mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-09-01 12:01:10 +02:00
Code Issues Projects Releases Wiki Activity
9,692 Commits 2,840 Branches 446 Tags
Commit Graph

9692 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
mwoolsey
311e09b884 updated policy.go to include an expanded structure to add the ability to track allowed and disallowed params in the PathCapabilities structure. Updating Acl.go to interface with the updated PathCapabilites structure 2016-10-09 15:39:58 -07:00
Laura Bennett
bef5a625d6 adding unit tests for file mode 2016-10-09 00:33:24 -04:00
Laura Bennett
bc58e02fe8 initial commit to fix empty consistency option issue 2016-10-08 20:22:26 -04:00
Laura Bennett
a8813c4ff2 changes for 'mode' 2016-10-08 19:52:49 -04:00
Laura Bennett
487f0d74c1 website documentation update 2016-10-07 15:48:29 -04:00
Laura Bennett
635873cf4a initial commit for adding audit file permission changes 2016-10-07 15:09:32 -04:00
Jeff Mitchell
80281c16fc Split HA server command tests from reload tests 2016-10-07 11:06:01 -04:00
Jeff Mitchell
07546ce513 Add gitter badge 2016-10-06 12:37:41 -04:00
Jeff Mitchell
b2d2bb55d2 Add KeyNotFoundError to seal file 2016-10-05 17:17:33 -04:00
Vishal Nayak
b6627ee441 Merge pull request #1974 from zendesk/update_iam_documentation 
Update aws-ec2 configuration help
 2016-10-05 16:43:45 -04:00
Michael S. Fischer
c6120c26d9 Update aws-ec2 configuration help 
Updated to reflect enhanced functionality and clarify necessary
permissions.
 2016-10-05 12:40:58 -07:00
Jeff Mitchell
22619b6786
Cut version 0.6.2 v0.6.2 2016-10-05 14:31:35 -04:00
Jeff Mitchell
d7615b0477 Don't use quoted identifier for the username 2016-10-05 14:31:19 -04:00
Jeff Mitchell
f911375ca4 Update upgrade guide 2016-10-05 14:10:27 -04:00
Jeff Mitchell
9c30bf07e5 changelog++ 2016-10-05 14:08:31 -04:00
Jeff Mitchell
37df43d534 Postgres revocation sql, beta mode (#1972) 2016-10-05 13:52:59 -04:00
Jeff Mitchell
5394fc77e0 Prep for 0.6.2 2016-10-05 08:23:31 -04:00
Paweł Rozlach
261cc52cbc Post-review fixes for file/zk recursive empty prefix delete 2016-10-05 08:08:00 -04:00
Jeff Mitchell
2af3c499bf changelog++ 2016-10-04 23:17:29 -04:00
vishalnayak
fd234e4c9a changelog++ 2016-10-04 22:53:15 -04:00
Vishal Nayak
2711249e08 Merge pull request #1964 from mesosphere/prozlach/nested_secrets_handling_fix 
Nested secrets handling fix for zookeeper and file based backend.
 2016-10-04 22:45:37 -04:00
Jeff Mitchell
5ce55a2ebc Update website with breaking change information 2016-10-04 22:35:56 -04:00
Jeff Mitchell
3c26e396a8 changelog++ 2016-10-04 22:15:14 -04:00
Jeff Mitchell
b7c68ebd86 changelog++ 2016-10-04 22:07:06 -04:00
Jeff Mitchell
ae2f9632f9 changelog++ 2016-10-04 21:57:10 -04:00
Vishal Nayak
3d9009b315 Merge pull request #1967 from hashicorp/mysql-revoke-sql 
Refactor mysql's revoke SQL
 2016-10-04 20:01:54 -04:00
vishalnayak
9c8ceb14d6 changelog++ 2016-10-04 19:47:37 -04:00
vishalnayak
e90acaeb6c Refactor mysql's revoke SQL 2016-10-04 19:30:25 -04:00
Vishal Nayak
b22b4edc71 Merge pull request #1914 from jpweber/mysql-revoke 
Mysql revoke with non-wildcard hosts
 2016-10-04 17:44:15 -04:00
Jim Weber
6b9b646e8a removed an unused ok variable. Added warning and force use for default queries if role is nil 2016-10-04 17:15:29 -04:00
vishalnayak
317210bb69 changelog++ 2016-10-04 16:18:47 -04:00
Pawel Rozlach
3156098a5b Fix file backend so that it properly removes nested secrets. 
This patch makes file backend properly remove nested secrets, without leaving
empty directory artifacts, no matter how nested directories were.
 2016-10-04 21:56:12 +02:00
Pawel Rozlach
d13c10ffe3 Fix zookeeper backend so that properly deletes/lists secrets. 
This patch fixes two bugs in Zookeeper backends:
 * backend was determining if the node is a leaf or not basing on the number
   of the childer given node has. This is incorrect if you consider the fact
   that deleteing nested node can leave empty prefixes/dirs behind which have
   neither children nor data inside. The fix changes this situation by testing
   if the node has any data set - if not then it is not a leaf.
 * zookeeper does not delete nodes that do not have childern just like consul
   does and this leads to leaving empty nodes behind. In order to fix it, we
   scan the logical path of a secret being deleted for empty dirs/prefixes and
   remove them up until first non-empty one.
 2016-10-04 21:56:12 +02:00
Pawel Rozlach
7b5f467d9b Add tests for nested/prefixed secrets removal. 
Current tests were not checking if backends are properly removing
nested secrets. We follow here the behaviour of Consul backend, where
empty "directories/prefixes" are automatically removed by Consul itself.
 2016-10-04 21:55:33 +02:00
Vishal Nayak
a72b7698bb Merge pull request #1961 from hashicorp/aws-ec2-auth-rsa-signature 
aws-ec2-auth using identity doc and RSA digest
 2016-10-04 15:45:12 -04:00
vishalnayak
4e471c41fb Minor doc updates 2016-10-04 15:46:09 -04:00
vishalnayak
18a59edb43 Address review feedback 2 2016-10-04 15:30:42 -04:00
vishalnayak
84c8caefca Address review feedback 2016-10-04 15:05:44 -04:00
Vishal Nayak
4ffd3ec392 Merge pull request #1957 from hashicorp/website-list-userpass 
Added user listing endpoint to userpass docs
 2016-10-04 14:10:49 -04:00
Jim Weber
1ec0a2d403 fixed an incorrect assignment 2016-10-03 21:51:40 -04:00
vishalnayak
dda2e81895 Add only relevant certificates 2016-10-03 20:34:28 -04:00
vishalnayak
437ddeaadc aws-ec2 config endpoints support type option to distinguish certs 2016-10-03 20:25:07 -04:00
Jim Weber
1b591fb6d5 More resilient around cases of missing role names and using the default when needed. 2016-10-03 20:20:00 -04:00
vishalnayak
1317753f18 Authenticate aws-ec2 instances using identity document and its RSA signature 2016-10-03 18:57:41 -04:00
Vishal Nayak
a3b58b7454 Merge pull request #1960 from hashicorp/atlas-listener-docs 
document the atlas listener
 2016-10-03 16:13:32 -04:00
Matthew Irish
61c88389ed add documentation for cluster_name and link atlas listener docs 2016-10-03 15:04:33 -05:00
Jim Weber
67d991f4ab Refactored logic some to make sure we can always fall back to default revoke statments 
Changed rolename to role
made default sql revoke statments a const
 2016-10-03 15:59:56 -04:00
Jim Weber
179c07075a fixed some more issues I had with the tests. 2016-10-03 15:58:09 -04:00
Jim Weber
aa5bb3b354 renamed rolname to role 2016-10-03 15:57:47 -04:00
Jim Weber
c9e783caaa Removed file that should not have been added in the first place. 2016-10-03 14:53:22 -04:00