scottk/vault
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/vault.git synced 2025-11-01 19:17:58 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add an option to allow cert-auth to return metadata about client cert that fails login (#29044)

Browse Source 
* Add an option to allow cert-auth to return metadata about client certs that fail login

* Add cl

* Update SPDX header for sdk/logical/response_test.go
This commit is contained in:
Steven Clark
2024-11-29 10:22:09 -05:00
committed by GitHub
parent e7d01654c2
commit 9bf3d115fc
9 changed files with 232 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
website/content/api-docs/auth/cert.mdx
View File

@@ -367,6 +367,9 @@ Configuration options for the method.
that this cache is used for all configured certificates.
- `role_cache_size` `(int: 200)` - The size of the role cache. Use `-1` to disable
role caching.
- `enable_metadata_on_failures` `(boolean: false)` - If set, metadata of the client
certificate such as common name, serial, subject key id and authority key id will
be returned on authentication failures and appear in auditing records.
### Sample payload