scottk/vault
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/vault.git synced 2025-12-27 15:54:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
16,017 Commits 2,630 Branches 341 Tags
dfc1a305b3a4b6dfd8818591a71ee8673e4e5bbf
Commit Graph

1576 Commits

Author SHA1 Message Date
hc-github-team-secure-vault-core
dfc1a305b3 backport of commit 1a2ee3ab33 (#17681) 2022-10-26 17:51:15 -04:00
hc-github-team-secure-vault-core
de554642e0 backport of commit 3ace92c429 (#17579) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-10-18 10:06:15 -04:00
hc-github-team-secure-vault-core
1965f97f5a backport of commit 800d346f59 (#17567) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-10-17 11:00:56 -04:00
hc-github-team-secure-vault-core
cb811c7c94 backport of commit 06c0c6c882 (#17553) 
Co-authored-by: Peter Wilson <peter.wilson@hashicorp.com>
 2022-10-14 17:36:33 +01:00
hc-github-team-secure-vault-core
863d2f0ac0 backport of commit 4dd8fc6ed5 (#17458) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-10-07 16:22:16 +01:00
Mike Palmiotto
2c6f09a5c9 core: Parse VAULT_ALLOW_PENDING_REMOVAL_MOUNTS as bool (#17319) (#17365) 
* docs: Update VAULT_ALLOW_PENDING_REMOVAL_MOUNTS doc
 2022-09-30 09:23:01 -04:00
hc-github-team-secure-vault-core
a005d6e76e backport of commit d467681e15 (#17361) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-09-30 05:49:40 -04:00
hc-github-team-secure-vault-core
ed3cf6cd21 backport of commit 6be838e9e2 (#17303) 
Co-authored-by: Chris Capurso <1036769+ccapurso@users.noreply.github.com>
 2022-09-23 10:59:36 -04:00
hc-github-team-secure-vault-core
0c8e7de76a backport of commit 6fc78315f7 (#17267) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-09-23 07:41:22 -04:00
hc-github-team-secure-vault-core
f65f06eaf5 backport of commit 66d6048da0 (#17295) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-09-23 03:12:19 -07:00
hc-github-team-secure-vault-core
b669880e82 backport of commit 21d13633d7 (#17284) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-09-22 16:14:33 -04:00
Tom Proctor
d6d03ac373 Plugins: Consistently use plugin_version (#17171) 
* Delete Sha field, rename RunningSha -> RunningSha256
* Rename version -> plugin_version
 2022-09-20 12:35:50 +01:00
Austin Gebauer
e1d67836e9 Adds ldap secrets to plugin registry and updates to v0.9.0 (#17152) 
* Adds ldap secrets to plugin registry and updates to v0.9.0

* adds changelog

* fix test
 2022-09-15 22:19:24 -07:00
Jason O'Donnell
8fddccdff0 agent/auto-auth: add exit_on_err configurable (#17091) 
* agent/auto-auth: add exit_on_err configurable

* changelog

* Update backoff function to quit

* Clarify doc

* Fix test
 2022-09-15 11:00:31 -07:00
georgethebeatle
3088b139f8 Make key completion work for both kv-v1 and kv-v2 (#16553) 
Co-authored-by: Kieron Browne <kbrowne@vmware.com>
Co-authored-by: Georgi Sabev <georgethebeatle@gmail.com>
Co-authored-by: Danail Branekov <danailster@gmail.com>
 2022-09-13 12:11:00 -04:00
Hamid Ghaf
a9138889f0 updating hcp link structs, and fix diagnose (#17097) 2022-09-12 11:10:01 -04:00
Max Coulombe
53cc12b649 + added redis elasticache as a built-in plugin (#17075) 
* added redis elasticache as a built-in plugin
 2022-09-09 16:16:30 -04:00
Mike Palmiotto
63e6cc1d66 Add deprecation status to plugin api and cli (#17077) 
* api: Add deprecation status to plugin endpoints

* cli: Add -detailed flag to `plugin list`

* docs: Update plugin list/info docs
 2022-09-09 16:03:07 -04:00
Milena Zlaticanin
c73aedf042 Import Redis OSS database plugin into Vault (#17070) 
* Import Redis OSS database plugin into Vault

* update the total number of db plugins

* small nit for testing

* adding changelog
 2022-09-09 13:42:25 -05:00
Josh Black
03d2be4cb9 update gofumpt to 0.3.1 and reformat the repo (#17055) 
* update gofumpt to 0.3.1 and reformat the repo

* output the version of the formatter we're using
 2022-09-07 17:31:20 -07:00
Mike Palmiotto
469b2db53c Mark database-specific secrets engines Pending Removal (#17038) 
* plugins: Mark standalone database plugins Pending Removal
* Add changelog
 2022-09-07 10:45:09 -04:00
Mike Palmiotto
13077bab40 Handle deprecated builtins (#17005) 
* core: Handle deprecated mounts on enable and unseal
* changelog: Deprecation Status handling
* core: Add Pending Removal override var
* core: Add some documentation for Pending Removal override
 2022-09-06 15:49:35 -04:00
Hamid Ghaf
89f08de845 HCP link integration (#16939) 
* HCP link integration

* update configure-git.yml

* more OSS stuff

* removing internal repos

* adding a nil check

* removing config test to be included in ENT only

* updating hcp-sdk-go to v0.22.0

* remove Hostname and AuthURL link config params

Co-authored-by: Chris Capurso <1036769+ccapurso@users.noreply.github.com>
 2022-09-06 14:11:04 -04:00
Violet Hynes
e0be62caf1 VAULT-6575 Vault agent respects retry config even with caching set (#16970) 
* VAULT-6575 Vault agent respects retry config even with caching set

* VAULT-6575 Add changelog

* VAULT-6575 Change log levels
 2022-09-06 10:35:54 -04:00
Mike Palmiotto
4099ca7704 Add deprecation status to auth/secrets list (#16849) 
* auth: Add Deprecation Status to auth list -detailed
* secrets: Add Deprecation Status to secrets list -detailed
* Add changelog entry for deprecation status list
 2022-08-31 16:11:14 -04:00
Christopher Swenson
9d97decb26 Update mount table and CLI with plugin version for auth (#16856) 2022-08-31 19:23:05 +01:00
aphorise
52493e314b Add systemd notify support to Agent. Resolves: #7028 (#9802) 
Agent systemd notify added similar to Consul. Resolves: #7028
 2022-08-29 08:18:47 -04:00
davidadeleon
a222dbfd29 command/debug: fix bug where monitor was not honoring configured duration (#16834) 
* Use specific client with longer timeout for log debug target

* add changelog

* update changelog entry
 2022-08-23 17:09:30 -04:00
Scott Miller
0d6a42c79e OSS portion of wrapper-v2 (#16811) 
* OSS portion of wrapper-v2

* Prefetch barrier type to avoid encountering an error in the simple BarrierType() getter

* Rename the OveriddenType to WrapperType and use it for the barrier type prefetch

* Fix unit test
 2022-08-23 15:37:16 -04:00
Max Coulombe
064854cb05 Env Flag Filtering (#16683) 
* added filtering for global flags

Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-08-17 21:29:16 -04:00
mickael-hc
43a5fcc9f4 dev docs: clarify internal and external token helpers (#13014) 
* dev docs: clarify internal and external token helpers

* Add docs for DefaultTokenHelper
 2022-08-16 16:48:24 -04:00
akshya96
02dbcb6bce Remove extra empty lines from vault.log - Debug command (#16714) 
* debug empty lines in vault.log

* minor grammar fix

* add changelog

* add fmt changes
 2022-08-15 14:16:57 -07:00
Chris Capurso
b9d4c0f48f VAULT-7256: Add custom_metadata to namespaces (#16640) 
* add mapstructure tags to Namespace struct

* add custom metadata Parse helper

* add ns custom metadata and patch
 2022-08-09 11:38:03 -04:00
Eng Zer Jun
6141d61839 refactor: replace strings.Replace with strings.ReplaceAll (#15392) 
strings.ReplaceAll(s, old, new) is a wrapper function for
strings.Replace(s, old, new, -1). But strings.ReplaceAll is more
readable and removes the hardcoded -1.

Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>
 2022-08-03 15:22:48 -04:00
swayne275
82f1216c83 Use %q for quoted strings where appropriate (#15216) 
* change '%s' to %q where single vs double quotes shouldn't matter

* replace double quotes with %q in logs and errors
 2022-08-03 12:32:45 -06:00
Jason O'Donnell
4bcc7e1bb3 agent: add disable_keep_alives configurable (#16479) 
agent: add disable_keep_alives config

Co-authored-by: Christopher Swenson <christopher.swenson@hashicorp.com>
 2022-07-28 12:59:49 -07:00
Chris Capurso
dc5133feaf ignore leading slash in kv get command (#16443) 
* ignore leading slash in kv get command

* add changelog entry
 2022-07-28 14:11:58 -04:00
Max Coulombe
2166d6ecf9 Added a small utility method to display warnings when parsing command arguments. (#16441) 
* Added a small utility method to display warnings when parsing command arguments

Will print warning if flag is passed after arguments e.g.
vault <command> -a b -c
In this example -c will be interpreted as an argument which may be misleading
 2022-07-27 14:00:03 -04:00
akshya96
dd891bc748 Validate parameters for vault operator init (#16379) 
* adding code changes to check parameters for vault operator init

* fixing defaults in cli

* fixing comments

* remove unused consts

* adding validate parameters test

* add changelog

* adding changes to validation

* adding fmt changes

* fixing test

* add test for auto unseal
 2022-07-25 12:45:04 -07:00
tdsacilowski
dac99be29d Agent JWT auto auth remove_jwt_after_reading config option (#11969) 
Add a new config option for Vault Agent's JWT auto auth
`remove_jwt_after_reading`, which defaults to true. Can stop
Agent from attempting to delete the file, which is useful in k8s
where the service account JWT is mounted as a read-only file
and so any attempt to delete it generates spammy error logs.

When leaving the JWT file in place, the read period for new
tokens is 1 minute instead of 500ms to reflect the assumption
that there will always be a file there, so finding a file does not
provide any signal that it needs to be re-read. Kubernetes
has a minimum TTL of 10 minutes for tokens, so a period of
1 minute gives Agent plenty of time to detect new tokens,
without leaving it too unresponsive. We may want to add a
config option to override these default periods in the future.

Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-07-25 07:42:09 -06:00
Jason O'Donnell
62cc6523c8 command/server: add dev-tls flag (#16421) 
* command/server: add dev-tls flag

* Add website documentation

* changelog

* Lower file permissions

* Update cert gen per review

* Add dev-tls-cert-dir flag and cert clean up

* fmt

* Update cert generation per review

* Remove unused function

* Add better error messages

* Log errors in cleanup, fix directory not existing bug

* Remove hidden flag from -dev-tls-cert-dir

* Add usage

* Update 16421.txt

* Update variable names for files

* Remove directory on cleanup
 2022-07-22 14:04:03 -04:00
Jason O'Donnell
522f14a47d command/audit: improve audit enable type missing error message (#16409) 
* command/audit: improve audit enable type missing error message

* changelog
 2022-07-21 16:43:50 -04:00
Mike Palmiotto
e804f74efa Fix agent use_auto_auth_token force test (#16313) 
Update the test to fix a copy-paste error.
 2022-07-15 19:12:59 -04:00
Jason O'Donnell
8a49422979 agent/template: fix exec parsing error for templates (#16231) 
* agent/template: fix exec parsing error for templates

* changelog
 2022-07-06 21:21:35 +01:00
akshya96
05b5ff9e72 Minor grammar correction in help for login command (#16211) 
* Minor grammar correction in help for login command

* Fix login command help

Co-authored-by: Pero P <ppejovic@users.noreply.github.com>
 2022-07-06 09:17:11 -07:00
Chris Capurso
3f9dbabfc1 Add endpoints to provide ability to modify logging verbosity (#16111) 
* add func to set level for specific logger

* add endpoints to modify log level

* initialize base logger with IndependentLevels

* test to ensure other loggers remain unchanged

* add DELETE loggers endpoints to revert back to config

* add API docs page

* add changelog entry

* remove extraneous line

* add log level field to Core struct

* add godoc for getLogLevel

* add some loggers to c.allLoggers
 2022-06-27 11:39:53 -04:00
Jason O'Donnell
e38f6e72a2 agent: add disable_idle_connections configurable (#15986) 
* agent: add disable_keep_alives configurable

* Add empty test

* Add website doc

* Change to disable_idle_connections

* Update tests and doc

* Add note about env

* Changelog

* Change to slice

* Remove unused disable keep alive methods

* Add invalid value test
 2022-06-16 18:06:22 -04:00
Josh Black
073527549b Correct drift between ENT and OSS (#15966) 2022-06-14 17:53:19 -07:00
Dave May
aa4768dbb6 Fix debug bundle panic on Windows (#14399) 
* Fix debug bundle panic on Windows

* Add changelog entry
 2022-06-09 15:57:45 -07:00
akshya96
f831b96259 Parse ha_storage in config (#15900) 
* parsing values in config ha_storage

* adding changelog

* adding test to parse storage
 2022-06-09 15:55:49 -07:00