-
Notifications
You must be signed in to change notification settings - Fork 4.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add docs about path param restrictions #13413
Conversation
pmmukh
commented
Dec 13, 2021
- Documents restriction around path parameter noticed in API/UI returns error when trying to login with a username that ends in a period "." #13353
@@ -47,6 +47,11 @@ Responses from auth login methods that generate an authentication token are | |||
sent back to the client via JSON. The resulting token should be saved on the | |||
client or passed via the `X-Vault-Token` or `Authorization` header for future requests. | |||
|
|||
## Parameter restrictions |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
My suggestion:
Several Vault APIs require specifying path parameters. The path parameter cannot end in periods. Otherwise, Vault will return a 404 unsupported path error.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
minor suggestions :)
Co-authored-by: Loann Le <[email protected]>
* Add docs about path param restrictions * Update website/content/api-docs/auth/userpass.mdx Co-authored-by: Loann Le <[email protected]> * Update with review suggestion Co-authored-by: Loann Le <[email protected]>
* Rename master key to root key (#13324) * See what it looks like to replace "master key" with "root key". There are two places that would require more challenging code changes: the storage path `core/master`, and its contents (the JSON-serialized EncodedKeyringtructure.) * Restore accidentally deleted line * Add changelog * Update root->recovery * Fix test Co-authored-by: Nick Cabatoff <[email protected]> * Fix typo (#13355) * Add kms_library configuration stanza (#13352) - Add the kms_library configuration stanza to Vault's command/server - Provide validation of keys and general configuration. - Add initial kms_library configuration documentation - Attempt at startup to verify we can read the configured HSM Library - Hook in KmsLibrary config into the Validate to detect typo/unused keys * modifed note (#13351) * Incorporate Ember Flight Icons (#12976) * adds ember-flight-icons dependecy * adds inline-json-import babel plugin * adds flight icon styling * updates Icon component to support flight icons * updates Icon component usages to new api and updates name values to flight icon set when available * fixes tests * updates icon story with flight mappings and fixes issue with flight icons not rendering in storybook * adds changelog * fixes typo in sign action glyph name in transit-key model * adds comments to icon-map * updates Icon component to use only supported flight icon sizes * adds icon transform codemod * updates icon transform formatting to handle edge case * runs icon transform on templates * updates Icon usage in toolbar-filter md and story * updates tests * docs: winsvc update recommendations (#13280) * docs: update custom database sample code (#13211) * clarify more sink options (#12586) * Update @hashicorp/react-hashi-stack-menu (#13354) * Docs to clarify k8s auth options with short-lived tokens (#13275) * Rework 1.21 content into one heading and add note at top * Add notes about extended k8s token duration * Add example of ClusterRoleBinding for using client JWTs * Adds support for SHA-3 to transit (#13367) * Adding support for SHA3 in the transit backend. * Adds SHA-3 tests for transit sign/verify path. Adds SHA-3 tests for logical system tools path hash functionality. Updates documentation to include SHA-3 algorithms in system tools path hashing. * Adds changelog entry. Co-authored-by: robison jacka <[email protected]> * agent/cache: differentiate open log messages (#13362) Changes the error output for the second open of the persistent cache file, to differentiate it from the c.UI.Error message for the initial open of the cache file, just to make it easier to tell where a problem occurred. * Warn user supplying nonce values in FIPS mode for transit encryption requests (#13366) * Warn user supplying nonce values in FIPS mode for transit encryption requests - Send back a warning within the response if an end-user supplies nonce values that we use within the various transit encrypt apis. - We do not send a warning if an end-user supplies a nonce value but we don't use it. - Affected api methods are encrypt, rewrap and datakey - The warning is only sent when we are operating in FIPS mode. * [VAULT-3252] Add entity-alias behavior change to docs (#13370) * Add entity-alias behavior change to docs * Add upgrade note about entity-alias mapping change * Rename 1.7-9 upgrade pages, shuffle upgrade note position * Update website/content/partials/entity-alias-mapping.mdx Co-authored-by: Meggie <[email protected]> * Add incorrect policy issue to the docs * Add example about entity-alias restriction Co-authored-by: Meggie <[email protected]> * VAULT-1564 report in-flight requests (#13024) * VAULT-1564 report in-flight requests * adding a changelog * Changing some variable names and fixing comments * minor style change * adding unauthenticated support for in-flight-req * adding documentation for the listener.profiling stanza * adding an atomic counter for the inflight requests addressing comments * addressing comments * logging completed requests * fixing a test * providing log_requests_info as a config option to determine at which level requests should be logged * removing a member and a method from the StatusHeaderResponseWriter struct * adding api docks * revert changes in NewHTTPResponseWriter * Fix logging invalid log_requests_info value * Addressing comments * Fixing a test * use an tomic value for logRequestsInfo, and moving the CreateClientID function to Core * fixing go.sum * minor refactoring * protecting InFlightRequests from data race * another try on fixing a data race * another try to fix a data race * addressing comments * fixing couple of tests * changing log_requests_info to log_requests_level * minor style change * fixing a test * removing the lock in InFlightRequests * use single-argument form for interface assertion * adding doc for the new configuration paramter * adding the new doc to the nav data file * minor fix * auth/jwt: Update plugin to v0.11.3 (#13365) * auth/jwt: Update plugin to v0.11.3 * add changelog * changelog++ * Update alert banner (#13375) * Updating website for 1.9.1 (#13378) * Use os.Hostname instead of a dependency that doesn't work on OpenBSD. (#13389) * Remove another use gopsutil/host. (#13390) * CLI changes for new mount tune config parameter allowed_managed_keys (#13255) * CLI changes for new mount tune config parameter allowed_managed_keys * Correct allowed_managed_keys description in auth and secrets * Documentation update for secrets and removed changes for auth * Add changelog and remove documentation changes for auth * removed changelog * Correct the field description * auth/jwt: update changelog for pkce improvement (#13392) * Fix test validating convergent encryption behaviour across key types (#13371) - The test was attempting to test the convergent encryption behaviour with several key types but the common function never used the passed in key type. So we ran the test with the default aes256-gcm96 only. * Fix managed namespace test (#13394) * Fix managed namespace test * Remove log * Some changelog tidying for 1.10 preview (#13385) * Some changelog tidying for 1.10 preview * PR accounted for by different CL entry * changelog++ Working on a new workflow for generating the preview so I thought I'd leave a note that it's still coming. * UI/fix client count partial (#13396) * Initial fix * Add fallback zero values * Add changelog * Fix client count current test * Support clearing an identity alias' custom_metadata (#13395) * Support clearing an identity alias' custom_metadata Previously, an update to an entity alias supported updating the custom_metadata as long as the update was not empty, which makes it impossible to clear the metadata values completely. Fixes: - empty custom_metadata parameters are honoured on entity alias update - update related tests - drop dependency on mapstructure - reformat with gofumpt * Docs: fix invalid link in the kubernetes auth api doc. (#13399) * Clean up whitespace * auth/azure: add note about debug env (#13405) * auth/azure: add note about debug env * Update azure.mdx * Update azure.mdx * Add universal default key_bits value for PKI endpoints (#13080) * Allow universal default for key_bits This allows the key_bits field to take a universal default value, 0, which, depending on key_type, gets adjusted appropriately into a specific default value (rsa->2048, ec->256, ignored under ed25519). Signed-off-by: Alexander Scheel <[email protected]> * Handle universal default key size in certutil Also move RSA < 2048 error message into certutil directly, instead of in ca_util/path_roles. Signed-off-by: Alexander Scheel <[email protected]> * Add missing RSA key sizes to pki/backend_test.go Signed-off-by: Alexander Scheel <[email protected]> * Switch to returning updated values When determining the default, don't pass in pointer types, but instead return the newly updated value. Signed-off-by: Alexander Scheel <[email protected]> * Add changelog entry Signed-off-by: Alexander Scheel <[email protected]> * Re-add fix for ed25519 from #13254 Ed25519 internally specifies a hash length; by changing the default from 256 to 0, we fail validation in ValidateSignatureLength(...) unless we specify the key algorithm. Signed-off-by: Alexander Scheel <[email protected]> * Fix logging statement using formatting args (#13407) * Add docs about path param restrictions (#13413) * Add docs about path param restrictions * Update website/content/api-docs/auth/userpass.mdx Co-authored-by: Loann Le <[email protected]> * Update with review suggestion Co-authored-by: Loann Le <[email protected]> * Update raftautosnapshots.mdx (#13412) * Main go version bump (#13408) * Go 1.17.2 -> 1.17.5 * Switching to cimg * Bump yarn cache key version so that it uses the new disk layout we've adopted for using cimg/go. (#13420) * Add vault-api module (#13048) * crt main fix for ecr tag (#13425) * Add no-op method setupManagedKeyRegistry(). (#13433) * github auth: use org id to verify creds (#13332) * github auth: use org id to verify creds * add check for required org param; add test case * update UTs * add nil check for org * add changelog * fix typo in ut * set org ID if it is unset; add more ut coverage * add optional organization_id * move client instantiation * refactor parse URL; add UT for setting org ID * fix comment in UT * add nil check * don't update org name on change; return warning * refactor verifyCredentials * error when unable to fetch org ID on config write; add warnings * fix bug in log message * update UT and small refactor * update comments and log msg * use getter for org ID Co-authored-by: Jim Kalafut <[email protected]> Co-authored-by: Nick Cabatoff <[email protected]> Co-authored-by: Harsimran Singh Maan <[email protected]> Co-authored-by: Steven Clark <[email protected]> Co-authored-by: Loann Le <[email protected]> Co-authored-by: Jordan Reimer <[email protected]> Co-authored-by: mickael-hc <[email protected]> Co-authored-by: Calvin Leung Huang <[email protected]> Co-authored-by: Mike Green <[email protected]> Co-authored-by: Noel Quiles <[email protected]> Co-authored-by: Tom Proctor <[email protected]> Co-authored-by: Matt Schultz <[email protected]> Co-authored-by: robison jacka <[email protected]> Co-authored-by: Theron Voran <[email protected]> Co-authored-by: Pratyoy Mukhopadhyay <[email protected]> Co-authored-by: Meggie <[email protected]> Co-authored-by: hghaf099 <[email protected]> Co-authored-by: John-Michael Faircloth <[email protected]> Co-authored-by: Brandon Romano <[email protected]> Co-authored-by: divyapola5 <[email protected]> Co-authored-by: Chelsea Shaw <[email protected]> Co-authored-by: Ben Ash <[email protected]> Co-authored-by: Jason O'Donnell <[email protected]> Co-authored-by: Alexander Scheel <[email protected]> Co-authored-by: Mark Lewis <[email protected]> Co-authored-by: Sai Hemanth Bheemreddy <[email protected]> Co-authored-by: Kyle Penfound <[email protected]> Co-authored-by: Victor Rodriguez <[email protected]>
* UI/total client usage (#13359) * blah * setup * clean up * rename history to dashboard * clean up * Styling fixes (#13369) * styling * clean up * UI/ horizontal bar chart component (#13361) * horizontal bar chart component * adds horizontal chart to dashboard file * add export class * yarn install d3 array * yarn install d3 array * adds data subtext to chart * update naming to plural charts" * updates css grid to 6 columns" * UI/tooltip (#13397) * working state * stuff * adds month tick marks and sort of y-axis, but y scale still messed up * moves y scale so zero shows again * fixes translating constants * format numbers y axis * actually fixes viewbox * styling for x and y axis plus gridlines * clean up * separates grid types based on content Co-authored-by: Claire Bontempo <[email protected]> * Styling and legend component (#13430) * styling * cleanup * UI/ Double horizontal bar charts (#13398) * add descriptions and styling to side by side charts * add border below horizontal charts * starts legend styling * center legend * add to do * add hover actions/event listeners * UI/merge main (#13436) * Rename master key to root key (#13324) * See what it looks like to replace "master key" with "root key". There are two places that would require more challenging code changes: the storage path `core/master`, and its contents (the JSON-serialized EncodedKeyringtructure.) * Restore accidentally deleted line * Add changelog * Update root->recovery * Fix test Co-authored-by: Nick Cabatoff <[email protected]> * Fix typo (#13355) * Add kms_library configuration stanza (#13352) - Add the kms_library configuration stanza to Vault's command/server - Provide validation of keys and general configuration. - Add initial kms_library configuration documentation - Attempt at startup to verify we can read the configured HSM Library - Hook in KmsLibrary config into the Validate to detect typo/unused keys * modifed note (#13351) * Incorporate Ember Flight Icons (#12976) * adds ember-flight-icons dependecy * adds inline-json-import babel plugin * adds flight icon styling * updates Icon component to support flight icons * updates Icon component usages to new api and updates name values to flight icon set when available * fixes tests * updates icon story with flight mappings and fixes issue with flight icons not rendering in storybook * adds changelog * fixes typo in sign action glyph name in transit-key model * adds comments to icon-map * updates Icon component to use only supported flight icon sizes * adds icon transform codemod * updates icon transform formatting to handle edge case * runs icon transform on templates * updates Icon usage in toolbar-filter md and story * updates tests * docs: winsvc update recommendations (#13280) * docs: update custom database sample code (#13211) * clarify more sink options (#12586) * Update @hashicorp/react-hashi-stack-menu (#13354) * Docs to clarify k8s auth options with short-lived tokens (#13275) * Rework 1.21 content into one heading and add note at top * Add notes about extended k8s token duration * Add example of ClusterRoleBinding for using client JWTs * Adds support for SHA-3 to transit (#13367) * Adding support for SHA3 in the transit backend. * Adds SHA-3 tests for transit sign/verify path. Adds SHA-3 tests for logical system tools path hash functionality. Updates documentation to include SHA-3 algorithms in system tools path hashing. * Adds changelog entry. Co-authored-by: robison jacka <[email protected]> * agent/cache: differentiate open log messages (#13362) Changes the error output for the second open of the persistent cache file, to differentiate it from the c.UI.Error message for the initial open of the cache file, just to make it easier to tell where a problem occurred. * Warn user supplying nonce values in FIPS mode for transit encryption requests (#13366) * Warn user supplying nonce values in FIPS mode for transit encryption requests - Send back a warning within the response if an end-user supplies nonce values that we use within the various transit encrypt apis. - We do not send a warning if an end-user supplies a nonce value but we don't use it. - Affected api methods are encrypt, rewrap and datakey - The warning is only sent when we are operating in FIPS mode. * [VAULT-3252] Add entity-alias behavior change to docs (#13370) * Add entity-alias behavior change to docs * Add upgrade note about entity-alias mapping change * Rename 1.7-9 upgrade pages, shuffle upgrade note position * Update website/content/partials/entity-alias-mapping.mdx Co-authored-by: Meggie <[email protected]> * Add incorrect policy issue to the docs * Add example about entity-alias restriction Co-authored-by: Meggie <[email protected]> * VAULT-1564 report in-flight requests (#13024) * VAULT-1564 report in-flight requests * adding a changelog * Changing some variable names and fixing comments * minor style change * adding unauthenticated support for in-flight-req * adding documentation for the listener.profiling stanza * adding an atomic counter for the inflight requests addressing comments * addressing comments * logging completed requests * fixing a test * providing log_requests_info as a config option to determine at which level requests should be logged * removing a member and a method from the StatusHeaderResponseWriter struct * adding api docks * revert changes in NewHTTPResponseWriter * Fix logging invalid log_requests_info value * Addressing comments * Fixing a test * use an tomic value for logRequestsInfo, and moving the CreateClientID function to Core * fixing go.sum * minor refactoring * protecting InFlightRequests from data race * another try on fixing a data race * another try to fix a data race * addressing comments * fixing couple of tests * changing log_requests_info to log_requests_level * minor style change * fixing a test * removing the lock in InFlightRequests * use single-argument form for interface assertion * adding doc for the new configuration paramter * adding the new doc to the nav data file * minor fix * auth/jwt: Update plugin to v0.11.3 (#13365) * auth/jwt: Update plugin to v0.11.3 * add changelog * changelog++ * Update alert banner (#13375) * Updating website for 1.9.1 (#13378) * Use os.Hostname instead of a dependency that doesn't work on OpenBSD. (#13389) * Remove another use gopsutil/host. (#13390) * CLI changes for new mount tune config parameter allowed_managed_keys (#13255) * CLI changes for new mount tune config parameter allowed_managed_keys * Correct allowed_managed_keys description in auth and secrets * Documentation update for secrets and removed changes for auth * Add changelog and remove documentation changes for auth * removed changelog * Correct the field description * auth/jwt: update changelog for pkce improvement (#13392) * Fix test validating convergent encryption behaviour across key types (#13371) - The test was attempting to test the convergent encryption behaviour with several key types but the common function never used the passed in key type. So we ran the test with the default aes256-gcm96 only. * Fix managed namespace test (#13394) * Fix managed namespace test * Remove log * Some changelog tidying for 1.10 preview (#13385) * Some changelog tidying for 1.10 preview * PR accounted for by different CL entry * changelog++ Working on a new workflow for generating the preview so I thought I'd leave a note that it's still coming. * UI/fix client count partial (#13396) * Initial fix * Add fallback zero values * Add changelog * Fix client count current test * Support clearing an identity alias' custom_metadata (#13395) * Support clearing an identity alias' custom_metadata Previously, an update to an entity alias supported updating the custom_metadata as long as the update was not empty, which makes it impossible to clear the metadata values completely. Fixes: - empty custom_metadata parameters are honoured on entity alias update - update related tests - drop dependency on mapstructure - reformat with gofumpt * Docs: fix invalid link in the kubernetes auth api doc. (#13399) * Clean up whitespace * auth/azure: add note about debug env (#13405) * auth/azure: add note about debug env * Update azure.mdx * Update azure.mdx * Add universal default key_bits value for PKI endpoints (#13080) * Allow universal default for key_bits This allows the key_bits field to take a universal default value, 0, which, depending on key_type, gets adjusted appropriately into a specific default value (rsa->2048, ec->256, ignored under ed25519). Signed-off-by: Alexander Scheel <[email protected]> * Handle universal default key size in certutil Also move RSA < 2048 error message into certutil directly, instead of in ca_util/path_roles. Signed-off-by: Alexander Scheel <[email protected]> * Add missing RSA key sizes to pki/backend_test.go Signed-off-by: Alexander Scheel <[email protected]> * Switch to returning updated values When determining the default, don't pass in pointer types, but instead return the newly updated value. Signed-off-by: Alexander Scheel <[email protected]> * Add changelog entry Signed-off-by: Alexander Scheel <[email protected]> * Re-add fix for ed25519 from #13254 Ed25519 internally specifies a hash length; by changing the default from 256 to 0, we fail validation in ValidateSignatureLength(...) unless we specify the key algorithm. Signed-off-by: Alexander Scheel <[email protected]> * Fix logging statement using formatting args (#13407) * Add docs about path param restrictions (#13413) * Add docs about path param restrictions * Update website/content/api-docs/auth/userpass.mdx Co-authored-by: Loann Le <[email protected]> * Update with review suggestion Co-authored-by: Loann Le <[email protected]> * Update raftautosnapshots.mdx (#13412) * Main go version bump (#13408) * Go 1.17.2 -> 1.17.5 * Switching to cimg * Bump yarn cache key version so that it uses the new disk layout we've adopted for using cimg/go. (#13420) * Add vault-api module (#13048) * crt main fix for ecr tag (#13425) * Add no-op method setupManagedKeyRegistry(). (#13433) * github auth: use org id to verify creds (#13332) * github auth: use org id to verify creds * add check for required org param; add test case * update UTs * add nil check for org * add changelog * fix typo in ut * set org ID if it is unset; add more ut coverage * add optional organization_id * move client instantiation * refactor parse URL; add UT for setting org ID * fix comment in UT * add nil check * don't update org name on change; return warning * refactor verifyCredentials * error when unable to fetch org ID on config write; add warnings * fix bug in log message * update UT and small refactor * update comments and log msg * use getter for org ID Co-authored-by: Jim Kalafut <[email protected]> Co-authored-by: Nick Cabatoff <[email protected]> Co-authored-by: Harsimran Singh Maan <[email protected]> Co-authored-by: Steven Clark <[email protected]> Co-authored-by: Loann Le <[email protected]> Co-authored-by: Jordan Reimer <[email protected]> Co-authored-by: mickael-hc <[email protected]> Co-authored-by: Calvin Leung Huang <[email protected]> Co-authored-by: Mike Green <[email protected]> Co-authored-by: Noel Quiles <[email protected]> Co-authored-by: Tom Proctor <[email protected]> Co-authored-by: Matt Schultz <[email protected]> Co-authored-by: robison jacka <[email protected]> Co-authored-by: Theron Voran <[email protected]> Co-authored-by: Pratyoy Mukhopadhyay <[email protected]> Co-authored-by: Meggie <[email protected]> Co-authored-by: hghaf099 <[email protected]> Co-authored-by: John-Michael Faircloth <[email protected]> Co-authored-by: Brandon Romano <[email protected]> Co-authored-by: divyapola5 <[email protected]> Co-authored-by: Chelsea Shaw <[email protected]> Co-authored-by: Ben Ash <[email protected]> Co-authored-by: Jason O'Donnell <[email protected]> Co-authored-by: Alexander Scheel <[email protected]> Co-authored-by: Mark Lewis <[email protected]> Co-authored-by: Sai Hemanth Bheemreddy <[email protected]> Co-authored-by: Kyle Penfound <[email protected]> Co-authored-by: Victor Rodriguez <[email protected]> * UI/chart legend (#13437) * fixes axes lines blend * add pixel conversions to variable css file * reorganizes css file * adds legend * fixes scales and makes room for legend * fixes grid for dual charts * made grid responsive * fixes legend styling * fixes legend, removes ticks and fixes scale * adjusts tooltip target * un-comment mouse events * remove console log * UI/ Client counts range (running total component) (#13477) * grid for stacked charts * pass in data as arg from parent * pull out vertical bar chart component * refactor to use vertical bar chart component * remove any chart handling stuff from parent * rename variables * refactor horizontal bar chart into separate component * move descriptions to inside template (not passed in) * constructs attribution copy * add sample response to mirage config * change indenting * rename to MonthlyUsage * change name to running totals * rename variable * finishes line chart * pull constants to util * cleanup add todos * fix formatNumbers return" * comments and cleanup * adds tooltip to line chart * make cover area larger * fixes tooltip styling * adds tooltip styling" * adds tooltip modal to horizontal chart * finishes tooltip for horizontal chart * remove click event arg * merges main and fixes conflicts * bumps yarn.lock * linting fix * clean up go files and changelog * more clean up * remove changelog * fix * update component documentation for jsdocs * removing test to see if that helps with browserstack * remove new packages to test dep failure * add ember-modal-dialog * add ember-tether * add ember-tether * fixes mirage config file - merge conflict issue * remove general spacing variable Co-authored-by: claire bontempo <[email protected]> Co-authored-by: Claire Bontempo <[email protected]> Co-authored-by: Jim Kalafut <[email protected]> Co-authored-by: Nick Cabatoff <[email protected]> Co-authored-by: Harsimran Singh Maan <[email protected]> Co-authored-by: Steven Clark <[email protected]> Co-authored-by: Loann Le <[email protected]> Co-authored-by: Jordan Reimer <[email protected]> Co-authored-by: mickael-hc <[email protected]> Co-authored-by: Calvin Leung Huang <[email protected]> Co-authored-by: Mike Green <[email protected]> Co-authored-by: Noel Quiles <[email protected]> Co-authored-by: Tom Proctor <[email protected]> Co-authored-by: Matt Schultz <[email protected]> Co-authored-by: robison jacka <[email protected]> Co-authored-by: Theron Voran <[email protected]> Co-authored-by: Pratyoy Mukhopadhyay <[email protected]> Co-authored-by: Meggie <[email protected]> Co-authored-by: hghaf099 <[email protected]> Co-authored-by: John-Michael Faircloth <[email protected]> Co-authored-by: Brandon Romano <[email protected]> Co-authored-by: divyapola5 <[email protected]> Co-authored-by: Chelsea Shaw <[email protected]> Co-authored-by: Ben Ash <[email protected]> Co-authored-by: Jason O'Donnell <[email protected]> Co-authored-by: Alexander Scheel <[email protected]> Co-authored-by: Mark Lewis <[email protected]> Co-authored-by: Sai Hemanth Bheemreddy <[email protected]> Co-authored-by: Kyle Penfound <[email protected]> Co-authored-by: Victor Rodriguez <[email protected]>
* Add docs about path param restrictions * Update website/content/api-docs/auth/userpass.mdx Co-authored-by: Loann Le <[email protected]> * Update with review suggestion Co-authored-by: Loann Le <[email protected]>
* UI/total client usage (hashicorp#13359) * blah * setup * clean up * rename history to dashboard * clean up * Styling fixes (hashicorp#13369) * styling * clean up * UI/ horizontal bar chart component (hashicorp#13361) * horizontal bar chart component * adds horizontal chart to dashboard file * add export class * yarn install d3 array * yarn install d3 array * adds data subtext to chart * update naming to plural charts" * updates css grid to 6 columns" * UI/tooltip (hashicorp#13397) * working state * stuff * adds month tick marks and sort of y-axis, but y scale still messed up * moves y scale so zero shows again * fixes translating constants * format numbers y axis * actually fixes viewbox * styling for x and y axis plus gridlines * clean up * separates grid types based on content Co-authored-by: Claire Bontempo <[email protected]> * Styling and legend component (hashicorp#13430) * styling * cleanup * UI/ Double horizontal bar charts (hashicorp#13398) * add descriptions and styling to side by side charts * add border below horizontal charts * starts legend styling * center legend * add to do * add hover actions/event listeners * UI/merge main (hashicorp#13436) * Rename master key to root key (hashicorp#13324) * See what it looks like to replace "master key" with "root key". There are two places that would require more challenging code changes: the storage path `core/master`, and its contents (the JSON-serialized EncodedKeyringtructure.) * Restore accidentally deleted line * Add changelog * Update root->recovery * Fix test Co-authored-by: Nick Cabatoff <[email protected]> * Fix typo (hashicorp#13355) * Add kms_library configuration stanza (hashicorp#13352) - Add the kms_library configuration stanza to Vault's command/server - Provide validation of keys and general configuration. - Add initial kms_library configuration documentation - Attempt at startup to verify we can read the configured HSM Library - Hook in KmsLibrary config into the Validate to detect typo/unused keys * modifed note (hashicorp#13351) * Incorporate Ember Flight Icons (hashicorp#12976) * adds ember-flight-icons dependecy * adds inline-json-import babel plugin * adds flight icon styling * updates Icon component to support flight icons * updates Icon component usages to new api and updates name values to flight icon set when available * fixes tests * updates icon story with flight mappings and fixes issue with flight icons not rendering in storybook * adds changelog * fixes typo in sign action glyph name in transit-key model * adds comments to icon-map * updates Icon component to use only supported flight icon sizes * adds icon transform codemod * updates icon transform formatting to handle edge case * runs icon transform on templates * updates Icon usage in toolbar-filter md and story * updates tests * docs: winsvc update recommendations (hashicorp#13280) * docs: update custom database sample code (hashicorp#13211) * clarify more sink options (hashicorp#12586) * Update @hashicorp/react-hashi-stack-menu (hashicorp#13354) * Docs to clarify k8s auth options with short-lived tokens (hashicorp#13275) * Rework 1.21 content into one heading and add note at top * Add notes about extended k8s token duration * Add example of ClusterRoleBinding for using client JWTs * Adds support for SHA-3 to transit (hashicorp#13367) * Adding support for SHA3 in the transit backend. * Adds SHA-3 tests for transit sign/verify path. Adds SHA-3 tests for logical system tools path hash functionality. Updates documentation to include SHA-3 algorithms in system tools path hashing. * Adds changelog entry. Co-authored-by: robison jacka <[email protected]> * agent/cache: differentiate open log messages (hashicorp#13362) Changes the error output for the second open of the persistent cache file, to differentiate it from the c.UI.Error message for the initial open of the cache file, just to make it easier to tell where a problem occurred. * Warn user supplying nonce values in FIPS mode for transit encryption requests (hashicorp#13366) * Warn user supplying nonce values in FIPS mode for transit encryption requests - Send back a warning within the response if an end-user supplies nonce values that we use within the various transit encrypt apis. - We do not send a warning if an end-user supplies a nonce value but we don't use it. - Affected api methods are encrypt, rewrap and datakey - The warning is only sent when we are operating in FIPS mode. * [VAULT-3252] Add entity-alias behavior change to docs (hashicorp#13370) * Add entity-alias behavior change to docs * Add upgrade note about entity-alias mapping change * Rename 1.7-9 upgrade pages, shuffle upgrade note position * Update website/content/partials/entity-alias-mapping.mdx Co-authored-by: Meggie <[email protected]> * Add incorrect policy issue to the docs * Add example about entity-alias restriction Co-authored-by: Meggie <[email protected]> * VAULT-1564 report in-flight requests (hashicorp#13024) * VAULT-1564 report in-flight requests * adding a changelog * Changing some variable names and fixing comments * minor style change * adding unauthenticated support for in-flight-req * adding documentation for the listener.profiling stanza * adding an atomic counter for the inflight requests addressing comments * addressing comments * logging completed requests * fixing a test * providing log_requests_info as a config option to determine at which level requests should be logged * removing a member and a method from the StatusHeaderResponseWriter struct * adding api docks * revert changes in NewHTTPResponseWriter * Fix logging invalid log_requests_info value * Addressing comments * Fixing a test * use an tomic value for logRequestsInfo, and moving the CreateClientID function to Core * fixing go.sum * minor refactoring * protecting InFlightRequests from data race * another try on fixing a data race * another try to fix a data race * addressing comments * fixing couple of tests * changing log_requests_info to log_requests_level * minor style change * fixing a test * removing the lock in InFlightRequests * use single-argument form for interface assertion * adding doc for the new configuration paramter * adding the new doc to the nav data file * minor fix * auth/jwt: Update plugin to v0.11.3 (hashicorp#13365) * auth/jwt: Update plugin to v0.11.3 * add changelog * changelog++ * Update alert banner (hashicorp#13375) * Updating website for 1.9.1 (hashicorp#13378) * Use os.Hostname instead of a dependency that doesn't work on OpenBSD. (hashicorp#13389) * Remove another use gopsutil/host. (hashicorp#13390) * CLI changes for new mount tune config parameter allowed_managed_keys (hashicorp#13255) * CLI changes for new mount tune config parameter allowed_managed_keys * Correct allowed_managed_keys description in auth and secrets * Documentation update for secrets and removed changes for auth * Add changelog and remove documentation changes for auth * removed changelog * Correct the field description * auth/jwt: update changelog for pkce improvement (hashicorp#13392) * Fix test validating convergent encryption behaviour across key types (hashicorp#13371) - The test was attempting to test the convergent encryption behaviour with several key types but the common function never used the passed in key type. So we ran the test with the default aes256-gcm96 only. * Fix managed namespace test (hashicorp#13394) * Fix managed namespace test * Remove log * Some changelog tidying for 1.10 preview (hashicorp#13385) * Some changelog tidying for 1.10 preview * PR accounted for by different CL entry * changelog++ Working on a new workflow for generating the preview so I thought I'd leave a note that it's still coming. * UI/fix client count partial (hashicorp#13396) * Initial fix * Add fallback zero values * Add changelog * Fix client count current test * Support clearing an identity alias' custom_metadata (hashicorp#13395) * Support clearing an identity alias' custom_metadata Previously, an update to an entity alias supported updating the custom_metadata as long as the update was not empty, which makes it impossible to clear the metadata values completely. Fixes: - empty custom_metadata parameters are honoured on entity alias update - update related tests - drop dependency on mapstructure - reformat with gofumpt * Docs: fix invalid link in the kubernetes auth api doc. (hashicorp#13399) * Clean up whitespace * auth/azure: add note about debug env (hashicorp#13405) * auth/azure: add note about debug env * Update azure.mdx * Update azure.mdx * Add universal default key_bits value for PKI endpoints (hashicorp#13080) * Allow universal default for key_bits This allows the key_bits field to take a universal default value, 0, which, depending on key_type, gets adjusted appropriately into a specific default value (rsa->2048, ec->256, ignored under ed25519). Signed-off-by: Alexander Scheel <[email protected]> * Handle universal default key size in certutil Also move RSA < 2048 error message into certutil directly, instead of in ca_util/path_roles. Signed-off-by: Alexander Scheel <[email protected]> * Add missing RSA key sizes to pki/backend_test.go Signed-off-by: Alexander Scheel <[email protected]> * Switch to returning updated values When determining the default, don't pass in pointer types, but instead return the newly updated value. Signed-off-by: Alexander Scheel <[email protected]> * Add changelog entry Signed-off-by: Alexander Scheel <[email protected]> * Re-add fix for ed25519 from hashicorp#13254 Ed25519 internally specifies a hash length; by changing the default from 256 to 0, we fail validation in ValidateSignatureLength(...) unless we specify the key algorithm. Signed-off-by: Alexander Scheel <[email protected]> * Fix logging statement using formatting args (hashicorp#13407) * Add docs about path param restrictions (hashicorp#13413) * Add docs about path param restrictions * Update website/content/api-docs/auth/userpass.mdx Co-authored-by: Loann Le <[email protected]> * Update with review suggestion Co-authored-by: Loann Le <[email protected]> * Update raftautosnapshots.mdx (hashicorp#13412) * Main go version bump (hashicorp#13408) * Go 1.17.2 -> 1.17.5 * Switching to cimg * Bump yarn cache key version so that it uses the new disk layout we've adopted for using cimg/go. (hashicorp#13420) * Add vault-api module (hashicorp#13048) * crt main fix for ecr tag (hashicorp#13425) * Add no-op method setupManagedKeyRegistry(). (hashicorp#13433) * github auth: use org id to verify creds (hashicorp#13332) * github auth: use org id to verify creds * add check for required org param; add test case * update UTs * add nil check for org * add changelog * fix typo in ut * set org ID if it is unset; add more ut coverage * add optional organization_id * move client instantiation * refactor parse URL; add UT for setting org ID * fix comment in UT * add nil check * don't update org name on change; return warning * refactor verifyCredentials * error when unable to fetch org ID on config write; add warnings * fix bug in log message * update UT and small refactor * update comments and log msg * use getter for org ID Co-authored-by: Jim Kalafut <[email protected]> Co-authored-by: Nick Cabatoff <[email protected]> Co-authored-by: Harsimran Singh Maan <[email protected]> Co-authored-by: Steven Clark <[email protected]> Co-authored-by: Loann Le <[email protected]> Co-authored-by: Jordan Reimer <[email protected]> Co-authored-by: mickael-hc <[email protected]> Co-authored-by: Calvin Leung Huang <[email protected]> Co-authored-by: Mike Green <[email protected]> Co-authored-by: Noel Quiles <[email protected]> Co-authored-by: Tom Proctor <[email protected]> Co-authored-by: Matt Schultz <[email protected]> Co-authored-by: robison jacka <[email protected]> Co-authored-by: Theron Voran <[email protected]> Co-authored-by: Pratyoy Mukhopadhyay <[email protected]> Co-authored-by: Meggie <[email protected]> Co-authored-by: hghaf099 <[email protected]> Co-authored-by: John-Michael Faircloth <[email protected]> Co-authored-by: Brandon Romano <[email protected]> Co-authored-by: divyapola5 <[email protected]> Co-authored-by: Chelsea Shaw <[email protected]> Co-authored-by: Ben Ash <[email protected]> Co-authored-by: Jason O'Donnell <[email protected]> Co-authored-by: Alexander Scheel <[email protected]> Co-authored-by: Mark Lewis <[email protected]> Co-authored-by: Sai Hemanth Bheemreddy <[email protected]> Co-authored-by: Kyle Penfound <[email protected]> Co-authored-by: Victor Rodriguez <[email protected]> * UI/chart legend (hashicorp#13437) * fixes axes lines blend * add pixel conversions to variable css file * reorganizes css file * adds legend * fixes scales and makes room for legend * fixes grid for dual charts * made grid responsive * fixes legend styling * fixes legend, removes ticks and fixes scale * adjusts tooltip target * un-comment mouse events * remove console log * UI/ Client counts range (running total component) (hashicorp#13477) * grid for stacked charts * pass in data as arg from parent * pull out vertical bar chart component * refactor to use vertical bar chart component * remove any chart handling stuff from parent * rename variables * refactor horizontal bar chart into separate component * move descriptions to inside template (not passed in) * constructs attribution copy * add sample response to mirage config * change indenting * rename to MonthlyUsage * change name to running totals * rename variable * finishes line chart * pull constants to util * cleanup add todos * fix formatNumbers return" * comments and cleanup * adds tooltip to line chart * make cover area larger * fixes tooltip styling * adds tooltip styling" * adds tooltip modal to horizontal chart * finishes tooltip for horizontal chart * remove click event arg * merges main and fixes conflicts * bumps yarn.lock * linting fix * clean up go files and changelog * more clean up * remove changelog * fix * update component documentation for jsdocs * removing test to see if that helps with browserstack * remove new packages to test dep failure * add ember-modal-dialog * add ember-tether * add ember-tether * fixes mirage config file - merge conflict issue * remove general spacing variable Co-authored-by: claire bontempo <[email protected]> Co-authored-by: Claire Bontempo <[email protected]> Co-authored-by: Jim Kalafut <[email protected]> Co-authored-by: Nick Cabatoff <[email protected]> Co-authored-by: Harsimran Singh Maan <[email protected]> Co-authored-by: Steven Clark <[email protected]> Co-authored-by: Loann Le <[email protected]> Co-authored-by: Jordan Reimer <[email protected]> Co-authored-by: mickael-hc <[email protected]> Co-authored-by: Calvin Leung Huang <[email protected]> Co-authored-by: Mike Green <[email protected]> Co-authored-by: Noel Quiles <[email protected]> Co-authored-by: Tom Proctor <[email protected]> Co-authored-by: Matt Schultz <[email protected]> Co-authored-by: robison jacka <[email protected]> Co-authored-by: Theron Voran <[email protected]> Co-authored-by: Pratyoy Mukhopadhyay <[email protected]> Co-authored-by: Meggie <[email protected]> Co-authored-by: hghaf099 <[email protected]> Co-authored-by: John-Michael Faircloth <[email protected]> Co-authored-by: Brandon Romano <[email protected]> Co-authored-by: divyapola5 <[email protected]> Co-authored-by: Chelsea Shaw <[email protected]> Co-authored-by: Ben Ash <[email protected]> Co-authored-by: Jason O'Donnell <[email protected]> Co-authored-by: Alexander Scheel <[email protected]> Co-authored-by: Mark Lewis <[email protected]> Co-authored-by: Sai Hemanth Bheemreddy <[email protected]> Co-authored-by: Kyle Penfound <[email protected]> Co-authored-by: Victor Rodriguez <[email protected]>
…n-premises) into stable-website (#13945) * Use new auth modules + Login method in Go client docs (#13189) * Updated Vault 1.9 documentation (#13194) * post 1-9 doc changes * fixed endpoint sample * Update website/content/docs/release-notes/1.9.0.mdx Co-authored-by: Yoko Hyakuna <[email protected]> Co-authored-by: Yoko Hyakuna <[email protected]> * docs: fixing the injector.webhookAnnotations annotation (#13181) * docs: move deprecation notices down the navbar (#13201) Moved from one of the first items in the navbar down to one of the last. They are not high priority information and should be grouped with upgrade and release notes. * fixed errors in file (#13205) * Docs deprecate token issuer validation (#13019) * change default vaule for disable_iss_validation to be true * mark as deprecated | remove issuer from sample * deprecation section * additional informaiton about when fields will be removed * additional deprecation note under csi provider * punctuation * make the deprecation note more noticable * missing issuer sentence | remove whitespace * Update website/content/docs/platform/k8s/csi/index.mdx Co-authored-by: Ben Ash <[email protected]> * cleanup * additional deprecation comments * fix discovery link * highlight * no need to configure the issuer Co-authored-by: Ben Ash <[email protected]> * docs: updated for vault-k8s 0.14.1 vault-helm 0.18.0 (#13199) * version bumps * updated chart options * Updates to 1.9 documentation (#13228) * incorporated feedback * fixed link * fixed link again * found another error * README.md of website/ with WARNING on rebuilding (#13027) * README.md of website/ with WARNING on rebuilding * Update README.md * Correct flag name: -dev-kv-v1, not dev-kv-1. (#13250) * Docs/custom metadata updates (#13244) * adding custom_metadata read and update changes * adding custom metadata changes * secrets/azure: fix API docs rendering of code block (#13245) * Update Vault Agent intro (#13267) * Update Vault Agent intro * Update website/content/docs/agent/index.mdx Co-authored-by: Brian Shumate <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Brian Shumate <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Brian Shumate <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/agent/index.mdx Co-authored-by: Loann Le <[email protected]> Co-authored-by: Brian Shumate <[email protected]> Co-authored-by: Loann Le <[email protected]> * secrets/azure: Fixes use_microsoft_graph_api parameter description in API docs (#13287) * Fix case typo in docs (#13259) * docs: added minor recommendation for k8s agent annotations (#13239) Co-authored-by: Theron Voran <[email protected]> * update custom headers to mention 1.9 is required (#13155) * update custom headers to mention 1.9 is required Per https://github.com/hashicorp/vault/blob/main/CHANGELOG.md#190-rc1 the custom response headers are a new feature introduced in 1.9, meaning we should explicitly call out this version requirement in documentation, otherwise users of earlier versions of Vault will unable to use the functionality and may consider it a bug. * Update website/content/docs/configuration/listener/tcp.mdx reads better, agreed Co-authored-by: Loann Le <[email protected]> Co-authored-by: Loann Le <[email protected]> * Unhide or remove docs sidebar elements (#13198) A few sidebar elements are hidden for unknown reasons. If we have a reason to keep them hidden (vs deleting the element and associated docs), maybe we could add `"_comment":"Hidden because ..."` to them. A few other elements were definitely obsolete so I've removed them. * Fix doc build (#13329) path-help.mdx is now the reference for help. * Vault documentation: updated client count FAQ document (#13330) * modified based on feedback * Update faq.mdx fixed text * website: fix print styles by bumping deps (#12894) * website: fix print styles by bumping deps * website: remove old highlight js prints style code * fix: hashi-stack-menu selector * improve "x_forwarded_for_hop_skips" example (#12463) Currently the example given results in 2.3.4.5 if it is indexed from other side. This new example prevents confusion because it is now clear which side x_forwarded_for_hop_skips is indexing from * Fix typo (#13355) * modifed note (#13351) * docs: winsvc update recommendations (#13280) * docs: update custom database sample code (#13211) * clarify more sink options (#12586) * Update @hashicorp/react-hashi-stack-menu (#13354) * Docs to clarify k8s auth options with short-lived tokens (#13275) * Rework 1.21 content into one heading and add note at top * Add notes about extended k8s token duration * Add example of ClusterRoleBinding for using client JWTs * [VAULT-3252] Add entity-alias behavior change to docs (#13370) * Add entity-alias behavior change to docs * Add upgrade note about entity-alias mapping change * Rename 1.7-9 upgrade pages, shuffle upgrade note position * Update website/content/partials/entity-alias-mapping.mdx Co-authored-by: Meggie <[email protected]> * Add incorrect policy issue to the docs * Add example about entity-alias restriction Co-authored-by: Meggie <[email protected]> * Update alert banner (#13375) * Updating website for 1.9.1 (#13378) * auth/azure: add note about debug env (#13405) * auth/azure: add note about debug env * Update azure.mdx * Update azure.mdx * Add docs about path param restrictions (#13413) * Add docs about path param restrictions * Update website/content/api-docs/auth/userpass.mdx Co-authored-by: Loann Le <[email protected]> * Update with review suggestion Co-authored-by: Loann Le <[email protected]> * Update raftautosnapshots.mdx (#13412) * Add paths filter doc (#13435) * Add paths filter doc * Add a description about the screenshot * Update website/content/docs/enterprise/replication.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/enterprise/replication.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/enterprise/replication.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/enterprise/replication.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/enterprise/replication.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/enterprise/replication.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/enterprise/replication.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/enterprise/replication.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/enterprise/replication.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/enterprise/replication.mdx Co-authored-by: Loann Le <[email protected]> * Update website/content/docs/enterprise/replication.mdx Co-authored-by: Loann Le <[email protected]> * Remove extra sentense * Update the diagram * Update the diagram Co-authored-by: Loann Le <[email protected]> * Homepage redesign (#13159) * homepage setup * [Homepage] `<IoHomeHero />` component (#13160) * init <Hero /> component * adds loading animation * updates variable naming * makes index optional * Update hero-pattern.svg * prefix with IoHome * updates usage * [Homepage] `<IoHomePreFooter />` component (#13182) * adds <IoHomePreFooter /> * adds interfaces * [Homepage] `<IoHomeHero />` component (#13160) * init <Hero /> component * adds loading animation * updates variable naming * makes index optional * Update hero-pattern.svg * prefix with IoHome * updates usage * adds <IoHomePreFooter /> * adds interfaces * adds key * [Homepage] `<IoHomeCallToAction />` component (#13164) * adding brand to cta * cleanup homepage * [Homepage] `<IoHomeVideo />` component (#13161) * init <Video /> component * adjusts sizing and border radius * responsive styling * fix hover svg gitter * adjust play icon sizing * include temp thumbnail * dialog implementation * conditionally display person and show helpers * rename component * updates dialog naming * add homepage styling * simplify background color * page level styling * [Homepage] `<IoHomeCaseStudies />` (#13190) * adds <IoHomeCaseStudies /> * adds interface * animate gradient * update min-heights * Homepage `<IoHomeCard />` component (#13151) * init <Card /> component * fixes heading color * adds product logos and hover styles * update naming * simplifies inset spacing * use ternary and add key * removes repo link * removes need for camelCase package * adds keys * adds in practice cards * adds in practice background * use case cards * update min col sizing * adds feature component (#13203) * fixes card hover bug * [Homepage] connect homepage to dato content (#13227) * connect homepage to dato * Check for internal link * fix return types * adds youtube video * hook up meta tags and chunk cards * removes chunking * fix ts return * fix prop naming * fix return type * mobile sizing adjustments * [Homepage] Usecase pages (#13240) * init usecase page * updates use case call to action * card container component * themeing * convert to using strictly props * responsive spacing * reworking sections component * adds callout and hero patterns * adds priority * makes feature link optional * [Homepage] connect use case template to dato (#13295) * Start connecting to dato * Fix spacing when no video is present * Remove log * adds images * hook up cards * pass eyebrow and products * Delete index.tsx * Use card container on homepage * use react video player * [Homepage] fix mobile video (#13309) * Removing attributes * update url * spacing adjustments * Allow previewing draft content (#13312) * fix heading width * fix feature max width * adjust in practice padding * increase icon sizing * adjust icon alignment * update eyebrow * update hero pattern * update usecase hero pattern * add hover scale * [Homepage] populate use case dropdown from use case pages (#13325) * create standard layout * removes unused subnav data * removes static use case pages * removes use cases style * bump subnav and use hashicorp vault logo * fixes use cases paths * removes hashistack menu * removes subnav top border * conditionally render video callout avatar * hook up data and conditionals * update components to work with other products * extract in practice section for reuse * use Products type * fix type error * rework cta logic * removes type * updates accent method * fix button prop * refactor customer case study * refactor case studies component * cleanup margin * refactor data props * Spacing updates and introduce intro component * adds intro interface * Delete style.css * fix intro description color * add revalidate code to homepage * bump subnav * make stats optional * adjust border radius based on customer story * cleanup temp files * redirect /home to homepage * reorder resources * fix: move heading and description * fix: logo alignment * fix: section background color * feat: optional tutorial and docs links * fix: removes case studies background * formatting * feat: sort use cases in nav * fix: card overflow (#13429) * fix: adjust overflow method * fix: padding on desktop * fix: scroll padding-right on mobile * remove debugger * increase last item width * card container overflow method (#13434) * use flex * formatting * add comment * Trigger Build * Update openshift.mdx (#13372) Consul Openshift is supported since Consul 1.9 as per https://www.hashicorp.com/blog/introducing-openshift-support-for-consul-on-kubernetes. Please verify. * Update docs with new images (#13454) * Update docs with new images * Update website/content/docs/concepts/identity.mdx Co-authored-by: Loann Le <[email protected]> * Remove extraneous Github mention Co-authored-by: Loann Le <[email protected]> * website: Update text (#13441) * chore: Disable alert banner (#13458) * cherry-pick main * add `entity-alias` parameter description (#13339) This page is missing the `entity-alias` parameter description, available in the `vault token create --help` command * Update index.mdx (#10873) * Update index.mdx Fixed typo in Setup section of the Secrets Engine documentation. * Update index.mdx Remove line 112. * adjustemnt of options order (#12804) Co-authored-by: tograla <[email protected]> * Fix typo in policies.mdx (#13345) Fix typo in Kubernetes policy example which prevents example from working. * Backport of Upgrade guidance updates from VLT-172 into stable-website (#13478) * backport of commit 7166b7f * backport of commit e087318 Co-authored-by: Meggie Ladlow <[email protected]> * Backport of Update entity-alias.mdx into stable-website (#13480) * backport of commit aef7da3 * backport of commit cf08ac6 Co-authored-by: Jack Halford <[email protected]> * Backport of Improve databases documentation into stable-website (#13481) * backport of commit 1aeddca * backport of commit eb572c0 * backport of commit 72f9a6a Co-authored-by: Jonathan Ballet <[email protected]> Co-authored-by: Jonathan Ballet <[email protected]> * Backport of add tencentCloud Secrets&Auth Plugins into stable-website (#13484) * backport of commit f127828 * backport of commit 5a633a0 * backport of commit 09de796 Co-authored-by: firingli <[email protected]> * Backport of Adding upgrade note about 1.7.8 go version into stable-website (#13495) * backport of commit 63cac2e * backport of commit 2575a5d Co-authored-by: Meggie Ladlow <[email protected]> * Backport of docs: add a note regarding the backend => storage config key aliasing into stable-website (#13505) * backport of commit 6414fad * backport of commit b08553c Co-authored-by: Jose Diaz-Gonzalez <[email protected]> * backport of commit 4debead (#13507) Co-authored-by: Valerie Conklin <[email protected]> * Backport of website: Upgrade <Subnav /> & <ProductDownloadsPage /> into stable-website (#13513) * backport of commit 2818bc7 * backport of commit a835465 Co-authored-by: Noel Quiles <[email protected]> * Backport of fix: algolia-index CircleCI test into stable-website (#13519) * backport of commit 84689f9 * backport of commit 458a945 Co-authored-by: Noel Quiles <[email protected]> * backport of commit fdae99d (#13525) Co-authored-by: Jeff Escalante <[email protected]> * fix(docs-k8s-helm): changed server's podAntiAffinity labelSelector example to match helm default values (#13140) * Update docs to reflect new plugin behavior. (#13543) * Update docs to reflect that TLS connection state is now available to plugins * Fix typo (D'oh!) * Backport of Vault documentation: fixed broken links into stable-website (#13554) This pull request was automerged via backport-assistant * backport of commit db1ce43 (#13556) This pull request was automerged via backport-assistant * backport of commit 013705a (#13563) This pull request was automerged via backport-assistant * backport of commit d91ba9d (#13575) This pull request was automerged via backport-assistant * backport of commit 7bcae00 (#13587) This pull request was automerged via backport-assistant * docs: fix typo in azure auth debug log mode (#13593) * backport of commit ff556b7 (#13623) This pull request was automerged via backport-assistant * Backport of Vault documentation: updated client count FAQ into stable-website (#13648) This pull request was automerged via backport-assistant * Backport of updating response for partial month client count into stable-website (#13652) This pull request was automerged via backport-assistant * Backport of secrets/keymgmt: Adds documentation for using Azure Private Link into stable-website (#13654) This pull request was automerged via backport-assistant * backport of commit 6afdd5a (#13656) This pull request was automerged via backport-assistant * Backport of docs: update oracle tls examples into stable-website (#13665) This pull request was automerged via backport-assistant * backport of commit f3b85a6 (#13685) This pull request was automerged via backport-assistant * backport of commit 555bd52 (#13694) This pull request was automerged via backport-assistant * backport of commit 6ad3d41 (#13709) This pull request was automerged via backport-assistant * Backport of docs: add known issues section to 1.9.x upgrade guide into stable-website (#13712) This pull request was automerged via backport-assistant * backport of commit e46313b (#13718) This pull request was automerged via backport-assistant * backport of commit bd784ef (#13741) This pull request was automerged via backport-assistant * backport of commit d24697a (#13770) This pull request was automerged via backport-assistant * Backport of docs/k8s: Updates for vault-k8s 0.14.2 and vault-helm 0.19.0 into stable-website (#13773) This pull request was automerged via backport-assistant * backport of commit a480053 (#13780) This pull request was automerged via backport-assistant * backport of commit 11abd48 (#13784) This pull request was automerged via backport-assistant * docs: add vault-plugin-secrets-jenkins to plugin portal page (#13531) Signed-off-by: circa10a <[email protected]> * backport of commit b9cbe28 (#13791) This pull request was automerged via backport-assistant * backport of commit 7079d0a (#13800) This pull request was automerged via backport-assistant * backport of commit 7fb9a51 (#13809) This pull request was automerged via backport-assistant * Clarify that backend authors can specify that all or no values are sealwrapped (#13813) * Clarify that backend authors can specify that all or no values are sealwrapped rather than the vague statement that all values _may_ be seal wrapped * typo * Backport of Add notes on the PKI cert generation forwarding regression into stable-website (#13817) This pull request was automerged via backport-assistant * backport of commit 80ed7e5 (#13823) This pull request was automerged via backport-assistant * Backport of Documentation updates for new keys for PKCS#11 unsealing into stable-website (#13826) This pull request was automerged via backport-assistant * backport of commit 4105255 (#13830) This pull request was automerged via backport-assistant * backport of commit 76440ae (#13834) This pull request was automerged via backport-assistant * backport of commit def7d94 (#13837) This pull request was automerged via backport-assistant * Backport of Docs: fix invalid link in the kubernetes auth api doc. into stable-website (#13845) This pull request was automerged via backport-assistant * Docs/auth kubernetes 1.9.3 (#13853) * backport of commit a11b068 (#13854) This pull request was automerged via backport-assistant * Backport of OIDC: add note on PKCE support for code flow into stable-website (#13861) This pull request was automerged via backport-assistant * backport of commit f49f5b7 (#13897) This pull request was automerged via backport-assistant * backport of commit f852919 (#13899) This pull request was automerged via backport-assistant * Backport of Add missing word "database" in docs into stable-website (#13596) * backport of commit 3e64bca * backport of commit 9b97cb7 * backport of commit 2cb8b77 * backport of commit dc66009 * backport of commit e00c4b0 * backport of commit 7576a43 Co-authored-by: tvsaru <[email protected]> Co-authored-by: Loann Le <[email protected]> * backport of commit e2008d6 (#13909) This pull request was automerged via backport-assistant * backport of commit c3aac0f (#13911) This pull request was automerged via backport-assistant * backport of commit 0a354fd (#13915) This pull request was automerged via backport-assistant * Backport of docs/oracle: add wallet permissions example into stable-website (#13928) This pull request was automerged via backport-assistant * Backport of Vault documentation: updated What is a Client section into stable-website (#13932) This pull request was automerged via backport-assistant * no-op commit due to failed cherry-picking --------- Signed-off-by: circa10a <[email protected]> Co-authored-by: VAL <[email protected]> Co-authored-by: Loann Le <[email protected]> Co-authored-by: Yoko Hyakuna <[email protected]> Co-authored-by: Martin Hristov <[email protected]> Co-authored-by: jweissig <[email protected]> Co-authored-by: Gary Frederick <[email protected]> Co-authored-by: Ben Ash <[email protected]> Co-authored-by: Theron Voran <[email protected]> Co-authored-by: aphorise <[email protected]> Co-authored-by: Nick Cabatoff <[email protected]> Co-authored-by: akshya96 <[email protected]> Co-authored-by: Austin Gebauer <[email protected]> Co-authored-by: Brian Shumate <[email protected]> Co-authored-by: Mike <[email protected]> Co-authored-by: Nicola Kabar <[email protected]> Co-authored-by: Rowan Smith <[email protected]> Co-authored-by: Jim Kalafut <[email protected]> Co-authored-by: Zachary Shilton <[email protected]> Co-authored-by: Noel Prince <[email protected]> Co-authored-by: Harsimran Singh Maan <[email protected]> Co-authored-by: mickael-hc <[email protected]> Co-authored-by: Calvin Leung Huang <[email protected]> Co-authored-by: Mike Green <[email protected]> Co-authored-by: Noel Quiles <[email protected]> Co-authored-by: Tom Proctor <[email protected]> Co-authored-by: Pratyoy Mukhopadhyay <[email protected]> Co-authored-by: Meggie <[email protected]> Co-authored-by: Brandon Romano <[email protected]> Co-authored-by: Jason O'Donnell <[email protected]> Co-authored-by: Mark Lewis <[email protected]> Co-authored-by: Alex Carpenter <[email protected]> Co-authored-by: Jason Peng <[email protected]> Co-authored-by: Kevin Wang <[email protected]> Co-authored-by: Kaue Doretto Grecchi <[email protected]> Co-authored-by: Carlos Cisneros, Jr <[email protected]> Co-authored-by: Tom <[email protected]> Co-authored-by: tograla <[email protected]> Co-authored-by: Vasilii Angapov <[email protected]> Co-authored-by: Jack Halford <[email protected]> Co-authored-by: Jonathan Ballet <[email protected]> Co-authored-by: Jonathan Ballet <[email protected]> Co-authored-by: firingli <[email protected]> Co-authored-by: Jose Diaz-Gonzalez <[email protected]> Co-authored-by: Jeff Escalante <[email protected]> Co-authored-by: Pascal Reeb <[email protected]> Co-authored-by: Tim Peoples <[email protected]> Co-authored-by: Caleb Lemoine <[email protected]> Co-authored-by: Scott Miller <[email protected]> Co-authored-by: tvsaru <[email protected]> Co-authored-by: temp <[email protected]> Co-authored-by: Sarah Chavis <[email protected]>