Change default TTL from 30 to 32 to accommodate monthly operations (#1942)

2025-12-15 18:07:15 +00:00 · 2016-09-28 18:32:49 -04:00
parent d178d1d26d
commit c748ff322f
32 changed files with 50 additions and 50 deletions
--- a/website/source/docs/auth/cert.html.md
+++ b/website/source/docs/auth/cert.html.md
@@ -175,7 +175,7 @@ of the header should be "X-Vault-Token" and the value should be the token.
        "certificate": "-----BEGIN CERTIFICATE-----\nMIIEtzCCA5+.......ZRtAfQ6r\nwlW975rYa1ZqEdA=\n-----END CERTIFICATE-----",
        "display_name": "test",
        "policies": "",
-        "ttl": 2592000
+        "ttl": 2764800
      },
      "warnings": null,
      "auth": null
--- a/website/source/docs/auth/token.html.md
+++ b/website/source/docs/auth/token.html.md
@@ -318,7 +318,7 @@ of the header should be "X-Vault-Token" and the value should be the token.
      "lease_duration": 0,
      "data": {
        "creation_time": 1457533232,
-        "creation_ttl": 2592000,
+        "creation_ttl": 2764800,
        "display_name": "token",
        "id": "",
        "meta": null,
--- a/website/source/docs/commands/read-write.html.md
+++ b/website/source/docs/commands/read-write.html.md
@@ -103,7 +103,7 @@ Data can be read using `vault read`. This command is very simple:
 $ vault read secret/password
 Key             Value
 lease_id        secret/password/76c844fb-aeba-a766-0a50-2b907072233a
-lease_duration  2592000
+lease_duration  2764800
 value           itsasecret
 ```

--- a/website/source/docs/concepts/tokens.html.md
+++ b/website/source/docs/concepts/tokens.html.md
@@ -146,7 +146,7 @@ compared to the maximum TTL. This maximum TTL value is dynamically generated
 and can change from renewal to renewal, so the value cannot be displayed when a
 token's information is looked up. It is based on a combination of factors:

-1. The system max TTL, which is 30 days but can be changed in Vault's
+1. The system max TTL, which is 32 days but can be changed in Vault's
   configuration file
 2. The max TTL set on a mount using [mount
   tuning](https://www.vaultproject.io/docs/http/sys-mounts.html). This value
--- a/website/source/docs/config/index.html.md
+++ b/website/source/docs/config/index.html.md
@@ -66,12 +66,12 @@ sending a SIGHUP to the server process. These are denoted below.
  (see below).

 * `default_lease_ttl` (optional) - Configures the default lease duration
-  for tokens and secrets. This is a string value using a suffix, e.g. "720h".
-  Default value is 30 days. This value cannot be larger than `max_lease_ttl`.
+  for tokens and secrets. This is a string value using a suffix, e.g. "768h".
+  Default value is 32 days. This value cannot be larger than `max_lease_ttl`.

 * `max_lease_ttl` (optional) - Configures the maximum possible
  lease duration for tokens and secrets. This is a string value using a suffix,
-  e.g. "720h". Default value is 30 days.
+  e.g. "768h". Default value is 32 days.

 In production it is a risk to run Vault on systems where `mlock` is
 unavailable or the setting has been disabled via the `disable_mlock`.
--- a/website/source/docs/secrets/cubbyhole/index.html.md
+++ b/website/source/docs/secrets/cubbyhole/index.html.md
@@ -159,7 +159,7 @@ As expected, the value previously set is returned to us.
    "data": {
      "keys": ["foo", "foo/"]
    },
-    "lease_duration": 2592000,
+    "lease_duration": 2764800,
    "lease_id": "",
    "renewable": false
  }
--- a/website/source/docs/secrets/generic/index.html.md
+++ b/website/source/docs/secrets/generic/index.html.md
@@ -98,7 +98,7 @@ seconds (one hour) as specified.
    "data": {
      "foo": "bar"
    },
-    "lease_duration": 2592000,
+    "lease_duration": 2764800,
    "lease_id": "",
    "renewable": false
  }
@@ -142,7 +142,7 @@ seconds (one hour) as specified.
    "data": {
      "keys": ["foo", "foo/"]
    },
-    "lease_duration": 2592000,
+    "lease_duration": 2764800,
    "lease_id": "",
    "renewable": false
  }
--- a/website/source/docs/secrets/mssql/index.html.md
+++ b/website/source/docs/secrets/mssql/index.html.md
@@ -299,7 +299,7 @@ allowed to read.
    "data": {
      "keys": ["dev", "prod"]
    },
-    "lease_duration": 2592000,
+    "lease_duration": 2764800,
    "lease_id": "",
    "renewable": false
  }
--- a/website/source/docs/secrets/mysql/index.html.md
+++ b/website/source/docs/secrets/mysql/index.html.md
@@ -346,7 +346,7 @@ the default on versions prior to that.
    "data": {
      "keys": ["dev", "prod"]
    },
-    "lease_duration": 2592000,
+    "lease_duration": 2764800,
    "lease_id": "",
    "renewable": false
  }
--- a/website/source/docs/secrets/pki/index.html.md
+++ b/website/source/docs/secrets/pki/index.html.md
@@ -1304,7 +1304,7 @@ subpath for interactive help output.
    "data": {
      "keys": ["dev", "prod"]
    },
-    "lease_duration": 2592000,
+    "lease_duration": 2764800,
    "lease_id": "",
    "renewable": false
  }
--- a/website/source/docs/secrets/postgresql/index.html.md
+++ b/website/source/docs/secrets/postgresql/index.html.md
@@ -317,7 +317,7 @@ subpath for interactive help output.
    "data": {
      "keys": ["dev", "prod"]
    },
-    "lease_duration": 2592000,
+    "lease_duration": 2764800,
    "lease_id": "",
    "renewable": false
  }
--- a/website/source/docs/secrets/ssh/index.html.md
+++ b/website/source/docs/secrets/ssh/index.html.md
@@ -536,7 +536,7 @@ username@<IP of remote host>:~$
    "data": {
      "keys": ["dev", "prod"]
    },
-    "lease_duration": 2592000,
+    "lease_duration": 2764800,
    "lease_id": "",
    "renewable": false
  }
@@ -728,7 +728,7 @@ username@<IP of remote host>:~$
 {
  "lease_id": "sshs/creds/c3c2e60c-5a48-415a-9d5a-a41e0e6cdec5/3ee6ad28-383f-d482-2427-70498eba4d96",
  "renewable": false,
-  "lease_duration": 2592000,
+  "lease_duration": 2764800,
  "data": {
            "ip": "127.0.0.1",
            "key": "6d6411fd-f622-ea0a-7e2c-989a745cbbb2",