scottk/vault
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/vault.git synced 2026-01-11 06:25:17 +00:00
Code Issues Packages Projects Releases Wiki Activity
20,484 Commits 2,630 Branches 341 Tags
52ba156d47da170bf40471fe57d72522030bdc7e
Commit Graph

764 Commits

Author SHA1 Message Date
Alexander Scheel
853a5febcb Show existing keys, issuers on PKI import (#20441) 
* Add additional existing keys response field

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Update tests for validating existing keys

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Update docs for import to include new fields

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add changelog entry

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Update website/content/api-docs/secret/pki.mdx

Co-authored-by: Steven Clark <steven.clark@hashicorp.com>

---------

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
Co-authored-by: Steven Clark <steven.clark@hashicorp.com>
 2023-05-01 14:07:31 +00:00
Ben Ash
910559b03c api-docs/pki: common_name is no longer required. (#20403) 2023-04-27 16:11:49 -04:00
Josh Black
299fe6996c Correct an oversight re: skip_flush in the docs (#20383) 2023-04-26 17:30:09 -07:00
Brian Shumate
2532fd55fa Docs: DR replication API updates (#20373) 
* Docs: DR replication API updates

- Add clarification for secondary_public_key parameter
- Update section header

* During activation
 2023-04-26 16:15:46 -07:00
miagilepner
1c9b5d4333 VAULT-15791: Update docs to use vault-java-driver fork (#20316) 2023-04-25 11:08:05 +02:00
Braulio Gomes Rodrigues
9ff6ee572e changing chouchbase host variable (#19812) 
* changing chouchbase host variable

* Alterando linha 82 couchbase
 2023-04-24 13:56:56 +00:00
Josh Black
5ada399581 update website docs for new update-primary mode (#20302) 2023-04-21 15:21:28 -07:00
Luis (LT) Carbonell
7f2deb1420 Add Configurable LDAP Max Page Size (#19032) 
* Add config flag for LDAP max page size

* Add changelog

* move changelog to correct file

* cleanup

* Default to non-paged searching for with -1

* Update website/content/api-docs/auth/ldap.mdx

Co-authored-by: Austin Gebauer <34121980+austingebauer@users.noreply.github.com>

* Update website/content/docs/auth/ldap.mdx

Co-authored-by: Austin Gebauer <34121980+austingebauer@users.noreply.github.com>

* Update tests

---------

Co-authored-by: Austin Gebauer <34121980+austingebauer@users.noreply.github.com>
 2023-04-20 20:39:27 +00:00
Austin Gebauer
c94e213ac6 Add OIDC provider docs for IBM ISAM (#19247) 
* Add OIDC provider docs for IBM ISAM

* Add changelog, api docs and docs-nav-data

---------

Co-authored-by: Benjamin Voigt <benjamin.voigt@god.dev>
 2023-04-20 11:30:59 -07:00
Sohil Kaushal
c286174e76 docs(postgresql): Update Postgresql SE API doco (#19931) 
* docs(postgresql): Update Postgresql SE API doco

Update the postgresql secret engine API docs to include some "caveats"
of the pgx library. In particular, this enhances the docs to inform the
user that if any sslcreds are supplied as a part of the Database
connection string, the user/vault admin will need to ensure that the
certificates are present at those paths.

* Chore: fixup minor error with db docs

* Keep the language simple

---------

Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
 2023-04-19 00:17:44 +00:00
Yura Shutkin
b930010ae2 Update wrapping-unwrap.mdx (#20109) 
* Update wrapping-unwrap.mdx

It is possible to unwrap data without authentication in Vault. I've added an example of a curl request.

* Add changelog record
 2023-04-18 14:20:27 -07:00
Max Bowsher
acfc862b4b Minor follow-ups to #16865 (#20220) 
* Minor follow-ups to #16865

Fix PKI issuer upgrade logic when upgrading to 1.12 or later, to
actually turn off the issuer crl-signing usage when it intended to.

Fix minor typo in docs.

* changelog
 2023-04-18 07:39:05 -04:00
Milena Zlaticanin
e37674d78e add missing mongodb atlas fields to the docs (#20207) 2023-04-17 14:10:07 -07:00
Scott Miller
fc21d357ff Add documentation for cert auth OCSP checking (#18064) 2023-04-13 18:33:21 +00:00
Jason O'Donnell
2f7f0d2db9 sdk/ldaputil: add connection_timeout configurable (#20144) 
* sdk/ldaputil: add connection_timeout configurable

* changelog

* Update doc

* Fix test

* Change default to 30s
 2023-04-13 12:43:28 -04:00
Matt Schultz
fc783b00ab Update docs to include specifics and caveats around Transit Managed Keys support. (#20099) 2023-04-12 12:19:25 -05:00
Mike Palmiotto
05ba6bbddd api: Add reporting fields to activitylog config endpoint (#20086) 
This PR adds the internal reporting state to the
`internal/counters/config` read endpoint:
* reporting_enabled
* billing_start_timestamp
 2023-04-12 12:02:28 -04:00
Yoko Hyakuna
216880c237 Update the HTTP verb for consistency (#20056) 2023-04-11 13:35:06 -07:00
John-Michael Faircloth
5a4a7639d1 secrets/openldap: add creds/ endpoint to API docs (#19973) 2023-04-11 08:42:50 -05:00
Brian Shumate
480005f40a API docs: update Transit restore payload example (#20032) 
- Correct JSON payload example
 2023-04-07 08:14:43 -04:00
Chip Stepowski
ef901b1bc4 Update Create Role heading to Create/Update Role (#20000) 
The subheading states you can update a named role but for navigation purposes I think it would also make sense to add it to the heading too.
 2023-04-06 11:42:22 +01:00
Alain Chiasson
e7e6ab9e0f Update replication-dr.mdx (#19604) 
In testing, disabling the dr secondary requires a DR Operations token, not a vault token.
 2023-04-03 13:35:16 -04:00
Alexander Scheel
123987535f Clarify that other operations run while tidy is paused (#19914) 
Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
 2023-03-31 16:09:37 -04:00
Peter Wilson
e8a8fb037f Add available types to API documentation for enable audit (#19850) 2023-03-30 15:30:35 +00:00
Anton Averchenkov
34e2b65be6 docs: Fix duration format link in kv-v2 docs page (#19768) 2023-03-27 13:18:25 -04:00
ram-parameswaran
14eda8a178 Update username template description for AWS (#19690) 
Update username template description for AWS by calling out what DisplayName and PolicyName actually are placeholders for
 2023-03-23 19:56:55 -07:00
ram-parameswaran
6d8ed36032 Updated connection_url to be pgx library relevant (#19667) 
Updated connection_url to be according to the options available in the pgx library instead of the now deprecated use of the lib/pq which was done as part of Vault 1.11 as documented here - https://github.com/hashicorp/vault/blob/main/CHANGELOG.md#june-20-2022
 2023-03-22 09:02:47 -07:00
Raymond Ho
ba963a8c65 VAULT-13614 Support SCRAM-SHA-256 encrypted passwords for PostgreSQL (#19616) 2023-03-21 12:12:53 -07:00
Violet Hynes
fdf4d07fb3 Update KV-V2 docs to explicitly call out the secret mount path as a parameter (#19607) 
* Update KV-V2 docs to explicitly call out the secret mount path as a parameter

* Missed some angular brackets

* remove wishy language
 2023-03-17 12:21:55 -04:00
Max Winslow
7071eb26f4 Change headings to h2 (#19402) 2023-03-07 15:48:51 -08:00
Max Winslow
c5d99edfec update entity-alias doc fix (#19435) 2023-03-03 08:16:26 -08:00
Tony Wittinger
d2a09ad453 docs: updated key size in transit documentation (#19346) 2023-03-02 16:07:40 -08:00
Max Winslow
9bb8321a5b change verbiage for lookup group and entity (#19406) 2023-02-28 12:40:38 -08:00
Austin Gebauer
da31528fdc docs/ad: adds deprecation announcements and migration guide (#19388) 
* docs/ad: adds deprecation announcements and migration guide

* fix table ending

* remove fully-qualified links

* Minor format fixes - migrationguide

* Update website/content/docs/secrets/ad/migration-guide.mdx

Co-authored-by: vinay-gopalan <86625824+vinay-gopalan@users.noreply.github.com>

* Update website/content/docs/secrets/ad/migration-guide.mdx

Co-authored-by: vinay-gopalan <86625824+vinay-gopalan@users.noreply.github.com>

---------

Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
Co-authored-by: vinay-gopalan <86625824+vinay-gopalan@users.noreply.github.com>
 2023-02-28 10:41:59 -08:00
Rowan Smith
538bb799e4 approle naming syntax documentation (#19369) 
Documentation does not currently detail the accepted naming scheme for approle roles, this aims to provide clarity based on customer feedback. https://github.com/hashicorp/vault/blob/main/sdk/framework/path.go#L16-L18 details the regex used.
 2023-02-27 12:08:15 -08:00
Jakob Beckmann
39f9e5e775 Allow alias dereferencing in LDAP searches (#18230) 
* impr(auth/ldap): allow to dereference aliases in searches

* docs: add documentation for LDAP alias dereferencing

* chore(auth/ldap): add changelog entry for PR 18230

* chore: run formatter

* fix: update default LDAP configuration with new default

* Update website/content/docs/auth/ldap.mdx

Co-authored-by: tjperry07 <tjperry07@users.noreply.github.com>

* docs(ldap): add alias dereferencing to API docs for LDAP

---------

Co-authored-by: tjperry07 <tjperry07@users.noreply.github.com>
 2023-02-24 13:49:17 -05:00
Austin Gebauer
298fb06e7e docs/oidc: make it clear that contents of CA certificate are expected (#19297) 2023-02-22 11:33:53 -08:00
Max Coulombe
72d0632e4b Added disambiguation that creation request can also update roles (#17371) 
+ added  disambiguation that creation request can also update roles
 2023-02-22 12:02:31 -05:00
Alexander Scheel
7193916849 Add note clarifying revoked issuer associations (#19289) 
Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
 2023-02-22 15:48:20 +00:00
Raymond Ho
77e80a8030 use github token env var if present when fetching org id (#19244) 2023-02-21 12:17:35 -08:00
Scott Miller
34a93f1a3a Document the 'convergent' tokenization transform option (#19249) 2023-02-17 13:15:40 -06:00
claire bontempo
b3bc654249 replace whitelist with allow (#19217) 2023-02-16 14:35:30 -08:00
Steven Zamborsky
4c1ebe9f3c Update raftautosnapshots.mdx (#18996) 
Clarify that the `local_max_space` value for local automated snapshots is cumulative for all snapshots in the `file_prefix` path.
 2023-02-14 22:46:41 -08:00
Max Coulombe
5e71178a94 Fix database sample payload doc (#19170) 
* * fix database static-user rotation statement in sample payload

* + added changelog
 2023-02-14 08:29:27 -05:00
ram-parameswaran
c65f3909e7 Update PKI Secret Engine doc for auto-tidy (#19122) 
PKI Secret Engine documentation for auto-tidy(https://developer.hashicorp.com/vault/api-docs/secret/pki#configure-automatic-tidy) has a parameter interval_duration(https://developer.hashicorp.com/vault/api-docs/secret/pki#interval_duration). This needs to explicitly call out the default value to be 12 hours.
 2023-02-10 15:57:58 -05:00
Milena Zlaticanin
8958d00263 Azure Auth - rotate-root documentation (#18780) 
* add documentation for rotate root

* commit suggestions

* move api permissions section
 2023-02-08 18:14:28 -07:00
Alexander Scheel
5710c41944 Document pki cross cluster behavior (#19031) 
* Add documentation on cross-cluster CRLs

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add missing revocation queue safety buffer

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

---------

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
 2023-02-07 11:11:33 -05:00
Scott Miller
40f599b11c Add a stronger warning about the usage of recovery keys (#19011) 
* Add a stronger warning about the usage of recovery keys

* Update website/content/docs/concepts/seal.mdx

Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>

* Keep the mitigation text in the warning box

---------

Co-authored-by: Nick Cabatoff <ncabatoff@hashicorp.com>
 2023-02-06 16:23:05 -06:00
Matt Schultz
b8e74851b3 Transit Managed Keys Documentation (#18994) 
* Document 'managed_key' key type for transit. Document new 'usages' parameter when creating a managed key in the system backend.

* Document new managed key parameters for transit managed key rotation.
 2023-02-03 18:49:02 -06:00
Alexander Scheel
3083f755f3 Document Cross-Cluster CRLs/OCSP for Vault Enterprise (#18970) 
* Add documentation on fetching unified CRLs

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add documentation on unified OCSP

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Clarify that OCSP requests need to be URL encoded

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Document new CRL config parameters

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Clarify notes about cross-cluster options

Co-authored-by: Steven Clark <steven.clark@hashicorp.com>
Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

---------

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
Co-authored-by: Steven Clark <steven.clark@hashicorp.com>
 2023-02-03 16:30:23 -05:00