Laura Uva
9abac4fd93
Fixed the link to the section on generating DR operation token for promoting secondary. ( #3766 )
2018-01-09 10:02:09 -06:00
Brian Shumate
9cac2a0ac1
Docs: add DR secondary/active HTTP 472 code ( #3748 )
2018-01-03 15:07:36 -05:00
Jeff Mitchell
d6552a11cc
Merge branch 'master-oss' into sethvargo/cli-magic
2018-01-03 14:02:31 -05:00
Jon Davies
f57329a37a
s3.go: Added options to use paths with S3 and the ability to disable SSL ( #3730 )
2018-01-03 12:11:00 -05:00
Brian Nuszkowski
326e1ab24c
Update '/auth/token/revoke-self' endpoint documentation to reflect the proper response code ( #3735 )
2018-01-03 12:09:43 -05:00
Didi Kohen
ec8befbaac
Clarify that keybase is supported only in the CLI ( #3744 )
2018-01-03 11:18:38 -05:00
dmwilcox
ad0a39dfe1
Update docs to reflect ability to load cold CA certs to output full chains. ( #3740 )
2018-01-03 10:59:18 -05:00
Alexandre Nicastro
3108692119
docs: fix typo (change 'a' to 'an' - indefinite article) ( #3741 )
2018-01-03 10:47:15 -05:00
markpaine
68f87ba6f6
Spelling correction. "specifig" -> "specific" ( #3739 )
2018-01-03 10:38:55 -05:00
markpaine
6201056f11
Spelling correction "datatabse" -> "database" ( #3738 )
2018-01-03 10:38:16 -05:00
Brian Shumate
f25f546eb9
Docs: Updated Telemetry documentation ( #3722 )
2017-12-26 13:51:15 -05:00
Brian Shumate
2c5b6909c9
Update backend config docs - addresses #3718 ( #3724 )
2017-12-26 13:48:45 -05:00
Jeff Mitchell
9c7e739ee7
Port website changes from ent side
2017-12-21 09:00:35 -05:00
Jeff Mitchell
b9714386a6
Bump vars for 0.9.1
2017-12-21 08:39:41 -05:00
Jeff Mitchell
f9f64572f5
Clarify control group APIs are enterprise only.
...
Fixes #3702
2017-12-19 11:00:02 -05:00
Calvin Leung Huang
40b8314c4d
Add period and max_ttl to cert role creation ( #3642 )
2017-12-18 15:29:45 -05:00
Roger Berlind
b5b77d29dc
Added example for Azure SQL Database ( #3700 )
2017-12-18 13:55:56 -05:00
Travis Cosgrave
95328e2fb4
Use Custom Cert Extensions as Cert Auth Constraint ( #3634 )
2017-12-18 12:53:44 -05:00
Jeff Mitchell
4f31ee7cc8
Merge branch 'master' into f-nomad
2017-12-18 12:23:39 -05:00
Ernest W. Durbin III
a6c0194b68
Correct documentation for Kubernetes Auth Plugin ( #3708 )
2017-12-18 12:12:08 -05:00
James Nugent
7480287181
physical/dynamodb: Clarify ha_enabled type ( #3703 )
...
The example in the documentation correctly passes a quoted boolean (i.e.
true or false as a string) instead of a "real" HCL boolean. This commit
corrects the parameter list to document that fact.
While it would be more desirable to change the implementation to accept
an unquoted boolean, it seems that the use of `hcl.DecodeObject` for
parameters which are not common to all storage back ends would make this
a rather more involved change than this necessarily warrants.
2017-12-18 09:30:29 -05:00
James Nugent
eb0cd8c29b
docs: Add correct method for mlock on systemd ( #3704 )
...
Although the previously described method of running setcap works if
setcap is available, the built-in LimitMEMLOCK directive is better.
2017-12-18 09:29:37 -05:00
Raja Nadar
bb667bf109
added the missing nonce and type fields ( #3694 )
2017-12-17 16:26:07 -05:00
Chris Hoffman
737dbca37a
fixing up config to allow environment vars supported by api client
2017-12-17 09:10:56 -05:00
Chris Hoffman
6c19fa3b78
Merge remote-tracking branch 'oss/master' into f-nomad
...
* oss/master:
Add support for encrypted TLS key files (#3685 )
2017-12-15 19:51:28 -05:00
Chris Hoffman
098c66a624
Add support for encrypted TLS key files ( #3685 )
2017-12-15 17:33:55 -05:00
Chris Hoffman
152b6e4305
address some feedback
2017-12-15 17:06:56 -05:00
Jeff Mitchell
96b0c31de5
Merge branch 'master' into f-nomad
2017-12-14 16:44:28 -05:00
Vishal Nayak
c38f9884ce
Transit: backup/restore ( #3637 )
2017-12-14 12:51:50 -05:00
Brian Shumate
6395252068
Docs: fix typo in libtool ltdl name and link to avoid confusion and note about arch ( #3644 )
2017-12-11 13:42:19 -05:00
Brian Shumate
912ec80ad8
Docs: Update PKI URL config examples to FQDN — addresses #3606 ( #3647 )
2017-12-11 13:25:59 -05:00
Chris Hoffman
628153979a
Converting key_usage and allowed_domains in PKI to CommaStringSlice ( #3621 )
2017-12-11 13:13:35 -05:00
Paulo Ribeiro
a179a1804d
Remove duplicate link in ToC ( #3671 )
2017-12-11 12:52:58 -05:00
Brian Shumate
62097160e5
Docs: Update PKI output examples - addresses #3606 ( #3628 )
2017-12-11 11:57:07 -05:00
Jeff Mitchell
32a7503b89
Cross reference pki/cert in a few places.
2017-12-11 11:10:28 -05:00
Brad Sickles
dc70b1c21f
Adding mfa support to okta auth backend. ( #3653 )
2017-12-07 14:17:42 -05:00
Brian Shumate
c767dc4ed6
Conditionally set file audit log mode ( #3649 )
2017-12-07 11:44:15 -05:00
Mohsen
77fc89088d
Small typo relating to no_store in pki secret backend ( #3662 )
...
* Removed typo :)
* Corrected typo in the website related to no_store
2017-12-07 10:40:21 -05:00
Brian Kassouf
f700c64551
Remove the note about GKE from the Kubernetes docs ( #3658 )
2017-12-06 13:38:00 -05:00
Calvin Leung Huang
a9e7dbb7b4
Support MongoDB session-wide write concern ( #3646 )
...
* Initial work on write concern support, set for the lifetime of the session
* Add base64 encoded value support, include docs and tests
* Handle error from json.Unmarshal, fix test and docs
* Remove writeConcern struct, move JSON unmarshal to Initialize
* Return error on empty mapping of write_concern into mgo.Safe struct
2017-12-05 15:31:01 -05:00
Calvin Leung Huang
208dc55830
Clarify api_addr related errors on VaultPluginTLSProvider ( #3620 )
...
* Mention api_addr on VaultPluginTLSProvider logs, update docs
* Clarify message and mention automatic api_address detection
* Change error message to use api_addr
* Change error messages to use api_addr
2017-12-05 12:01:35 -05:00
Laura Uva
291edb9746
Update example payload and response for pem_keys field which needs \n after header and before footer in order to be accepted as a valid RSA or ECDSA public key ( #3632 )
2017-12-04 12:12:58 -05:00
Brian Shumate
61eac778cc
Docs: Update /sys/policies/ re: beta refs to address #3624 ( #3629 )
2017-12-04 12:10:26 -05:00
Jeff Mitchell
063f3d575e
Update secrets page
...
Fixes #3623
2017-12-04 12:05:34 -05:00
Jeff Mitchell
a898bd272d
Remove beta notice
2017-12-04 08:25:16 -08:00
Chris Hoffman
effeb02afa
Expanding on the quick start guide with how to set up an intermediate authority ( #3622 )
2017-12-04 11:23:58 -05:00
Brian Shumate
0a53ea27bf
Docs: mlock() notes, fixes #3605 ( #3614 )
2017-12-04 10:56:16 -05:00
crdotson
9692cde57f
Fix spelling ( #3609 )
...
changed "aomma" to "comma"
2017-12-04 10:53:58 -05:00
csawyerYumaed
e2cdbf4913
update relatedtools, add Goldfish UI. ( #3597 )
...
Add link to Goldfish a web UI for Vault.
2017-12-04 10:51:16 -05:00
Paul Pieralde
3b56130f10
Fix docs for Transit API ( #3588 )
2017-12-04 10:34:05 -05:00
Jeff Mitchell
14b43deb05
Update cassandra docs with consistency value.
...
Fixes #3361
2017-12-02 14:18:23 -05:00
Marc Sensenich
100ec6c292
Remove Trailing White space in Kubernetes Doc ( #3360 )
...
Removed a trailing white space from which caused `Error loading data: Invalid key/value pair ' ': format must be key=value` if copying the example
```
vault write auth/kubernetes/role/demo \
bound_service_account_names=vault-auth \
bound_service_account_namespaces=default \
policies=default \
ttl=1h
```
2017-12-02 14:12:39 -05:00
immutability
b64a416101
Missing command for vault PUT operation ( #3355 )
2017-12-02 13:43:37 -05:00
Jeff Mitchell
49af594287
Update some rekey docs
...
Fixes #3306
2017-12-02 13:34:52 -05:00
Nicolas Corrarello
ea66973fcb
Fix docs up to current standards
...
Signed-off-by: Nicolas Corrarello <nicolas@corrarello.com>
2017-11-29 16:53:42 +00:00
Nicolas Corrarello
12e77fac51
Rename policy into policies
2017-11-29 16:31:17 +00:00
Nicolas Corrarello
a3df394134
Pull master into f-nomad
...
Signed-off-by: Nicolas Corrarello <nicolas@corrarello.com>
2017-11-29 15:56:37 +00:00
Laura Uva
d3a2844a75
Added clarification to KV documentation about default CLI behavior and how to preserve non-string type values ( #3596 )
2017-11-27 11:43:49 -05:00
Brian Shumate
4e69240ad2
Docs: policy update for multiple policies, fixes #3611 ( #3613 )
2017-11-27 09:54:38 -05:00
mariachugunova
1d2a38028a
Fix typo in s3 storage backend docs ( #3603 )
2017-11-23 13:28:33 -08:00
Vishal Nayak
0f8e4c826c
docs: encryption/decryption now supports asymmetric keys ( #3599 )
2017-11-21 12:25:28 -05:00
Jeff Mitchell
09740f8525
Update upgrade guide with HSM info
2017-11-16 11:04:46 -05:00
Vishal Nayak
0fccc908d0
Docs: Remove 'none' as algorithm options ( #3587 )
2017-11-15 09:09:45 -05:00
Jeff Mitchell
89809168fe
Add now-necessary mfa import to sentinel MFA example
2017-11-14 21:42:43 -05:00
Brian Kassouf
f67feaea20
Add token_reviewer_jwt to the kubernetes docs ( #3586 )
2017-11-14 13:27:09 -08:00
Chris Hoffman
95d4f68d26
adding licensing docs ( #3585 )
2017-11-14 16:15:09 -05:00
Paul Pieralde
ce49d77f86
Docs change for Policy API ( #3584 )
...
vault 0.9.0 deprecated the term `rules` in favor of the
term `policy` in several of the /sys/policy APIs.
The expected return state of 200 SUCCESS_NO_DATA only happens
if the `policy` term is used. A response including the
deprecation notice and a 204 SUCCESS_WITH_DATA status code
is returned when `rules` is applied.
2017-11-14 14:26:26 -05:00
Vishal Nayak
e9ebdca66d
Upgrade to 0.9 ( #3583 )
...
* Upgrade to 0.9
* Add link to sidebar
* Remove items that were already in 0.8 upgrade guide
2017-11-14 13:32:09 -05:00
Vishal Nayak
16b1cbacc1
Doc: Add groups to identity concepts ( #3581 )
...
* Add groups to the concepts page
* s/pulled-in and pulled-out/synced against
* Remove double spaces
2017-11-14 13:27:49 -05:00
Seth Vargo
355fc65464
Flip seal pages upside down to put examples first
2017-11-14 13:12:35 -05:00
Seth Vargo
09366b573c
Add an auto-unseal page to the docs
...
This helps with SEO and also is where I'd expect auto unsealing to be referenced.
2017-11-14 13:12:20 -05:00
Seth Vargo
249417481f
Use super to show enterprise
2017-11-14 13:11:55 -05:00
Jeff Mitchell
8a9d2e7df9
Minor website wording updates
2017-11-14 12:34:28 -05:00
Jeff Mitchell
e56f1beda9
Fix some broken links
2017-11-14 12:32:03 -05:00
Jeff Mitchell
f056cf9119
Sync docs
2017-11-14 06:13:11 -05:00
Vishal Nayak
b659e94a3b
API refactoring and doc updates ( #3577 )
...
* Doc updates and API refactoring
* fix tests
* change metadata fieldtype to TypeKVPairs
* Give example for TypeKVPairs in CLI for metadata
* Update API docs examples to reflect the native expected value for TypeKVPairs
* Don't mention comma separation in the docs for TypeCommaStringSlice
* s/groups/group; s/entities/entity; s/entity-aliases/entity-alias; s/group-aliases/group-alias
* Address review feedback
* Fix formatting
* fix sidebar links
2017-11-13 20:59:42 -05:00
Laura Uva
c09165b5ff
Updated the Replication guide to make it clear that it is focused on Performance Replication. Added a link to our general info page for information on DR Replication. Removed some statements about DR not being available yet. ( #3502 )
2017-11-13 11:55:04 -05:00
Brian Shumate
ac95095a99
DOCS: Update telemetry docs - fixes #3557 ( #3571 )
2017-11-13 09:58:04 -05:00
Calvin Leung Huang
56b5c8e8bd
Docs update related to new top-level config values ( #3556 )
...
* Add new top level config value docs, add VAULT_API_ADDR, purge old references
* Fix indentation
* Update wording on ha.html
* Add section on split data/HA mode
* Fix grammar
2017-11-10 20:06:07 -05:00
Vishal Nayak
31484b7d55
transit doc update ( #3564 )
2017-11-09 16:17:54 -05:00
James Soubry
859bd4fa1d
Fix curl commands ( #3558 )
...
Curl commands require HCL within JSON to work.
2017-11-09 10:16:09 -05:00
Calvin Leung Huang
b9348ebf4c
Add docs for /sys/rekey-recovery-key ( #3520 )
2017-11-08 14:22:30 -05:00
Paul Pieralde
91d2c05a34
Doc fix for Create/Update Token API ( #3548 )
...
`orphan` is intended to be default to False. Docs indicate this
is default to True. Simple change to update the docs only.
2017-11-07 18:06:44 -05:00
Joel Thompson
50aa3d9e1f
auth/aws: Make disallow_reauthentication and allow_instance_migration mutually exclusive ( #3291 )
2017-11-06 17:12:07 -05:00
Chris Hoffman
cbe172fb65
minor cleanup
2017-11-06 16:34:20 -05:00
Jonathan Freedman
a40f8c40e6
More Mount Conflict Detection ( #2919 )
2017-11-06 15:29:09 -05:00
Gregory Reshetniak
81e18aeccd
added AWS enpoint handling ( #3416 )
2017-11-06 13:31:38 -05:00
Calvin Leung Huang
447d13ec39
Add note on support for using rec keys on /sys/rekey ( #3517 )
2017-11-06 12:18:15 -05:00
Jason Antman
ee438809d6
Add third party tools list to website ( #3488 )
2017-11-06 12:11:02 -05:00
Jeff Mitchell
33cf98026e
Add PKCS8 marshaling to PKI ( #3518 )
2017-11-06 12:05:07 -05:00
Nicolas Corrarello
f9c30bff20
Updated documentation
2017-11-06 15:13:50 +00:00
Calvin Leung Huang
22e156712c
Update SSH list roles docs ( #3536 )
2017-11-03 18:00:46 -04:00
Vishal Nayak
d5ad857a86
Capabilities responds considering policies on entities and groups ( #3522 )
...
* Capabilities endpoint will now return considering policies on entities and groups
* refactor the policy derivation into a separate function
* Docs: Update docs to reflect the change in capabilities endpoint
2017-11-03 11:20:10 -04:00
Vishal Nayak
4d3b3bed08
docs: s/persona/alias ( #3529 )
2017-11-03 11:17:59 -04:00
Vishal Nayak
ced60dbc0c
Encrypt/Decrypt/Sign/Verify using RSA in Transit backend ( #3489 )
...
* encrypt/decrypt/sign/verify RSA
* update path-help and doc
* Fix the bug which was breaking convergent encryption
* support both 2048 and 4096
* update doc to contain both 2048 and 4096
* Add test for encrypt, decrypt and rotate on RSA keys
* Support exporting RSA keys
* Add sign and verify test steps
* Remove 'RSA' from PEM header
* use the default salt length
* Add 'RSA' to PEM header since openssl is expecting that
* export rsa keys as signing-key as well
* Comment the reasoning behind the PEM headers
* remove comment
* update comment
* Parameterize hashing for RSA signing and verification
* Added test steps to check hash algo choice for RSA sign/verify
* fix test by using 'prehashed'
2017-11-03 10:45:53 -04:00
Vishal Nayak
7ca73556e4
docs: Add config/ca delete operation ( #3525 )
2017-11-03 06:19:21 -04:00
Chris Hoffman
ed8cf070c9
Add ability to require parameters in ACLs ( #3510 )
2017-11-02 07:18:49 -04:00
Nicolas Corrarello
3a0d7ac9a6
Unifying Storage and API path in role
2017-10-31 21:06:10 +00:00
Nicolas Corrarello
482d73aebe
Minor/Cosmetic fixes
2017-10-31 19:11:24 +00:00
Nathan Valentine
ad6b4df9a8
Should these names not reference Vault? ( #3506 )
...
Since we are in the Vault docs, should these names not reference Vault instead of Nomad?
2017-10-30 11:04:38 -05:00
Jeff Mitchell
bba371c7de
Fix C&P in docs.
...
Fixes #3454
2017-10-27 16:43:26 -04:00
Vishal Nayak
30aab2aa2f
aws-ec2: Avoid audit logging of custom nonces ( #3381 )
2017-10-27 11:23:15 -04:00
smeach
6157a89f1b
Updated cli arg to reflect text description ( #3487 )
2017-10-27 09:44:56 -05:00
AJ Bourg
e26573cb78
Add a doc for the token helper ( #3411 )
...
* Add token helper docs.
* Update it so the new token helpers page appears in the navigation.
2017-10-27 09:42:33 -05:00
Christophe Tafani-Dereeper
f8e6f9ed70
Correct typos in the sys/raw documentation ( #3484 )
2017-10-24 10:33:57 -04:00
Seth Vargo
50caac0bb6
More naming cleanup
2017-10-24 09:35:03 -04:00
Seth Vargo
9bb7ccd988
Update guides to use new CLI commands
2017-10-24 09:34:30 -04:00
Seth Vargo
ec79e1ddde
Update getting started walkthrough
2017-10-24 09:34:30 -04:00
Seth Vargo
e118a16f63
Oops typo
2017-10-24 09:34:30 -04:00
Seth Vargo
1c9dadd1f7
Remove more references to auth backend
2017-10-24 09:34:12 -04:00
Seth Vargo
94fdc0e7d2
Update k8s documentation
2017-10-24 09:34:12 -04:00
Seth Vargo
23d1d9a1ac
Resolve the most painful merge conflict known on earth
2017-10-24 09:34:12 -04:00
Seth Vargo
39097c80d6
Remove ?list examples
...
They are documented in the overall API section, but people should get used to seeing LIST as a verb
2017-10-24 09:32:15 -04:00
Seth Vargo
7eb406f24f
Remove smaller font on embedded code snippets
2017-10-24 09:32:15 -04:00
Seth Vargo
b8e4b0d515
Standardize on "auth method"
...
This removes all references I could find to:
- credential provider
- authentication backend
- authentication provider
- auth provider
- auth backend
in favor of the unified:
- auth method
2017-10-24 09:32:15 -04:00
Seth Vargo
965b8809e3
Audit backend -> device
2017-10-24 09:30:52 -04:00
Seth Vargo
fc0ba28051
Add new commands to the sidebar
2017-10-24 09:30:52 -04:00
Seth Vargo
9ae01f1e6a
Absorb help and read-write into index
2017-10-24 09:30:52 -04:00
Seth Vargo
aaeacc291a
Add "write" command documentation
2017-10-24 09:30:52 -04:00
Seth Vargo
878f80e47f
Add "unwrap" command documentation
2017-10-24 09:30:52 -04:00
Seth Vargo
a282ac98f2
Add "token" command documentation
2017-10-24 09:30:52 -04:00
Seth Vargo
0783fe73fd
Add "status" command documentation
2017-10-24 09:30:52 -04:00
Seth Vargo
a0d67d8540
Add "ssh" command documentation
2017-10-24 09:30:52 -04:00
Seth Vargo
914321259a
Add "server" command documentation
2017-10-24 09:30:52 -04:00
Seth Vargo
b046a6bcdd
Add "secrets" command documentation
2017-10-24 09:30:52 -04:00
Seth Vargo
8e0eeade04
Add "read" command documentation
2017-10-24 09:30:52 -04:00
Seth Vargo
66448e3f82
Add "policy" command documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
7a88b59414
Update "path-help" documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
f3fc20b64b
Add "operator" command documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
afd289f65a
Add "login" command documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
737540b9ba
Add "list" command documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
53f3db41b6
Add "lease" command documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
9d6cae1f5d
Add "delete" command documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
e776921f96
Add "auth" command documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
0844c285b2
Add "audit" command documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
0024eca6b1
Add "token revoke" command documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
46b3f74988
Add "token renew" command documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
15b6cbf9e5
Add "token lookup" command documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
b8987e00c7
Add "token create" command documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
36b6563867
Add "token capabilities" command documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
ee6849c01c
Add "secrets tune" command documentation
2017-10-24 09:30:51 -04:00
Seth Vargo
bfaabc5cae
Add "secrets move" command documentation
2017-10-24 09:30:50 -04:00
Seth Vargo
4f5a073a62
Add "secrets list" command documentation
2017-10-24 09:30:50 -04:00
Seth Vargo
7e9c0004b4
Add "secrets enable" command documentation
2017-10-24 09:30:50 -04:00
Seth Vargo
872ccb49cf
Add "secrets disable" command documentation
2017-10-24 09:30:50 -04:00
Seth Vargo
44ea6f47d0
Add "policy write" command documentation
2017-10-24 09:30:50 -04:00
Seth Vargo
88524e1f00
Add "policy read" command documentation
2017-10-24 09:30:50 -04:00
Seth Vargo
7d96e6cc4e
Add "policy list" command documentation
2017-10-24 09:30:50 -04:00
Seth Vargo
0dc501cc9b
Add "policy fmt" command documentation
2017-10-24 09:30:50 -04:00
Seth Vargo
2217c037d7
Add "policy delete" command documentation
2017-10-24 09:30:50 -04:00