mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-22 23:21:08 +02:00
Code Issues Projects Releases Wiki Activity
20,459 Commits 2,843 Branches 445 Tags
Commit Graph

167 Commits

Author SHA1 Message Date
Yoko Hyakuna
69b1a615fb
[Docs] Add recommended patterns (#28843) 
* Content conversion from tutorial to doc - seal

* Add AppRole best practices

* Clean up the reference list

* Updated the title

* match the titles

* Add namespaces best practices

* Update the table style
 2024-11-07 13:17:43 -08:00
Jonathan Frappier
3349dc745d
Add SAML example to docs (#27121) 
* Add SAML example

* Docs/add saml edits (#28732)

* editing suggestions (start)

* save edits

* Update website/content/docs/auth/saml/adfs.mdx

* Update website/content/docs/auth/saml/index.mdx

* Update website/content/docs/auth/saml/adfs.mdx

* Update website/content/docs/auth/saml/troubleshoot-adfs/index.mdx

---------

Co-authored-by: Jonathan Frappier <92055993+jonathanfrappier@users.noreply.github.com>

* Fix content errors

* missed one >_<

---------

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2024-10-24 11:47:33 -07:00
ram-parameswaran
518027ba83
Update Azure SDK logger variable in docs (#28622) 
* Update azure.mdx

Update Azure secrets engine docs to use AZURE_SDK_GO_LOGGING for Azure debug

* Update azure.mdx

Update Azure Auth engine docs to use AZURE_SDK_GO_LOGGING for Azure debug
 2024-10-08 16:55:55 -07:00
Scott Miller
f52b984821
Mention the cert forwarding header in cert auth docs (#28377) 
* Mention the cert forwarding header in cert auth docs

* Move to own section and fix link
 2024-09-12 09:14:22 -05:00
djschnei21
4c0cc27f6c
remove recommendations (#28063) 
removing these recommendations because they are not inline with conventional wisdom or our HVDs.  For example, AppRole should not be leverage when a platform native identity source is available (e.g. AWS, Azure, GCP, K8s, Nomad, etc...)
 2024-08-13 10:14:21 -07:00
Yoko Hyakuna
7509ef169b
[Docs] Add cross referencing link to AppRole usage best practices (#28038) 
* Add cross referencing link to AppRole usage best practices

* Minor edits to flow the sentence better
 2024-08-09 08:27:49 -07:00
Roman O'Brien
3dad93eb38
update(kubernetes.mdx): k8s-tokenreview URL (#27993) 
Co-authored-by: akshya96 <87045294+akshya96@users.noreply.github.com>
 2024-08-06 16:30:10 -07:00
VBouiller
9b3a73daba
Update userpass CLI doc for custom path flag (#27968) 
It's not clear from the get go how to use the userpass auth method with a custom path.

Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
 2024-08-05 17:42:23 +00:00
aphorise
37dbe7bf38
Docs: Approle removed incorrect token_num_uses that's incomplete with batch (#27909) 
Corrected Docs at: [vault/docs/auth/approle **Via the CLI**](https://developer.hashicorp.com/vault/docs/auth/approle#via-the-cli-1) which results in the error message below on versions near to Vault 1.17.x.

```
Error writing data to auth/approle/role/my-role: Error making API request.

URL: PUT https://.../v1/auth/approle/role/my-role
Code: 400. Errors:

* 'token_type' cannot be 'batch' or 'default_batch' when set to generate tokens with limited use count
```

Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
 2024-08-02 19:23:33 +00:00
John-Michael Faircloth
c23ebb173f
docs: add note on microsoft's saml auth bound attributes syntax (#27938) 2024-08-01 11:16:00 -04:00
John-Michael Faircloth
ab08d623e8
docs: add note to jwt auth for bound aud changes (#27530) 2024-06-19 08:35:22 -05:00
John-Michael Faircloth
76ebf0b41b
docs: correct auth jwt role requirements (#27384) 
* docs: correct auth jwt role requirements

* remove upgrade guide to be added in separate PR

* Revert "remove upgrade guide to be added in separate PR"

This reverts commit 6554d3ff63623a329b0d93f7143d95cd3f19b3e6.

* update required details for bound audience

* Apply suggestions from code review

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* fix formatting to match the existing format of the file

* add 1.16 known issues

* add 1.17 upgrade guide note

---------

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2024-06-12 13:46:40 -05:00
vinay-gopalan
5acc4331ea
Add WIF documentation for Azure Auth and Secrets engines (#27185) 2024-06-03 13:17:13 -07:00
vinay-gopalan
01ccf580d8
Add WIF documentation for GCP Auth and Secrets engines (#27170) 
Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2024-06-03 13:16:56 -07:00
Milena Zlaticanin
309d832462
Add AWS Auth WIF docs (#27054) 
* add aws auth wif docs

* update docs

* update docs
 2024-05-23 12:58:08 -07:00
Yoko Hyakuna
2becdceab0
Replace 'HCP Vault' with 'HCP Vault Dedicated' (#26457) 
* Replace 'HCP Vault' with 'HCP Vault Dedicated'

* Replace 'HCP Vault' with 'HCP Vault Dedicated' where applicable

* Replace 'Terraform Cloud' with 'HCP Terraform'

* Minor format fixes

* Update the side-nav title to 'HCP Terraform'

* Undo changes to Terraform Cloud secrets engine
 2024-04-22 08:44:13 -04:00
JMGoldsmith
7b4f6409c6
[DOCS] Updating approle docs and token partial to include batch token prefer… (#26490) 
* updating approle docs and token partial to include batch token preference

* Update website/content/docs/auth/approle.mdx

Co-authored-by: Brian Shumate <brianshumate@users.noreply.github.com>

* Update website/content/partials/tokenstorefields.mdx

Co-authored-by: Brian Shumate <brianshumate@users.noreply.github.com>

* Update website/content/docs/auth/approle.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

---------

Co-authored-by: Brian Shumate <brianshumate@users.noreply.github.com>
Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2024-04-19 12:32:12 -04:00
Chris Capurso
e1c3f4ac17
clarfiy login MFA not supported for token auth (#26411) 2024-04-15 11:09:59 -04:00
Thy Ton
df477f6404
docs make kubernetes_ca_cert optional on kubernetes auth (#25963) 
---------

Co-authored-by: Ben Ash <32777270+benashz@users.noreply.github.com>
Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2024-03-27 15:45:43 -07:00
NikolaiMagicnet
c9dafc1971
Fixed the URL (#26178) 
Co-authored-by: Chris Capurso <1036769+ccapurso@users.noreply.github.com>
 2024-03-27 12:10:19 -04:00
Karuppiah Natarajan
30667916b7
fix link to specifying ttl and audience section of kubernetes oidc provider (#26097) 2024-03-22 12:21:17 -04:00
Thomas Decaux
29dec5dfc4
fix azuread doc user_claim must be sub (#25896) 
Fix error "claim "email" not found in token"

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2024-03-13 18:09:54 +00:00
Pascal Reeb
646034a97d
fix(oidc/azuread): set correct oidc_scopes (#25477) 
Co-authored-by: Peter Wilson <peter.wilson@hashicorp.com>
 2024-03-13 18:00:22 +00:00
Peter Wilson
a311735761
Support pre-hashed passwords with userpass backend (#25862) 
* allows use of pre-hashed passwords with userpass backend

* Remove unneeded error

* Single error check after switch

* use param name quoted in error message

* updated test for quoted param in error

* white space fixes for markdown doc

* More whitespace fixes

* added changelog

* Password/pre-hashed password are only required on 'create' operation

* docs indentation

* Update website/content/docs/auth/userpass.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Updated docs

* Check length of hash too

* Update builtin/credential/userpass/path_user_password_test.go

:)

Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>

---------

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
 2024-03-12 18:16:11 +00:00
Thy Ton
50aa6eea70
docs: add templated policies workflow example to kubernetes auth (#25694) 
---------

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
 2024-03-01 15:11:14 -08:00
Austin Gebauer
6d4f5df69c
auth/jwt: adds documentation for multi-jwks config parameter (#25503) 
* auth/jwt: adds documentation for multi-jwks config parameter

* updates bound_issuer parameter

* fix link
 2024-02-20 08:49:53 -08:00
Sokren
43e07c633d
Docs/scc edits - adfs docs (#24633) 
* add adfs link

* add adfs and update index

add the adfs link in the index.mdx
add the file adfs.mdx

* Update docs-nav-data.json

Add the link to ADFS documentation

* add adfs-oidc-ldapgroupoption.png

image for the documentation adfs.mdx

* Update docs-nav-data.json

Updated from the last version of the file and adding adfs link

* suggested edits

* Update the file adfs.mdx

* Update adfs.mdx

Change auth/adfs/config to auth/<YOUR_OIDC_MOUNT_PATH>/config

* Update website/content/docs/auth/jwt/oidc-providers/adfs.mdx

* Corrected typo adfs.mdx

We had 2x step3 so I changed to have step 3 and step 4

---------

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
 2024-01-19 09:43:56 +00:00
Stefan Zhelyazkov
f4978b3efd
Updating Vault docs for JWT support of numeric bound_claims (#24921) 
* Add a note that the role name is available as role in entity alias metadata

* Update JWT docs for numeric bound_claims
 2024-01-18 13:57:30 +00:00
Yoko Hyakuna
af3419940c
[DOCS] Fix page heading (#24835) 
* Fix the page header

* Fix the grammar pinted out by PR-1952
 2024-01-12 08:03:46 -08:00
Kyle Schochenmaier
205680c077
add docs for configuring jwt validation pubkeys for vso (#24599) 
* add docs for configuring jwt validation pubkeys for vso and update jwt auth docs to mention key rotation


Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2024-01-05 16:55:48 -06:00
Austin Gebauer
082d2a6412
docs: fix code snippet copy for SAML auth method (#24619) 2023-12-21 08:48:07 -08:00
brendanelmes
10f7011ca3
docs: fixes (#24094) (#24115) 
Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
 2023-12-08 14:19:57 -08:00
Austin Gebauer
ba386a3389
docs: adds domain to OIDC Google Workspace integration (#24433) 2023-12-08 08:23:01 -08:00
Austin Gebauer
e3617218df
auth/saml: adds documentation (#23183) 
* auth/saml: adds documentation

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: John-Michael Faircloth <fairclothjm@users.noreply.github.com>

* use sentence case for titles

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Rémi Lapeyre <remi.lapeyre@lenstra.fr>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Rémi Lapeyre <remi.lapeyre@lenstra.fr>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Rémi Lapeyre <remi.lapeyre@lenstra.fr>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Rémi Lapeyre <remi.lapeyre@lenstra.fr>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Rémi Lapeyre <remi.lapeyre@lenstra.fr>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Rémi Lapeyre <remi.lapeyre@lenstra.fr>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* fixup technical detail on bound_subjects

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* fixup relay state

* Update website/content/api-docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* Update website/content/docs/auth/saml.mdx

Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

* updates wording for bound_attributes

* updates bound_attributes_type

* updates groups_attribute

* lowercase saml entities, add note to unauthenticated APIs

* updates token api description

* adds section for replication configuration

* adds section for namespace config of acs

* use tabs for authentication section

* change word

---------

Co-authored-by: John-Michael Faircloth <fairclothjm@users.noreply.github.com>
Co-authored-by: Rémi Lapeyre <remi.lapeyre@lenstra.fr>
Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2023-09-27 15:34:43 +09:00
Jonathan Frappier
f0fb07b0b2
Add section about user lockout (#23068) 2023-09-13 18:37:38 -04:00
hskiba
6e41be5e04
Update azuread.mdx link to "Use claims to reliably identify a user" (#22491) 
Co-authored-by: Violet Hynes <violet.hynes@hashicorp.com>
 2023-08-22 16:52:32 +00:00
hayden
c6f2845f6b
docs: Add more keycloal oidc URL, URIs information (#17314) 2023-08-17 16:00:21 -07:00
Ben Moskovitz
cbc9b66620
Update JWT docs to not recommend -path for vault write (#18305) 
* Update JWT docs to not recommend `-path` for `vault write

`-path` is valid for `vault login`, but not for `vault write` leading to confusion when trying to log in to using the JWT backend using the CLI.

* Update website/content/docs/auth/jwt/index.mdx

---------

Co-authored-by: tjperry07 <tjperry07@users.noreply.github.com>
Co-authored-by: Violet Hynes <violet.hynes@hashicorp.com>
 2023-08-16 11:54:17 -04:00
Yannis Rachdi
ecd9ed21b8
docs: add notice regarding GitHub SSO-enabled orgnization (#16460) 
Co-authored-by: Violet Hynes <violet.hynes@hashicorp.com>
 2023-08-16 08:52:39 -04:00
sylvia-petsanova
daf174b89d
Add clarification about TLS configuration options needed to enable TLS cert authentication. (#22358) 
Clarification added by a customer's request, as tls_disable_client_certs being set to false was found to also be necessary for TLS cert authentication.
 2023-08-16 08:51:45 -04:00
Sarah Chavis
91face4eff
convert OSS language to "community" (#22343) 2023-08-15 13:31:52 -04:00
Sarah Chavis
6ce0699301
add note that assumed roles are not supported (#22324) 2023-08-15 13:19:02 -04:00
Tanmay Pereira Naik
2269369229
docs: Update outdated vaultproject.io/docs/ links (#22162) 
Signed-off-by: Tanmay Pereira Naik <59953366+tanmay-pnaik@users.noreply.github.com>
Co-authored-by: Brian Shumate <brianshumate@users.noreply.github.com>
 2023-08-15 12:59:34 -04:00
Torbjørn Fjørtoft
20e2e4b308
Docs for Application Default Credentials, links to non-dwdoa setup (#21453) 2023-08-07 16:14:55 -07:00
Raymond Ho
0d0cda43d5
clarify docs in ldap/auth for userfilter (#22210) 2023-08-07 13:13:52 -07:00
Anton Averchenkov
f4f0412b6a
[docs] Convert titles to sentense case (#21426) 
* Convert documentation titles to sentense case

* Docker, Google, Foundry, Cloud proper case
 2023-06-30 19:22:07 -04:00
Doug Knight
5d13092b03
docs: clarify external auth method considerations (#21301) 
Signed-off-by: Doug Knight <doug.knight@karmix.org>
Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
 2023-06-22 19:31:20 +00:00
Yoko Hyakuna
58b6cb1c42
[Docs] Add cross-links to related tutorials (#21405) 
* Add cross-links to related tutorials

* Add additional tutorial links
 2023-06-22 08:27:00 -07:00
Violet Hynes
d76424cb53
Miscellaneous docs cleanups (#21327) 2023-06-16 15:38:58 -04:00
Luis (LT) Carbonell
21b3262e9f
Correct Default for MaximumPageSize (#20453) 
* default max page size for config

* Add changelog

* update test int to *int

* add testing defaults

* update default to -1, i.e. dont paginate

* update test

* Add error message for invalid search

* Make 0 the default

* cleanup

* Add to known issues doc

* Update website/content/docs/upgrading/upgrade-to-1.13.x.mdx

* Update website/content/docs/upgrading/upgrade-to-1.11.x.mdx

Co-authored-by: Jason O'Donnell <2160810+jasonodonnell@users.noreply.github.com>

* Update website/content/docs/upgrading/upgrade-to-1.13.x.mdx

Co-authored-by: Jason O'Donnell <2160810+jasonodonnell@users.noreply.github.com>

* Update website/content/docs/upgrading/upgrade-to-1.12.x.mdx

Co-authored-by: Jason O'Donnell <2160810+jasonodonnell@users.noreply.github.com>

* Add workaround to docs

* Update changelog/20453.txt

Co-authored-by: Austin Gebauer <34121980+austingebauer@users.noreply.github.com>

---------

Co-authored-by: Jason O'Donnell <2160810+jasonodonnell@users.noreply.github.com>
Co-authored-by: Austin Gebauer <34121980+austingebauer@users.noreply.github.com>
 2023-05-17 20:56:53 +00:00