scottk/vault
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/vault.git synced 2025-12-27 15:54:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
16,124 Commits 2,630 Branches 341 Tags
f99420c92c81130ccdbcc1077458491d24d32c95
Commit Graph

1585 Commits

Author SHA1 Message Date
hc-github-team-secure-vault-core
f99420c92c backport of commit 82f998f071 (#18373) 
Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
 2022-12-14 14:47:16 -05:00
hc-github-team-secure-vault-core
74269e03d7 backport of commit 57017b626e (#18355) 
Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
 2022-12-13 15:16:22 -08:00
hc-github-team-secure-vault-core
7d71099921 backport of commit bb99bfa3bd (#18217) 
Co-authored-by: Ellie <ellie.sterner@hashicorp.com>
 2022-12-02 09:21:17 -06:00
hc-github-team-secure-vault-core
a6a842a990 backport of commit c7a38e78c6 (#18206) 
Co-authored-by: Ellie <ellie.sterner@hashicorp.com>
 2022-12-01 15:47:01 -06:00
hc-github-team-secure-vault-core
7197b1558c backport of commit 06b4def568 (#18202) 
Co-authored-by: Luis (LT) Carbonell <lt.carbonell@hashicorp.com>
 2022-12-01 14:33:22 -06:00
hc-github-team-secure-vault-core
8089a9219b backport of commit 3667f4b6a1 (#18001) 
Co-authored-by: Hamid Ghaf <83242695+hghaf099@users.noreply.github.com>
 2022-11-16 16:40:31 -08:00
hc-github-team-secure-vault-core
9f5f2109d8 backport of commit 467384d8d4 (#17887) 
Co-authored-by: Chris Capurso <1036769+ccapurso@users.noreply.github.com>
 2022-11-11 14:30:23 -05:00
hc-github-team-secure-vault-core
91ac95be1b backport of commit 80c2dec816 (#17759) 
Co-authored-by: Chris Capurso <1036769+ccapurso@users.noreply.github.com>
 2022-11-01 12:13:39 -04:00
hc-github-team-secure-vault-core
ed69142c08 backport of commit 50a2bb5c2d (#17698) 
Co-authored-by: Violet Hynes <violet.hynes@hashicorp.com>
 2022-10-27 08:06:00 -07:00
hc-github-team-secure-vault-core
dfc1a305b3 backport of commit 1a2ee3ab33 (#17681) 2022-10-26 17:51:15 -04:00
hc-github-team-secure-vault-core
de554642e0 backport of commit 3ace92c429 (#17579) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-10-18 10:06:15 -04:00
hc-github-team-secure-vault-core
1965f97f5a backport of commit 800d346f59 (#17567) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-10-17 11:00:56 -04:00
hc-github-team-secure-vault-core
cb811c7c94 backport of commit 06c0c6c882 (#17553) 
Co-authored-by: Peter Wilson <peter.wilson@hashicorp.com>
 2022-10-14 17:36:33 +01:00
hc-github-team-secure-vault-core
863d2f0ac0 backport of commit 4dd8fc6ed5 (#17458) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-10-07 16:22:16 +01:00
Mike Palmiotto
2c6f09a5c9 core: Parse VAULT_ALLOW_PENDING_REMOVAL_MOUNTS as bool (#17319) (#17365) 
* docs: Update VAULT_ALLOW_PENDING_REMOVAL_MOUNTS doc
 2022-09-30 09:23:01 -04:00
hc-github-team-secure-vault-core
a005d6e76e backport of commit d467681e15 (#17361) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-09-30 05:49:40 -04:00
hc-github-team-secure-vault-core
ed3cf6cd21 backport of commit 6be838e9e2 (#17303) 
Co-authored-by: Chris Capurso <1036769+ccapurso@users.noreply.github.com>
 2022-09-23 10:59:36 -04:00
hc-github-team-secure-vault-core
0c8e7de76a backport of commit 6fc78315f7 (#17267) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-09-23 07:41:22 -04:00
hc-github-team-secure-vault-core
f65f06eaf5 backport of commit 66d6048da0 (#17295) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-09-23 03:12:19 -07:00
hc-github-team-secure-vault-core
b669880e82 backport of commit 21d13633d7 (#17284) 
Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-09-22 16:14:33 -04:00
Tom Proctor
d6d03ac373 Plugins: Consistently use plugin_version (#17171) 
* Delete Sha field, rename RunningSha -> RunningSha256
* Rename version -> plugin_version
 2022-09-20 12:35:50 +01:00
Austin Gebauer
e1d67836e9 Adds ldap secrets to plugin registry and updates to v0.9.0 (#17152) 
* Adds ldap secrets to plugin registry and updates to v0.9.0

* adds changelog

* fix test
 2022-09-15 22:19:24 -07:00
Jason O'Donnell
8fddccdff0 agent/auto-auth: add exit_on_err configurable (#17091) 
* agent/auto-auth: add exit_on_err configurable

* changelog

* Update backoff function to quit

* Clarify doc

* Fix test
 2022-09-15 11:00:31 -07:00
georgethebeatle
3088b139f8 Make key completion work for both kv-v1 and kv-v2 (#16553) 
Co-authored-by: Kieron Browne <kbrowne@vmware.com>
Co-authored-by: Georgi Sabev <georgethebeatle@gmail.com>
Co-authored-by: Danail Branekov <danailster@gmail.com>
 2022-09-13 12:11:00 -04:00
Hamid Ghaf
a9138889f0 updating hcp link structs, and fix diagnose (#17097) 2022-09-12 11:10:01 -04:00
Max Coulombe
53cc12b649 + added redis elasticache as a built-in plugin (#17075) 
* added redis elasticache as a built-in plugin
 2022-09-09 16:16:30 -04:00
Mike Palmiotto
63e6cc1d66 Add deprecation status to plugin api and cli (#17077) 
* api: Add deprecation status to plugin endpoints

* cli: Add -detailed flag to `plugin list`

* docs: Update plugin list/info docs
 2022-09-09 16:03:07 -04:00
Milena Zlaticanin
c73aedf042 Import Redis OSS database plugin into Vault (#17070) 
* Import Redis OSS database plugin into Vault

* update the total number of db plugins

* small nit for testing

* adding changelog
 2022-09-09 13:42:25 -05:00
Josh Black
03d2be4cb9 update gofumpt to 0.3.1 and reformat the repo (#17055) 
* update gofumpt to 0.3.1 and reformat the repo

* output the version of the formatter we're using
 2022-09-07 17:31:20 -07:00
Mike Palmiotto
469b2db53c Mark database-specific secrets engines Pending Removal (#17038) 
* plugins: Mark standalone database plugins Pending Removal
* Add changelog
 2022-09-07 10:45:09 -04:00
Mike Palmiotto
13077bab40 Handle deprecated builtins (#17005) 
* core: Handle deprecated mounts on enable and unseal
* changelog: Deprecation Status handling
* core: Add Pending Removal override var
* core: Add some documentation for Pending Removal override
 2022-09-06 15:49:35 -04:00
Hamid Ghaf
89f08de845 HCP link integration (#16939) 
* HCP link integration

* update configure-git.yml

* more OSS stuff

* removing internal repos

* adding a nil check

* removing config test to be included in ENT only

* updating hcp-sdk-go to v0.22.0

* remove Hostname and AuthURL link config params

Co-authored-by: Chris Capurso <1036769+ccapurso@users.noreply.github.com>
 2022-09-06 14:11:04 -04:00
Violet Hynes
e0be62caf1 VAULT-6575 Vault agent respects retry config even with caching set (#16970) 
* VAULT-6575 Vault agent respects retry config even with caching set

* VAULT-6575 Add changelog

* VAULT-6575 Change log levels
 2022-09-06 10:35:54 -04:00
Mike Palmiotto
4099ca7704 Add deprecation status to auth/secrets list (#16849) 
* auth: Add Deprecation Status to auth list -detailed
* secrets: Add Deprecation Status to secrets list -detailed
* Add changelog entry for deprecation status list
 2022-08-31 16:11:14 -04:00
Christopher Swenson
9d97decb26 Update mount table and CLI with plugin version for auth (#16856) 2022-08-31 19:23:05 +01:00
aphorise
52493e314b Add systemd notify support to Agent. Resolves: #7028 (#9802) 
Agent systemd notify added similar to Consul. Resolves: #7028
 2022-08-29 08:18:47 -04:00
davidadeleon
a222dbfd29 command/debug: fix bug where monitor was not honoring configured duration (#16834) 
* Use specific client with longer timeout for log debug target

* add changelog

* update changelog entry
 2022-08-23 17:09:30 -04:00
Scott Miller
0d6a42c79e OSS portion of wrapper-v2 (#16811) 
* OSS portion of wrapper-v2

* Prefetch barrier type to avoid encountering an error in the simple BarrierType() getter

* Rename the OveriddenType to WrapperType and use it for the barrier type prefetch

* Fix unit test
 2022-08-23 15:37:16 -04:00
Max Coulombe
064854cb05 Env Flag Filtering (#16683) 
* added filtering for global flags

Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-08-17 21:29:16 -04:00
mickael-hc
43a5fcc9f4 dev docs: clarify internal and external token helpers (#13014) 
* dev docs: clarify internal and external token helpers

* Add docs for DefaultTokenHelper
 2022-08-16 16:48:24 -04:00
akshya96
02dbcb6bce Remove extra empty lines from vault.log - Debug command (#16714) 
* debug empty lines in vault.log

* minor grammar fix

* add changelog

* add fmt changes
 2022-08-15 14:16:57 -07:00
Chris Capurso
b9d4c0f48f VAULT-7256: Add custom_metadata to namespaces (#16640) 
* add mapstructure tags to Namespace struct

* add custom metadata Parse helper

* add ns custom metadata and patch
 2022-08-09 11:38:03 -04:00
Eng Zer Jun
6141d61839 refactor: replace strings.Replace with strings.ReplaceAll (#15392) 
strings.ReplaceAll(s, old, new) is a wrapper function for
strings.Replace(s, old, new, -1). But strings.ReplaceAll is more
readable and removes the hardcoded -1.

Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>
 2022-08-03 15:22:48 -04:00
swayne275
82f1216c83 Use %q for quoted strings where appropriate (#15216) 
* change '%s' to %q where single vs double quotes shouldn't matter

* replace double quotes with %q in logs and errors
 2022-08-03 12:32:45 -06:00
Jason O'Donnell
4bcc7e1bb3 agent: add disable_keep_alives configurable (#16479) 
agent: add disable_keep_alives config

Co-authored-by: Christopher Swenson <christopher.swenson@hashicorp.com>
 2022-07-28 12:59:49 -07:00
Chris Capurso
dc5133feaf ignore leading slash in kv get command (#16443) 
* ignore leading slash in kv get command

* add changelog entry
 2022-07-28 14:11:58 -04:00
Max Coulombe
2166d6ecf9 Added a small utility method to display warnings when parsing command arguments. (#16441) 
* Added a small utility method to display warnings when parsing command arguments

Will print warning if flag is passed after arguments e.g.
vault <command> -a b -c
In this example -c will be interpreted as an argument which may be misleading
 2022-07-27 14:00:03 -04:00
akshya96
dd891bc748 Validate parameters for vault operator init (#16379) 
* adding code changes to check parameters for vault operator init

* fixing defaults in cli

* fixing comments

* remove unused consts

* adding validate parameters test

* add changelog

* adding changes to validation

* adding fmt changes

* fixing test

* add test for auto unseal
 2022-07-25 12:45:04 -07:00
tdsacilowski
dac99be29d Agent JWT auto auth remove_jwt_after_reading config option (#11969) 
Add a new config option for Vault Agent's JWT auto auth
`remove_jwt_after_reading`, which defaults to true. Can stop
Agent from attempting to delete the file, which is useful in k8s
where the service account JWT is mounted as a read-only file
and so any attempt to delete it generates spammy error logs.

When leaving the JWT file in place, the read period for new
tokens is 1 minute instead of 500ms to reflect the assumption
that there will always be a file there, so finding a file does not
provide any signal that it needs to be re-read. Kubernetes
has a minimum TTL of 10 minutes for tokens, so a period of
1 minute gives Agent plenty of time to detect new tokens,
without leaving it too unresponsive. We may want to add a
config option to override these default periods in the future.

Co-authored-by: Tom Proctor <tomhjp@users.noreply.github.com>
 2022-07-25 07:42:09 -06:00
Jason O'Donnell
62cc6523c8 command/server: add dev-tls flag (#16421) 
* command/server: add dev-tls flag

* Add website documentation

* changelog

* Lower file permissions

* Update cert gen per review

* Add dev-tls-cert-dir flag and cert clean up

* fmt

* Update cert generation per review

* Remove unused function

* Add better error messages

* Log errors in cleanup, fix directory not existing bug

* Remove hidden flag from -dev-tls-cert-dir

* Add usage

* Update 16421.txt

* Update variable names for files

* Remove directory on cleanup
 2022-07-22 14:04:03 -04:00