mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-27 17:41:13 +02:00
Code Issues Projects Releases Wiki Activity
9,692 Commits 2,836 Branches 445 Tags
Commit Graph

9692 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jeff Mitchell
b938163ad1 Update vendoring 2017-06-05 10:51:53 -04:00
Mevan Samaratunga
65b9c35229 fixed bug where the project name was not being read from configuration if it was provided via the "tenant" attribute. this was causing the swift client to crash with an EOF error. (#2803) 2017-06-05 10:48:39 -04:00
Jeff Mitchell
e3cc07cab8 changelog++ 2017-06-05 10:06:12 -04:00
Jeff Mitchell
24fab528f8 Fix instantiation of salt funcs in app-id structs 2017-06-05 10:04:54 -04:00
Jeff Mitchell
d3d9370294 changelog++ 2017-06-03 08:17:02 -04:00
Eugene Bekker
0701658936 Fixes #2789 (#2790) 2017-06-03 08:15:37 -04:00
Jeff Mitchell
c18589f590 Add plugin_directory to configuration page (#2801) 
Fixes #2795
 2017-06-03 08:11:03 -04:00
Dan Stark
da2c918195 Fixes typos in error message and comment for AWS auth CLI (#2798) 2017-06-02 17:35:25 -07:00
Brian Kassouf
4c9ea2ec7c changelog++ 2017-06-01 15:24:27 -07:00
Igor Katson
32c7efe7ca Add max_parallel parameter to MySQL backend. (#2760) 
* Add max_parallel parameter to MySQL backend.

This limits the number of concurrent connections, so that vault does not die
suddenly from "Too many connections".

This can happen when e.g. vault starts up, and tries to load all the
existing leases in parallel. At the time of writing this, the value
ExpirationRestoreWorkerCount in vault/helper/consts/const.go is set to
64, meaning that if there are enough leases in the vault's DB, it will
generate AT LEAST 64 concurrent connections to MySQL when loading the
data during start-up. On certain configurations, e.g. smaller AWS
RDS/Aurora instances, this will cause Vault to fail startup.

* Fix a typo in mysql storage readme
 2017-06-01 15:20:32 -07:00
vishalnayak
5adcb9c220 Fix policy tests 2017-06-01 17:22:34 -04:00
Andrew Paulin
d004ad75db Support custom renewal statements in Postgres (#2788) 
* Support custom renewal statements in Postgres

* Refactored out default/custom renew methods
 2017-06-01 13:18:16 -07:00
Chris Hoffman
ed9ff085c4 Adding auth/aws-ec2 redirect to new docs location 2017-06-01 11:18:19 -04:00
Jeff Mitchell
c6cc5f2703 Add govendor to bootstrap 2017-06-01 10:18:48 -04:00
Matthew Irish
fa81584e7a changelog ++ 2017-05-31 13:41:34 -05:00
Vishal Nayak
5a7966810f doc: leases are generated only for dynamic secrets (#2772) 
* doc: leases are generated only for dynamic secrets

* Address review feedback
 2017-05-31 09:47:17 -04:00
Jeff Mitchell
82ff1bd4df Bump Go version in cross Dockerfile 2017-05-30 14:33:56 -04:00
Jeff Mitchell
198a78c8d3 Add grpc keepalives as a fallback option for our heartbeating 2017-05-26 13:32:13 -04:00
Vishal Nayak
156d91321d Input checks for policy rules (#2771) 
* Input checks for policy rules

* Address review feedback
 2017-05-26 10:48:41 -04:00
vishalnayak
25f5731913 changelog++ 2017-05-26 08:40:22 -04:00
Andrew
a6153bfbac Improve EC2 describe instances performance (#2766) 
Query the EC2 API for the instance ID rather than filter the results of
all instances.
 2017-05-26 08:38:01 -04:00
Jeff Mitchell
20eadd350b Have step-down request forward. 
Unlike seal, this command has no meaning other than on the active node,
so when issuing it the expected behavior would be for whichever node is
currently active to step down.
 2017-05-25 11:57:59 -04:00
vishalnayak
cb05f85280 changelog++ 2017-05-25 11:00:20 -04:00
Vishal Nayak
6a73552a88 Cert verification for non-CA certs (#2761) 
* Cert verification for non-CA certs

* Added test case to ensure login fails with expired non-CA cert

* Address review feedback
 2017-05-25 10:49:09 -04:00
Jeff Mitchell
1fc803ab2c Fix tests 2017-05-25 09:00:49 -04:00
Jeff Mitchell
116445ceb3 Heartbeat immediately upon connection 2017-05-24 21:45:51 -04:00
Jeff Mitchell
1265e6d7e3 Finish dep update 2017-05-24 21:16:17 -04:00
Jeff Mitchell
108b94f213 Rename peer cluster cache 2017-05-24 21:10:32 -04:00
Jeff Mitchell
166112ac3b Bump grpc after they fixed their panic 2017-05-24 21:07:45 -04:00
Jeff Mitchell
cfd739d783 Add peer cluster address cache 2017-05-24 20:51:53 -04:00
Jeff Mitchell
43ba51d6ad Add heartbeating and cluster address sharing to request forwarding (#2762) 2017-05-24 15:06:56 -04:00
Jeff Mitchell
617b8f8d82 Fix brokenness from Consul API updates 2017-05-24 11:10:59 -04:00
Jeff Mitchell
6c8c42b990 Revert grpc back a version (they introduced a panic) and clean up a bunch of old request forwarding stuff 2017-05-24 10:38:48 -04:00
Jeff Mitchell
c4377e1ce5 Revert azure vendor updates 2017-05-24 10:12:06 -04:00
Jeff Mitchell
d468da79e0 Bump deps 2017-05-24 09:40:58 -04:00
Jeff Mitchell
0828b565c3 Remove non-gRPC request forwarding 2017-05-24 09:34:59 -04:00
Jeff Mitchell
733f01752d Bump version to 0.7.3-dev 2017-05-23 20:42:13 -04:00
Jeff Mitchell
bca5239602 changelog++ 2017-05-23 20:41:40 -04:00
Jeff Mitchell
6164690818 Use auth-saved cert name during renewals to avoid a panic. (#2755) 2017-05-23 20:41:01 -04:00
Jeff Mitchell
dd26071875 Delay salt initialization for audit backends 2017-05-23 20:36:20 -04:00
Jeff Mitchell
41d4c69b54 Update some path-help in datakey 2017-05-23 10:04:32 -04:00
Vishal Nayak
cdffc50fac doc: PKI API table of contents (#2756) 
* Add a table of contents for api/secret/pki

* Fix the read certificate link
 2017-05-23 09:19:47 -04:00
Ryon
c416c8ab95 Update news section with March 22 webinar video (#2663) 2017-05-22 20:19:52 -04:00
Michael Ansel
9c244ceb6f Ignore go-zookeeper lock children (#2724) 2017-05-22 13:23:28 -04:00
Jeff Mitchell
d6344e78ca Remove comment about a non-existent validation section 
Fixes #2524
 2017-05-22 12:37:51 -04:00
vishalnayak
97772c712c changelog++ 2017-05-21 20:17:29 -04:00
Vishal Nayak
5d9277b2fb Added host key call back for ssh config (#2752) 2017-05-21 20:16:13 -04:00
vishalnayak
d2aa8c1f12 doc: Fix the sample input value for cache_size 2017-05-19 12:32:44 -04:00
emily
38ffde5a9d add gofmt checks to Vault and format existing code (#2745) 2017-05-19 08:34:17 -04:00
sprohaska
3ba9486ba9 logical/aws: Fix typo in warning message (#2747) 
Signed-off-by: Steffen Prohaska <prohaska@zib.de>
 2017-05-19 06:20:54 -04:00