* changes then onto tests
* fix wif test failures
* changelog
* clean up
* address pr comments
* only test one wif engine for relevant tests
* add back engine loop for tests that depend on type
* Content conversion from tutorial to doc - seal
* Add AppRole best practices
* Clean up the reference list
* Updated the title
* match the titles
* Add namespaces best practices
* Update the table style
* Pull versioned golang images in Zlint testsuite to avoid pulling with latest
- Leverage the versioned golang images which should be more static avoiding
issues we somtimes encounter pulling latest images from our docker mirror.
- We use the golang runtime version to avoid having to update this test
continuously.
* Fallback to latest if the version tag isn't a release tag
- The key update API would release the lock a little too early
after it persisted the update so the reference could be updated
when it was preparing the response to the caller across updates
and/or key rotations
- The storage updates were okay, just the response back to the caller
of the update might see a mixture of different updates
* first round, there shall be more
* fix secret test
* more clean up
* maybe last round of clean up?
* this is going to take a while
* all the things or more of them at least
* this is the song that never ends...
* ... it goes on and on my friend.
* clean up clean up everybody lets clean up
* rename mount helper to mountBackend
* clean up 🧹
* address pr comments
---------
Co-authored-by: claire bontempo <68122737+hellobontempo@users.noreply.github.com>
* upgrade ember-data 5.3.2, uninstall legacy compat, upgrade ember-cli, ember-source
* use query instead of findAll for auth methods, update tests
* set mutableId for kmip
* show generated private key data before transitioning to details
* update kv metadata test
* remove deprecated methods from path help service
* add changelog, update readme version matrix
* remove toggle template helper
Cache scopes allow other branches to inherit default branch scopes,
which means that release branches can restore a key from main. Instead,
we now include the vault version as part of the cache key to ensure
we don't include versions that are incompatible with our version.
Signed-off-by: Ryan Cragun <me@ryan.ec>
* Switch from an unbounded Map to an LRU, 429 when exceeding it's size, and repeat challenges to the same server rather than encrypting new ones
* Prune old challenges
* Remove from pending only if the answer is correct
* Add a unit test that validates 429s, delays, and eviction of old entries
* Switch to using a flat token bucket from x/time/rate
* remove from LRU on each challenge write
* Remove sleep, simplify unit test
* improve const names
* additional tests
* max answer size
* add locking to prevent multiple new challenges
* remove log line
---------
Co-authored-by: Scott G. Miller <smiller@hashicorp.com>
