mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-13 01:57:03 +02:00
29551c0b1b
* Update aws auth docs with new semantics Moving away from implicitly globbed bound_iam_role_arn and bound_iam_instance_profile_arn variables to make them explicit * Refactor tests to reduce duplication auth/aws EC2 login tests had the same flow duplicated a few times, so refactoring to reduce duplication * Add tests for aws auth explicit wildcard constraints * Remove implicit prefix matching from AWS auth backend In the aws auth backend, bound_iam_role_arn and bound_iam_instance_profile_arn were ALWAYS prefix matched, and there was no way to opt out of this implicit prefix matching. This now makes the implicit prefix matching an explicit opt-in feature by requiring users to specify a * at the end of an ARN if they want the prefix matching. |
||
|---|---|---|
| .. | ||
| backend_test.go | ||
| backend.go | ||
| cli.go | ||
| client.go | ||
| path_config_certificate.go | ||
| path_config_client_test.go | ||
| path_config_client.go | ||
| path_config_sts.go | ||
| path_config_tidy_identity_whitelist.go | ||
| path_config_tidy_roletag_blacklist.go | ||
| path_identity_whitelist.go | ||
| path_login_test.go | ||
| path_login.go | ||
| path_role_tag.go | ||
| path_role_test.go | ||
| path_role.go | ||
| path_roletag_blacklist.go | ||
| path_tidy_identity_whitelist.go | ||
| path_tidy_roletag_blacklist.go | ||