mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-23 15:41:07 +02:00
Code Issues Projects Releases Wiki Activity
19,991 Commits 2,840 Branches 445 Tags
Commit Graph

157 Commits

Author SHA1 Message Date
John-Michael Faircloth
ab08d623e8
docs: add note to jwt auth for bound aud changes (#27530) 2024-06-19 08:35:22 -05:00
John-Michael Faircloth
76ebf0b41b
docs: correct auth jwt role requirements (#27384) 
* docs: correct auth jwt role requirements

* remove upgrade guide to be added in separate PR

* Revert "remove upgrade guide to be added in separate PR"

This reverts commit 6554d3ff63623a329b0d93f7143d95cd3f19b3e6.

* update required details for bound audience

* Apply suggestions from code review

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* fix formatting to match the existing format of the file

* add 1.16 known issues

* add 1.17 upgrade guide note

---------

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2024-06-12 13:46:40 -05:00
vinay-gopalan
5acc4331ea
Add WIF documentation for Azure Auth and Secrets engines (#27185) 2024-06-03 13:17:13 -07:00
vinay-gopalan
01ccf580d8
Add WIF documentation for GCP Auth and Secrets engines (#27170) 
Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2024-06-03 13:16:56 -07:00
Milena Zlaticanin
309d832462
Add AWS Auth WIF docs (#27054) 
* add aws auth wif docs

* update docs

* update docs
 2024-05-23 12:58:08 -07:00
Yoko Hyakuna
2becdceab0
Replace 'HCP Vault' with 'HCP Vault Dedicated' (#26457) 
* Replace 'HCP Vault' with 'HCP Vault Dedicated'

* Replace 'HCP Vault' with 'HCP Vault Dedicated' where applicable

* Replace 'Terraform Cloud' with 'HCP Terraform'

* Minor format fixes

* Update the side-nav title to 'HCP Terraform'

* Undo changes to Terraform Cloud secrets engine
 2024-04-22 08:44:13 -04:00
JMGoldsmith
7b4f6409c6
[DOCS] Updating approle docs and token partial to include batch token prefer… (#26490) 
* updating approle docs and token partial to include batch token preference

* Update website/content/docs/auth/approle.mdx

Co-authored-by: Brian Shumate <brianshumate@users.noreply.github.com>

* Update website/content/partials/tokenstorefields.mdx

Co-authored-by: Brian Shumate <brianshumate@users.noreply.github.com>

* Update website/content/docs/auth/approle.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

---------

Co-authored-by: Brian Shumate <brianshumate@users.noreply.github.com>
Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2024-04-19 12:32:12 -04:00
Chris Capurso
e1c3f4ac17
clarfiy login MFA not supported for token auth (#26411) 2024-04-15 11:09:59 -04:00
Thy Ton
df477f6404
docs make kubernetes_ca_cert optional on kubernetes auth (#25963) 
---------

Co-authored-by: Ben Ash <32777270+benashz@users.noreply.github.com>
Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2024-03-27 15:45:43 -07:00
NikolaiMagicnet
c9dafc1971
Fixed the URL (#26178) 
Co-authored-by: Chris Capurso <1036769+ccapurso@users.noreply.github.com>
 2024-03-27 12:10:19 -04:00
Karuppiah Natarajan
30667916b7
fix link to specifying ttl and audience section of kubernetes oidc provider (#26097) 2024-03-22 12:21:17 -04:00
Thomas Decaux
29dec5dfc4
fix azuread doc user_claim must be sub (#25896) 
Fix error "claim "email" not found in token"

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2024-03-13 18:09:54 +00:00
Pascal Reeb
646034a97d
fix(oidc/azuread): set correct oidc_scopes (#25477) 
Co-authored-by: Peter Wilson <peter.wilson@hashicorp.com>
 2024-03-13 18:00:22 +00:00
Peter Wilson
a311735761
Support pre-hashed passwords with userpass backend (#25862) 
* allows use of pre-hashed passwords with userpass backend

* Remove unneeded error

* Single error check after switch

* use param name quoted in error message

* updated test for quoted param in error

* white space fixes for markdown doc

* More whitespace fixes

* added changelog

* Password/pre-hashed password are only required on 'create' operation

* docs indentation

* Update website/content/docs/auth/userpass.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Updated docs

* Check length of hash too

* Update builtin/credential/userpass/path_user_password_test.go

:)

Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>

---------

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
 2024-03-12 18:16:11 +00:00
Thy Ton
50aa6eea70
docs: add templated policies workflow example to kubernetes auth (#25694) 
---------

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
 2024-03-01 15:11:14 -08:00
Austin Gebauer
6d4f5df69c
auth/jwt: adds documentation for multi-jwks config parameter (#25503) 
* auth/jwt: adds documentation for multi-jwks config parameter

* updates bound_issuer parameter

* fix link
 2024-02-20 08:49:53 -08:00
Sokren
43e07c633d
Docs/scc edits - adfs docs (#24633) 
* add adfs link

* add adfs and update index

add the adfs link in the index.mdx
add the file adfs.mdx

* Update docs-nav-data.json

Add the link to ADFS documentation

* add adfs-oidc-ldapgroupoption.png

image for the documentation adfs.mdx

* Update docs-nav-data.json

Updated from the last version of the file and adding adfs link

* suggested edits

* Update the file adfs.mdx

* Update adfs.mdx

Change auth/adfs/config to auth/<YOUR_OIDC_MOUNT_PATH>/config

* Update website/content/docs/auth/jwt/oidc-providers/adfs.mdx

* Corrected typo adfs.mdx

We had 2x step3 so I changed to have step 3 and step 4

---------

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
 2024-01-19 09:43:56 +00:00
Stefan Zhelyazkov
f4978b3efd
Updating Vault docs for JWT support of numeric bound_claims (#24921) 
* Add a note that the role name is available as role in entity alias metadata

* Update JWT docs for numeric bound_claims
 2024-01-18 13:57:30 +00:00
Yoko Hyakuna
af3419940c
[DOCS] Fix page heading (#24835) 
* Fix the page header

* Fix the grammar pinted out by PR-1952
 2024-01-12 08:03:46 -08:00
Kyle Schochenmaier
205680c077
add docs for configuring jwt validation pubkeys for vso (#24599) 
* add docs for configuring jwt validation pubkeys for vso and update jwt auth docs to mention key rotation


Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2024-01-05 16:55:48 -06:00
Austin Gebauer
082d2a6412
docs: fix code snippet copy for SAML auth method (#24619) 2023-12-21 08:48:07 -08:00
brendanelmes
10f7011ca3
docs: fixes (#24094) (#24115) 
Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
 2023-12-08 14:19:57 -08:00
Austin Gebauer
ba386a3389
docs: adds domain to OIDC Google Workspace integration (#24433) 2023-12-08 08:23:01 -08:00
Austin Gebauer
e3617218df
auth/saml: adds documentation (#23183) 
* auth/saml: adds documentation

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: John-Michael Faircloth <fairclothjm@users.noreply.github.com>

* use sentence case for titles

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Rémi Lapeyre <remi.lapeyre@lenstra.fr>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Rémi Lapeyre <remi.lapeyre@lenstra.fr>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Rémi Lapeyre <remi.lapeyre@lenstra.fr>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Rémi Lapeyre <remi.lapeyre@lenstra.fr>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Rémi Lapeyre <remi.lapeyre@lenstra.fr>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Rémi Lapeyre <remi.lapeyre@lenstra.fr>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* fixup technical detail on bound_subjects

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* fixup relay state

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* updates wording for bound_attributes

* updates bound_attributes_type

* updates groups_attribute

* lowercase saml entities, add note to unauthenticated APIs

* updates token api description

* adds section for replication configuration

* adds section for namespace config of acs

* use tabs for authentication section

* change word

---------

Co-authored-by: John-Michael Faircloth <fairclothjm@users.noreply.github.com>
Co-authored-by: Rémi Lapeyre <remi.lapeyre@lenstra.fr>
Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2023-09-27 15:34:43 +09:00
Jonathan Frappier
f0fb07b0b2
Add section about user lockout (#23068) 2023-09-13 18:37:38 -04:00
hskiba
6e41be5e04
Update azuread.mdx link to "Use claims to reliably identify a user" (#22491) 
Co-authored-by: Violet Hynes <violet.hynes@hashicorp.com>
 2023-08-22 16:52:32 +00:00
hayden
c6f2845f6b
docs: Add more keycloal oidc URL, URIs information (#17314) 2023-08-17 16:00:21 -07:00
Ben Moskovitz
cbc9b66620
Update JWT docs to not recommend -path for vault write (#18305) 
* Update JWT docs to not recommend `-path` for `vault write

`-path` is valid for `vault login`, but not for `vault write` leading to confusion when trying to log in to using the JWT backend using the CLI.

* Update website/content/docs/auth/jwt/index.mdx

---------

Co-authored-by: tjperry07 <tjperry07@users.noreply.github.com>
Co-authored-by: Violet Hynes <violet.hynes@hashicorp.com>
 2023-08-16 11:54:17 -04:00
Yannis Rachdi
ecd9ed21b8
docs: add notice regarding GitHub SSO-enabled orgnization (#16460) 
Co-authored-by: Violet Hynes <violet.hynes@hashicorp.com>
 2023-08-16 08:52:39 -04:00
sylvia-petsanova
daf174b89d
Add clarification about TLS configuration options needed to enable TLS cert authentication. (#22358) 
Clarification added by a customer's request, as tls_disable_client_certs being set to false was found to also be necessary for TLS cert authentication.
 2023-08-16 08:51:45 -04:00
Sarah Chavis
91face4eff
convert OSS language to "community" (#22343) 2023-08-15 13:31:52 -04:00
Sarah Chavis
6ce0699301
add note that assumed roles are not supported (#22324) 2023-08-15 13:19:02 -04:00
Tanmay Pereira Naik
2269369229
docs: Update outdated vaultproject.io/docs/ links (#22162) 
Signed-off-by: Tanmay Pereira Naik <59953366+tanmay-pnaik@users.noreply.github.com>
Co-authored-by: Brian Shumate <brianshumate@users.noreply.github.com>
 2023-08-15 12:59:34 -04:00
Torbjørn Fjørtoft
20e2e4b308
Docs for Application Default Credentials, links to non-dwdoa setup (#21453) 2023-08-07 16:14:55 -07:00
Raymond Ho
0d0cda43d5
clarify docs in ldap/auth for userfilter (#22210) 2023-08-07 13:13:52 -07:00
Anton Averchenkov
f4f0412b6a
[docs] Convert titles to sentense case (#21426) 
* Convert documentation titles to sentense case

* Docker, Google, Foundry, Cloud proper case
 2023-06-30 19:22:07 -04:00
Doug Knight
5d13092b03
docs: clarify external auth method considerations (#21301) 
Signed-off-by: Doug Knight <doug.knight@karmix.org>
Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2023-06-22 19:31:20 +00:00
Yoko Hyakuna
58b6cb1c42
[Docs] Add cross-links to related tutorials (#21405) 
* Add cross-links to related tutorials

* Add additional tutorial links
 2023-06-22 08:27:00 -07:00
Violet Hynes
d76424cb53
Miscellaneous docs cleanups (#21327) 2023-06-16 15:38:58 -04:00
Luis (LT) Carbonell
21b3262e9f
Correct Default for MaximumPageSize (#20453) 
* default max page size for config

* Add changelog

* update test int to *int

* add testing defaults

* update default to -1, i.e. dont paginate

* update test

* Add error message for invalid search

* Make 0 the default

* cleanup

* Add to known issues doc

* Update website/content/docs/upgrading/upgrade-to-1.13.x.mdx

* Update website/content/docs/upgrading/upgrade-to-1.11.x.mdx

Co-authored-by: Jason O'Donnell <2160810+jasonodonnell@users.noreply.github.com>

* Update website/content/docs/upgrading/upgrade-to-1.13.x.mdx

Co-authored-by: Jason O'Donnell <2160810+jasonodonnell@users.noreply.github.com>

* Update website/content/docs/upgrading/upgrade-to-1.12.x.mdx

Co-authored-by: Jason O'Donnell <2160810+jasonodonnell@users.noreply.github.com>

* Add workaround to docs

* Update changelog/20453.txt

Co-authored-by: Austin Gebauer <34121980+austingebauer@users.noreply.github.com>

---------

Co-authored-by: Jason O'Donnell <2160810+jasonodonnell@users.noreply.github.com>
Co-authored-by: Austin Gebauer <34121980+austingebauer@users.noreply.github.com>
 2023-05-17 20:56:53 +00:00
Luis (LT) Carbonell
7f2deb1420
Add Configurable LDAP Max Page Size (#19032) 
* Add config flag for LDAP max page size

* Add changelog

* move changelog to correct file

* cleanup

* Default to non-paged searching for with -1

* Update website/content/api-docs/auth/ldap.mdx

Co-authored-by: Austin Gebauer <34121980+austingebauer@users.noreply.github.com>

* Update website/content/docs/auth/ldap.mdx

Co-authored-by: Austin Gebauer <34121980+austingebauer@users.noreply.github.com>

* Update tests

---------

Co-authored-by: Austin Gebauer <34121980+austingebauer@users.noreply.github.com>
 2023-04-20 20:39:27 +00:00
Austin Gebauer
c94e213ac6
Add OIDC provider docs for IBM ISAM (#19247) 
* Add OIDC provider docs for IBM ISAM

* Add changelog, api docs and docs-nav-data

---------

Co-authored-by: Benjamin Voigt <benjamin.voigt@god.dev>
 2023-04-20 11:30:59 -07:00
Nathan Handler
ee1bfd258d
Fix Indentation in Kubernetes Auth Example (#20216) 
In the Kubernetes Auth Code Example, the indentation for the `auth` import is off, causing it to not be indented the same amount as the previous `vault` import. This change ensures that both imports use the same indentation.
 2023-04-18 15:23:25 -07:00
Niranjan Shrestha
ccf9492d67
Update userpass.mdx (#20121) 
* Update userpass.mdx

vault write auth/userpass/users/mitchellh password=foo policies=admins
in the path "userpass" is actually a path, if custom path is defined, custom path need to used, instead of userpass.

* Add extra description

---------

Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
 2023-04-17 16:52:13 +00:00
Scott Miller
fc21d357ff
Add documentation for cert auth OCSP checking (#18064) 2023-04-13 18:33:21 +00:00
Austin Gebauer
45d960ff91
docs/oidc: fixes Azure user.read permission link (#20079) 2023-04-11 11:34:38 -07:00
Jonathan Frappier
2a3e899a9d
Fix list formatting (#20076) 2023-04-11 09:25:12 -07:00
Yoko Hyakuna
2c4fc91f54
Extends the PR19488 (#19928) 2023-04-04 14:52:57 -07:00
Yoko Hyakuna
115ed111a9
Remove the note about Vault not supporting number Okta verify push number challenge (#19497) 2023-03-09 16:30:49 -08:00
Jakob Beckmann
39f9e5e775
Allow alias dereferencing in LDAP searches (#18230) 
* impr(auth/ldap): allow to dereference aliases in searches

* docs: add documentation for LDAP alias dereferencing

* chore(auth/ldap): add changelog entry for PR 18230

* chore: run formatter

* fix: update default LDAP configuration with new default

* Update website/content/docs/auth/ldap.mdx

Co-authored-by: tjperry07 <tjperry07@users.noreply.github.com>

* docs(ldap): add alias dereferencing to API docs for LDAP

---------

Co-authored-by: tjperry07 <tjperry07@users.noreply.github.com>
 2023-02-24 13:49:17 -05:00