This project is mirrored from https://gitee.com/NQL886/vault.git.
Pull mirroring failed .
Repository mirroring has been paused due to too many failed attempts. It can be resumed by a project maintainer.
Repository mirroring has been paused due to too many failed attempts. It can be resumed by a project maintainer.
- 16 Nov, 2021 9 commits
-
-
Nick Cabatoff authored
-
Nick Cabatoff authored
-
Nick Cabatoff authored
* Add AllowMissing to local_bucket_key schema, preventing startup failures in post-unseal when aliases from an older version exist.
-
Nick Cabatoff authored
-
Austin Gebauer authored
-
Austin Gebauer authored
-
Chelsea Shaw authored
* Hide verify-connection attribute on connection config show page * Add changelog
-
Yoko Hyakuna authored
* Remove old guides folder and its contents * Remove the guide-nav file * Remove the guides page
-
Loann Le authored
* new document for feature deprecation notice * fixed errors * Update website/content/docs/feature-deprecation-notice.mdx Co-authored-by:
Meggie <meggie@hashicorp.com> * Update website/content/docs/feature-deprecation-notice.mdx Co-authored-by:
Rosemary Wang <915624+joatmon08@users.noreply.github.com> * Update website/content/docs/feature-deprecation-notice.mdx Co-authored-by:
John-Michael Faircloth <fairclothjm@users.noreply.github.com> * Update website/content/docs/concepts/oidc-provider.mdx Co-authored-by:
Austin Gebauer <34121980+austingebauer@users.noreply.github.com> * updated final release notes * updated image * fixed link * added a new hyperlink to the etcd document * add and modify notes; update scope template * break identity docs into separate pages * fix nav for identity token * fix nav links; add links on overview * use real example IDs * fix typos * incorporated additional feedback Co-authored-by:
JM Faircloth <jmfaircloth@hashicorp.com>
-
- 15 Nov, 2021 7 commits
-
-
Matt Schultz authored
* Return HTTP 400s on transit decrypt requests where decryption fails. (#10842) * Don't abort transit batch encryption when a single batch item fails. * Add unit tests for updated transit batch decryption behavior. * Add changelog entry for transit encrypt/decrypt batch abort fix. * Simplify transit batch error message generation when ciphertext is empty. * Return error HTTP status codes in transit on partial batch decrypt failure. * Return error HTTP status codes in transit on partial batch encrypt failure. * Properly account for non-batch transit decryption failure return. Simplify transit batch decryption test data. Ensure HTTP status codes are expected values on batch transit batch decryption partial failure. * Properly account for non-batch transit encryption failure return. Actually return error HTTP status code on transit batch encryption failure (partial or full).
-
Chelsea Shaw authored
-
Rémi Lapeyre authored
-
Yoko Hyakuna authored
-
Steven Clark authored
* Add extra debugging to help identify failures within mssql test * Switch up the AssertInitialized method for mssql tests by marking the test as failed instead of immediately failing, this will also allow us to see what happens even if this assertion fails to the rest of the test.
-
Jordan Reimer authored
* fixes issue with oidc auth method when MetaMask chrome extenstion is used * adds changelog entry * updates auth-jwt integration tests * fixes race condition in runCommands ui-panel helper method where running multiple commands would not always result in the same output order
-
Steven Clark authored
This reverts commit 82d66627.
-
- 12 Nov, 2021 7 commits
-
-
Scott Miller authored
* Move the ctx capture outside the goroutine to avoid a race * refactor the toggleable wrapper to avoid races * Move the capture back outside the goroutine * defer
-
Hridoy Roy authored
* some client count docs updates * Update website/content/docs/concepts/client-count.mdx Co-authored-by:
swayne275 <swayne275@gmail.com> * remove full link path * more path shortening for urls Co-authored-by:
-
Steven Clark authored
- Add a new top level configuration stanza named kms_library with Vault's SharedConfig struct
-
Hridoy Roy authored
* docs for counting tokens without entities * Update website/content/docs/concepts/client-count.mdx Co-authored-by:
Nick Cabatoff <ncabatoff@hashicorp.com> * Update website/content/docs/concepts/client-count.mdx Co-authored-by:
Loann Le <84412881+taoism4504@users.noreply.github.com> * Update website/content/docs/concepts/client-count.mdx Co-authored-by:
-
VAL authored
* Add native Login method for GCP auth backend * Add native Login method for Azure auth backend * Add changelog entry * Use official azure library Environment struct rather than passing string, add timeouts * Use v1.3.0 which now has interface definition * Don't throw away error and close resp body * Back to WithResource so we can support non-Azure URLs for aud
-
Alexander Scheel authored
* Restrict ECDSA signatures with NIST P-Curve hashes When using an ECDSA signature with a NIST P-Curve, we should follow recommendations from BIS (Section 4.2) and Mozilla's root store policy (section 5.1.2) to ensure that arbitrary selection of signature_bits does not exceed what the curve is capable of signing. Related: #11245 Signed-off-by:
Alexander Scheel <alex.scheel@hashicorp.com> * Switch to certutil.ValidateKeyTypeSignatureLength(...) Replaces previous calls to certutil.ValidateKeyTypeLength(...) and certutil.ValidateSignatureLength(...) with a single call, allowing for curve<->hash validation. Signed-off-by:
-
claire bontempo authored
* customizes empty state messages for transit and transform * adds changelog * clarifies key name
-
- 11 Nov, 2021 4 commits
-
-
swayne275 authored
-
Yoko Hyakuna authored
* Redirect /guies to https://learn.hashicorp.com * Add link to Troubleshooting guide
-
vinay-gopalan authored
-
skhilar authored
-
- 10 Nov, 2021 7 commits
-
-
vinay-gopalan authored
-
Arnav Palnitkar authored
* Add message while adding Oracle db connection - Since UI currently doesn't have support for custom plugin names, inform user to use the default plugin name for oracle * Updated warning message * Updated message
-
Chelsea Shaw authored
-
Scott Miller authored
* Add a periodic test of the autoseal to detect loss of connectivity * Keep the logic adjacent to autoseal * imports * typo, plus unnecessary constant time compare * changelog * pr feedback * More feedback * Add locking and a unit test * unnecessary * Add timeouts to encrypt/decrypt operations, capture activeContext before starting loop * Add a block scope for the timeout * copy/paste ftl * Refactor to use two timeouts, and cleanup the repetitive failure code * Readd 0ing gauge * use millis * Invert the unit test logic
-
John-Michael Faircloth authored
* return full issuer uri on read provider * remove err check * simplify full issuer logic
-
Loann Le authored
-
Jonas-Taha El Sesiy authored
-
- 09 Nov, 2021 6 commits
-
-
VAL authored
-
swayne275 authored
* add api lock doc * add docs nav data * Update website/content/api-docs/system/namespaces.mdx Co-authored-by:
Chris Capurso <christopher.capurso@gmail.com> * update command doc * clarify locked http status code * add example exempt path * further exempt clarification * link api locked response * add x-vault-namespace api example * Update website/content/docs/concepts/namespace-api-lock.mdx Co-authored-by:
-
Jordan Reimer authored
* fixes issue removing raft peer via cli not reflected in UI until refresh * adds changelog entry
-
Chelsea Shaw authored
-
swayne275 authored
* update activity log to use core's activeContext for cleaner worker termination * update tests to use core activeContext instead of generic context * pass context around instead * revert context change * undo test context changes * change worker context * accidentally undid context for fcn signature changes
-
Steven Clark authored
-
