upstream/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2026-02-03 20:40:45 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions 11

UI: add SSH role attribute allowed_domains_template (#23119)

Browse source
This commit is contained in:
Chelsea Shaw 2023-09-15 16:35:02 -05:00 committed by GitHub
parent e17a14d6b0
commit 3f9b6075aa
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 9 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
changelog/23119.txt Normal file
View file

@ -0,0 +1,3 @@
```release-note:improvement
ui: Added allowed_domains_template field for CA type role in SSH engine
```

7
ui/app/models/role-ssh.js
View file

@ -31,6 +31,7 @@ const CA_FIELDS = [
'allowedUsers',
'allowedUsersTemplate',
'allowedDomains',
'allowedDomainsTemplate',
'ttl',
'maxTtl',
'allowedCriticalOptions',
@ -76,12 +77,16 @@ export default Model.extend({
}),
allowedUsersTemplate: attr('boolean', {
helpText:
'Specifies that Allowed users can be templated e.g. {{identity.entity.aliases.mount_accessor_xyz.name}}',
'Specifies that Allowed Users can be templated e.g. {{identity.entity.aliases.mount_accessor_xyz.name}}',
}),
allowedDomains: attr('string', {
helpText:
'List of domains for which a client can request a certificate (e.g. `example.com`, or `*` to allow all)',
}),
allowedDomainsTemplate: attr('boolean', {
helpText:
'Specifies that Allowed Domains can be set using identity template policies. Non-templated domains are also permitted.',
}),
cidrList: attr('string', {
helpText: 'List of CIDR blocks for which this role is applicable',
}),