mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-31 19:41:12 +02:00
Code Issues Projects Releases Wiki Activity
6,638 Commits 2,839 Branches 446 Tags
Commit Graph

1524 Commits

Author SHA1 Message Date
Vishal Nayak
d5ad857a86
Capabilities responds considering policies on entities and groups (#3522) 
* Capabilities endpoint will now return considering policies on entities and groups

* refactor the policy derivation into a separate function

* Docs: Update docs to reflect the change in capabilities endpoint
 2017-11-03 11:20:10 -04:00
Vishal Nayak
4d3b3bed08
docs: s/persona/alias (#3529) 2017-11-03 11:17:59 -04:00
Vishal Nayak
ced60dbc0c
Encrypt/Decrypt/Sign/Verify using RSA in Transit backend (#3489) 
* encrypt/decrypt/sign/verify RSA

* update path-help and doc

* Fix the bug which was breaking convergent encryption

* support both 2048 and 4096

* update doc to contain both 2048 and 4096

* Add test for encrypt, decrypt and rotate on RSA keys

* Support exporting RSA keys

* Add sign and verify test steps

* Remove 'RSA' from PEM header

* use the default salt length

* Add 'RSA' to PEM header since openssl is expecting that

* export rsa keys as signing-key as well

* Comment the reasoning behind the PEM headers

* remove comment

* update comment

* Parameterize hashing for RSA signing and verification

* Added test steps to check hash algo choice for RSA sign/verify

* fix test by using 'prehashed'
 2017-11-03 10:45:53 -04:00
Vishal Nayak
7ca73556e4
docs: Add config/ca delete operation (#3525) 2017-11-03 06:19:21 -04:00
Chris Hoffman
ed8cf070c9
Add ability to require parameters in ACLs (#3510) 2017-11-02 07:18:49 -04:00
Nathan Valentine
ad6b4df9a8 Should these names not reference Vault? (#3506) 
Since we are in the Vault docs, should these names not reference Vault instead of Nomad?
 2017-10-30 11:04:38 -05:00
Jeff Mitchell
bba371c7de Fix C&P in docs. 
Fixes #3454
 2017-10-27 16:43:26 -04:00
Vishal Nayak
30aab2aa2f aws-ec2: Avoid audit logging of custom nonces (#3381) 2017-10-27 11:23:15 -04:00
smeach
6157a89f1b Updated cli arg to reflect text description (#3487) 2017-10-27 09:44:56 -05:00
AJ Bourg
e26573cb78 Add a doc for the token helper (#3411) 
* Add token helper docs.

* Update it so the new token helpers page appears in the navigation.
 2017-10-27 09:42:33 -05:00
Christophe Tafani-Dereeper
f8e6f9ed70 Correct typos in the sys/raw documentation (#3484) 2017-10-24 10:33:57 -04:00
Chris Hoffman
49df3d67e5 copying general purpose tools from transit backend to /sys/tools (#3391) 2017-10-20 10:59:17 -04:00
Chris Hoffman
07ea7ba193 updating mssql docs (#3477) 2017-10-19 11:21:29 -04:00
Brian Shumate
9b9cc294aa Match plugin name from releases (#3453) 2017-10-19 11:10:42 -04:00
blazindragon
aafaf1cf87 Correct typo: DELET to DELETE (#3452) 2017-10-13 10:11:04 -04:00
Brian Kassouf
26a71da225 Add a note about the instant client libraries (#3434) 
* Add a note about the instant client libraries

* Update oracle.html.md
 2017-10-12 09:40:06 -04:00
Jeremy Voorhis
333bd83a3f Implement signing of pre-hashed data (#3448) 
Transit backend sign and verify endpoints now support algorithm=none
 2017-10-11 11:48:51 -04:00
Martins Sipenko
095017a364 Fix docs (#3449) 2017-10-11 11:29:26 -04:00
Brendan
6ecbad6c62 Update index.html.md (#3433) 
Fixed typo in json property used to create custom secret_id
 2017-10-11 09:25:43 -04:00
emily
ea412e52b7 add GCP APIs that need to be enabled to GCP auth docs, small doc fixes (#3446) 2017-10-11 09:18:32 -04:00
David Dixon
111369e336 Small typo corrections for policies doc (#3413) 2017-10-06 09:38:00 -04:00
Nicolas Corrarello
c99b741bed A few simple fixes for the Github API docs (#3432) 2017-10-06 06:13:47 -04:00
Daniel DeFisher
57b8871e58 upgrade ldap api docs to refrect 0.8.3 change to returned json of policies (#3421) 2017-10-04 15:40:28 -04:00
Jeff Mitchell
04e8d163ba Allow entering PKI URLs as arrays. (#3409) 
Fixes #3407
 2017-10-03 16:13:57 -04:00
Oluwafemi Sule
f76633c8bc fix spellings errors (#3400) 2017-09-29 11:52:42 -04:00
Alex Dadgar
b314c13882 Fix spelling errors (#3390) 2017-09-28 07:54:40 -04:00
Paulo Ribeiro
b8082675e8 Fix grammatical error (#3395) 
Also changed capitalization for consistency.
 2017-09-28 06:28:48 -04:00
Brian Kassouf
539cb262f1 Kubernetes Docs Update (#3386) 
* Update Kubnernetes Docs

* Add a note about alpha clusters on GKE

* Fix JSON formatting

* Update kubernetes.html.md

* Fix a few review comments
 2017-09-27 14:02:18 -07:00
Vishal Nayak
5d805a252e docs: Added certificate deletion operation API (#3385) 2017-09-26 20:28:52 -04:00
Jeff Mitchell
6faf8365e9 Add option to disable client certificate requesting. (#3373) 
Fixes #3372
 2017-09-25 14:41:46 -04:00
Dave Pedu
516cc8bd6b Spelling fix (#3351) 2017-09-19 15:25:39 -04:00
Brian Kassouf
4fb3f163ee Kubernetes auth (#3350) 
* Import the kubernetes credential backend

* Add kubernetes docs

* Escape * characters

* Revert "Import the kubernetes credential backend"

This reverts commit f12627a9427bcde7e73cea41dea19d0922f94789.

* Update the vendored directory
 2017-09-19 09:27:26 -05:00
Calvin Leung Huang
7e21bb3b5e Clarify backup data that is being stored (#3345) 2017-09-19 07:44:34 -05:00
emily
08c2e2ce44 Add GCE docs for GCP Auth Backend (#3341) 2017-09-19 07:44:05 -05:00
Bruno Miguel Custódio
14714f399a Fix a few quirks in the GCP auth backend's docs. (#3322) 2017-09-19 07:41:41 -05:00
Vishal Nayak
de7ac83df6 Add 'pid_file' config option (#3321) 
* add pid_file config option

* address review feedback

* address review comments
 2017-09-16 17:09:37 -04:00
Laura Uva
0f71b482d8 Updated https://www.vaultproject.io/api/system/replication-dr.html#generate-dr-secondary-token to be a POST rather than GET. This was reported by a customer and I confirmed that this should be a logical.UpdateOperation rather than ReadOperation (24f2b961fd/vault/replication_api.go (L121)). (#3342) 2017-09-15 16:19:16 -04:00
Chris Hoffman
010575cb60 Rename "generic" secret backend to "kv" (#3292) 2017-09-15 09:02:29 -04:00
Chris Hoffman
3aa68c0034 Adding support for base_url for Okta api (#3316) 
* Adding support for base_url for Okta api

* addressing feedback suggestions, bringing back optional group query

* updating docs

* cleaning up the login method

* clear out production flag if base_url is set

* docs updates

* docs updates
 2017-09-15 00:27:45 -04:00
Chris Hoffman
4a8c33cca3 Disable the sys/raw endpoint by default (#3329) 
* disable raw endpoint by default

* adding docs

* config option raw -> raw_storage_endpoint

* docs updates

* adding listing on raw endpoint

* reworking tests for enabled raw endpoints

* root protecting base raw endpoint
 2017-09-15 00:21:35 -04:00
Chris Hoffman
ca74cdbc23 update enterprise urls /docs/vault-enterprise -> /docs/enterprise (#3333) 2017-09-13 15:37:40 -04:00
Paul Pieralde
7cb3ff1fb8 Fixed docs to reflect correct HTTP method for /sys/config/auditing endpoing (#3331) 
Updated documentation to reflect "Read Single Audit Request Header" endpoint is GET-based.
 2017-09-13 11:59:27 -07:00
Jeff Mitchell
f970aea9f8 Change behavior of TTL in sign-intermediate (#3325) 
* Fix using wrong public key in sign-self-issued

* Change behavior of TTL in sign-intermediate

This allows signing CA certs with an expiration past the signer's
NotAfter.

It also change sign-self-issued to replace the Issuer, since it's
potentially RFC legal but stacks won't validate it.

Ref: https://groups.google.com/d/msg/vault-tool/giP69-n2o20/FfhRpW1vAQAJ
 2017-09-13 11:42:45 -04:00
Chris Hoffman
ef89549f11 remove token header from login samples (#3320) 2017-09-11 18:14:05 -04:00
Bruno Miguel Custódio
bfff8b4244 Fix navigation and prameters in the 'gcp' auth backend docs. (#3317) 2017-09-11 15:26:24 -04:00
Jose Diaz-Gonzalez
157f2a7741 fix: add missing comma to payload (#3308) 2017-09-11 12:03:43 -04:00
Dan Urson
e22d7074b4 Update AWS CloudHSM comparison. (#3311) 
* Update AWS CloudHSM comparison.

* Update hsm.html.md

* Update hsm.html.md
 2017-09-10 12:54:05 -04:00
Calvin Leung Huang
38be34423c Fix cassandra tests, explicitly set cluster port if provided (#3296) 
* Fix cassandra tests, explicitly set cluster port if provided

* Update cassandra.yml test-fixture

* Add port as part of the config option, fix tests

* Remove hostport splitting in cassandraConnectionProducer.createSession

* Include port in API docs
 2017-09-07 23:04:40 -04:00
Adam Duke
cc536c2cf4 fix typo in policies documentation (#3302) 2017-09-07 11:55:24 -04:00
Paul Pieralde
33579a84b4 Fix docs for Certificate authentication (#3301) 
Fix discrepencies in the documentation for TLS Certificate
authentication. The Delete CRL method has a misleading title and
description.
 2017-09-07 10:28:14 -04:00