-22 11:15:37 -05:00
Alex Sherwin
fb17862936 Fixed grammatical issue in Auth Methods overview (#6456) 2019-03-22 10:36:14 -05:00
Jeff Mitchell
7542d1fbe9 Minor updates to JWT docs 2019-03-22 01:15:59 -04:00
Alex Sherwin
9e7574d898 Fixing grammar in behavioral overview (#6451) 2019-03-21 20:49:52 -07:00
Daniel Santos
703ac08a88 Fix misleading Agent Auth Overview doc page (#6443) 
* Fix misleading Agent Auth Overview doc page

The example configuration in the Vault Agent Overview page is using wrong syntax
The configuration block is `cache` but doc is referencing it as `caching`

* Update website/source/docs/agent/index.html.md

Co-Authored-By: danlsgiga <danlsgiga@gmail.com>
 2019-03-20 12:42:31 -04:00
Jim Kalafut
b69038248f
Remove beta docs (#6431) 2019-03-18 16:38:54 -07:00
Brian Shumate
e3b68c9a3a Minor grammar edits 2019-03-18 16:07:10 -04:00
Jeff Mitchell
74ba4f72aa Prep for release 2019-03-18 15:16:30 -04:00
ncabatoff
351327867f
Move listener config from 'cache' block to top-level 'listener' blocks. Allow cache without auto-auth. (#6421) 
* Since we want to use the Agent listener for #6384, move listener config
from top-level 'cache' block to new top-level 'listeners' block.

* Make agent config allow cache and listener blocks without auto-auth
configured.
 2019-03-15 14:58:53 -04:00
Michel Vocks
9fb7285030 Docs: Update Agent overview page (#6420) 
* Updated agent docs

* Updated overview agent page

* Updated complete links to short links
 2019-03-15 12:33:31 -04:00
Andrej van der Zee
8e6c0ac473 Cassandra plugin: Support for datacenter aware deployments (#6127) 
* Added option 'local_datacenter' to Casssandra database plugin for DC aware Casssandra deployments.

* Fixed spelling errors in Cassandra database plugin.

* Added website documentation.

* Added local_datacenter to Cassanra database plugin.

* Reverted datacenter-aware change in deprecated Cassandra builtin secret engine.
 2019-03-14 13:37:28 -07:00
Vishal Nayak
3c7c593bca Agent: Listener refactoring and socket file system permissions (#6397) 
* Listener refactoring and file system permissions

* added listenerutil and move some common code there

* Added test for verifying socket file permissions

* Change default port of agent to 8200

* address review feedback

* Address review feedback

* Read socket options from listener config
 2019-03-14 11:53:14 -07:00
Jeff Mitchell
d946ceb4fb Fix table 2019-03-14 12:24:11 -04:00
Jeff Mitchell
daa1905662 Add namespace properties to Sentinel docs 2019-03-14 12:22:02 -04:00
Juan Fontes
4c243a5987 Update aws docs (#6408) 2019-03-13 17:31:22 -07:00
Jeff Mitchell
a94a4b8140 Add a bit on testing upgrades in advance 2019-03-09 11:57:51 -05:00
Jeff Mitchell
57aab50175 Update login command docs 2019-03-08 15:37:38 -05:00
Jeff Escalante
43b28b075b correct quotes in docs layout (#6368) 2019-03-07 17:00:24 -08:00
Yoko
3e12bc1dec policy capabilities: write --> update (#6373) 2019-03-07 16:34:47 -05:00
Alessandro De Blasis
85de0630e2 docs: pki - adding missing ext_key_usage_oids desc (#6367) 
Adding missing entries

Just copied over the FieldSchema descriptions
 2019-03-07 14:07:10 -05:00
Eero Niemi
0fffc097b9 Fixed typo (#6363) 
Fixed typo, rolset -> roleset
 2019-03-07 09:50:13 -05:00
Becca Petrin
07b18eef6b
update path for mounting plugin (#6351) 2019-03-06 15:57:03 -08:00
Calvin Leung Huang
0af9f6ec26
docs/agent-caching: update cache-clear endpoint (#6354) 2019-03-06 11:13:43 -08:00
Becca Petrin
1503c69fd9
update partnership doc (#6352) 2019-03-06 10:27:12 -08:00
Calvin Leung Huang
5d375a8edd docs/agent-caching: add note about compatibility with older server versions 2019-03-05 14:12:04 -08:00
Vishal Nayak
c00c00ba94
Agent Cache doc updates (#6331) 
* Agent Cache doc updates

* doc update

* Add renewal management section

* doc updates

* paraphrase the orphan token case
 2019-03-05 15:19:52 -05:00
Vishal Nayak
c14e61c16e
Change agent's port to 8007 (#6348) 2019-03-05 12:57:17 -05:00
Jim Kalafut
b125e73ed4
Update JWT plugin dependency and docs (#6345) 2019-03-05 09:46:04 -08:00
Becca Petrin
74037a92d0 merge master 2019-03-05 09:39:53 -08:00
Chris Hoffman
8b4e30c1a1
Transit Auto Seal Docs (#6332) 
* adding transit seal docs

* add missing backtick
 2019-03-05 08:45:44 -05:00
Jim Kalafut
4784e74fa3
Use HashTypeMap and remove structs in batch HMAC (#6334) 2019-03-04 14:49:29 -08:00
martinwaite
05240c26d5 Batch hmac - (#5850) (#5875) 2019-03-04 12:26:20 -08:00
Naoki Ainoya
bead976466 fix doc to add missing permission to use gcpkms seal (#6327) 2019-03-04 11:46:06 -05:00
Jeff Mitchell
2a0fc7d9ba
Add missing consistency param in docs for Cassandra in combined DB (#6330) 2019-03-04 10:21:33 -05:00
Becca Petrin
0bf249dba7
Merge pull request #6250 from chrissphinx/patch-1 
fix example that was out-of-date
 2019-02-28 10:28:24 -08:00
Becca Petrin
dbe09bc3bc
Merge pull request #6251 from paulftw/patch-1 
[Documentation] Update secrets-engines.html.md
 2019-02-28 10:09:29 -08:00
Becca Petrin
957bb5b241
Merge pull request #6304 from bradjones1/patch-2 
RabbitMQ 'vhost' parameter on roles endpoint should be 'vhosts'
 2019-02-28 10:03:47 -08:00
Becca Petrin
b7eb95e52d
Merge pull request #6224 from hashicorp/dp.fix-consul-storage-doc-6171 
Fix example in documentation. Resolves [issue 6171]
 2019-02-28 09:55:55 -08:00
Becca Petrin
f94ea8c20c
Merge pull request #6221 from emilymye/website 
Remove unsupported config delete for GCP auth docs
 2019-02-28 09:52:52 -08:00
Becca Petrin
73a2280626
Support env vars for STS region (#6284) 2019-02-28 09:31:06 -08:00
Andrey Kuzmin
4bd2a6a305 Etcd timeouts (#6285) 
* Configurable lock and request etcd timeouts.

If etcd cluster placed on slow servers - request timeouts may be much greater, then hardcoded default values.
Also, in etcd setup, like above - may be need to greater lock timeout.

* Configurable lock and request etcd timeouts.

Docs.

* Use user friendly timeout syntax.

To allow specify more readable time values.
 2019-02-27 18:34:29 -08:00
Anton R. Yuste
eb9574e367 Specify the userpass name creating the alias entity (#6289) 2019-02-27 18:28:33 -08:00
Jon Currey
30d0235360 Fix typo on Seal page of concepts docs (#6290) 2019-02-27 18:27:36 -08:00
John O'Sullivan
f3eaa90c46 Documenting -dev-plugin-dir vault server option (#6307) 
Based on an answer from Brian Kassouf on the Google Group: https://groups.google.com/d/msg/vault-tool/7Qf9Hn1w3jA/yGUIKZxHGAAJ
 2019-02-27 18:24:49 -08:00
Brad Jones
399056c73f
RabbitMQ 'vhost' parameter on roles endpoint should be 'vhosts' 
In deploying this, I noted that passing `vhost` was unsuccessful, yet `vhosts` is.
 2019-02-27 15:19:54 -07:00
vishalnayak
04d118ecf1 Agent caching docs superscript beta 2019-02-26 10:36:24 -05:00
vishalnayak
d551ebd31b Add Beta superscript to caching docs 2019-02-26 10:28:55 -05:00
vishalnayak
f021fffabe Agent doc update for beta testers 2019-02-26 10:20:55 -05:00
vishalnayak
603199c2cc Change agent's default port number to 8100 2019-02-26 10:02:12 -05:00
Calvin Leung Huang
d4e305f53e Agent caching docs (#6272) 
* WIP agent caching docs

* More docs updates

* Add caching/index.html to docs_detailed_categories.yml

* Some more docs updates

* Some more docs updates

* updates

* address review feedback

* fix sample config

* Update website/source/docs/agent/caching/index.html.md

Co-Authored-By: calvn <cleung2010@gmail.com>

* fix config for sidebar display

* Add environment variable to the docs
 2019-02-26 09:57:17 -05:00
Jim Kalafut
90898851f5
Update JWT docs for OIDC feature (#6270) 2019-02-21 17:06:23 -08:00
Becca Petrin
10551cb1d2 add note about sts region to doc 2019-02-21 16:57:52 -08:00
Chris Hoffman
362c56657c
adding 1.1 upgrade docs (#6279) 2019-02-21 17:41:06 -05:00
Becca Petrin
99bd2afbb3 allow aws region in cli login 2019-02-20 16:43:21 -08:00
Paul Korzhyk
b63e54c4b3
Update secrets-engines.html.md 
That sentence sounds weird to me. I think this way is better.
 2019-02-17 12:35:20 +02:00
chrissphinx
8bf8312215
fix example that was out-of-date 
showing how to allow users auth'd with userpass method to modify their own passwords
 2019-02-16 14:04:05 -05:00
dp-h
9900b6709b Revert "Add trailing slash for example in Vault Consul Storage Backend documentation. Fixes [issue 6171]" 
This reverts commit 7726fdd1aa.

Revert to go through proper PR. Apologies.
 2019-02-14 13:40:17 -07:00
Dan Brown
2f60669541 Docs EA update 1.0 (#6219) 
* Confirm RA against Vault 1.0

Change product_version frontmatter to ea_version and increase to 1.0

* Update frontmatter key

Change product_version frontmatter to ea_version
 2019-02-13 10:06:54 -05:00
Brian Shumate
a4b63b5187 Update configuration/listener documentation (#6228) 
- Clarify that PROXY protocol version 1 is currently supported
- Add missing backtick to fix formatting issue
 2019-02-13 09:27:05 -05:00
dp-h
7726fdd1aa Add trailing slash for example in Vault Consul Storage Backend documentation. Fixes [issue 6171] 2019-02-12 17:05:31 -07:00
dominic
7a380c71e3 Revert "Add trailing slash for example in Vault Consul Storage Backend documentation. Fixes [issue 6171]" 
This reverts commit b275f2a1e6.

Pushed to master, my apologies. Will do proper PR for this.
 2019-02-12 16:49:34 -07:00
dominic
b275f2a1e6 Add trailing slash for example in Vault Consul Storage Backend documentation. Fixes [issue 6171] 2019-02-12 16:47:17 -07:00
Emily Ye
56c8b1afce remove unsupported config delete docs 2019-02-12 13:48:30 -08:00
vishalnayak
2cc38dd25e Update transit docs 2019-02-12 14:27:17 -05:00
Sean Carolan
73e5fb15c0 Make this easier for new users (#6211) 2019-02-11 17:34:22 -05:00
Clint
7c78575660 Add signed key constraints to SSH CA [continued] (#6030) 
* Adds the ability to enforce particular ssh key types and minimum key
lengths when using Signed SSH Certificates via the SSH Secret Engine.
 2019-02-11 13:03:26 -05:00
Andrej van der Zee
d41c72664f Added socket keep alive option to Cassandra plugin. (#6201) 2019-02-10 18:34:50 -05:00
Michel Vocks
f95ac48db8 Added missing backslash in iam identity guide (#6193) 2019-02-08 09:56:36 -08:00
Brian Nuszkowski
9495b09de8 Add SHA1 signing/verification support to transit engine (#6037) 
* Add SHA1 signing/verification support to transit engine

* Update signing/verification endpoint documentation to include sha1 hash algorithm
 2019-02-07 15:31:31 -08:00
Graham Land
1c2c8fad34 Add Vault supported log levels (#6185) 
Documentation : Add the supported log level configurations

`Supported log levels: Trace, Debug, Error, Warn, Info.`
 2019-02-07 11:27:08 -08:00
Martins Sipenko
f51e49e581 Fix section heading size (#6137) 2019-02-07 11:18:58 -08:00
Eero Niemi
8f1f0d7aab Fixed typo (newtwork -> network) (#6177) 2019-02-07 13:06:38 -05:00
Jeff Mitchell
f472965f24 Remove refresh_interval from kvv1 API docs and CLI docs since kv get doesn't use it 2019-02-06 21:51:08 -05:00
Aidan Daniels-Soles
7693674cbd Fix wrong file name in service definition (#6174) 2019-02-06 15:43:03 -05:00
d
33b18b24b0 Revert "fixed trailing slash in consul.html.md example" 
This reverts commit 4310bb58c8.

Accidental push to master, my apologies. See PR https://github.com/hashicorp/vault/pull/6175
 2019-02-05 17:42:15 -07:00
Dominic Porreco
4310bb58c8 fixed trailing slash in consul.html.md example 2019-02-05 17:01:39 -07:00
Jeff Mitchell
20423f7082
Add allowed_response_headers (#6115) 2019-02-05 16:02:15 -05:00
Aidan Daniels-Soles
69d3fdd2b8 Replace special hyphen (#6165) 2019-02-05 10:48:26 -08:00
Brian Shumate
bad69b7d75 Update AppRole API docs (#6047) 
- Use consistent "Create/Update" heading text style
 2019-02-04 11:17:16 -05:00
nickwales
281b7cad1d Removed typo (#6162) 2019-02-04 11:13:37 -05:00
Matthew Potter
3e3e3f134c Add libvault to the list of elixir libraries (#6158) 2019-02-04 11:12:29 -05:00
Yoko
0da50446f5
Adding a mention for 'kv-v2' as type (#6151) 2019-02-01 11:26:08 -08:00
Jeff Mitchell
e60b72250e Update example output for PKI serial -> serial_number 
Fixes #6146
 2019-02-01 10:29:34 -05:00
Jeff Mitchell
0569b7fe5b Remove regenerate-key docs as it no longer exists 2019-02-01 09:29:40 -05:00
Jeff Mitchell
b6f40b5fec Add role_id as an alias name source for AWS and change the defaults 2019-01-30 15:51:45 -05:00
Donald Guy
977ce260ad Docs: Azure auth example using metadata service (#6124) 
There are probably better ways to massage this but I think it would be helpful to have something like this included
 2019-01-30 12:13:39 -08:00
Brian Shumate
8a1ef9051b Update documentation for command operator unseal (#6117) 
- Add migrate command option
 2019-01-28 10:27:51 -05:00
Gordon Shankman
91a37b23cc Adding support for SSE in the S3 storage backend. (#5996) 2019-01-26 16:48:08 -05:00
Calvin Leung Huang
a15ed85273 docs: update agent sample config (#6096) 2019-01-24 07:25:03 -05:00
Jeff Mitchell
a8b3bc9301
Update to latest etcd and use the new repository packages (#6087) 
This will be necessary for go mod work

Additionally, the srv api has changed. This adapts to it.
 2019-01-23 14:35:03 -05:00
Jeff Mitchell
5d6f25d569
Implement JWS-compatible signature marshaling (#6077) 
This currently only applies to ECDSA signatures, and is a toggleable
option.
 2019-01-23 12:31:34 -05:00
gitirabassi
3af9be4691 small fixes to docs and indexes 2019-01-18 02:14:57 +01:00
Jim Kalafut
f933956778
Update JWT docs with new jwt_supported_algs parameter (#6069) 2019-01-17 15:27:20 -08:00
Yoko
6e99c837e5 Fixed the broken link (#6052) 
* Fixed the broken link

* Fixing the broken link

* Fixes redirect to Tokens guide

The separate redirect within learn.hashicorp.com will be fixed on its own repo.
 2019-01-16 17:06:28 -08:00
Yoko
d5668f47ca
Adding the CLI flag placement info (#6027) 
* Adding the CLI flag placement info

* Adding the definition of 'options' and 'args'

* tweaked the wording a little bit

* Added more description in the example

* Added a link to 'Flags' in the doc for options def
 2019-01-15 11:24:50 -08:00
Jim Kalafut
e0269c9e2e
Remove unnecessary permission 2019-01-10 16:18:10 -08:00
Seth Vargo
41d2e31266 Simplify permission requirements for GCP things (#6012) 2019-01-10 10:05:21 -08:00
Dilan Bellinghoven
fe5d47eda1 Add docker-credential-vault-login to Third-Party Tools (#6003) 
* Added Docker credential helper to list of Third-Party tools

* website/source/api/relatedtools.html.md: Fixed a typo
 2019-01-10 10:46:18 -05:00
Yoko
e71065d851 Allowed characters in paths (#6015) 2019-01-10 10:39:20 -05:00
Vishal Nayak
77978055fe
Add option to configure ec2_alias values (#5846) 
* Add option to configure ec2_alias values

* Doc updates

* Fix overwriting of previous config value

* s/configEntry/config

* Fix formatting

* Address review feedback

* Address review feedback
 2019-01-09 18:28:29 -05:00
Yoko
0374114d94
Document upper limit on Transit encryption size (#6014) 2019-01-08 17:57:43 -08:00
Giacomo Tirabassi
726aa02038 Influxdb secret engine built-in plugin (#5924) 
* intial work for influxdb secret plugin

* fixed typo

* added comment

* added documentation

* added tests

* fixed tests

* added vendoring

* minor testing issue with hardcoded values

* minor fixes
 2019-01-08 17:26:16 -08:00
Julien Blache
29471c88e9 FoundationDB backend TLS support and housekeeping (#5800) 
* Fix typo in documentation

* Update fdb-go-install.sh for new release tags

* Exclude FoundationDB bindings from vendoring, delete vendored copy

FoundationDB bindings are tightly coupled to the server version and
client library version used in a specific deployment. Bindings need
to be installed using the fdb-go-install.sh script, as documented in
the foundationdb backend documentation.

* Add TLS support to FoundationDB backend

TLS support appeared in FoundationDB 5.2.4, raising the minimum API version
for TLS-aware FoundationDB code to 520.

* Update documentation for FoundationDB TLS support
 2019-01-08 09:01:44 -08:00
Seth Vargo
0e0f356a47 Fix formatting (#6009) 
The new markdown parser is less forgiving
 2019-01-08 08:51:37 -08:00
Thomas Kula
4fa24dd0d4 Fix small typo in azure.html.md (#6004) 2019-01-07 10:03:22 -05:00
Aric Walker
e65100c315 Remove duplicate "Users can" from policy md (#6002) 2019-01-07 07:02:28 -08:00
Seth Vargo
9293594176 Reduce required permissions for the GCPCKMS auto-unsealer (#5999) 
This changes the behavior of the GCPCKMS auto-unsealer setup to attempt
encryption instead of a key lookup. Key lookups are a different API
method not covered by roles/cloudkms.cryptoKeyEncrypterDecrypter. This
means users must grant an extended scope to their service account
(granting the ability to read key data) which only seems to be used to
validate the existence of the key.

Worse, the only roles that include this permission are overly verbose
(e.g. roles/viewer which gives readonly access to everything in the
project and roles/cloudkms.admin which gives full control over all key
operations). This leaves the user stuck between choosing to create a
custom IAM role (which isn't fun) or grant overly broad permissions.

By changing to an encrypt call, we get better verification of the unseal
permissions and users can reduce scope to a single role.
 2019-01-04 16:29:31 -05:00
Seth Vargo
02f1739155 Fix audit docs (#6000) 
These appear to have been converted to (bad) HTML. This returns them to
their original markdown format.
 2019-01-04 13:45:50 -06:00
Iain Gray
fe9f34dd2c Update DG to Vault 1.0 (#5855) 
* Update DG to Vault 1.0

* as per comments  - chrishoffman

* Removed stray bracket and added quotes

* updated as per conversations with Dan
 2019-01-03 10:10:37 -05:00
Graham Land
431cc5f9a6 Docs: Add Auto Unseal Rekey example (#5952) 
* Add KMS Rekey example

I've had customers looking for AWS KMS rekeying examples today - when using pgp keys.
This example would have clarified what they needed to do.

* Replaced KMS reference with Auto Unseal

``` bash
Rekey an Auto Unseal vault and encrypt the resulting recovery keys with PGP:
```
 2019-01-03 09:23:43 -05:00
Becca Petrin
d2789f4000
Merge pull request #5892 from jen20/jen20/dynamodb-capacity-doc 
docs: Clarify the utility of DynamoDB capacities
 2018-12-20 11:54:26 -08:00
Becca Petrin
3f00589181
Merge pull request #5947 from hmalphettes/master 
Docs: JWT API - List Roles: fix the path
 2018-12-20 09:15:57 -08:00
R.B. Boyer
b10ae71509 website: fix simple typo (#5979) 2018-12-19 14:46:54 -08:00
Clint
24de42ff7b
add MSSQL storage docs to sidebar (#5978) 2018-12-19 14:06:42 -06:00
Graham Land
0a703fda30 Docs: Add example for Vault init Auto Unseal with PGP Keys (#5951) 
* Add example for AWS KMS AutoUnseal with PGP Keys

A customer could not figure how to get this working today. 
This example would have helped them. We don't mention KMS anywhere in this section.

* Changed reference from AWS KMS to Auto Unseal

``` bash
Initialize Auto Unseal, but encrypt the recovery keys with pgp keys:
```
 2018-12-18 11:42:10 -05:00
Janosch Maier
34bdc25343 Docs: Fix project resource name in gcp roleset documentation (#5966) 
The resource name when referring to a GCP project needs to have a "s". This PR adds the missing letter in the documentation.
 2018-12-17 16:22:02 -08:00
vishalnayak
40bd37eda7 Upgrade guide for 0.11.6 2018-12-14 12:22:50 -05:00
Matthew Irish
36b96f7ddb update help output examples and mention openapi fragment support (#5954) 2018-12-14 09:12:03 -05:00
Jeff Mitchell
dd459e0d16 Update Consul ACL example 
Fixes #5831
 2018-12-13 17:18:28 -05:00
Hugues Malphettes
66e66a1b6c
Merge branch 'master' into master 2018-12-14 05:21:41 +08:00
Jeff Mitchell
4c735a35d2 Add sidebar link for approle autoauth docs 2018-12-13 09:51:47 -05:00
Hugues Malphettes
b8dbdea6a6
JWT API - List Roles: fix the path 
With vault-1.0.0 and vault-0.11.4 a different path is needed to list the jwt registered roles:

```
$ vault list auth/jwt/roles
No value found at auth/jwt/roles/

$ vault list auth/jwt/role
Keys
----
myrole
```
I hope this helps!
 2018-12-13 06:27:30 +08:00
Sergey Trasko
aeeed85f33 Fixed markdown for cert documentation (#5735) 2018-12-12 15:27:28 -05:00
Joel Thompson
e366aeb2e3 auth/aws: Clarify docs for cross-account access with IAM auth (#5900) 
The docs hadn't been updated to reflect the ability to do cross-account
AWS IAM auth, and so it was a bit confusing as to whether that was
supported. This removes the ambiguity by explicitly mentioning AWS IAM
principals.
 2018-12-12 15:21:27 -05:00
Bert Roos
426016d99f Added comma for readability (#5941) 
Signed-off-by: Bert Roos <Bert-R@users.noreply.github.com>
 2018-12-12 09:23:20 -05:00
Graham Land
2afefe6f1c Fixing a couple of small typos (#5942) 2018-12-12 05:56:58 -08:00
emily
12e3cf5c48 Update GCP auth BE docs (#5753) 
Documented changes from https://github.com/hashicorp/vault-plugin-auth-gcp/pull/55
* Deprecating `project_id` for `bound_projects` and making it optional
* Deprecating `google_certs_endpoint` (unused)
* Adding group aliases 

Also, some general reformatting
 2018-12-10 12:54:18 -08:00
Jeff Mitchell
516827962c
Update PKI docs (#5929) 2018-12-10 10:24:47 -05:00
Tommy Murphy
1a7cd116a7 Correct GCE Token Parameter (#5667) 
As written the GCE token curl results in an error: "non-empty audience parameter required".

Google's docs (https://cloud.google.com/compute/docs/instances/verifying-instance-identity) confirm that the parameter is 'audience' not 'aud'.
 2018-12-07 15:10:30 -08:00
Matthew Irish
af78f40cf8
change ui url so that it includes the trailing slash (#5890) 2018-12-05 12:25:16 -06:00
Chris Hoffman
c49d7ace7f
fixing redirect (#5908) 2018-12-05 12:06:15 -05:00
Chris Hoffman
ef4e5103e9
adding a redirect for old style upgrade guide location (#5905) 2018-12-05 10:54:10 -05:00
Chris Hoffman
a05d2a7aba
removing beta tag (#5904) 2018-12-05 10:45:22 -05:00
Jim Kalafut
d05a8df8f7 Update downloads.html.erb (#5899) 2018-12-05 10:40:33 -05:00
Chris Hoffman
579808ffd2
adding upgrade guide for 1.0 (#5903) 
* adding upgrade guide for 1.0

* fixing sidebar
 2018-12-05 10:33:53 -05:00
ncabatoff
5fc67c909d
Fix documentation re substitutions. It appears this was broken from day one. (#5896) 2018-12-04 13:14:00 -05:00
Jim Kalafut
d686d3f77f
Update operator migrate docs (#5895) 2018-12-04 08:49:42 -08:00
James Nugent
ac784f400d docs: Clarify the utility of DynamoDB capacities 
When configuring DynamoDB, the read and write capacities configured only
have any effect if the table does not exist. As per the comment in the
code [1], the configuration of an existing table is never modified. This
was not previously reflected in the documentation - this commit
rectifies that.

[1]: https://github.com/hashicorp/vault/blob/master/physical/dynamodb/dynamodb.go#L743-L745
 2018-12-03 17:55:18 -06:00
Martin
fdd89482ea Typo in policy template doc (#5887) 2018-12-03 14:36:17 -05:00
Jim Kalafut
c893488eed
Fix docs typos (#5881) 2018-11-30 14:32:04 -08:00