vault

mirror of https://github.com/hashicorp/vault.git synced 2025-08-09 16:17:01 +02:00

Author	SHA1	Message	Date
Jeff Mitchell	5d706e165d	Fix printable check key not being valid	2018-07-12 16:59:07 -04:00
Jeff Mitchell	fc59d1e4e3	Add config flag to disable non-printable character check (#4917 )	2018-07-12 16:29:36 -04:00
Jeff Mitchell	5a2d80e487	Allow max request size to be user-specified (#4824 ) * Allow max request size to be user-specified This turned out to be way more impactful than I'd expected because I felt like the right granularity was per-listener, since an org may want to treat external clients differently from internal clients. It's pretty straightforward though. This also introduces actually using request contexts for values, which so far we have not done (using our own logical.Request struct instead), but this allows non-logical methods to still get this benefit. * Switch to ioutil.ReadAll()	2018-07-06 15:44:56 -04:00
Calvin Leung Huang	c212a86606	Move checkHCLKeys into hclutil (#4749 )	2018-06-12 12:38:08 -04:00
Jeff Mitchell	7dce56bf73	Sync over changes to config.go	2018-05-30 08:34:46 -04:00
Jeff Mitchell	80b17705a9	X-Forwarded-For (#4380 )	2018-04-17 18:52:09 -04:00
Vishal Nayak	e2bb2ec3b9	Errwrap everywhere (#4252 ) * package api * package builtin/credential * package builtin/logical * package command * package helper * package http and logical * package physical * package shamir * package vault * package vault * address feedback * more fixes	2018-04-05 11:49:21 -04:00
Becca Petrin	792d219aa9	Move to "github.com/hashicorp/go-hclog" (#4227 ) * logbridge with hclog and identical output * Initial search & replace This compiles, but there is a fair amount of TODO and commented out code, especially around the plugin logclient/logserver code. * strip logbridge * fix majority of tests * update logxi aliases * WIP fixing tests * more test fixes * Update test to hclog * Fix format * Rename hclog -> log * WIP making hclog and logxi love each other * update logger_test.go * clean up merged comments * Replace RawLogger interface with a Logger * Add some logger names * Replace Trace with Debug * update builtin logical logging patterns * Fix build errors * More log updates * update log approach in command and builtin * More log updates * update helper, http, and logical directories * Update loggers * Log updates * Update logging * Update logging * Update logging * Update logging * update logging in physical * prefixing and lowercase * Update logging * Move phyisical logging name to server command * Fix som tests * address jims feedback so far * incorporate brians feedback so far * strip comments * move vault.go to logging package * update Debug to Trace * Update go-plugin deps * Update logging based on review comments * Updates from review * Unvendor logxi * Remove null_logger.go	2018-04-02 17:46:59 -07:00
Josh Soref	e43b76ef97	Spelling (#4119 )	2018-03-20 14:54:10 -04:00
Calvin Leung Huang	faccf38997	Move HA-related config values to top level (#3550 ) * Move HA-related config values to top level * Add config2.hcl test-fixture	2017-11-08 14:19:41 -05:00
Calvin Leung Huang	c7b5b8b0b4	aws_region->region on awskms config	2017-11-02 16:31:16 -04:00
Jeff Mitchell	cd6d67d84b	Final sync	2017-10-23 17:39:21 -04:00
Jeff Mitchell	6faf8365e9	Add option to disable client certificate requesting. (#3373 ) Fixes #3372	2017-09-25 14:41:46 -04:00
Vishal Nayak	de7ac83df6	Add 'pid_file' config option (#3321 ) * add pid_file config option * address review feedback * address review comments	2017-09-16 17:09:37 -04:00
Chris Hoffman	4a8c33cca3	Disable the `sys/raw` endpoint by default (#3329 ) * disable raw endpoint by default * adding docs * config option raw -> raw_storage_endpoint * docs updates * adding listing on raw endpoint * reworking tests for enabled raw endpoints * root protecting base raw endpoint	2017-09-15 00:21:35 -04:00
Jeff Mitchell	3f31ed733f	Add option to set cluster TLS cipher suites. (#3228 ) * Add option to set cluster TLS cipher suites. Fixes #3227	2017-08-30 16:28:23 -04:00
Gobin Sougrakpam	f166016ae8	tls_client_ca_file option for verifying client (#3034 )	2017-08-03 07:33:06 -04:00
Jeff Mitchell	608322b546	Add PROXY protocol support (#3098 )	2017-08-02 18:24:12 -04:00
Jeff Mitchell	c6615e1b51	Add a -dev-three-node option for devs. (#3081 )	2017-07-31 11:28:06 -04:00
Jeff Mitchell	22e06c05e8	Convert listener arguments to map[string]interface{} (#2905 ) This allows people to use more natural constructs, e.g. for tls_disable it can be a bool, int, or string.	2017-06-22 20:29:53 +01:00
Jeff Mitchell	f5de93f1bf	Add DogStatsD metrics output. (#2883 ) Fixes #2490	2017-06-16 23:51:46 -04:00
Brian Kassouf	07f3f4fc26	Update the plugin directory logic	2017-04-13 11:22:53 -07:00
Brian Kassouf	f2401c0128	Merge branch 'master' into database-refactor	2017-04-12 14:29:10 -07:00
Brian Kassouf	ac519abecf	Plugin catalog	2017-04-03 17:52:29 -07:00
Jeff Mitchell	317c664370	Add option to require valid client certificates (#2457 )	2017-03-08 10:21:31 -05:00
Jeff Mitchell	b1ed578f3d	Rename physical backend to storage and alias old value (#2456 )	2017-03-08 09:17:00 -05:00
Jeff Mitchell	df575f0b3a	Rename helper 'duration' to 'parseutil'. (#2449 ) Add a ParseBool function that accepts various kinds of ways of specifying booleans. Have config use ParseBool for UI and disabling mlock/cache.	2017-03-07 11:21:22 -05:00
Jeff Mitchell	bfaf9022fa	Do some porting to make diffing easier	2017-02-24 10:45:29 -05:00
Jeff Mitchell	8acbdefdf2	More porting from rep (#2388 ) * More porting from rep * Address review feedback	2017-02-16 16:29:30 -05:00
Roman Vynar	51bb8bc544	Added tls_cipher_suites, tls_prefer_server_ciphers config options to listener (#2293 )	2017-01-23 13:48:35 -05:00
matt maier	2cd3cfd83e	Vendor circonus (#2082 )	2016-11-10 16:17:55 -05:00
Jeff Mitchell	0765d8e938	Switch default case of disable cluster. (#1959 )	2016-10-02 14:54:01 -04:00
Jeff Mitchell	ad62b32ff0	Rejig where the reload functions live	2016-09-30 00:07:22 -04:00
Jeff Mitchell	c748ff322f	Change default TTL from 30 to 32 to accommodate monthly operations (#1942 )	2016-09-28 18:32:49 -04:00
Jeff Mitchell	d40277a18f	Plumb through the ability to set the storage read cache size. (#1784 ) Plumb through the ability to set the storage read cache size. Fixes #1772	2016-08-26 10:27:06 -04:00
Jeff Mitchell	68345eb770	Convert to logxi	2016-08-21 18:13:37 -04:00
Jeff Mitchell	645540012f	Request forwarding (#1721 ) Add request forwarding.	2016-08-15 09:42:42 -04:00
vishalnayak	46b94d8612	Update cluster name during config merge	2016-07-26 11:11:12 -04:00
vishalnayak	e5c61509d6	Remove global name/id. Make only cluster name configurable.	2016-07-26 10:01:35 -04:00
vishalnayak	55cf44bc91	Storing local and global cluster name/id to storage and returning them in health status	2016-07-26 02:32:42 -04:00
matt maier	a1b50427f2	Circonus integration for telemetry metrics	2016-07-22 15:49:23 -04:00
Jeff Mitchell	6bdda578ac	Don't panic on an empty configuration during merge	2016-07-05 16:49:15 -04:00
Jeff Mitchell	4d53c5f6b6	Remove unneeded else	2016-06-08 13:55:31 -04:00
Jeff Mitchell	32b4f48e66	Add a metadata node_id field for Atlas usage and fix tests	2016-06-02 18:19:51 -04:00
Jeff Mitchell	d32283ba49	Initial Atlas listener implementation	2016-06-02 14:05:47 -04:00
Sean Chittenden	f2dc2f636e	Comment nits	2016-04-25 18:00:54 -07:00
Jeff Mitchell	c22fc374b6	Merge HA Backend objects	2016-03-21 16:56:13 -04:00
Jeff Mitchell	14f538556e	Don't generate an ID; use address for the ID. Generally speaking we'll need to sane against what's in the config	2016-03-11 17:28:03 -05:00
Jeff Mitchell	9f2f5b1c61	Retool to have reloading logic run in command/server	2016-03-11 16:47:03 -05:00
Seth Vargo	ffbe97c7ca	Print errors on extra keys in server config This does NOT apply to the backend config, since each backend config could have a variation of options that differ based off of the configured backend itself. This may be an optimization that can be made in the future, but I think each backend should be responsible for performing its own configuration validation instead of overloading the config itself with this functionality.	2016-03-10 15:25:25 -05:00
Jeff Mitchell	67b8eab204	Update help text exporting dev mode listen address. Ping #1160	2016-03-03 18:10:14 -05:00
Jeff Mitchell	4f51b6e3c9	Allow separate HA physical backend. With no separate backend specified, HA will be attempted on the normal physical backend. Fixes #395.	2015-12-14 07:59:58 -05:00
Jeff Mitchell	676970574b	Allow disabling the physical storage cache with 'disable_cache'. Fixes #674.	2015-10-12 13:00:32 -04:00
Jeff Mitchell	4c5c82e6f7	Rename config lease_duration parameters to lease_ttl in line with current standardization efforts	2015-08-27 07:50:24 -07:00
vishalnayak	b5c3624f2e	Merging with master	2015-08-06 18:44:40 -04:00
vishalnayak	8dbbb8b8e6	Vault SSH: CRUD test case for OTP Role	2015-07-31 13:24:23 -04:00
Karl Gutwin	1a673ddc0a	PR review updates	2015-07-30 13:21:41 -04:00
Karl Gutwin	a87af4e863	Add configuration options for default lease duration and max lease duration.	2015-07-30 09:42:49 -04:00
Nate Brown	8f666b8e60	Telemetry object in config	2015-07-14 15:36:28 -07:00
Mitchell Hashimoto	a0376a20f0	command/server: disable mlock in dev mode	2015-04-28 15:11:39 -07:00
Mitchell Hashimoto	4d51d0f0f4	command/server: allow disabling mlock	2015-04-28 15:09:30 -07:00
Mitchell Hashimoto	bac7049996	command/server: can set advertise addr	2015-04-17 12:56:31 -07:00
Mitchell Hashimoto	75a319d767	command/server: config for setting stats addresses	2015-04-17 12:56:31 -07:00
Armon Dadgar	b25125f167	command/server: Enable telemetry. cc: @mitchellh	2015-04-14 18:44:09 -07:00
Mitchell Hashimoto	9198a6687a	command/server: dev mode	2015-03-31 16:44:47 -07:00
Mitchell Hashimoto	fcc6646a19	command/server: initial working	2015-03-13 12:53:08 -07:00
Mitchell Hashimoto	279a1b13d6	command/server: load config from flags	2015-03-12 15:30:07 -07:00
Mitchell Hashimoto	2bbd5fa66e	command/server: add config loading	2015-03-12 15:21:11 -07:00

1 2 3

118 Commits