mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-29 02:21:08 +02:00
Code Issues Projects Releases Wiki Activity
9,692 Commits 2,838 Branches 446 Tags
Commit Graph

9692 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mike Okner
6f84f7ffd0 Adding allow_user_key_ids field to SSH role config (#2494) 
Adding a boolean field that determines whether users will be allowed to
set the ID of the signed SSH key or whether it will always be the token
display name.  Preventing users from changing the ID and always using
the token name is useful for auditing who actually used a key to access
a remote host since sshd logs key IDs.
 2017-03-16 08:45:11 -04:00
Jeff Mitchell
02921e8729 Fix layout for replication 2017-03-16 06:50:33 -04:00
Brian Kassouf
5b05f62fa3 Work on TLS communication over plugins 2017-03-15 17:14:48 -07:00
Jeff Mitchell
db814cee9e changelog++ 2017-03-15 14:39:05 -04:00
Jeff Mitchell
5252de6c2b Bump test timeout 2017-03-15 14:38:34 -04:00
Jeff Mitchell
688104e69a Allow roles to specify whether CSR SANs should be used instead of (#2489) 
request values. Fix up some documentation.

Fixes #2451
Fixes #2488
 2017-03-15 14:38:18 -04:00
Andy Manoske
38d70b7eb7 Vault_Enterprise_WWW (#2327) 2017-03-15 14:31:14 -04:00
Jeff Mitchell
b6f6081e56 Add upgrade to 0.7 page 2017-03-15 12:34:11 -04:00
Jeff Mitchell
141386ca43 changelog++ 2017-03-15 11:54:56 -04:00
Jeff Mitchell
799000be20 Set CA chain when intermediate does not have an authority key ID. 
This is essentially an approved review of the code provided in #2465.

Fixes #2465
 2017-03-15 11:52:02 -04:00
captainill
a9237c6eb3 Merge branch 'master' of github.com:hashicorp/vault 2017-03-14 14:12:28 -07:00
captainill
d871cd3393 remove unused _meta partial. merge 2017-03-14 14:12:17 -07:00
Jeff Mitchell
63e66d09f4 Fix error message grammar 2017-03-14 17:10:43 -04:00
Brian Kassouf
a6ae4bd356 wrap plugin database type with metrics middleware 2017-03-14 13:12:47 -07:00
Brian Kassouf
143166b1ba Add a metrics middleware 2017-03-14 13:11:28 -07:00
vishalnayak
00aaa2d6e2 changelog++ 2017-03-14 10:24:17 -04:00
Stanislav Grozev
e9086bd85f Remove superfluous argument from SSH CA docs 2017-03-14 10:21:48 -04:00
Stanislav Grozev
70b30b40d4 Reads on unconfigured SSH CA public key return 400 2017-03-14 10:21:48 -04:00
Stanislav Grozev
5f3397bff5 Reads on ssh/config/ca return the public keys 
If configured/generated.
 2017-03-14 10:21:48 -04:00
Stanislav Grozev
d22796c644 If generating an SSH CA signing key - return the public part 
So that the user can actually use the SSH CA, by adding the public key
to their respective sshd_config/authorized_keys, etc.
 2017-03-14 10:21:48 -04:00
Jeff Mitchell
9ebf2c4b61 Clarify cluster_addr and cluster_address 2017-03-14 10:17:58 -04:00
Jeff Mitchell
81fc5fd35d Minor doc updates 2017-03-14 10:11:47 -04:00
Brian Kassouf
c111b02568 Add a way to initalize plugins and builtin databases the same way. 2017-03-13 14:39:55 -07:00
Vishal Nayak
6bdba07846 docs: clarify 'storage' and 'ha_storage' requirements (#2471) 2017-03-11 09:43:14 -05:00
Brian Kassouf
a0d207e254 Add checksum attribute 2017-03-10 14:10:42 -08:00
vishalnayak
cdeedf3cf6 changelog++ 2017-03-10 07:32:41 -05:00
pkrolikowski
ee177d85f8 Pass user/pass for HTTP Basic Authentication in URL parameters (#2469) 2017-03-10 07:19:23 -05:00
Brian Kassouf
72a878b180 Rename reset to close 2017-03-09 22:35:45 -08:00
Brian Kassouf
b63147b7c2 Add special path to enforce root on plugin configuration 2017-03-09 21:31:29 -08:00
Brian Kassouf
3766ab14e5 Add plugin file 2017-03-09 17:43:58 -08:00
Brian Kassouf
d4ea6c1768 Add plugin features 2017-03-09 17:43:37 -08:00
Jeff Mitchell
ef94004ad7 Have Consul's transaction handler use the permit pool 2017-03-09 12:59:42 -05:00
Vishal Nayak
9af1ca3d2c doc: ssh allowed_users update (#2462) 
* doc: ssh allowed_users update

* added some more context in default_user field
 2017-03-09 10:34:55 -05:00
vishalnayak
4731754077 doc: ssh markdown alignments 2017-03-08 21:58:12 -05:00
Jack Pearkes
68d11aa406 Merge pull request #2461 from jasoncostello/website-add-meganav 
Website add meganav
 2017-03-08 17:38:50 -08:00
Jason Costello
1b827b164b remove offset from footer 2017-03-08 17:36:59 -08:00
Jason Costello
3de2057544 Re apply offset change after rebase 2017-03-08 17:34:57 -08:00
Jack Pearkes
23ae3c2c55 website: add squashed mega-nav work 2017-03-08 17:27:31 -08:00
vishalnayak
32fd117749 Fix typo 2017-03-08 20:05:23 -05:00
vishalnayak
3bd667a931 Fix typo 2017-03-08 17:49:39 -05:00
Brian Kassouf
00359cdea4 Update secrets fields 2017-03-08 14:46:53 -08:00
vishalnayak
478b65c5a5 changelog++ 2017-03-08 17:46:07 -05:00
Vishal Nayak
3026b00da6 Audit: Add token's use count to audit response (#2437) 
* audit: Added token_num_uses to audit response

* Fixed jsonx tests

* Revert logical auth to NumUses instead of TokenNumUses

* s/TokenNumUses/NumUses

* Audit: Add num uses to audit requests as well

* Added RemainingUses to distinguish NumUses in audit requests
 2017-03-08 17:36:50 -05:00
Vishal Nayak
a4e41f6568 SSH CA enhancements (#2442) 
* Use constants for storage paths

* Upgrade path for public key storage

* Fix calculateValidPrincipals, upgrade ca_private_key, and other changes

* Remove a print statement

* Added tests for upgrade case

* Make exporting consistent in creation bundle

* unexporting and constants

* Move keys into a struct instead of plain string

* minor changes
 2017-03-08 17:36:21 -05:00
Seth Vargo
d38a3ba861 Move upgrade into guides (#2460) 
* Move upgrades to guides

* Make root token copy-pastable
 2017-03-08 17:33:58 -05:00
Seth Vargo
a131880fa2
Use htmlcompat in middleman-hashicorp 2017-03-08 14:14:52 -08:00
Seth Vargo
602aebf989
Update license 2017-03-08 11:38:38 -08:00
Seth Vargo
9aedb659a7
Update license 2017-03-08 11:36:25 -08:00
Seth Vargo
80d0f26a72
Delete config.ru 2017-03-08 11:28:43 -08:00
Seth Vargo
e1fe5cc910
Update favicons, container, turbolinks 2017-03-08 11:07:20 -08:00