auth/centrify: Centrify auth method is now deprecated #23050
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Slated for removal in 1.17
github-actions
bot
added
the
hashicorp-contributed-pr
|
Build Results: |
|
CI Results: |
schavis
added
the
content-lgtm
tomhjp
approved these changes
Sep 13, 2023
| @@ -35,6 +35,7 @@ This announcement page is maintained and updated periodically to communicate imp | |||
| | SHA-1 certificate signing | v1.11 | v1.11 | v1.12 | Go version 1.18 removes support for SHA-1 by default. As Vault updates its Go version to 1.18, you should plan to move off SHA-1 for certficate signing. Operators can set a Go [environmental variable](/vault/docs/deprecation/faq#q-what-is-the-impact-of-removing-support-for-x-509-certificates-with-signatures-that-use-sha-1) to restore SHA-1 support if they need to continue using SHA-1. It is unknown at this time when Go will remove the environmental variable support. Therefore, we highly encourage you to migrate off of SHA-1 for certificate signing. |[FAQ](/vault/docs/deprecation/faq#q-what-is-the-impact-of-removing-support-for-x-509-certificates-with-signatures-that-use-sha-1)| | |||
| | Consul secrets engine parameter changes | v1.11 | N/A | N/A | The `policies` parameter on the Consul secrets engine has been changed in favor of `consul_policies`. The `token_type` and `policy` parameters have been deprecated as the latest versions of Consul no longer support the older ACL system they were used for. | [Consul secrets engine API documentation](/vault/api-docs/secret/consul) | | |||
| | Vault Agent API proxy support | v1.14 | v1.16 | v1.17 | Migrate to [Vault Proxy](/vault/docs/proxy/index) by v1.17| | |||
| | Centrify Auth Method | v1.15 | v1.17 | v1.17 | Use separate plugin binary, but support will not be available due to lack of updated Centrify libraries. | | | |||
There was a problem hiding this comment.
nit: I think the lack of updated libraries is more like the reason for deprecating it in the first place?
Suggested change
| | Centrify Auth Method | v1.15 | v1.17 | v1.17 | Use separate plugin binary, but support will not be available due to lack of updated Centrify libraries. | | | |
| | Centrify Auth Method | v1.15 | v1.17 | v1.17 | It can still be used as an external plugin, but support will not be available. | | |
There was a problem hiding this comment.
I think @schavis won't like me changing this to the passive voice :) But, I'll rework that sentence. :)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Slated for removal in 1.17