scottk/vault
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/vault.git synced 2025-11-01 11:08:10 +00:00
Code Issues Packages Projects Releases Wiki Activity
12,881 Commits 2,630 Branches 341 Tags
0767980550eec7c220ab3cf408dd46504cb1541e
Commit Graph

12881 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jim Kalafut
d626f5851c changelog++ 2020-09-25 17:21:43 -07:00
Billy Keyes
8cb39fb43a Use us-gov-west-1 for global APIs in aws-us-gov (#9947) 
* Use us-gov-west-1 for global APIs in aws-us-gov

Certain partition-global AWS services, like IAM, seem to require
specific regions. In the regular 'aws' partition, this is us-east-1. In
the 'aws-us-gov' partition, this is us-gov-west-1. Providing
us-gov-east-1 returns an error from AWS:

  SignatureDoesNotMatch: Credential should be scoped to a valid region, not 'us-gov-east-1'.

This resolves a problem where AWS authentication could randomly fail
depending on the value cached by Vault at startup.
 2020-09-25 17:13:26 -07:00
Meggie
bcd0ad1a68 changelog++ 
1.5.5 section
 2020-09-25 15:18:27 -04:00
ncabatoff
5c642fc77e changelog++ 2020-09-25 14:32:49 -04:00
Theron Voran
0747fa1595 Update k8s auth docs for new parameter (#9992) 
Adds info about the disable_local_ca_jwt parameter.

Co-authored-by: Clint <catsby@users.noreply.github.com>
 2020-09-25 11:17:28 -07:00
Meggie
a16ee2de47 Updating version for website to 1.5.4 (#10040) 2020-09-25 13:50:09 -04:00
Theron Voran
caa123a9d0 Update to vault-plugin-auth-kubernetes@master (#10004) 2020-09-24 15:44:06 -07:00
Scott Miller
a06b6efe4c Add retry to TestPostgresqlBackend (#10032) 2020-09-24 16:19:11 -05:00
Meggie
f3ac25592e changelog++ 
Updated with security content for new 1.5.4 and 1.4.7.
 2020-09-24 16:46:10 -04:00
Josh Black
2c2e38a506 changelog++ 2020-09-24 13:37:48 -07:00
mgritter
e1f9859ca4 Move entries to correct release. 2020-09-23 16:23:33 -07:00
Jim Kalafut
cf548ce985 changelog++ 2020-09-23 16:10:27 -07:00
Scott G. Miller
b1797dc206 changelog++ 2020-09-23 18:04:12 -05:00
Josh Black
747642701a changelog++ 2020-09-23 15:59:00 -07:00
Michael Golowka
32c3a9e320 [DBPW 5/X] Use AutoMTLS with DB plugins (#10008) 2020-09-23 16:08:03 -06:00
Brian Kassouf
f62183c691 changelog++ 2020-09-23 12:34:15 -07:00
Brian Kassouf
30a944f962 Update lease timer logic (#10030) 2020-09-23 11:46:22 -07:00
Tom Proctor
0ec3342d63 Update CHANGELOG.md (#10029) 2020-09-23 19:13:21 +01:00
ncabatoff
066678f5f0 Logging tweaks, mostly for tests (#10028) 
Fix some places where raft wasn't hooking into the core logger as it should.
Revisited the code that was setting the log level to Error during cleanup: it's normal for there to be a bunch of errors then, which makes it harder to see what went wrong up to the point where the test was deemed to have failed.  So now, instead of setting log level to Error, we actually stop logging altogether.  This only applies if the test didn't pass in its own logger during cluster creation, but we should be moving away from that anyway.
 2020-09-23 13:40:00 -04:00
Hridoy Roy
d5c20be2dc Normalize format output for vault status [VAULT-508] (#9976) 
* normalize format output for vault status

* interim commit

* interim commit

* make formatting idiomatic

* clean up comments

* added formatting test

* updated comments in format test to match godocs

Co-authored-by: HridoyRoy <hridoyroy@Hridoys-MBP.hitronhub.home>
Co-authored-by: HridoyRoy <hridoyroy@Hridoys-MacBook-Pro.local>
 2020-09-23 10:30:01 -07:00
Brian Kassouf
d23bd7ae9b Update version_base.go 2020-09-22 15:59:03 -07:00
Brian Kassouf
2b0d837d70 Port changes from enterprise lease fix (#10020) 2020-09-22 14:47:13 -07:00
Lauren Voswinkel
703b20454d changelog++ 2020-09-22 14:17:10 -07:00
Scott G. Miller
317da7ead0 changelog++ 2020-09-22 15:02:39 -05:00
Mark Gritter
f0d0dd6d66 Switch to PerfStandby() where possible. (#9993) 2020-09-22 14:48:30 -05:00
Hridoy Roy
ca2a9c932b moved the documentation to kv2 page (#10017) 
Co-authored-by: HridoyRoy <hridoyroy@Hridoys-MacBook-Pro.local>
 2020-09-22 11:58:00 -07:00
Vishal Nayak
755dc44882 changelog++ 2020-09-22 14:36:25 -04:00
Lauren Voswinkel
37cc869b40 Add content-sha256 as a default allowed STS header (#10009) 
Also, alphabetize those headers... just because.
 2020-09-22 10:02:37 -07:00
ncabatoff
64264dc166 changelog++ 2020-09-22 09:57:34 -04:00
Marco Rieger
c9342a085c fix missing plaintext in bulk decrypt response (#9991) 
Decrypting an ciphertext where its corresponding value equals empty, the payload property "plaintext" is missing in the response object. This fixes the problem by adding a new, distinct struct for decrypt batch response items where "omitempty" is not set.
 2020-09-22 09:43:07 -04:00
Lauren Voswinkel
3541fd9f04 Update AD secret engine docs for root cred rotation (#9990) 2020-09-21 16:21:14 -07:00
Chelsea Shaw
99bdfa7803 CRUD for transform alphabets (#9989) 
includes tests for templates and alphabets
 2020-09-21 15:36:07 -05:00
Meggie
d452997c5d docs: Change sidebar labeling to use Integrated Storage (#10002) 
I changed some verbiage in the page as well.
 2020-09-21 15:55:36 -04:00
Theron Voran
f27f19bbe8 changelog++ 2020-09-21 12:00:21 -07:00
Vishal Nayak
a44b451dcd changelog++ 2020-09-21 13:56:51 -04:00
Vishal Nayak
bab28776a4 Vendor diff 2020-09-21 13:43:21 -04:00
Mike Green
1cc66b2a54 minor only ha_storage clarification (#10001) 2020-09-21 13:06:03 -04:00
Sebin John
ad2af837dd Fix doc formatting. (#9994) 2020-09-21 10:01:43 -07:00
Michael Golowka
1cd0c0599b [DBPW 4/X] Update DB engine to support v4 and v5 interfaces with password policies (#9878) 2020-09-18 15:10:54 -06:00
Jim Kalafut
7c49c094fa changelog++ 2020-09-18 13:32:08 -07:00
Chelsea Shaw
461826dfb4 changelog link 2020-09-18 14:53:23 -05:00
Chelsea Shaw
1bccb19912 changelog ++ 2020-09-18 14:52:41 -05:00
ncabatoff
7c92a351d6 Use a longer timeout for DeriveActiveCore in the hopes that giving more time will allow for raft leader election failure to recover. (#9988) 2020-09-18 11:07:35 -04:00
ncabatoff
1586377255 When expiration attempts to revoke a cert that's not in storage (perhaps due to pki tidy), don't treat that as an error. Let the lease get expired. (#9880) 2020-09-17 16:15:03 -04:00
ncabatoff
4d6f575991 Move the code that creates Consul containers out of teststorage. This allows importers of teststorage that don't need consul to run as a non-docker test. (#9975) 2020-09-17 15:44:29 -04:00
ncabatoff
92627ec429 Force docker API version to use. (#9985) 2020-09-17 15:24:31 -04:00
Chelsea Shaw
f4cb33e4d4 Ui/transform templates (#9981) 
Add CRUD capabilities on transform templates. Disallow read or edit for built-ins.
 2020-09-17 14:08:06 -05:00
ncabatoff
f337e3165e Allow for testing Consul with a different repo that requires auth. (#9983) 2020-09-17 13:05:24 -04:00
Scott Miller
9510adcb9a Replace GF(256) division with a constant time impl (#9932) 2020-09-16 17:36:52 -05:00
ncabatoff
30a8e71e8e Upgrade bolt to get 543c40ab41 to avoid panics in tests. (#9964) 2020-09-16 15:35:43 -04:00