mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-09-01 20:11:09 +02:00
Code Issues Projects Releases Wiki Activity
6,077 Commits 2,840 Branches 446 Tags
Commit Graph

1362 Commits

Author SHA1 Message Date
Cameron Stokes
97f23fe941 [docs] production hardening typo 2017-06-30 15:18:17 -07:00
Seth Vargo
49fe772e0c Add rekeying guide & move guides to top-level (#2935) 2017-06-29 14:43:43 +01:00
Brian Nuszkowski
5bc4dc7540 Add the option to specify a specific key id format that is generated … (#2888) 2017-06-29 04:05:06 +01:00
Brian Shumate
4a0183ab4c Docs: Expand Telemetry documentation (#2860) 2017-06-29 04:02:48 +01:00
Brian Boerst
0ebb2491b5 Typo fix in vault enterprise/replication docs. (#2932) 2017-06-29 04:01:32 +01:00
Seth Vargo
49f508b469 Merge pull request #2914 from hashicorp/sethvargo/ec2authimage 
Add diagram for EC2 Auth flow
 2017-06-28 07:31:37 +08:00
Seth Vargo
764b615ab1
Clarify Vault server 2017-06-27 22:38:16 +08:00
Seth Vargo
2d84ca0e11
Re-org and move text around in list instead 2017-06-27 22:38:16 +08:00
Seth Vargo
5119e31e68
Capitalize C 2017-06-27 22:38:16 +08:00
Seth Vargo
6af372f77b
Add diagram for EC2 Auth flow 2017-06-27 22:38:16 +08:00
Armon Dadgar
67f55d45f0 adding link to security model 2017-06-26 17:43:04 -07:00
Armon Dadgar
be219f10e6 website: Add more hardening tips 2017-06-26 14:00:36 -07:00
TheCodeAssassin
8b85fc5cc2 Small typo fix (#2921) 2017-06-26 10:08:18 -04:00
Cameron Stokes
aa0db53f0d [docs]: Fix typo in hardening guide. 2017-06-22 22:20:17 -07:00
Armon Dadgar
3dbe7e5cd9 Merge pull request #2898 from hashicorp/docs-prod-hard 
website: adding production hardening guide
 2017-06-22 15:05:35 -07:00
Saj Goonatilleke
910a359909 Fix a typo in the telemetry documentation (#2910) 2017-06-22 20:12:28 +01:00
Armon Dadgar
b57a656ff6 Make recommendation vs requirement more clear 2017-06-22 11:02:18 -07:00
Armon Dadgar
72971198f4 Copy changes 2017-06-21 09:55:00 -07:00
Armon Dadgar
fa40f022a8 website copy updates 2017-06-20 21:21:04 -07:00
Armon Dadgar
629cc49ae9 website: adding production hardening guide 2017-06-20 17:44:54 -07:00
Jeff Mitchell
d0d3b7c0ec More cleanup 
Ping #2894
 2017-06-20 10:46:24 -04:00
Jeff Mitchell
058b96c0cd Clarify/fix some configuration info. 
Fixes #2894
 2017-06-20 10:12:59 -04:00
Jeff Mitchell
29ef62ecfb Add ACL info to Consul configuration page 2017-06-19 19:39:52 -04:00
Eugene Bekker
573fe37634 Add Zyborg.Vault PowerShell module to libs list (#2869) 2017-06-17 11:24:13 -04:00
Raphael Randschau
90d1a1ca7a CouchDB physical backend (#2880) 2017-06-17 11:22:10 -04:00
Jeff Mitchell
27e584c2ce Fix up CORS. 
Ref #2021
 2017-06-17 01:26:25 -04:00
Aaron Salvo
362227c632 Cors headers (#2021) 2017-06-17 00:04:55 -04:00
Jeff Mitchell
f5de93f1bf Add DogStatsD metrics output. (#2883) 
Fixes #2490
 2017-06-16 23:51:46 -04:00
Jeff Mitchell
aab867acf2 Add some warnings to the upgrade guide 2017-06-16 13:23:22 -04:00
vishalnayak
d10a36cb61 doc: add radius to MFA backend docs 2017-06-15 18:31:53 -04:00
Jeff Mitchell
d68f3543b8 Fix typo in transit docs 2017-06-14 11:49:12 -04:00
Seth Vargo
76b11dfd91 Add callouts for deprecations and beta (#2854) 
This makes the sidebar emphasize the deprecated database backends more.
 2017-06-14 16:11:16 +01:00
Nathan Valentine
f155992ff5 Clean up extra word in docs (#2847) 2017-06-12 13:08:54 -04:00
Jonathan Duncan
19ff383065 Adding some visual separation for parameters (#2841) 
Currently on the Documentation pages when parameters are listed, there is no visual separation between the parameter names, flags, and descriptions. This should make it a bit easier for humans to read.
 2017-06-12 06:59:38 -04:00
Jeff Mitchell
703874ed95 Add note about lowercasing usernames to userpass docs 2017-06-08 09:41:01 -04:00
Cameron Stokes
6186fabcaf [docs] Add notes about deprecated database backends. (#2835) 2017-06-07 23:45:01 -07:00
Cameron Stokes
9fa289e9f6 [docs] Fix Mongodb link in sidebar. 2017-06-07 20:36:36 -07:00
Brian Kassouf
7951a15d65 update database interface in the docs 2017-06-07 11:20:13 -07:00
Jeff Mitchell
35f92f13f9 Add new transit features to documentation 2017-06-07 13:00:14 -04:00
Joel Thompson
d858511fdf Resolve AWS IAM unique IDs (#2814) 2017-06-07 10:27:11 -04:00
Dan Brown
25fd17a9c1 Docs typo fixes (#2830) 
* Fix passing payload.json file to curl

* Correct API endpoint
 2017-06-07 10:02:58 -04:00
Joel Thompson
ee55e36af6 Check if there's a bound iam arn when renewing (#2819) 
Previously, the renew method would ALWAYS check to ensure the
authenticated IAM principal ARN matched the bound ARN.  However, there
is a valid use case in which no bound_iam_principal_arn is specified and
all bindings are done through inferencing. When a role is configured
like this, clients won't be able to renew their token because of the
check.

This now checks to ensure that the bound_iam_principal_arn is not empty
before requriing that it match the originally authenticated client.

Fixes #2781
 2017-06-06 22:35:12 -04:00
Brian Kassouf
abc900157b Use the role name in the db username (#2812) 2017-06-06 09:49:49 -04:00
sam boyer
00383246a7 Minor typos & wordsmithing for clarity (#2807) 2017-06-05 09:32:09 -07:00
Jeff Mitchell
c18589f590 Add plugin_directory to configuration page (#2801) 
Fixes #2795
 2017-06-03 08:11:03 -04:00
Igor Katson
32c7efe7ca Add max_parallel parameter to MySQL backend. (#2760) 
* Add max_parallel parameter to MySQL backend.

This limits the number of concurrent connections, so that vault does not die
suddenly from "Too many connections".

This can happen when e.g. vault starts up, and tries to load all the
existing leases in parallel. At the time of writing this, the value
ExpirationRestoreWorkerCount in vault/helper/consts/const.go is set to
64, meaning that if there are enough leases in the vault's DB, it will
generate AT LEAST 64 concurrent connections to MySQL when loading the
data during start-up. On certain configurations, e.g. smaller AWS
RDS/Aurora instances, this will cause Vault to fail startup.

* Fix a typo in mysql storage readme
 2017-06-01 15:20:32 -07:00
Vishal Nayak
5a7966810f doc: leases are generated only for dynamic secrets (#2772) 
* doc: leases are generated only for dynamic secrets

* Address review feedback
 2017-05-31 09:47:17 -04:00
Vishal Nayak
cdffc50fac doc: PKI API table of contents (#2756) 
* Add a table of contents for api/secret/pki

* Fix the read certificate link
 2017-05-23 09:19:47 -04:00
Ryon
c416c8ab95 Update news section with March 22 webinar video (#2663) 2017-05-22 20:19:52 -04:00
Jeff Mitchell
d6344e78ca Remove comment about a non-existent validation section 
Fixes #2524
 2017-05-22 12:37:51 -04:00