mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-22 15:11:07 +02:00
Code Issues Projects Releases Wiki Activity
9,692 Commits 2,844 Branches 445 Tags
Commit Graph

9692 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Yoko
c648475746
[Guide] DB Root Credential Rotation (#4508) 
* DB root credential rotation guide

* Fixed typos

* Added a note about creating a dedicated superuser

* Incorporated Chris's feedback

* Added a reference to DB root credential rotation

* Rephrase some of the languages

* Minor re-wording of a sentence
 2018-05-09 11:01:58 -07:00
Jeff Mitchell
1fd005d98c Fix another PKI test 2018-05-09 12:51:34 -04:00
Jeff Mitchell
92438aa039 Fix PKI test 2018-05-09 12:47:00 -04:00
Jeff Mitchell
545c8f13a1 Remove outdated renewer test 2018-05-09 12:33:20 -04:00
Jeff VanSickle
cc800b649a Update jq path for "excited" in JSON output example (#4531) 2018-05-09 08:41:41 -07:00
Jeff Mitchell
ca7a4fe2be changelog++ 2018-05-09 10:55:44 -04:00
Shelby Moore
4a1c826d98 Updated proxy protocol config validation (#4528) 2018-05-09 10:53:44 -04:00
Jeff Mitchell
187c051ef3
Update PKI to natively use time.Duration (#4493) 
* Update PKI to natively use time.Duration

Among other things this now means PKI will output durations in seconds
like other backends, instead of as Go strings.

* Add a warning when refusing to blow away an existing root instead of just returning success

* Fix another issue found while debugging this...

The reason it wasn't caught on tests in the first place is that the ttl
and max ttl were only being compared if in addition to a provided csr, a
role was also provided. This was because the check was in the role !=
nil block instead of outside of it. This has been fixed, which made the
problem occur in all sign-verbatim cases and the changes in this PR have
now verified the fix.
 2018-05-09 10:29:54 -04:00
Jeff Mitchell
9fb688f789 Clarify that rotate requires sudo 2018-05-09 10:19:35 -04:00
Jeff Mitchell
05ad6d50d8 Grace is deprecated so mark as such 2018-05-09 10:02:06 -04:00
tdsacilowski
7694c8e1c2 Clarify HA params, fixed typos (#4527) 
* Clarify HA params, fixed typos

* Additional clarifications to listener parameters

* Updated cluster_address values
 2018-05-08 13:36:42 -07:00
Jacob Friedman
390068b54e Updated link for k8s-tokenreview (#4523) 
Link for k8s-tokenreview was broken when they released a new version so I went ahead and fixed it.
 2018-05-08 13:36:12 -07:00
Jacob Friedman
38192cf97c Changed DR docs page to fix generating secondary DR token (#4521) 
The docs for how to create secondary DR tokens were incorrect, which caused issues at a customer. I fixed the documentation with the proper syntax and formatting, which I copied from the perf replication docs (after changing endpoints). Can someone take a quick look for me?
 2018-05-08 13:35:48 -07:00
vishalnayak
c61fd9bba6 docs: s/entity/group-alias 2018-05-08 16:32:35 -04:00
Matthew Irish
b5a39d422a
Ember cli update to 2.15 (#4526) 
* update ember-cli to 2.15

* remove bower

* update ivy-codemirror

* update build and ci to not use bower or phantomjs
 2018-05-08 10:43:20 -05:00
Calvin Leung Huang
861cfde1c2 Move timeout declaration outside of for loop, break out early if renewed cleanly (#4522) 2018-05-07 13:47:55 -07:00
Chris Hoffman
2654a55574
docs update 2018-05-07 16:34:39 -04:00
Chris Hoffman
168d02c9a8
docs updates 2018-05-07 16:33:38 -04:00
Jeff Mitchell
5a7efd6b4b Fix #4472 a better way 
Unlike switch, select will randomly choose from among multiple cases if
more than one are satisfiable.
 2018-05-07 16:13:04 -04:00
Jeff Mitchell
2904318a72 Revert "Close the doneCh in the renewer when we return from Renew. (#4513)" 
This reverts commit 79c708f8b6df13766830d4690e3688ccb49dc335.
 2018-05-07 16:11:39 -04:00
Jeff Mitchell
da11c3be61 Revert "changelog++" 
This reverts commit cd603e299cbe7377ed27cf702ba23dc8cdcc4a33.
 2018-05-07 16:11:18 -04:00
Jeff Mitchell
cd603e299c changelog++ 2018-05-07 14:02:47 -04:00
Chris Hoffman
afc1209275
changelog++ 2018-05-07 13:54:29 -04:00
Chris Hoffman
befd3cf451
updating pkcs11 docs (#4520) 2018-05-07 13:50:45 -04:00
Chris Hoffman
177cb0300f
changelog++ 2018-05-07 13:27:54 -04:00
Jim Kalafut
d831e5207f
Simplify password generator using base62 encoder (#4514) 2018-05-04 14:22:53 -07:00
Jeff Mitchell
8a1fc847cc changelog++ 2018-05-04 13:26:39 -04:00
Jeff Mitchell
79c708f8b6
Close the doneCh in the renewer when we return from Renew. (#4513) 
Closes #4472
 2018-05-04 13:25:08 -04:00
vishalnayak
eef0d36d2a changelog++ 2018-05-04 10:17:18 -04:00
Vishal Nayak
977171dbbe
approle: Make invalid role_id a 400 error instead of 500 (#4470) 
* make invalid role_id a 400 error

* remove single-use validateCredentials function

* remove single-use validateBindSecretID function

* adjust the error message for CIDR check failure

* locking updates as review feedback
 2018-05-04 10:15:16 -04:00
Anthony Dong
7ad10034ed Fix typo in AppRole guide (#4509) 2018-05-04 10:10:21 -04:00
Jeff Mitchell
fb4dc27fce changelog++ 2018-05-04 10:09:43 -04:00
Jeff Mitchell
d98da14c27
Fix alias data being used for cert auth (serial number -> common name) (#4495) 
Fixes #4475
 2018-05-04 10:08:23 -04:00
Jeff
3bfa45e306 Typo (#4505) 2018-05-03 13:37:44 -07:00
Jeff Mitchell
b61b541581
Revert "proto changes (#4503)" (#4504) 
This reverts commit 14594bd76e04ff09c442738800be5fdebc45512f.
 2018-05-03 15:38:53 -04:00
Vishal Nayak
14594bd76e
proto changes (#4503) 2018-05-03 15:23:14 -04:00
Becca Petrin
ab9b638dbb
New proto version (#4501) 2018-05-03 10:19:39 -07:00
Jerome Cheng
e701b6adea Fix incorrect file path in Token Helper doc (#4499) 
Vault stores the token in `~/.vault-token` and not `~/.vault_token`.
 2018-05-02 21:56:38 -07:00
Laura Uva
765b1a0cb0 Payload key should be dr_operation_token (#4498) 2018-05-02 18:35:51 -07:00
Nathan Valentine
ff62d2a585 s/aws_region/region/ (#4497) 
The correct key name is 'region' as opposed to 'aws_region'.
 2018-05-02 14:25:03 -07:00
Matthew Irish
ffbb76a429
Ember cli sass update (#4496) 
* update ember-cli-sass

* update :not syntax to not use strings
 2018-05-02 09:09:41 -05:00
Fabrizio Cucci
92502021e5 Fix role of example in Kubernetes Auth Method (#4483) 
It was `test` but it should be `demo` to be aligned with the example.
 2018-05-01 15:04:53 -07:00
Jeff Mitchell
e928dcab1e changelog++ 2018-05-01 11:24:02 -04:00
Robison Jacka
c642eb5856 Iterating over CSR extensions, and skipping BasicConstraints, since those should be defined by the endpoint that's performing the signing. (#4469) 2018-05-01 11:22:49 -04:00
Matthew Irish
9ac9e088ba
add script defer to the demo app tag as well (#4489) 2018-04-29 22:14:54 -05:00
Vishal Nayak
fbb462612f
update token store error assertions (#4485) 2018-04-29 07:47:42 -04:00
Jeff Escalante
3b442f8da7 fix fout issue (#4477) 2018-04-27 14:34:20 -07:00
Tobias Bieniek
e9c9fe0ee1 ui: Use qunit-dom for DOM assertions (#4455) 2018-04-27 11:33:19 -05:00
Yoko
237a066f39
Spring Cloud Vault Java demo (#4397) 
* WIP - Spring Cloud Vault Java demo

* Added 'Reloading the Static Secrets' step

* Fixed a typo

* Minor wording change

Remove redundant "a".

* Typos and grammar

Fixed a few misspellings ("spring") and the odd "a", "the", or "an".
 2018-04-27 09:18:50 -07:00
Pavlos Ratis
c9f989a3fb [website] fix Markdown formatting on GCP page (#4471) 2018-04-27 09:13:07 -07:00