* convert to typescript
* move getOptions to namespace service
* delete unneeded ts file
* add test coverage and cleanup getOptions method
* use new admin const
Co-authored-by: claire bontempo <68122737+hellobontempo@users.noreply.github.com>
* temp
* temp
* Modified the tests a bit
* One more modification
* Added two tests for official and third party plugins
* TEmp
* Added external test with primary and secondary
* Made some fixes based on comments
* Fixing a linter error
* One more fix
Co-authored-by: divyaac <divya.chandrasekaran@hashicorp.com>
* PKI (SCEP): support compound octet strings for inner PKCS7 content (#12019)
* Support compound octet strings for inner PKCS7 content
* Add cl
* Remove hashicorp/go-cmp ENT dependency
---------
Co-authored-by: Steven Clark <steven.clark@hashicorp.com>
* Verify vault can generate dynamic credentials and rotate root password
* Added new line at end of the script file
* Remove extra space in sh script
* Remove extra space in sh script
* Created modular structure and other fixes
* linting issues
* lint issues
* Linting issue in verify-secrets.sh
* Linting issue in verify-secrets.sh
* Linting issues in verify-secrets.sh and verify-rotation.sh
* Linting issues
* Linting issues
* Linting issues
* Reverted the changes made to ldap-configs.sh and ldap-verify-configs
* Fix missing newline at end of ldap-verify-configs
Add a newline at the end of the ldap-verify-configs script.
* test ldap changes
* test ldap changes
* reverted the configuration for testing ldap [ci skip]
* reverted the configuration for testing ldap [ci skip]
* Refactoring
* Update ldap.tf
* Update ldap.tf [ci skip]
* Update ldap.tf
* Adding Password policy in ldap secret engine config
* Root credential rotation workflows
* linting issues
* Update test-run-enos-scenario-matrix.yml to check ldap changes
* Update test-run-enos-scenario-matrix.yml reverted
* conflicts resolved
* changes
* Update test-run-enos-scenario-matrix.yml to test ldap changes
* Update test-run-enos-scenario-matrix.yml reverted
* added functions
* linting issues
* linting issues
* linting issues
* Update test-run-enos-scenario-matrix.yml to tst ldap
* Update test-run-enos-scenario-matrix.yml reverted
* review changes
* Update test-run-enos-scenario-matrix.yml to test ldap
* lint issue
* reverted Update test-run-enos-scenario-matrix.yml
* refactor
* Update test-run-enos-scenario-matrix.yml test ldap
* Update verify-rotation.sh
* Update verify-rotation.sh
* Update test-run-enos-scenario-matrix.yml reverted
---------
Co-authored-by: pranaya092000 <pranaya.p@hashicorp.com>
Co-authored-by: Pranaya <Pranaya.P@ibm.com>
Co-authored-by: Luis (LT) Carbonell <lt.carbonell@hashicorp.com>
* LDAP Check out Check in System test Cases Part-1
* Test run on pipeline
* Test run on pipeline
* Linter error fix
* Fix linter issue
* Linter error fix
* lint issue
* lint issue
* lint issue
* lint issue
* lint issue
* lint issues
* bug fix
* lint fix
* Run test on pipeline
* Remove file enos.vars.hcl from repository
* Revert "Remove file enos.vars.hcl from repository"
This reverts commit bec9bcd5e1d8b07a662756c2385ca90e035fc125.
* Restore enos.vars.hcl to repository
* CI build failure fix
* CI bug fix
* CI bug fix
* CI bug fix
* CI bug fix
* CI bug fix
* Replace string based error detection with exit code
* Changing pipeline run variable to false
---------
Co-authored-by: KajalKusum <kajal.kusum@hashicorp.com>
Co-authored-by: Kajal Kusum <kajal.kusum@ibm.com>
Co-authored-by: Luis (LT) Carbonell <lt.carbonell@hashicorp.com>
* Verify vault can generate dynamic credentials and rotate root password
* Added new line at end of the script file
* Remove extra space in sh script
* Remove extra space in sh script
* Created modular structure and other fixes
* linting issues
* lint issues
* Linting issue in verify-secrets.sh
* Linting issue in verify-secrets.sh
* Linting issues in verify-secrets.sh and verify-rotation.sh
* Linting issues
* Linting issues
* Linting issues
* Reverted the changes made to ldap-configs.sh and ldap-verify-configs
* Fix missing newline at end of ldap-verify-configs
Add a newline at the end of the ldap-verify-configs script.
* test ldap changes
* test ldap changes
* reverted the configuration for testing ldap [ci skip]
* reverted the configuration for testing ldap [ci skip]
* Refactoring
* Update ldap.tf
* Update ldap.tf [ci skip]
* Update ldap.tf
* Adding Password policy in ldap secret engine config
* Update test-run-enos-scenario-matrix.yml with ldap changes
* Reverted Update test-run-enos-scenario-matrix.yml for testing ldap changes
* conflict changes [ci skip]
* Update test-run-enos-scenario-matrix.yml for ldap testing
* Reverted Update test-run-enos-scenario-matrix.yml
* ldap chnged to MOUNT
* Update test-run-enos-scenario-matrix.yml to test ldap changes
* Update test-run-enos-scenario-matrix.yml reverted
* updated review comments
* updated review comments
* Update test-run-enos-scenario-matrix.yml to test ldap
* Update test-run-enos-scenario-matrix.yml reverted
* Update verify-secrets.sh
---------
Co-authored-by: pranaya092000 <pranaya.p@hashicorp.com>
Co-authored-by: Pranaya <Pranaya.P@ibm.com>
Co-authored-by: Luis (LT) Carbonell <lt.carbonell@hashicorp.com>
* [VAULT-41857] pipeline(find-artifact): add support for finding artifacts from branches (#11799)
Add support for finding matching workflow artifacts from branches rather than PRs. This allows us to trigger custom HCP image builds from a branch rather than an PR. It also enables us to build and test the HCP image on a scheduled nightly cadence, which we've also enabled.
As part of these changes I also added support for specifying which environment you want to test and threaded it through the cloud scenario now that there are multiple variants. We also make the testing workflow workflow_dispatch-able so that we can trigger HVD testing for any custom image in any environment without building a new image.
Signed-off-by: Ryan Cragun <me@ryan.ec>
Co-authored-by: Ryan Cragun <me@ryan.ec>
* move namespace logic over into page component
* add onPageChange arg and pass @model
* update type and arg accessor
Co-authored-by: lane-wetmore <lane.wetmore@hashicorp.com>
* add definitions and logic to track count of db roles
* add mongo db atlas roles
* fix keys for ali cloud and nomad
* fix test for consul
* remove mongodb tracking since it is already tracked by database
* add unit tests for consumption billing
* add unit tests for billing util
* feedback
* add new tests to verify that mongodb roles count towards Database roles
Co-authored-by: Amir Aslamov <amir.aslamov@hashicorp.com>
* Basic refactoring to reuse PKI certs for SSH
* Refactored so that files are moved to CE
* Modified comment
* Renamed CertCountSystemView
* Moved forwarding function and redefined consume function
* Renamed cert view file
* Moved forwarding function and redefined consume function
Small edit
Renamed cert view file
* Fix issues with commit
* Fix consume job
* Removed error
* Update vault/logical_system_helpers.go
---------
Co-authored-by: divyaac <divya.chandrasekaran@hashicorp.com>
Co-authored-by: Victor Rodriguez <vrizo@hashicorp.com>
Allow for console error and warn and fail for everything else.
Remove disable rules for console.
Co-authored-by: Angelo Cordon <angelo.cordon@hashicorp.com>
* actions(runners): add backup self-hosted runner types
We've previously added backup runner types for various self-hosted
runners but were not exhaustive. This change adds at least one backup
instance type to each specified on-demand runner type.
Signed-off-by: Ryan Cragun <me@ryan.ec>
Co-authored-by: Ryan Cragun <me@ryan.ec>
* removing explicit GCP credentials checks to allow for GCP WIF authentication, in line with AWS KMS functionality
* upd: updated changelog for GCP managed keys in core
---------
Co-authored-by: Steven Clark <steven.clark@hashicorp.com>
Co-authored-by: rizkybiz <justin.defrank@gmail.com>
* no-op commit
* merging changes from ent
* deleting ent file
* moving licensing config back
* Revert "moving licensing config back"
This reverts commit 8856cd7d5d334355610782e500ebcd4438ff89b3.
* adding back licensing config to original state (#11925)
---------
Co-authored-by: akshya96 <87045294+akshya96@users.noreply.github.com>
Co-authored-by: akshya96 <araghavan@hashicorp.com>
- actions/cache -> v5.0.2: A bugfix around not retrying cache entries on
429s.
- actions/setup-go -> v6.2.0: NodeJS bump and internal actions/cache
bump. We don't use the caching in setup-go so this ought to have no
impact for us.
- actions/setup-node -> v6.2.0: internal bump of actions/cache.
- pnpm/action-setup -> v4.2.0: Adds support for .npmrc file.
Signed-off-by: Ryan Cragun <me@ryan.ec>
Co-authored-by: Ryan Cragun <me@ryan.ec>
* updates kmip scope roles route to ts
* updates kmip scope roles route to use api service and adds page component
* converts kmip role route to ts
* fixes a11y error in kmip header-credentials component
* updates kmip role route to use api service and adds page component
* removes kmip operation-field-display component that was moved into role page component
* converts kmip role create route to ts
* moves kmip role form component to component directory root
* converts kmip role form component to ts
* adds operation-groups helper and refactors kmip role page to use it
* adds operation-label helper and updates kmip role page to use it
* converts kmip edit role route to ts
* updates kmip role test to use operation-groups helper
* adds kmip role form
* updates kmip role edit and create routes to use api service and form class
* updates kmip role form component to work with form class
* updates kmip acceptance tests
* converts kmip credentials index route to ts
* updates kmip credentials route to use api service
* adds kmip credentials page component
* converts kmip credentials show route to ts
* updates kmip credentials show route to use api service and adds page component
* fixes flash message issue on kmip role form submit success
* converts kmip credentials generate route to ts
* reverts kmip credentials show page component in favor of details-credentials component which is also used in generate route
* fixes kmip details-credentials tests
* update kmip credentials generate route to use api service and updates page component
* removes store and pagination services from kmip engine
* converts kmip breadcrumb component to ts
* converts kmip header scope component to ts
* removes kmip Ember Data models and adapters
* removes store reference from kmip acceptance tests
* fixes issues routing back to secrets engine via breadcrumb in kmip roles and credentials routes
* removes kmip role adapter test
* updates open api helpers tests
Co-authored-by: Jordan Reimer <zofskeez@gmail.com>
* move utils to a folder
* separate methods for serializing
* separate test coverage too
* make formatQueryParams a separate util
* use api service to request export data
* consolidate error templates
* move export request to parent route
* replace EmptyState with ApplicationState
Co-authored-by: claire bontempo <68122737+hellobontempo@users.noreply.github.com>
* add automation snippets to policy and convert to page component
* only show for acl types
* remove unnecessary tag
* update test coverage
* last fix, oops!
* wait for dropdown to close
Co-authored-by: claire bontempo <68122737+hellobontempo@users.noreply.github.com>
* updates kmip scope roles route to ts
* updates kmip scope roles route to use api service and adds page component
* converts kmip role route to ts
* fixes a11y error in kmip header-credentials component
* updates kmip role route to use api service and adds page component
* removes kmip operation-field-display component that was moved into role page component
* converts kmip role create route to ts
* moves kmip role form component to component directory root
* converts kmip role form component to ts
* adds operation-groups helper and refactors kmip role page to use it
* adds operation-label helper and updates kmip role page to use it
* converts kmip edit role route to ts
* updates kmip role test to use operation-groups helper
* adds kmip role form
* updates kmip role edit and create routes to use api service and form class
* updates kmip role form component to work with form class
* updates kmip acceptance tests
* converts kmip credentials index route to ts
* updates kmip credentials route to use api service
* adds kmip credentials page component
* converts kmip credentials show route to ts
* updates kmip credentials show route to use api service and adds page component
* fixes flash message issue on kmip role form submit success
* converts kmip credentials generate route to ts
* reverts kmip credentials show page component in favor of details-credentials component which is also used in generate route
* fixes kmip details-credentials tests
* update kmip credentials generate route to use api service and updates page component
Co-authored-by: Jordan Reimer <zofskeez@gmail.com>
* updates kmip scope roles route to ts
* updates kmip scope roles route to use api service and adds page component
* converts kmip role route to ts
* fixes a11y error in kmip header-credentials component
* updates kmip role route to use api service and adds page component
* removes kmip operation-field-display component that was moved into role page component
* converts kmip role create route to ts
* moves kmip role form component to component directory root
* converts kmip role form component to ts
* adds operation-groups helper and refactors kmip role page to use it
* adds operation-label helper and updates kmip role page to use it
* converts kmip edit role route to ts
* updates kmip role test to use operation-groups helper
* adds kmip role form
* updates kmip role edit and create routes to use api service and form class
* updates kmip role form component to work with form class
* updates kmip acceptance tests
* fixes flash message issue on kmip role form submit success
Co-authored-by: Jordan Reimer <zofskeez@gmail.com>
* add support for initializing with capability paths
* only render flyout for enterprise versions
* update PolicyStanza to support object
* add policy generator to kv
* only set preset stanzas if no changes have been made
* add test coverage for kv adding policy generate to page headers
* add community test
* add test coverage to capabilities service
* add changelog
* add close callback
Co-authored-by: claire bontempo <68122737+hellobontempo@users.noreply.github.com>
* Replace direct use of hds::pageheader with page::header
* Update test selector
* Remove unused selector
Co-authored-by: Kianna <30884335+kiannaquach@users.noreply.github.com>
