scottk/vault
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/vault.git synced 2025-12-17 19:07:17 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add new SSH field

Browse Source
This commit is contained in:
Seth Vargo
2017-03-16 09:48:45 -07:00
parent c902aa4f98
commit 181cd198e8
1 changed files with 6 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
website/source/docs/http/secret/ssh/index.html.md
View File

@@ -190,6 +190,11 @@ This endpoint creates or updates a named role.
- `allow_subdomains` `(bool: false)` Specifies if host certificates that are - `allow_subdomains` `(bool: false)` Specifies if host certificates that are
requested are allowed to use subdomains of those listed in "allowed_users". requested are allowed to use subdomains of those listed in "allowed_users".
- `allow_user_key_ids` `(bool: false)` Specifies if users can override the key
ID for a signed certificate with the "key_id" field. When false, the key ID
will always be the token display name. The key ID is logged by the SSH server
and can be useful for auditing.
### Sample Payload ### Sample Payload
```json ```json
@@ -262,6 +267,7 @@ For a CA role:
"allow_bare_domains": false, "allow_bare_domains": false,
"allow_host_certificates": true, "allow_host_certificates": true,
"allow_subdomains": false, "allow_subdomains": false,
"allow_user_key_ids": false,
"allow_user_certificates": true, "allow_user_certificates": true,
"allowed_critical_options": "", "allowed_critical_options": "",
"allowed_extensions": "", "allowed_extensions": "",