scottk/vault
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/vault.git synced 2025-11-07 22:13:12 +00:00
Code Issues Packages Projects Releases Wiki Activity
17,033 Commits 2,630 Branches 341 Tags
ef901b1bc47d6f0eb96fe83fe67d77873ddad3bd
Commit Graph

21 Commits

Author SHA1 Message Date
Karel
5631e806c2 Fix: Optionally reload x509 key-pair from disk on agent auto-auth (#19002) 
* Optionally reload x509 key-pair from disk

* Document 'reload' config value

* Added changelog release note
 2023-03-22 11:01:58 -04:00
Violet Hynes
c4f9648832 Update auto-auth docs to remove tilde for home (#19548) 
* Update auto-auth docs to remove tilde for home

* Extra clean-up
 2023-03-15 09:35:43 -04:00
Francis Chuang
789406ca90 Add Oracle Cloud auth to the Vault Agent (#19260) 
* Add Oracle Cloud auth to the Vault Agent

* Use ParseDurationSecond to parse credential_poll_interval

* Use os.UserHomeDir()
 2023-03-15 09:08:52 -04:00
Violet Hynes
5581c26859 VAULT-12798 Correct removal behaviour when JWT is symlink (#18863) 
* VAULT-12798 testing for jwt symlinks

* VAULT-12798 Add testing of jwt removal

* VAULT-12798 Update docs for clarity

* VAULT-12798 Small change, and changelog

* VAULT-12798 Lstat -> Stat

* VAULT-12798 remove forgotten comment

* VAULT-12798 small refactor, add new config item

* VAULT-12798 Require opt-in config for following symlinks for JWT deletion

* VAULT-12798 change changelog
 2023-03-14 15:44:19 -04:00
Bryce Kalow
79f6ff191c update learn links to point to developer locations (#19026) 2023-02-06 20:34:51 -08:00
Ashlee M Boyer
06df5b9d95 docs: Migrate link formats (#18696) 
* Adding check-legacy-links-format workflow

* Adding test-link-rewrites workflow

* Updating docs-content-check-legacy-links-format hash

* Migrating links to new format

Co-authored-by: Kendall Strautman <kendallstrautman@gmail.com>
 2023-01-25 16:12:15 -08:00
Violet Hynes
46c7f7e3b0 VAULT-12564 Docs for token file auth method (#18783) 
* VAULT-12564 Docs for token file auth method

* VAULT-12564 fix typo

* VAULT-12564 nav data

* VAULT-12564 Add note, remove token file removal config

* VAULT-12564 stronger wording

* VAULT-12564 auth -> auto-auth
 2023-01-25 11:21:22 -05:00
tdsacilowski
dac99be29d Agent JWT auto auth remove_jwt_after_reading config option (#11969) 
Add a new config option for Vault Agent's JWT auto auth
`remove_jwt_after_reading`, which defaults to true. Can stop
Agent from attempting to delete the file, which is useful in k8s
where the service account JWT is mounted as a read-only file
and so any attempt to delete it generates spammy error logs.

When leaving the JWT file in place, the read period for new
tokens is 1 minute instead of 500ms to reflect the assumption
that there will always be a file there, so finding a file does not
provide any signal that it needs to be re-read. Kubernetes
has a minimum TTL of 10 minutes for tokens, so a period of
1 minute gives Agent plenty of time to detect new tokens,
without leaving it too unresponsive. We may want to add a
config option to override these default periods in the future.

Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-07-25 07:42:09 -06:00
Austin Gebauer
c6173f64bf auth/gcp: adds note on custom endpoints to configuration section (#15990) 2022-06-15 10:06:58 -07:00
Calvin Leung Huang
57b9ff857b docs: update agent sections around auto-auth, caching, and templating (#15195) 
* docs: update agent sections around auto-auth, caching, and templating

* Update website/content/docs/agent/template.mdx

Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>

* address review feedback

* Example snippet updates

* review feedback on example note

* address review feedback

* use hcl syntax highlight on code blocks

* simplify exec param description

Co-authored-by: Yoko Hyakuna <yoko@hashicorp.com>
 2022-04-29 12:10:48 -07:00
Jim Kalafut
642a60ace0 Fix docs typo (#15023) 2022-04-13 12:45:28 -07:00
Loann Le
10833d4d63 updated references from learn to tutorial (#14867) 2022-04-04 10:05:16 -07:00
Loann Le
93472f303e updated references from learn to tutorial (#14866) 2022-04-04 10:04:50 -07:00
Yoko Hyakuna
990cd8b929 Fix broken links referencing to API docs (#14565) 
* Fix all '/api/' to '/api-docs/'

* Minor fixes

* Undo some of the unintentional changes
 2022-03-17 18:14:48 -07:00
Austin Gebauer
9b1511472f agent/azure: adds ability to use specific user-assigned managed identities for auto auth (#14214) 
* agent/azure: adds ability to use specific user assigned managed identity for auto auth

* add changelog

* change wording in error and docs

* Update website/content/docs/agent/autoauth/methods/azure.mdx

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>

* Update website/content/docs/agent/autoauth/methods/azure.mdx

Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>

* docs formatting

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-02-23 11:43:36 -08:00
DJCrabhat
7d2fa4323e Add nonce configuration parameter to agent AWS auto-auth documentation (#10926) 
* Update aws.mdx

Was looking how to give the vault agent with AWS auth-auth the same nonce, but saw it wasn't documented.  Dove through the code, found https://github.com/hashicorp/vault/blob/master/command/agent/auth/aws/aws.go#L139 and https://github.com/hashicorp/vault/blob/master/command/agent/auth/aws/aws.go#L215 

(tried to call out the importance and point to docs, know setting `nonce` poorly could be very bad!)

* add line breaks

* Apply suggestions from code review

Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>

Co-authored-by: hghaf099 <83242695+hghaf099@users.noreply.github.com>
Co-authored-by: Loann Le <84412881+taoism4504@users.noreply.github.com>
 2021-10-13 10:45:34 -04:00
Pratyoy Mukhopadhyay
77348cacef Remove deprecated reauth function from docs (#12482) 2021-09-03 06:09:21 -07:00
Mike Green
91bb2cebc2 Add agent approle method example (#12297) 2021-08-19 11:03:57 -04:00
Austin Gebauer
98db3a089f Update GCP auth docs for signJwt transition to Service Account Credentials API (#11568) 2021-05-11 16:57:12 -07:00
Bryce Kalow
e27b43c482 feat(website): migrates nav data format and updates docs pages (#11242) 
* migrates nav data format and updates docs pages

* removes sidebar_title from content files
 2021-04-06 13:49:04 -04:00
Jeff Escalante
179df992c0 Implement MDX Remote (#10581) 
* implement mdx remote

* fix an unfenced code block

* fix partials path

Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
 2020-12-17 16:53:33 -05:00