scottk/vault
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/vault.git synced 2025-11-09 08:16:05 +00:00
Code Issues Packages Projects Releases Wiki Activity
18,722 Commits 2,630 Branches 341 Tags
auto-plugin-update/hashicorp/vault-plugin-database-redis-elasticache/auto-dependency-upgrades
Commit Graph

719 Commits

Author SHA1 Message Date
Raymond Ho
b091664390 fix: upgrade vault-plugin-secrets-mongodbatlas to v0.10.0 (#20742) 2023-05-25 09:13:28 -07:00
Raymond Ho
a2016f7cac fix: upgrade vault-plugin-auth-centrify to v0.15.1 (#20745) 2023-05-25 09:13:11 -07:00
Max Coulombe
b6851cd0a8 Updated the azure secrets plugin (#20777) 
* updated the azure secrets plugin
 2023-05-25 11:27:33 -04:00
Daniel Huckins
17a1e78ffb agent: Add implementation for injecting secrets as environment variables (#20628) 
* added exec and env_template config/parsing

* add tests

* we can reuse ctconfig here

* do not create a non-nil map

* check defaults

* Apply suggestions from code review

Co-authored-by: Anton Averchenkov <84287187+averche@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: Anton Averchenkov <84287187+averche@users.noreply.github.com>

* first go of exec server

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* convert to list

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* convert to list

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* sig test

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* add failing example

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* refactor for config changes

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* add test for invalid signal

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* account for auth token changes

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* only start the runner once we have a token

* tests in diff branch

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: Anton Averchenkov <84287187+averche@users.noreply.github.com>

* fix rename

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* Update command/agent/exec/exec.go

Co-authored-by: Anton Averchenkov <84287187+averche@users.noreply.github.com>

* apply suggestions from code review

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* cleanup

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* remove unnecessary lock

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* refactor to use enum

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* dont block

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* handle default

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* make more explicit

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* cleanup

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* remove unused

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* remove unused file

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* remove test app

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: Anton Averchenkov <84287187+averche@users.noreply.github.com>

* apply suggestions from code review

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* update comment

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* add changelog

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* watch for child process to exit on its own

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

---------

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>
Co-authored-by: Anton Averchenkov <84287187+averche@users.noreply.github.com>
 2023-05-24 16:56:06 -04:00
Raymond Ho
9a972382bb fix: upgrade vault-plugin-secrets-openldap to v0.11.0 (#20753) 2023-05-24 13:45:24 -07:00
vinay-gopalan
b5acdc3a0b upgrade vault-plugin-secrets-ad to v0.16.0 (#20750) 2023-05-24 13:37:41 -07:00
Christopher Swenson
22d341a403 fix: upgrade vault-plugin-database-redis-elasticache to v0.2.1 (#20751) 2023-05-24 20:15:53 +00:00
kpcraig
cc8b856471 VAULT-12226: Add Static Roles to the AWS plugin (#20536) 
Add static roles to the aws secrets engine

---------

Co-authored-by: maxcoulombe <max.coulombe@hashicorp.com>
Co-authored-by: vinay-gopalan <86625824+vinay-gopalan@users.noreply.github.com>
Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
 2023-05-24 14:55:13 -04:00
John-Michael Faircloth
d3e346543a fix: upgrade vault-plugin-auth-oci to v0.14.0 (#20743) 2023-05-24 13:00:49 -05:00
John-Michael Faircloth
fd8a9f7e31 fix: upgrade vault-plugin-secrets-kv to v0.15.0 (#20746) 2023-05-24 13:00:23 -05:00
Christopher Swenson
6be214f070 fix: upgrade vault-plugin-auth-gcp to v0.16.0 (#20725) 2023-05-23 11:24:33 -07:00
Márk Sági-Kazár
200f0c0e03 Upgrade go-jose library to v3 (#20559) 
* upgrade go-jose library to v3

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

* chore: fix unnecessary import alias

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

* upgrade go-jose library to v2 in vault

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

---------

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
 2023-05-23 12:25:58 +00:00
Daniel Huckins
a86d8c4539 agent: Add support for parsing env_template configuration files (#20598) 
* added exec and env_template config/parsing

* add tests

* we can reuse ctconfig here

* do not create a non-nil map

* check defaults

* Apply suggestions from code review

Co-authored-by: Anton Averchenkov <84287187+averche@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: Anton Averchenkov <84287187+averche@users.noreply.github.com>

* convert to list

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* convert to list

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* sig test

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* add failing example

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* add test for invalid signal

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* Update command/agent/config/config.go

* use latest consul-template

* fix build

* fix test

* fix test fixtures

* make fmt

* test docs

* rename file

* env var -> environment variable

* default to SIGTERM

* empty line

* explicit naming

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* clean typo

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* replace $ HOME with /home/username in examples

* remove empty line

---------

Signed-off-by: Daniel Huckins <dhuckins@users.noreply.github.com>
Co-authored-by: Anton Averchenkov <84287187+averche@users.noreply.github.com>
Co-authored-by: Anton Averchenkov <anton.averchenkov@hashicorp.com>
 2023-05-19 18:11:41 -04:00
Anton Averchenkov
1a1af69cdd cli: Add 'agent generate-config' sub-command (#20530) 2023-05-19 13:42:19 -04:00
Nick Cabatoff
2f0929f3ab Add support for docker testclusters (#20247) 2023-04-24 14:25:50 -04:00
Nick Cabatoff
980f1e0aae Add tests based on vault binary (#20224) 
First steps towards docker-based tests: tests using vault binary in -dev or -dev-three-node modes.
 2023-04-24 09:57:37 -04:00
Nick Cabatoff
bbc1b4cb44 Bump the sdk go version to 1.20, document when go versions should be updated (#20278) 2023-04-24 08:44:39 -04:00
Nick Cabatoff
caf832342b Use a current version of etcd (#20261) 
Use a current version of etcd, remove the replace hack in go.mod that was intended to be temporary.
 2023-04-19 14:17:11 -04:00
Anton Averchenkov
05bd025d8f Use vault/sdk v0.9.0 (#20050) 2023-04-07 15:14:35 -04:00
Raymond Ho
ecf3f447ab update vault-plugin-secrets-openldap@main (#19993) 2023-04-05 14:40:08 -07:00
John-Michael Faircloth
53cbcd3f34 upgrade mongo driver to 1.11 (#19954) 
* upgrade mongo driver to 1.11

* add changelog

* fix failing test comparison

* ignore http.Transport
 2023-04-03 22:18:18 -05:00
Violet Hynes
33731d6f63 VAULT-12940 Vault Agent uses Vault Agent specific User-Agent header when issuing requests (#19776) 
* VAULT-12940 test for templating user agent

* VAULT-12940 User agent work so far

* VAULT-12940 Vault Agent uses Vault Agent specific User-Agent header when issuing requests

* VAULT-12940 Clean-up and godocs

* VAULT-12940 changelog

* VAULT-12940 Fix test checking headers

* VAULT-12940 Fix test checking headers

* VAULT-12940 Fix test checking headers

* VAULT-12940 Fix test checking headers

* VAULT-12940 copy/paste typos

* VAULT-12940 improve comments, use make(http.Header)

* VAULT-12940 small typos and clean-up
 2023-04-03 14:14:47 -04:00
Peter Wilson
2054ffcbfa VAULT-14048: raft-autopilot appears to refuse to remove a node which has left and wouldn't impact stability (#19472) 
* ensure we supply the node type when it's for a voter
* bumped autopilot version back to v0.2.0 and ran go mod tidy
* changed condition in knownservers and added some comments
* Export GetRaftBackend
* Updated tests for autopilot (related to dead server cleanup)
* Export Raft NewDelegate

Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
 2023-04-03 11:58:57 -04:00
Max Coulombe
66dd133ee4 Bumping ad dependencies (#19829) 
* bumping ad dependencies
 2023-03-31 11:01:02 -04:00
Milena Zlaticanin
abe14e72de secrets/mongodbatlas: upgrade dependencies (#19861) 
* secrets/mongodbatlas: upgrade dependencies

* add changelog
 2023-03-30 11:24:31 -07:00
John-Michael Faircloth
75099d2cd9 plugin/secrets/alicloud: upgrade dependencies (#19846) 
* plugin/secrets/alicloud: upgrade dependencies

* add changelog
 2023-03-30 11:11:15 -04:00
vinay-gopalan
b6e0077a7f Update pseudo-version for Secrets Terraform plugin (#19798) 2023-03-29 09:01:35 -07:00
akshya96
6a429bb0d6 Github Action to check deprecations in PR (#19666) 
* deprecation check

* adding script

* add execute permission to script

* revert changes

* adding the script back

* added working script for local and GHA

* give execute permissions

* updating revgrep

* adding changes to script, tools

* run go mod tidy

* removing default ref

* make bootstrap

* adding to makefile
 2023-03-27 22:50:58 -07:00
Austin Gebauer
c5bc1764c8 secrets/ldap: upgrades plugin to v0.10.1 (#19640) 
* secrets/ldap: upgrades plugin to v0.10.1

* adds changelog
 2023-03-20 11:29:09 -07:00
Austin Gebauer
1fb765d61a database/elasticsearch: upgrades plugin to v0.13.1 (#19545) 
* database/elasticsearch: upgrades plugin to v0.13.1

* adds changelog
 2023-03-15 10:24:03 -07:00
Marc Boudreau
d6c71614a8 Introduce GitHub Actions CI Workflow (#19449) 
* Migrate subset of CircleCI ci workflow to GitHub Actions

Runs test-go and test-go-remote-docker with a static splitting of test packages

* [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails

* change trigger to push

---------

Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
 2023-03-06 16:57:55 -05:00
Nick Cabatoff
0385a09dae Revert "updated raft-autopilot to v0.2.0 (#17848)" (#19353) 
This reverts commit 21cab77be8.
 2023-02-24 14:24:32 -05:00
Tom Proctor
4df7c64d05 Update x/net and x/crypto/ssh (#19282) 
* Update x/net and x/crypto/ssh in api and sdk

* go mod tidy in root go module
 2023-02-22 13:46:12 +00:00
Anton Averchenkov
59a5b351cd Simplify gen_openapi.sh script (#19245) 
* Simplify gen_openapi.sh script

* Update scripts/gen_openapi.sh

Co-authored-by: Daniel Huckins <dhuckins@users.noreply.github.com>

* use correct import

---------

Co-authored-by: Daniel Huckins <dhuckins@users.noreply.github.com>
 2023-02-17 14:48:05 -05:00
Christopher Swenson
4944581a9c events: WS protobuf messages should be binary (#19232) 
The [WebSockets spec](https://www.rfc-editor.org/rfc/rfc6455) states
that text messages must be valid UTF-8 encoded strings, which protobuf
messages virtually never are. This now correctly sends the protobuf events
as binary messages.

We change the format to correspond to CloudEvents, as originally intended,
and remove a redundant timestamp and newline.

We also bump the eventlogger to fix a race condition that this code triggers.
 2023-02-17 11:38:03 -08:00
Scott Miller
add3659f39 Update go-kms-wrapping and it's gcpc wrapper to pick up google-cloud-go migration (#19219) 2023-02-16 11:21:25 -06:00
mickael-hc
68f219c07e bump dev depenendencies (#19140) 
reduces alert noise
 2023-02-13 10:31:43 -05:00
Austin Gebauer
9acd846e72 upgrade vault-plugin-database-mongodbatlas to v0.9.0 (#19153) 2023-02-11 00:57:18 +00:00
Tom Proctor
c90a024adf Bump kv plugin v0.14.0->v0.14.2 (#19145) 2023-02-10 21:42:05 +00:00
Austin Gebauer
b0218cee8e upgrade vault-plugin-secrets-alicloud to v0.14.1 (#19128) 2023-02-10 09:32:46 -08:00
Austin Gebauer
eb968a56fb upgrade vault-plugin-secrets-alicloud to v0.14.0 (#19118) 2023-02-10 09:13:04 -08:00
Hamid Ghaf
0e52dbff6d replace existing zookeeper import with an actively maintained one (#19086) 
* replace existing zookeeper import with an actively maintained one

* remove empty lines
 2023-02-10 11:56:27 -05:00
Kuba Wieczorek
75d3a6de05 Use new sdk and api versions (#19126) 2023-02-10 10:40:47 -05:00
kpcraig
7b86411c97 fix: upgrade vault-plugin-secrets-kubernetes to v0.3.0 (#19084) 
* fix: upgrade vault-plugin-secrets-kubernetes to v0.3.0

* add changelog
 2023-02-10 10:23:31 -05:00
kpcraig
154dbb8cbc fix: upgrade vault-plugin-auth-kubernetes to v0.15.0 (#19094) 
* fix: upgrade vault-plugin-auth-kubernetes to v0.15.0

* add changelog
 2023-02-10 10:23:11 -05:00
Austin Gebauer
23598121e6 upgrade vault-plugin-database-redis to v0.2.0 (#19112) 2023-02-09 14:39:15 -08:00
John-Michael Faircloth
0d67507fac fix: upgrade vault-plugin-secrets-mongodbatlas to v0.9.1 (#19111) 
* fix: upgrade vault-plugin-secrets-mongodbatlas to v0.9.1

* add changelog

* Update changelog/19111.txt

Co-authored-by: Max Coulombe <109547106+maxcoulombe@users.noreply.github.com>

* use correct plugin type in changelog

---------

Co-authored-by: Max Coulombe <109547106+maxcoulombe@users.noreply.github.com>
 2023-02-09 15:55:42 -06:00
Christopher Swenson
6e233e567b events: Add websockets and command (#19057) 
Also updates the event receieved to include a timestamp.
Websockets support both JSON and protobuf binary formats.

This can be used by either `wscat` or the new
`vault events subscribe`:

e.g.,
```sh
$ wscat -H "X-Vault-Token: $(vault print token)" --connect ws://127.0.0.1:8200/v1/sys/events/subscribe/abc?json=true
{"event":{"id":"5c5c8c83-bf43-7da5-fe88-fc3cac814b2e", "note":"testing"}, "eventType":"abc", "timestamp":"2023-02-07T18:40:50.598408Z"}
...
```

and

```sh
$ vault events subscribe abc
{"event":{"id":"5c5c8c83-bf43-7da5-fe88-fc3cac814b2e", "note":"testing"}, "eventType":"abc", "timestamp":"2023-02-07T18:40:50.598408Z"}
...
```

Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2023-02-09 13:18:58 -08:00
Christopher Swenson
230286b880 fix: upgrade vault-plugin-auth-centrify to v0.14.0 (#19107) 2023-02-09 11:15:00 -08:00
Austin Gebauer
69dbef27bb upgrade vault-plugin-secrets-openldap to v0.10.0 (#19108) 2023-02-09 10:37:58 -08:00