* Add a telemetry metric to track if a reindex is in progress or not
* changelog
* Add other reindex related metrics
* cleanup types
* Add docs for these metrics
* check for nil values
- Only enable the warning mode for seals being unavailable when
multiple exist when running within multi-seal mode.
- This addresses a panic that occurs when a legacy style
migration is attempted and the non-disabled seal is unavailable.
* Provide a better error message around initializing with multiple seals
- Specifically callout during cluster initialization or initial beta
seal migration that we can only have a single seal enabled with the
following error message:
`Initializing a cluster or enabling multi-seal on an existing cluster must occur with a single seal before adding additional seals`
- Handle the use case that we have multiple seals configured, but
some are disabled, leaving a single enabled seal. This is the legacy
seal migratation case that works without the BETA flag set, so should
work with it set as well.
* Update the expected error messages within seal tests
* Remove support for old style migration configurations in multi-seal
* Match multiple seals using name/type only
- This fix addresses an issue that changing any seal configuration in an existing seal stanza such as the Vault token would cause negate the seal matching.
- If this was the only seal that was previously used or slight tweaks happened to all the seals Vault would fail to start with an error of
"must have at least one seal in common with the old generation."
- Also add a little more output to the validation error messages about
the current seal and configured seal information to help in
diagnosing errors in the future
* Tweak formatting and text on method doc
* Update comment around forcing a seal rewrap
* secrets/db: add rotation error path test
We add a test to verify that failed rotations can successfully recover
and that they do not occur outside of a rotation window. Additionally,
we remove registering some external plugins in getCluster() that shaves
off about 5 minutes the database package tests.
* remove dead code and add test comment
* revert to original container helper after refactor
* fixes issue with auth methods disappearing from list view
* fixes issue with Authentication Methods sidebar nav link not staying active when mounting auth method
* fixes tests and adds coverage for missing auth methods
* Remove component: diff version selector
* delete SecretVersionMenu
* remove secret logic from GetCredentialsCard
* remove DiffVersionSelector hbs file and references
* delete more css for diff version view
* remove diff route
* fix credential card selector
* ui: refactor SecretFormShow (#22723)
* refactor secret form show
* fix selector typo
* remove version route (#22738)
* Remove old KV2 delete things (#23015)
* remove kv2 old delete things
* comment
* Remove old metadata (#22747)
* wip to remove metadata
* review comments
* UI/remove kv2 secret create or update (#23039)
* remove is v2 param
* permissions clean up
* remove version things
* remove excess from form show
* clean up
* created time was never a thing for cubbyhole, confirmed on api
* update tune test
* fix control group tests:
* Remove kv v2 models (#23087)
* remove is v2 param
* permissions clean up
* remove version things
* remove excess from form show
* clean up
* created time was never a thing for cubbyhole, confirmed on api
* update tune test
* fix control group tests:
* remove models
* Update ui/app/models/secret-engine.js
Co-authored-by: Chelsea Shaw <82459713+hashishaw@users.noreply.github.com>
* blah prettier
---------
Co-authored-by: Chelsea Shaw <82459713+hashishaw@users.noreply.github.com>
* UI/config update (#23111)
* sweep through clean up
* remove component
* remove unused selectors
* remove unncessary
---------
Co-authored-by: claire bontempo <68122737+hellobontempo@users.noreply.github.com>
Co-authored-by: clairebontempo@gmail.com <clairebontempo@gmail.com>
Co-authored-by: Angel Garbarino <Monkeychip@users.noreply.github.com>
Co-authored-by: Angel Garbarino <angel@hashicorp.com>
* fix panic: Fail in goroutine after TestProxy_Config_ReloadTls has completed
* fix proxy test
* feedback
* track the command output code and stdout/err
Rather than assuming a short sleep will work, we instead wait until netcat is listening of the socket. We've also configured the netcat listener to persist after the first connection, which allows Vault and us to check the connection without the process closing.
As we implemented this we also ran into AWS issues in us-east-1 and us-west-2, so we've changed our deploy regions until those issues are resolved.
Signed-off-by: Ryan Cragun <me@ryan.ec>
* updated the LIST identity/entity-alias/id endpoint docs to reflect new data returned
* Update website/content/api-docs/secret/identity/entity-alias.mdx
Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
* Update website/content/api-docs/secret/identity/entity-alias.mdx
Co-authored-by: Max Bowsher <maxbowsher@gmail.com>
---------
Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>
Co-authored-by: Max Bowsher <maxbowsher@gmail.com>
Fix an issue where netcat would not be installed correctly with certain
package managers. We also fix an issue where SSH cannot exit because nc
is waitaing for SIGHUP, resulting in scenarios running forever.
Signed-off-by: Ryan Cragun <me@ryan.ec>
* Part 1: Upgrade HDS to 2.9.0 (#22311)
* UI: HDS adoption replace <CopyButton> part 2 (#22356)
* certificate-card.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* scope-form.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* fix tests caused by changing certificate-card. change hds copy button in certificate-card.hbs
* json-editor.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* masked-input.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* fix error with certificate-card.hbs copy button
* fix tests that deal with certificate-card.hbs
* add class to hds copy buttons to maintain similar styling to curent UI
* info-table-row.hbs: replace 2 <CopyButton> with <Hds::Copy::Button>
* undo change that should instead by merged in from main
* change tooltip copy button to white. cleanup
* add extra tet for oidc scope form. edit css class for the white icon copy button
* fix tests
* UI: HDS adoption replace <CopyButton> part 3 (#22614)
* encrypt.hbs: replace 2 <CopyButton> with <Hds::Copy::Button>
* decrypt.hbs: replace 2 <CopyButton> with <Hds::Copy::Button>
* datakey.hbs. replace 6 <CopyButton> with <Hds::Copy::Button>
* rewrap.hbs: replace 2 <CopyButton> with <Hds::Copy::Button>
* hmac.hbs: replace 2 <CopyButton> with <Hds::Copy::Button>
* fix typo
* add copy-close class to copy & close buttons
* export.hbs: replace 2 <CopyButton> with <Hds::Copy::Button>. fix styling
* sign.hbs: replace 2 <CopyButton> with <Hds::Copy::Button>
* fix test caused by changing <pre> tag to <code> in export.hbs
* rename class
* add extra style to class needed for part 4 of copy button replacement
* UI: HDS adoption replace <CopyButton> part 4 (#22749)
* user-menu.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* transit-form-show.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* configure-ssh-secret.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* tool-hash.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* tool-random.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* tool-rewrap.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* tool-unwrap.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* tool-wrap.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* paths.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* code-snippet.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* cleanup css for code-snippet. add comments for getting rid of code-snippet and replacing with <Hds::Copy::Snippet
* change code-snippet copy icon to gray to match original design
* change code-snippet class
* accounts.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* hover-copy-button.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* add.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* show.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* copy-secret-dropdown.hbs: replace 1 <CopyButton> with <Hds::Copy::Button>
* change styling of 'link' copy buttons
* generate-credentials.hbs: replace 2 <CopyButton> with <Hds::Copy::Button>
* transform-show-transformation.hbs: replace 2 <CopyButton> with <Hds::Copy::Button>
* sign.hbs: replace 2 <CopyButton> with <Hds::Copy::Button>
* hide some copy buttons' icons and use original flash message
* undo cleanup of scss file so that I can put cleanup all into one PR to be more organized
* update code snippet copy button
* UI: HDS adoption replace <CopyButton> part 5: Cleanup (#22884)
* remove unecessary code-snippet.scssn class
* remove copy classes from masked-input.scss
* remove copy button class from text-file.scss
* uninstall ember-cli-clipboard 0.16.0 since there is no longer structure <CopyButton>
* remove copyright message from code-snippet.scss to avoid merge conflicts with main, where the file is deleted
* replace 2 classes with one
* remove unecessary class from copy button
* cleanup classes
* revert changes to avoid merge conflicts
* remove is-block class
* conditionally render private key
* add more info to comment
* remove HoverCopyButton
* add missing selector
* fix control group padding
---------
Co-authored-by: clairebontempo@gmail.com <clairebontempo@gmail.com>
Co-authored-by: claire bontempo <68122737+hellobontempo@users.noreply.github.com>
* rename class to transparent background
* remove unused test selectors
* replace transit actions with Copy::Snippet
* replace transfrom code blocks with code snippet component
* revert extra css fiddling
* misc cleanup, unused action
* remove copy & close buttons from transit modals
* remove is- from class naming
* remove hds-copy-button class
* add other grey class
* more small cleanup
* add -top to margin
* add changelog
---------
Co-authored-by: clairebontempo@gmail.com <clairebontempo@gmail.com>
Co-authored-by: claire bontempo <68122737+hellobontempo@users.noreply.github.com>
