mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-27 17:41:13 +02:00
Code Issues Projects Releases Wiki Activity
9,692 Commits 2,836 Branches 445 Tags
Commit Graph

9692 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
vishalnayak
28e6f885ca Perform CRL checking for non-CA registered certs 2016-05-12 14:37:07 -04:00
Vishal Nayak
5a45fdc99d Merge pull request #1403 from hashicorp/fix-mount-tune 
Fix mount tune bounds checking
 2016-05-12 12:26:49 -04:00
vishalnayak
33b7c1a641 Name the files based on changed path patterns 2016-05-12 11:52:07 -04:00
vishalnayak
4aa01d390a Update docs and path names to the new patterns 2016-05-12 11:45:10 -04:00
vishalnayak
7f884dd1c4 Fix mount tune bounds checking 2016-05-12 07:22:00 -04:00
Jeff Mitchell
0cf1dc7f4d Merge branch 'master-oss' into cubbyhole-the-world 2016-05-11 19:29:52 -04:00
Jeff Mitchell
ea9734a6aa changelog++ 2016-05-11 19:28:01 -04:00
Jeff Mitchell
594476f91b Merge pull request #1399 from hashicorp/explicit-max-ttl 
Add explicit maximum TTLs to token store roles.
 2016-05-11 16:25:02 -07:00
Jeff Mitchell
9fdeb70aca Merge branch 'master-oss' into cubbyhole-the-world 2016-05-11 19:09:51 -04:00
Jeff Mitchell
c386a7c014 Fix bug around disallowing explicit max greater than sysview max 2016-05-11 18:46:55 -04:00
Jeff Mitchell
67a746be30 Add explicit maximum TTLs to token store roles. 2016-05-11 16:51:18 -04:00
Sean Chittenden
36496c90b9 Merge pull request #1395 from hashicorp/b-remove-mlock-netbsd 
Don't build mlock for NetBSD
 2016-05-10 23:33:08 -07:00
vishalnayak
306632cb68 Merge branch 'master-oss' into pr-1300 2016-05-10 20:47:07 -04:00
Sean Chittenden
2dc560e0c2
Don't build mlock for NetBSD 
NetBSD doesn't have the right symbols defined in Go for mlockall support.  The OS supports it just fine, but the definitions aren't present in Go.  If someone wanted to they could add support XOR the values from `sys/mman.h` for `MCL_CURRENT | MCL_FUTURE` which is almost certainly `0x01 | 0x02` but we're not going to do that in code due to the maintenance of a one-off just for NetBSD.  PR's welcome.
 2016-05-10 16:39:54 -07:00
Vishal Nayak
04d3da065a Merge pull request #1394 from joehillen/patch-1 
Fix default etcd address
 2016-05-10 15:52:37 -04:00
Joe Hillenbrand
2d0f8cd938 Fix default etcd address 
Should be `127.0.0.1`, not `128.0.0.1`
 2016-05-10 12:50:11 -07:00
vishalnayak
7a10134f87 Merge branch 'master-oss' into aws-auth-backend 2016-05-10 14:50:00 -04:00
Jeff Mitchell
59c9bafa12 Add dev-dynamic makefile target 2016-05-09 23:17:38 -04:00
vishalnayak
c1dd991ccf Fix the acceptance tests 2016-05-09 22:07:51 -04:00
vishalnayak
ebaff78305 Call client config internal from the locking method 2016-05-09 21:01:57 -04:00
Jeff Mitchell
49d9711322 changelog++ 2016-05-09 20:01:12 -04:00
Jeff Mitchell
765315ddbc Merge pull request #1390 from hashicorp/dont-revoke-ca-certs 
Don't revoke CA certificates with leases.
 2016-05-09 16:54:40 -07:00
Jeff Mitchell
9de0ea081a Don't revoke CA certificates with leases. 2016-05-09 19:53:28 -04:00
Jeff Mitchell
0c6f45d94c Update client code to use internal entry fetching 2016-05-09 23:26:00 +00:00
Sean Chittenden
0aad4e68a7
Bump Go to 1.6.2 for Travis (just added) 2016-05-08 22:13:41 -07:00
Jeff Mitchell
fd67b15bb0 Add more tests 2016-05-07 21:08:13 -04:00
Jeff Mitchell
8672b61bef Implement WrapInfo audit logging 2016-05-07 20:03:56 -04:00
Jeff Mitchell
fdde9e1697 Audit wrap info 2016-05-07 19:19:19 -04:00
Jeff Mitchell
e36f66000e Make WrapInfo a pointer to match secret/auth in response 2016-05-07 19:17:51 -04:00
Jeff Mitchell
f3a3fc3d55 Merge remote-tracking branch 'origin/master' into cubbyhole-the-world 2016-05-07 19:00:18 -04:00
Jeff Mitchell
a2993813e4 changelog++ 2016-05-07 19:00:09 -04:00
Jeff Mitchell
aaee4e34ac Merge pull request #1387 from hashicorp/log-display-name 
Add DisplayName to request audit object in response audit object
 2016-05-07 15:58:01 -07:00
Jeff Mitchell
28c1498151 Add DisplayName to request audit object in response audit object 2016-05-07 18:57:38 -04:00
Jeff Mitchell
c8be24741a Specify more complete wrap-ttl output in help 2016-05-07 16:45:41 -04:00
Jeff Mitchell
aab8b684df Merge response fix over from mfatw 2016-05-07 16:41:24 -04:00
Jeff Mitchell
908487191f Merge branch 'master-oss' into cubbyhole-the-world 2016-05-07 16:40:04 -04:00
Jeff Mitchell
345649f90f changelog++ 2016-05-07 16:36:02 -04:00
Jeff Mitchell
3ca09fdf30 Merge pull request #1346 from hashicorp/disable-all-caches 
Disable all caches
 2016-05-07 16:33:45 -04:00
Sean Chittenden
c69fa99474 Bump Go to 1.6.1 2016-05-07 13:30:43 -07:00
Steve Jansen
69740e57e0 Adds sts:AssumeRole support to the AWS secret backend 
Support use cases where you want to provision STS tokens
using Vault, but, you need to call AWS APIs that are blocked
for federated tokens.  For example, STS federated tokens cannot
invoke IAM APIs, such as  Terraform scripts containing
`aws_iam_*` resources.
 2016-05-05 23:32:41 -04:00
Jeff Mitchell
e0e838c1ae Merge branch 'master-oss' into cubbyhole-the-world 2016-05-05 20:45:36 -04:00
Jeff Mitchell
dd5321a86a Switch whitelist to use longest max TTL 2016-05-05 20:44:48 -04:00
Jeff Mitchell
a5cae16b5f Role tag updates 2016-05-05 15:32:14 -04:00
Jeff Mitchell
e83dbbe532 Fix HMAC being overwritten. Also some documentation, and add a lock to role operations 2016-05-05 14:51:09 -04:00
Jeff Mitchell
e7c5966da8 Guard tidy functions 2016-05-05 14:28:46 -04:00
Jeff Mitchell
c41b024f36 More updates to mutexes and adjust blacklisted roletag default safety buffer 2016-05-05 14:12:22 -04:00
Jeff Mitchell
68b76b99c8 Rename identity whitelist and roletag blacklist api endpoints 2016-05-05 13:34:50 -04:00
Jeff Mitchell
3d20107e54 Move some mutexes around 2016-05-05 12:53:27 -04:00
Jeff Mitchell
c4f26c9011 Update some mutexes in client config 2016-05-05 12:44:40 -04:00
Jeff Mitchell
1c60388900 Fall back to non-base64 cert if it can't be decoded (it's checked later anyways) 2016-05-05 11:36:28 -04:00