upstream/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2026-05-28 04:10:44 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

Add new SSH field

Browse source
This commit is contained in:
Seth Vargo 2017-03-16 09:48:45 -07:00
parent c902aa4f98
commit 181cd198e8
No known key found for this signature in database
GPG key ID: C921994F9C27E0FF
1 changed files with 6 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
website/source/docs/http/secret/ssh/index.html.md
View file

@ -190,6 +190,11 @@ This endpoint creates or updates a named role.
- `allow_subdomains` `(bool: false)` Specifies if host certificates that are
requested are allowed to use subdomains of those listed in "allowed_users".
- `allow_user_key_ids` `(bool: false)` Specifies if users can override the key
ID for a signed certificate with the "key_id" field. When false, the key ID
will always be the token display name. The key ID is logged by the SSH server
and can be useful for auditing.
### Sample Payload
```json
@ -262,6 +267,7 @@ For a CA role:
"allow_bare_domains": false,
"allow_host_certificates": true,
"allow_subdomains": false,
"allow_user_key_ids": false,
"allow_user_certificates": true,
"allowed_critical_options": "",
"allowed_extensions": "",