SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for openbao-agent-2.0.0~alpha20240329-7.2.noarch.rpm :

* Fri Apr 05 2024 opensuse_buildserviceAATTojkastl.de- Update to version 2.0.0~alpha20240329:
* update logo used in README
* add CI pipeline for website
* add Dependabot checks for Docs and UI
* Issue-234: Adding changelog entry.
* Issue-234: Missed a few Vault tagged versions.
* Issue-234: Retract all prior Vault API and SDK versions.
* Issue-234: Retracting all prior Vault versions.
* Issue-234: Updated OpenBao version to 2.0.0-alpha20240329. Retracted the forked Vault version 1.14.9.
* remove obsolete docs sidebar entry
* If the `basic_constraints_valid_for_non_ca` parameter is explicitly provided in the API call, it takes priority over the value set in the role.
* Added tests and updated API documentation
* Fixed issue PKI: Support explicit Basic Constraints isCA=False #81
* mark unfinished docs as draft
* add missing LF Edge logo in footer
* Add landingpage to website
* Remove lambda extension documentation
* Replace additional reference of env vars prefixed with VAULT to BAO
* Update VAULT_LOG_LEVEL references to BAO_LOG_LEVEL
* Update VAULT_LOG_FORMAT references to BAO_LOG_FORMAT
* Update VAULT_CLI_NO_COLOR references to BAO_CLI_NO_COLOR
* Update VAULT_FORMAT references to BAO_FORMAT
* Remove the Redis database plugin
* Remove Enterprise features from api/, sdk/
* Add global handling of -non-interactive
* Add paginated list RFC to website
* Add changelog entry for paginated lists
* Upgrade remaining plugin list endpoints
* Add stub implementation for external plugins
* Use ListPage for PKI list endpoints
* Support -after, -limit on bao list command
* Add ListPageWithContext to API
* Add ListPage(...) as a storage operation
* Fix semgrep fmt.Print rule to exclude tools
* Fix Kubernetes semgrep issue
* Fix anchor generation in website partials
* Issue 225: Adding merge_queue triggers to workflows. Adding a dummy workflow work-around for DCO bot.
* Use custom serialization of rabbitmq role
* Add default_extension_template to ssh docs
* Allow specifying key type during issuance
* Fix rejection of unauthorized X-Forwarded-For
* Add strict binding of token to request IP address
* Add check for go.mod being out of date
* Clarify behavior of role\'s ExtKeyUsage
* Fix Solaris and remove i386 builds
* Fix running external binary tests in CI
* Add delta CRL distribution point extension
* Document 404 is also an empty list
* Allow customizing key export format in Transit
* Fix key wrapping with locally created keys
* Add soft deletion of Transit keys
* Improvements to Shamir\'s implementation
* Remove Server Side Consistent Tokens (SSCTs)
* Remove docs and comment references to PKI managed keys
* Remove unused import \'context\'
* Remove parseCABundle method
* Remove enterprise no-ops and references to managed key types
* Fix if conditions in API calls
* Update documentation
* Remove managed keys references from SDK and calls in API
* Remove enterprise no-ops from Transit path key and path rotate
* Remove more enterprise stubs
* Remove eventing & experimental subsystems
* Remove activity log from OpenBao
* Remove entCore & entCoreConfig
* Remove runICheck
* Remove reference to census reporting
* Remove performEntPolicyChecks
* Remove Enterprise raft configuration
* Remove IsBuiltinEntPlugin
* Remove Performance Secondary, DR Secondary consts
* Remove forwarded writer code
* Revert \"Bump actions/download-artifact from 3.0.2 to 4.1.4\"
* Bump actions/cache from 3.3.1 to 4.0.1
* Remove remaining permissions issues in pipelines
* Fix race in auth/k8s tests
* Bump actions/download-artifact from 3.0.2 to 4.1.4
* Bump browser-actions/setup-chrome from 1.2.0 to 1.5.0
* Bump actions/go-dependency-submission from 2.0.0 to 2.0.1
* Temporarily remove UI from release pipelines
* Issue 174: Adding source-available licensing policy to contributing file. Moved DCO section closer to the top, and made additions to the section.
* Fix OpenBao OIDC followed by Google OIDC not working on Android
* Move shamir\'s into public sdk/ space, fix titles
* Fix vulnerable dependencies in core, api/, and sdk/
* Remove workflow permission requirements
* Fix build & CI pipelines
* Correctly validate leaf certificate trust
* Remove Consul service registration
* Revert \"backport of commit 63ab253cb429c6fd7d7d61be6f76b25c742de7d1 (#23929)\"
* Revert \"backport of commit cbb96b230c296402341aba11fc1cf41d4f9c2e25 (#23524)\"
* Revert \"UI: VAULT-20186 Backport 1.14.x: Decode connection_url in database (#23705)\"
* Revert \"UI: Show unsupported screen if replication unsupported (#23178) (#23213)\"
* Revert \"Address a panic when exporting RSA public keys in transit (#24054) (#24116)\"
* Revert \"UI: add pagination to new PKI (#23193) (#23239)\"
* Revert \"manual backport (#24035)\"
* Fix error in TestUnknownFieldValidation test
* Remove errors introduced during the merge
* Remove enterprise file stubs
* Remove IsEnterprise references
* Format imports in operator_diagnose
* Remove LicensingConfig argument in init_test.go testcase
* Remove unused enterprise function implementation placeholders
* Add back core \'setupMounts\' call and remove comment
* Remove additional licensing references and put back WAL related code
* Remove licensing references - wip
* Remove internalshared enterprise config and entropy references
* Remove command enterprise config references
* Remove managedKeyFactory from transit handlers
* Update sdk error message referncing managed_key
* Remove Enterprise references
* Remove Consul storage backend test helper
* Replace hashicorp/consul-template -> openbao/openbao-template
* Remove extra whitespace via new gofumpt
* Switch to running external tools directly
* add missing dependency to package.json
* fix heading IDs
* add search bar
* use builtin docusaurus warnings
* adjust frontmatter
* add sidebars
* fix broken links
* use builtin docusaurus mdx components
* fix markdown so docusaurus renders it
* initialize docusaurus website
* Rename Vault->OpenBao in sdk/framework test data
* Add API, SDK testing explicitly to Makefile
* Use api.LookupBaoVariable in code, tests
* Address many more instances of env reading
* Simplify logic in ReadBaoVariable, add LookupBaoVariable
* Finish removing VAULT_ from the rest of the project
* Move API Client to ReadBaoVariable
* Add ReadBaoVariable
* Remove additional components from Web UI
* Add Makefile for executing common UI commands
* Replace instances of Vault -> OpenBao in the UI
* Prevent concurrent map access writing keys in Transit
* Add test cases for Transit sign/verify deadlock
* Simplify unlock behavior in Transit with defers
* Defer cleanup in keysutil.LockManager.GetPolicy()
* Defer policy Unlock call when Lock is called
* Add accepted migration policy
* Update to protoc-gen-go-v1.31.0
* flake: increase TestAgent_Template_Basic timeout delay
* Move to newer layeh.com/radius
* Move to Go 1.22.0
* Allow setting KeyUsage, ExtKeyUsage on CAs
* remove non-working code examples
* remove upstream thrid party tooling docs
* delete unreferenced partials
* remove old Vault version docs
* remove old Vault version API docs
* Forbid v1 & v2 convergent keys
* pki: Preserve ordering of submitted SAN names
* Add support to Transit, keysutil for XChaCha20-Poly1305
* make fmt unified codebase
* Update Vault->Bao references in documentation, README
* Update Vault->Bao references in the CLI
* Correct references to openbao for user, directory, but bao for CLI
* Remove reference to HashiCorp
* Update a -> an article to reference OpenBao
* Update README with link to chat server
* Point lf-edge->openbao for GH organization
* Remove upstream\'s upgrading guides and release notes
* Remove patch for SHA-1 certificates
* delete docs of removed plugins
* Rename Vault->OpenBao in API responses
* fix: change path bao -> openbao
* feat: OpenBaO -> OpenBao
* feat: rename vault to bao
* rename vault to bao
* Rename openbao to bao
* fix: vault.d
* feat: rename Vault to OpenBao
* Remove namespace CLI documentation
* Add website section on OpenBao policies
* Move testIdentityStore to use AppRole instead of GitHub
* Allow k/v to use custom plugin version
* Correctly expect deprecation_status now that k/v is builtin
* Remove dependence on consul secrets engine for tests
* Remove app-id from tests
* Remove already removed plugins
* Correct ordering of plugins, use approle instead of azure
* Fix prediction based on pruned plugin list
* Synchronize plugin counts
* Trim plugins in openapi.sh
* Remove last references to MongoDB
* Remove non-OSI auth methods from API
* Use builtin/logical/kv over hashicorp/vault-plugin-secrets-kv
* Rename cmd/vault-plugin-secrets-kv -> cmd/kv
* Replace hashicorp/vault -> openbao/openbao
* Use builtin/logical/openldap over hashicorp/vault-plugin-secrets-openbao
* Rename cmd/vault-plugin-secrets-openldap -> openldap
* Use builtin/logical/kubernetes over hashicorp/vault-plugin-secrets-kubernetes
* Rename cmd/vault-plugin-secrets-kubernetes -> kubernetes
* Use plugins/database/redis over hashicorp/vault-plugin-database-redis
* Rename cmd -> redis-database-plugin
* builtin/auth/kubernetes over hashicorp/vault-plugin-auth-kubernetes
* Rename cmd/vault-plugin-auth-kubernetes -> kubernetes
* builtin/auth/kerberos over hashicorp/vault-plugin-auth-kerberos
* cmd/vault-plugin-auth-kerberos -> kerberos
* Use builtin/credential/jwt over hashicorp/vault-plugin-auth-jwt
* Rename cmd/vault-plugin-auth-jwt -> jwt
* Remove additional non-OSI test helpers
* Remove non-OSI secrets plugins
* Finish removing references to cloud plugins
* Move testIdentityStore to use AppRole instead of GitHub
* Remove non-OSI auth plugins
* Replace hana db plugin with mysql in tests
* Remove non-OSI database plugins
* Comment out Consul storage diagnose tests
* Remove non-raft storage backends
* Issue 94: Updated Runners and removed on pull request clause.
* Issue 94: Commented out empty with clause.
* Issue-94: Adding a basic GitHub workdlow for Golang dependency submission. This will enable basic SBOM generation via GitHub.
* Replace hashicorp/vault -> openbao/openbao in secrets/openldap
* Replace hashicorp/vault -> openbao/openbao in secret/kubernetes
* Replace hashicorp/vault -> openbao/openbao in database/redis
* Replace hashicorp/vault -> openbao/openbao in auth/kubernetes
* Replace hashicorp/vault -> openbao/openbao in auth/kerberos
* Replace hashicorp/vault -> openbao/openbao in auth/jwt
* Remove Enos Test Scenarios
* Clean up CODEOWNERS, remove last changelog entries
* remove Enterprise documentation
* remove Vault Enterprise API docs
* Fix failed formatting directive in sdk/helper/testcluster
* Finish Unix socket changes
* Remove HCP Link from OpenBao
* Re-add stepwise to sdk (#57)
* Switch to new openbao/go-kms-wrapping repository
* Fix duplicate raft-boltdb declaration
* rename CLI to \"bao\" in documentation
* replace Vault with OpenBao in documentation
* Remove vault-enterprise test
* Support numeric claims (#265)
* v0.18.0: adds changelog entry (#268)
* chore: add errcheck for parsing cli flags (#245)
* Bump github.com/docker/docker (#267)
* Bump golang.org/x/crypto from 0.12.0 to 0.17.0 (#266)
* Automated dependency upgrades (#252)
* Include roleName in Entity Alias metadata (#160)
* indicate that token reviewer jwt is set on config read (#221)
* Replace Vault with OpenBao in API docs
* backport of commit ac1e9194dad19c779e77f9a2881a0fe914f2b194 (#24523)
* gofmt entire project
* backport of commit 3389a572b97e0cf618b2f7cb5e39504a0967ad36 (#24610)
* backport of commit e7838a35948477be5416891ce5c7b9012906fb6d (#24612)
* backport of commit 7df1b64a3d02c23fd87cfc68e981cdda002c5f59 (#24532)
* backport of commit 1d8d80e8de1f69c64da460ae15206de722d70017 (#24594)
* backport of commit 954da5006cf680210ab576784a265139503bdc69 (#24589)
* Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /integrationtest (#224)
* Bump golang.org/x/crypto from 0.14.0 to 0.17.0 (#223)
* Backport of commit 4980cb0fe1a4a333b19e3b19f6defb1ace15845e (#24571)
* [COMPLIANCE] Add Copyright and License Headers (#222)
* backport of commit 6a2ff07ba2adc795994b829c78f0c486bd91a12b (#24520)
* backport of commit b8050c518e0b23c1acbdfa4536f2f5bb0756b1b4 (#24509)
* backport of commit e24301e32d1ab81c7e035a5d9b918136f46c2d6b (#24506)
* add missing CHANGELOG entry for PR #218 (#220)
* fix readme spelling
* update shell and yaml files for lf-edge change
* update hcp_link import
* update template file
* update .mod .sum and .md files that weren\'t updated
* move lf-edge to openbao
* rebase to development
* update .mod .sum and .md files that weren\'t updated
* VAULT-6936 support bound service account namespace selector (#218)
* correct go.mod module
* backport of commit d6bfe428f3d40d58c2d2c2f9e16dd1fc6f687cad (#24486)
* backport of commit 57b6b742838f117460d538359c3f6382d1e7dab5 (#24469)
* Replace Vault with OpenBao
* backport of commit 10f7011ca32b349a3907f63b04686fa9f5f61b99 (#24459)
* Backport of [QT-627] enos: add `pkcs11` seal testing with softhsm into release/1.14.x (#24454)
* Align mascot to center
* Adjust static files to fit OpenBao
* move lf-edge to openbao
* rebase to development
* backport of commit 1484253e0ba27695d141b6ecea54eeca1da42e35 (#24408)
* Bumped product version to 1.14.9.
* Buffer body read up to MaxRequestSize (#24354) (#24367)
* backport of commit 91ec1a788b46c0bf12a3351e5e3339474400eee9 (#24363)
* Include security email in bug report and User/Developer experience section in RFC template
* backport of commit 4a7bee5a02db880d543692386ccd597f33e29624 (#24331)
* backport of commit 18e6385e0589895c354e0d2aed95e8321f1ee84f (#24328)
* Backport of fix `-log-file` so that it uses the correct name and only adds timestamps on rotation into release/1.14.x (#24322)
* Automated dependency upgrades (#42)
* Automated dependency upgrades (#219)
* Bumped product version to 1.14.8.
* Adjust issue template and PR template to fit OpenBao
* backport of UI: prevent replication disable action from sending payload (#24296)
* backport of commit 64dfff080a658890a4eb7924fd465e20d71c386a (#24285)
* Bump github.com/go-jose/go-jose/v3 in /integrationtest (#217)
* Bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1 (#216)
* Bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1 (#41)
* backport of commit c329ed8d3b02b92dfded30065317c82648d3cae3 (#24260)
* update go-jose dep (#24233)
* Bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1 (#263)
* backport of commit 66b3e439d80c7cb991ec31cd84d652c1001aa3f6 (#24220)
* Backport UI fix auth list test (#24202)
* backport of commit bcbd45b380d2cf776cb3cd920f03291301cee998 (#24198)
* backport of commit 53040690a2bb89a71b723cd888411182295abcd6 (#24195)
* Automated dependency upgrades (#44)
* Bump github.com/docker/docker from 24.0.5+incompatible to 24.0.7+incompatible (#214)
* Automated dependency upgrades (#215)
* enos: fix licensing on backported files (#24162)
* backport of UI: Allow token configuration tune (#24149)
* UI: helper sort-objects to alphabetize list items (#24103) (#24145)
* backport of commit 28e3507680d78dbf80b3edc78bc16119088d4ba2 (#24142)
* backport of commit 0ab8cfdff681dc42753e080481ae3e9dca6e4031 (#24138)
* update go version to 1.20.11 (#24123)
* Address a panic when exporting RSA public keys in transit (#24054) (#24116)
* manual backport (#24035)
* Backport of Remove duplicate partial reference from release-notes into release/1.14.x (#24087)
* Bumped product version to 1.14.7.
* Backport of fix `log_requests_level` misconfiguration into release/1.14.x (#24058)
* backport of commit 7ec3867eea2ad3c405f15f9ab5447618685739cf (#24031)
* backport of commit b19562db9a8c1b65ea660ed0d51aaf9498a9887d (#24025)
* docs: add workaround to known issue loading missing policies from other namespaces (#23909) (#24017)
* Docs: Update known issues table logger leak (#24012) (#24013)
* Revert \"Automatically track subloggers in allLoggers (#22038)\" (#24005)
* Add known issue for sublogger memory leak (#23977) (#24008)
* backport of commit 9538c6e59b69033b7d0441e6eaf6260c0cbbee6d (#23997)
* backport of commit d93a13a7e3f5c2ef9293e3ef0bc84e8823dfe560 (#23990)
* replace nytimes/gziphandler with klauspost/compress/gzhttp (#23898) (#23962)
* backport of commit 750ab337eaa0b049d9cf1535c00e860129e5e9a0 (#23955)
* Automated dependency upgrades (#40)
* Bump github.com/docker/docker from 24.0.5+incompatible to 24.0.7+incompatible (#39)
* Backport of [DOCS] Link to compliance page for vault instead of a pdf into release/1.14.x (#23933)
* [COMPLIANCE] Add Copyright and License Headers (#258)
* [COMPLIANCE] Add Copyright and License Headers (#50)
* backport of commit 30a84354990c6ad945629317637e31e340355893 (#23926)
* backport of commit 63ab253cb429c6fd7d7d61be6f76b25c742de7d1 (#23929)
* add changelog for new ldap parameter (#85)
* backport of commit 9b1120b0830060b3656977b4ce0d357fda2e5036 (#23917)
* [COMPLIANCE] Add Copyright and License Headers (#82)
* Backport of core: fix bug where deadlock detection was always on for expiration and quotas into release/1.14.x (#23904)
* backport of commit 26bae559979bb6cc9f086d26f9c6450aa5173e95 (#23900)
* docs/update docs with known issue (#23866) (#23892)
* backport of commit 425b1e333d008f37fe517ee3c886e8fe96c3e5ce (#23885)
* api/seal-status: fix deadlock when namespace is set on seal-status calls (#23861) (#23879)
* backport of commit fb97a459ece4420cdb1237836affbfb40c24ad92 (#23876)
* Bump google.golang.org/grpc from 1.57.0 to 1.57.1 (#38)
* backport of commit a46def288f06cff8176399f239f87a2a49ba5dd9 (#23869)
* backport of commit 307d27ef770508ec569c59ee277ffbd58fea0be0 (#23857)
* backport of commit 8c9929bed2e6691c49097816264eb966339062f0 (#23863)
* backport of commit 41cc3b31bf374c43dec139944a541a297bc7faa9 (#23860)
* backport of fix changelog anchor (#23828)
* add configuration parameters to skip password rotation on import (#83)
* Backport of Update hashicorp/vault-plugin-secrets-mongodbatlas to v0.10.2 into release/1.14.x (#23851)
* Bump google.golang.org/grpc from 1.57.0 to 1.57.1 (#213)
* backport of commit 548b7a094b080b342c941b7209cea6256ed7a5dc (#23847)
* Fix segments fragments loss (#23781) (#23841)
* backport of commit c0ad3f6ce2edbd864f32ebe401364e98f5aa5abf (#23835)
* Revert \"Implement user lockout log (#23140)\" (#23741) (#23765)
* Bumped product version to 1.14.6.
* backport of commit 3d37a2507bc1e54e2dc5e95c7cd099790543b3d1 (#23810)
* Added bootstrap commands & reusable acc test workflow (#47)
* backport of commit a10685c521cad141d1861236ebffaeccfc510395 (#23803)
* backport of commit 87376a1f5c676c9a54e1050b3e71e32c4ac92595 (#23790)
* Backport of Fix consul token revocation with namespace specific policies into release/1.14.x (#23778)
* update changelog for release (#259)
* Backport KV Download Value Stringify Toggle (#23747) to 1.14 (#23769)
* backport of commit 28e3b78e8efbf0f9ed7dcf098a78d3eb0af2b8d9 (#23760)
* backport of commit 9739270d7b780e02b68d1f0c0fbb1bce31278e50 (#23756)
* backport of commit d0501db90f2b36eb535b2526ed04a364f9f06340 (#23745)
* backport of commit 479520c474db12a437a6277759ad539aa3e9d553 (#23742)
* backport of commit 146653dfef6a5ce45189e473716f1a56b9dbee1d (#23732)
* UI: VAULT-20186 Backport 1.14.x: Decode connection_url in database (#23705)
* Update go to version 1.20.10 (#23712)
* backport of commit c2f5ee0c6251e519c14de5d89a4ce337c688cb10 (#23687)
* backport of commit 4e3b91d91f379b6368e778849c044fadfa7e67e5 (#23691)
* support ad rotate-root with userattr=\"userPrincipalName\" (#80)
* backport of commit bc4be73a1c7998d6ee87bdba14981bc06c237d88 (#23679)
* backport of commit 832c78ee6e950b07646484070691576131c68c38 (#23671)
* backport of commit ebfde8f33eb4ab684d8bb38ad617b8ccff51567b (#23662)
* VAULT-20476: vault.NewCore refactor. (#23644) (#23659)
* Only use SIGTSTP on appropriate OSes (#255)
* go, k8s, and actions updates (#212)
* go, k8s, and actions updates (#37)
* backport of commit 1b2b647b2129023c1e43b62ad7dd7db522514691 (#23642)
* backport of commit 7872338ec15b263cf53073e973fa92dfc5b7a506 (#23639)
* Backport of Implement user lockout log into release/1.14.x (#23630)
* backport of commit a485837cb624516701071e12681cc543bd5e45bf (#23631)
* Automated dependency upgrades (#209)
* Update enterprise vs hcp alerts (#23619) (#23626)
* backport of commit 1f1ead0dc72e24ecaf5abe3784aac79cfbd5124b (#23615)
* backport of commit d74d920b6ee2f1b4822f771a6c98ad0bf0a58142 (#23578)
* backport of commit 163c03f514261627275b1fd36e4b857a108391ac (#23606)
* backport of commit ec026ad2ce5818d78dba39dfca0a2c003c29c276 (#23574)
* backport of commit 6ff9fcabab33d2f740d50e5afc012057257a16dc (#23576)
* adding testonly CI test job (#22439) (#23423)
* Fix copy button in collapsed sidebar nav in CopyButton component (#23564)
* Allow AWS secret engine to send empty policy document (#23470) (#23509)
* events: Ignore send context (#23500) (#23538)
* Fix table typo (#23532)
* + added changelog for PR 251 (#253)
* backport of commit cbb96b230c296402341aba11fc1cf41d4f9c2e25 (#23524)
* [DOCS] Confirm restricted endpoint alerts (1.14 docs) (#23515)
* backport of commit 7d800b1af20de24149817fd735e2001403446ab1 (#23520)
* backport of commit 5123ea933a1d8e4df0af2aefb049c3556f843b72 (#23505)
* backport of commit b5ff3f81134f6d980c7380cb3eda995e6296f891 (#23499)
* Close HTTP Server if suspend signal received (#251)
* backport of commit 9019203e9f052b6e58a14cbfab4a559d5e7e5883 (#23491)
* backport of commit 9afd5e52ae31d6c3b7ab6833836647392bb318e6 (#23478)
* [VAULT-20630] CI: Use \'ref\' (not \'base_ref\') as a default git reference to check out code in the test-go GHA workflow (#23458) (#23469)
* [VAULT-20630] CI: Fix the CI workflow issue where we check out base ref instead of the ref that triggered the workflow run (#23453) (#23456)
* backport of commit 0fa36a36ae1b4842d96623eef0d20af5dea557c0 (#23443)
* backport of commit 1b321e3e7ecf487741e722b1c9b224cbe1f3146e (#23413)
* backport of commit 807bacbc9c0d499de206cfc1f901cea464d94195 (#23410)
* backport of commit 305d6d9b675339c300d5ce1ae697a71a8e17d92c (#23404)
* backport of commit a6ee197a73798ed3d578cab03512b774b5088f0b (#23399)
* backport of commit 9ffea8aee557da186bfa142af6fb217c2b967699 (#23395)
* backport of commit a3936f14679e34b5b84e88e94cc301704cf1df10 (#23372)
* backport of commit 25bebfa91c4797d5a958c8d7f4c5330c9c845b0b (#23385)
* Bump versions within transit managed key known issues (#23375) (#23377)
* backport of commit 460b5de47b2b75b9cbeab06933f15774b7819d50 (#23358)
* backport of commit 5cdce48a6a8380c185cf962a8e0768be006230e2 (#23347)
* [VAULT-20073] Docs: update upgrade guide for 1.15 with information on Sentinel RGP group policy application (#23296) (#23350)
* [DOCS] Fix restricted endpoint info (#23333) (#23344)
* backport of commit 6685565b7ed184afd0627781b2cd86788620bdf8 (#23341)
* backport of commit 547bff752e056ff81d4359267e0f8afa4629f505 (#23321)
* backport of commit 7725117846a47dbd4faeecefa03c181251cbb371 (#23326)
* backport of commit d7e4447ec054ad9b8ce2dbdad6111f1587b325f8 (#23318)
* Fix typo OSCP -> OCSP (#22586) (#23316)
* Backport [QT-602] Run `proxy` and `agent` test scenarios (#23176) into release/1.14.x (#23302)
* Bumped product version to 1.14.5.
* Do not attempt to shutdown ACME thread on non-active nodes (#23293) (#23294)
* backport of commit dbfaa6f81a156ec1dcb85d8d76941d4ac70c91fb (#23285)
* cherry pick (#23264)
* UI: add pagination to new PKI (#23193) (#23239)
* backport of commit 1d61aeb8aebc96eecbb6a35e10bd914b4d0f41f4 (#23250)
* [DOCS] Manual backport of Administrative namespace updates (#23208) (#23231)
* backport of commit 8b126987807be3593f70ffd8b49b2d90406d7aea (#23235)
* backport of commit 758de878d61efbd53a7c4939981c1e061dc937a3 (#23221)
* UI: Show unsupported screen if replication unsupported (#23178) (#23213)
* backport of commit 55414e6a733bc7d746618ddd0723bac38b90cc7d (#23198)
* Correct restricted endpoint tagging in current docs (#23201)
* backport of UI: handle control group error on SSH (#23034)
* Backport 1.14.3: confirm delete modal for namespaces (#23109)
* backport of commit c73eacbaf6ae6b5860e1ad9a3b6ce930c093a105 (#23174)
* backport of commit d5f4243c9efe3970ccf0c6227c27bb2c03f02a31 (#23162)
* test: wait for nc to be listening before enabling auditor (#23142) (#23150)
* backport of commit 2a46d492a3d15cfea8a492e29051a2451d47cdf5 (#23147)
* Backport of UI: [VAULT-18178] Fix filter/search bug in search secrets engines into release/1.14.x (#23130)
* update version to 1.14.4 (#23085)
* backport of commit 3f9b6075aaa1ca3e4c4065b0a460c3bd80b1afd9 (#23127)
* Backport of UI: Handle error from ResponseWithStatusCode (#23116)
* backport of commit 4b9b5d60e6401bb2338f88340befc7d8802c63c8 (#23110)
* Bumped product version to 1.14.5.
* Bumped product version to 1.14.4.
* backport of commit 37215ae
* Add known issues around transit managed keys (#23080) (#23096)
* backport of commit 854ea77f9e26fd6fc6302c7e6b9d86ab99096201 (#23083)
* backport of commit 930b48882afb1a25f0409d53fc3200c47d12f5a5 (#23051)
* backport of commit f0fb07b0b2762a1f6df987b75e78c67ac6e323d2 (#23071)
* backport of commit 15a50b8959cbc6c368421c7f3a0257a587e99b55 (#23058)
* Manual backport of missing partial (#23048)
* backport of commit 5a83838f1df3a2092119e1f7a7450795110c9e96 (#23020)
* backport of commit 293e8b8ac5469fc18470b4fb03fa6618b796bb5f (#23045)
* Fix some duplication of partials, and add fix versions for update-primary data loss issue (#22182) (#23043)
* backport of commit e2ff1f1c7117574888db91b4b6027be24533d718 (#23030)
* backport of commit c63a84dc9f777f3d441203eb835c2a6f3121fea4 (#23023)
* Backport of UI: [VAULT-18040] List all features in license info into release/1.14.x (#23005)
* backport of commit 9a7de066a9013e13c5c38eb7f30aae5544b28089 (#22983)
* backport of commit 7fd6d7a0816973033dac3ba0e0634506ba427a38 (#22981)
* backport of commit d634700c9e80871c607f894ae31a1b6187777e6c (#22966)
* test: don\'t use actions-set-product-version in release testing (#22948) (#22951)
* test: fix release testing from artifactory (#22941) (#22945)
* backport of commit c3aa019c9aa4e0338b2f11c0dff293fa4889b316 (#22943)
* backport of commit 1b442a71aaf73e6485d1615f4a0265a80be9d2ac (#22942)
* [QT-506] Use enos scenario samples for testing (#22641) (#22933)
* bump go version to 1.20.8 on 1.14.x (#22936)
* Backport of UI: Show error if tool action is not recognized into release/1.14.x (#22830)
* backport of commit 8c4b4650aeae904148b5aa2df6d094dda221bdd3 (#22910)
* backport of commit 7d4d8cb708de62167340fa84770f8237c7bfdd1e (#22900)
* update changelog for v0.17.1 release (#208)
* Allow any token type for TokenReviewer validation (#207)
* backport of commit 3130e8ba9483e10e6191d264dc97b597462bf7c1 (#22868)
* Update dependencies and release tag (#35)
* cherrypick of https://github.com/hashicorp/vault/commit/a9a4b0b9ff4459deaeab4ba62927a2e2633be878 (#22813)
* Bump google.golang.org/grpc from 1.41.0 to 1.53.0 (#33)
* Automated dependency upgrades (#98)
* backport of commit cf43d3eeed23a8f098e002ccd094c2dfc4385b55 (#22788)
* Update go-kms-wrapping to get Azure HTTP/2 workaround (1.14.x) (#22768)
* backport of commit fcd6f01761c6ca0c481b29591df26e0e59fd1f95 (#22759)
* backport of commit f150a5259335117632d094bdf33ead0209172654 (#22756)
* backport of commit dbf094940f8cd52322ffa9ac4deb006454562cd8 (#22743)
* backport of commit 133e9ac793bc948c2576df53bbe9adde29fcdd6d (#22736)
* backport of commit 4c8cc87794ed2d989f515cd30c1c1b953d092ef3 (#22247)
* update go version for build (#43)
* Prepare for v0.11.2 release (#78)
* backport of commit 4e963c4c5bbd00d4150df1bc0d140bba43feb407 (#22704)
* Add config value that gives users options to skip calculating role for each lease (#22651) (#22730)
* [DOCS] Manual backport of changes in PR #22629 to release/1.14.x (#22707)
* update dependencies (#206)
* Update version number to 1.14.3 (#22686)
* backport of commit 727c73cbd1ff3341ea7a19420f36dc8bd0dd8848 (#22684)
* Prepare for v0.17.0 release (#249)
* Bump google.golang.org/grpc from 1.41.0 to 1.53.0 (#201)
* Automated dependency upgrades (#247)
* backport of commit bd3596610f3218dbc86a8f8750d0f030159261de (#22662)
* backport of commit 2b626eae1851644257ed5a774130782c009bf8a2 (#22658)
* backport of commit e35e0d0183b45a29470229a602a6b56f8f2259cc (#22653)
* Prepare for v0.2.2 release (#42)
* Automated dependency upgrades (#41)
* backport of commit 92734f109d385f85f877fc1040c87658778e5e5b (#22643)
* backport of commit c4a8b23d933fcbd65647ffabfcb0b4c1809a57e9 (#22637)
* backport of commit ce2851543f79e14611b1e8e5c997ad0fbe529dbf (#22633)
* backport of commit 9fc303bad1b89419706201c3b2233e6d27085a38 (#22609)
* Only track role in login path (#22620) (#22626)
* backport of commit 9b78fd64ac3e3244bffe6f153b056b52dfdafd2c (#22623)
* backport of commit d0997baebcde52ac725b4c72bb18328431998c95 (#22608)
* backport of commit cccfdb088f218f5631195e8b653c07a77cfac2b5 (#22596)
* backport of commit 135240d6378c74dfe5894f6d0c2ae314b762eb3d (#22573)
* backport of commit 04fc15471bfd05a3ca224d1ff32c2f7ce82c2791 (#22557)
* backport of commit a0217ad0174e565d8d33a8d3280a13018198605b (#22548)
* Backport of UI: Fix blank secret on KV create > cancel
* Backport UI: Allow navigate to list from View Secret card (#22502) (#22538)
* Update hashicorp/vault-plugin-database-snowflake to v0.9.0 (#22516) (#22527)
* backport of commit e29d98aadb6557921e5d509f3b967e3262f22cb9 (#22526)
* Bump go version to 1.20.7 on Vault 1.14.x (#22498)
* backport of commit 8984201141c8861e40859e8ad0821a5bd8b6a4af (#22504)
* backport of commit 35a5fbfc6002e0440c708e722dc8aabbcb7a81b2 (#22507)
* backport of commit d50bd4eb05994781ba64974cc16fdf3409c82935 (#22486)
* Backport of UI: Enable KV create secret with control group
* backport of commit 75eebddba9fe7d25aa1b12f6c3633bbf180ee630 (#22477)
* backport of commit abd6324e50d6d785a4c51ea1a84c003b73aabdaf (#22465)
* backport of commit 8250fba0e6967a6f058d4f0960a9e748441e4d7c (#22454)
* backport of commit 6ae9f8d4eddfdb134bcbabd3f58e633757a6afc9 (#22443)
* backport of commit 4654c15248013edeb36fdeae28ab3631bebe0a8e (#21188)
* backport of commit 8441ff655b3bdac6b3309c745ec0a1f854709913 (#22432)
* backport of commit 614f50de6611d650a60a28afc85283afd47a8369 (#22435)
* backport of commit ef0872f6cf6229ad59585ecf98f427ab56989922 (#22431)
* backport of commit ec6fc13c71662bffb02a533f2065a84113105d93 (#22430)
* backport of commit c147fba33cddebe8408f48ae9bf6fe10b5b33b01 (#22427)
* backport of commit da5b84ac937ca6eee5b85a752b6f96bc638ac9b9 (#22424)
* backport of commit c2ba113defbd98a6cd749dcd13f734b911241c98 (#22423)
* backport of commit c498bebe6ffe610d8324e54f2671f3bb526d6429 (#22420)
* backport of commit a58d650e58d377caaf2f06a5693bad8faac51395 (#22417)
* backport of commit 11aaca51021e87e69e985fa59b0d61275c20cbc6 (#22415)
* backport of commit c56b0bb3c97038f98500dee3211842d255768c63 (#22418)
* backport of commit b49d668e6a4dc585b81c0eaed601da85651ea0f5 (#22411)
* backport of commit f24dddf342c3ec34b5e8b6dfec64ff1779021bfa (#22412)
* backport of commit 1e491e16d4a25001423434ca950823fbeb9ac1d9 (#22187)
* backport of commit 2c6a3e72d52297e71a5606fc71ce1a8781dc94aa (#22405)
* backport of commit 6b6b0050fe25b34da3add50dc58ba14d1d221e18 (#22406)
* backport of commit ce4b2675b1ed50e9aa08c78c1a94f5e63c693277 (#22391)
* backport of commit 5ab5369ba2ea7a861536687b4aa447ae3a2cb31c (#22399)
* backport of commit a53e78699f7e96468788d1e09697da76b78c12eb (#22397)
* backport of commit 0998226dc749f758bd6cb0508ee8f1f12811e372 (#22326)
* backport of commit abaf1d68743dd65af8919f56687061eb29c4bdbe (#22379)
* backport of commit 1f1989333d128f573438aba55e24ed21e0d665f2 (#22386)
* backport of commit 053349f7712d9b4dd706c61db2d62c2f54e46801 (#21961)
* Ignore errors from rollback manager invocations (#22235) (#22238)
* backport of commit 5a60c98a464af99c44a1eb62655ede2af3c85ff5 (#22370)
* backport of commit 5374b3b046d13d3e7a9f6833efcaeff0e49fddc4 (#22366)
* backport of commit daf174b89d9a2a05252f07aca04f92e8cd649f2f (#22361)
* convert OSS language to \"community\" (#22343) (#22347)
* backport of commit 4c563a27a9a1536ec0eeee09ed9e96b88a540f7d (#22329)
* backport of commit 6ce069930159bcabab60d25e7fbad958d51e1ac0 (#22345)
* backport of commit a5b3b3d6b5ed9b912f8b837822e94155e161e0f8 (#22339)
* Backport: Bump consul-template 0.32.0 -> 0.33.0 (#22322) (#22338)
* prevent overwriting of schema and password_policy values on update of config (#75)
* backport of commit 67a167139b6dae292ccccc24c177424d8e9fecd7 (#22300)
* backport of commit c7fd4978ba3af15cbd5df022cf2ec504166e04a3 (#22285)
* backport of commit 19d840a4624630e79526cb877c060ffd86855fc9 (#22283)
* Backport of Update hashicorp/vault-plugin-auth-azure to v0.16.0 into release/1.14.x (#22278)
* backport of commit 7e5f2cebb787bd9045c29874b5e68c51a4fa1223 (#22274)
* backport of commit a70aaf24c0dc1e7a6ece249dfbcc387e2a581fba (#22256)
* backport of commit f8dd46acb830f4ef7baef759fb4d0e3752d03e9e (#22251)
* Backport of UI: Add missing allowed_user_ids to role form in PKI into release/1.14.x (#22242)
* backport of commit a1a5be97e2e9c3fd581e5d0697ff3ab572f02540 (#22240)
* backport of commit 6654c425d2206624ff42cc7b7b92407a5e338311 (#22221)
* backport of commit a29b88b09fcb72078c362f11003f30fa52016d91 (#22226)
* backport of commit 8a174b05b045662423ce76be62687faab7e2514d (#22207)
* backport of commit 3a46df2077f61f2d8e8262441cb2e3d991571ef3 (#22198)
* backport of commit 689d556b0980bf53286b04580f721bd234fca61e (#22194)
* backport of commit 6b31e4531734b1a4e5735381bb7efd74ef548ca1 (#22181)
* backport of commit e89bfb3c25d0072de00b5ac7c3a7098a033fd756 (#22180)
* Bump go mod versions to match those in ent (#22170)
* backport of commit 76d8ab6f4371c7920cb0b2e62d66c5e57c6cf46e (#22165)
* backport of commit acd039672104f983e9070ecd50cb85f99fd4a9c4 (#22161)
* backport of commit 1d01045e859e7836d08a846ecbcd84bdc3fb71ca (#22155)
* backport of commit f3a4c01ba9e05850e255406f5bf4bc7f052c3985 (#22140)
* backport of commit c040f901e57d2d04772827b52f7b052757986897 (#22135)
* backport of commit 032dd8fd7c18833084db4c43fc700437a99f4c7a (#22115)
* add 472 return code (#22105) (#22124)
* backport of commit fdc257d3a0a13d6bc98f84ecf1b4faa6291125e3 (#22121)
* backport of commit 3acfa450c2605226418c7dad00b39cbfb857f7b4 (#22104)
* backport of commit b6d973a133671dcddf0daad2f9d44ebd17c491fa (#22094)
* backport of commit f45e9b90d4068a85a8f244dd506b04008888e6bc (#22088)
* backport of commit 24a7d966d540fcc3132257d30cfc519f364b698b (#22087)
* backport of commit c1c258a70b365a96e83f5ec9039932c319aef221 (#22082)
* update version 1.14.2 (#22077)
* workflows: add bulk dep update job (#204)
* workflows: add bulk dep update job (#34)
* backport of commit d407078766e14c883978d496895aa4a068c87c68 (#22058)
* workflows: add bulk dep update job (#73)
* workflows: add bulk dep update job (#40)
* workflows: add bulk dep update job (#97)
* backport of commit df05956e2bc8907c7c1d36d64875362e60457778 (#22054)
* backport of commit 068da27a2d7447ef896b0638e3526c56b586301a (#22051)
* backport of commit 771bba0dc6de6125ee131eb40d3d606030cedbb5 (#22048)
* backport of commit da5d0ca498677d6fe0a8e7033217245ebbfd81d4 (#20994)
* backport of commit 4811ef9cc3885f83e204aea86083589b22c19d62 (#22025)
* Add missing `Query: true` metadata to API definitions (#246)
* backport of commit 437a7ab9340c9d5e6638570ac37a271e5c1342e5 (#22019)
* backport of commit e91b5079968841ce936a9cca877b7c4e6abda736 (#22020)
* use verify changes for docs to skip tests (#21620) (#22017)
* backport of commit 8615b31598e094b1bf083242e76fff74a31daf9a (#22014)
* backport of commit 02f43ecbc26ec79790f30826f49f97cecda987eb (#21587) (#21996)
* backport UI: Remove logic that skips sending object if not changed (#21759)
* backport of commit 1a46088afb0d5e442273350c6793d1216b6be4d1 (#21985)
* backport of commit 4ce8e4b00f96de7b7f0d66878ef41d340fe33855 (#21988)
* backport of commit 5ba848dbdd14cac24960ec31e83d620f698b87a8 (#21992)
* backport of commit 6b21994d76b18c91397247dfd69bb01e46c5de25 (#21981)
* backport of UI: Fix confirm dropdown not rendering on HSM (#21975)
* Backport of Limit number of tests in CI comment into release/1.14.x (#21971)
* backport of commit e969e4ae4326c8c80e2a42fc47eef0976fc55236 (#21966)
* backport of commit bf05cfd64a8ac01e07c2b6b1e1db02390266c932 (#21957)
* backport of commit 215687795d6b9ad2b3a3e2c7dbb70b01cc470e44 (#21954)
* backport of commit 96bb63442204a1c8981947f3182640d04f29ff85 (#21931)
* backport of commit def7c1b0a7a35f17fb2c7eb15ba215a39b17f60d (#21945)
* backport of commit f54bc0227d56ad01aa5fe88ff4288cb1ccf3ce4d (#21939)
* Backport of [docs] Convert titles to sentense case into 1.14.x (#21921)
* Backport of secrets/azure: update minimal permissions recommendation into release/1.14.x (#21917)
* backport of commit 4b15fb96b88d633db1ef294d7cc86483df060b2b (#21920)
* backport of commit a9977fab8008a53d052b6f89f41eb65fb83bdaa8 (#21910)
* backport of commit 3159aa26be41f9b9a5581ed9b00bc6dd564fa8f1 (#21902)
* backport of commit 4ec5e22adebe64944c35a6b6460bfee5efae5d51 (#21899)
* backport of commit e1a9d85a18858bccf4de71ddc0ce7592170ab894 (#21879)
* [COMPLIANCE] Add Copyright and License Headers (#203)
* Go test failure summaries fixes and improvements (#21888) (#21892)
* backport of commit f3e9d159d325b9e2a3c80b7acf6705303ae04468 (#21891)
* backport of commit 366693c78dec71212ab344e8d315637722b60d25 (#21887)
* backport of commit 5d97159f05e581c0e5f14be9e2e3f8ac3b733091 (#21886)
* backport of commit 8834e4d16bb08972d4e0561e22dfde4d4536cf1d (#21868)
* backport of commit 31a71f6db405e3665b8cbd951aa1d1f31d343dc8 (#21729)
* backport of UI: focus navigate-input after page filter (#21862)
* Add back paths to TestProperAuthing (#21855)
* Update TestProperAuthing test for backports (#21852)
* backport of commit ba52063705ac8a7842ee2818e785faad361277d3 (#21849)
* backport of commit 384cdd791c5a473374fe1a0f7cb9b9d3f972bcf7 (#21845)
* backport of commit 0b0b15f968bb243b29544d6a7f2652137e07d632 (#21839)
* backport of commit 20675ccef0944571f17fd06969147fa476fc68ba (#21834)
* VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825)
* backport of commit c2cbd5a578108d2447efc52f47f3bb7f7b69ee02 (#21819)
* backport of commit 2a05a48016150b4040067ae7b6dc8ab8ba8aa93a (#21816)
* backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781)
* backport of commit 8d74143872101df6f845fe86e69faea276e9e0f4 (#21810)
* backport of commit bfa93fdeda1a998dc9c2a91c5c14424456b6d1d7 (#21782) (#21786)
* chore: add missing error checks (#202)
* backport of commit a98c0d9cbe9d7cc59fc17a0416e61469cd9d56ac (#21797)
* [QT-589] Use the go module cache between CI and build (#21764) (#21790)
* Use port forwarding in integration tests to communicate with Vault pod (#200)
* Add note about user lockout defaults (#21744) (#21765)
* backport of commit 237b9f71409e99d24daae3ef196c02e34a908126 (#21660)
* backport of commit a29ba45a3a59626bf97e08a48ccac2a5dbd60f96 (#21754)
* backport of commit a053c616ba01291fcd3186d77ea63e3b5e4218c4 (#21692)
* backport of commit a9778be3f2735ea242c5ea05a2a805fa18e7df4f (#21756)
* backport of commit d1c943b25559c98998d0985e61739c5b21283c1f (#21740)
* backport of commit 3bf1299814af605b534a8c20b207790d3de21bcd (#21715)
* backport of commit 9ace8751ff0df06058043b92343ceab2121c2bbd (#21727)
* backport of commit ece2995ee1df24341ec1dd0fdcc2fdedc6737806 (#21731)
* backport of commit b0fb3b14206c63c01041fe3f561b147a3d41de74 (#21720)
* backport of commit 8c18f24b9da475c13f7908e609c5d4be24c773e6 (#21611) (#21615)
* backport of commit e29842e49e807b574dccb8e87bc20947a6d21438 (#21712)
* backport of commit 5919645a70a12e2675331e0a7ad43238c823738e (#21707)
* backport of commit bce4b7a3e5a742326c5d7560bb00696db4fe8cc5 (#21699)
* backport of commit d18242dae4192b11784e539ef862bcfaf654ec69 (#21698)
* backport of commit 87d37fecb775a5ae82d264f0fc08b613dd733c7c (#21688)
* Manual backport of Client count doc updates (#21685)
* backport of commit 34d1d200ee5e5547779ee8424c52bb7cf4dcb772 (#21676)
* backport of commit 96fd024d15c4823ac73f08bb576d575d99537b15 (#21680)
* backport of commit 9c8a7422ade1b46f413274c5eb6d5306c9e3e563 (#21665)
* VAULT-17592 Extract failed Go test results across runners (#21625) (#21672)
* backport of commit 95b44add74807bed971638928599b18d302a2ae2 (#21667)
* backport of commit 072f0dd7c85be8d4e4390cf417900efce5e38d56 (#21656)
* backport UI: PKI show missing info on generated cert (#21652)
* Add remediation steps to the PKI health-check docs (#21643)
* backport of commit 304ecfc8e9d61536834e1e3904c3eee28411f6f8 (#21637)
* backport of commit 2f677665b37fcced51737cdef7abbebb4c719529 (#21527)
* Bump google.golang.org/grpc from 1.41.0 to 1.53.0 (#71)
* Bump google.golang.org/grpc from 1.41.0 to 1.53.0 (#39)
* backport of commit 8bb9cbbebaed39b290590f79a8857f5ba01fbf16 (#21627)
* backport of commit 6acd2921c5d78382b0a554674cd4f7c81a9a126a (#21622)
* backport of commit 4c1a7b53d362ee733707de2fa3280596e35d7f03 (#21609)
* [QT-576] Optimize build workflow (#21486) (#21601)
* backport of commit 8925dc22a0996d08af81f9c9883a66d0c21a88f8 (#21598)
* backport of commit e0472d4059decd4a5801e027c34d38b80e038a32 (#21590)
* backport of commit 5ce57dbd00b4d81602b07a82430365f770bf0870 (#21589)
* backport of commit 78a86b450830ecaf963480f17e5ec1c9c7ad2dfc (#21584)
* backport of commit 52baf01e5352968d623502a4f49dbda12a4dc322 (#21580)
* backport of commit c6ef0800a00f3634b869e1152cfbf5581753633f (#21576)
* backport of commit 772cda4eb24360db53cb640c71cd32aec4aacfc1 (#21573)
* backport of commit eecae3a827f523a25359068ad6714af8f28c6ced (#21550) (#21556)
* backport of commit c9b18c43ea0ed3a06127ad22dec0a13d094ee06d (#21551)
* Support ADC for Google Workspace (dwd/no-dwd) (#240)
* Backport of UI: VAULT-17699 Fix masked input bug into release/1.14.x (#21537)
* Automated dependency upgrades (#244)
* backport of commit 1ffc56cb42af630f6d2d39d20cc7ce3e8a44a83d (#21530)
* backport of commit f1c6ab41fc6d90811d1a268465f4d9eb712a58b5 (#21535)
* backport of commit 325233ea7dba833e987909b21af547d0933751e3 (#21519)
* backport of commit 282b4a07383d1e4bb483e1b91d43dd04a5632282 (#21502)
* backport of commit 5b41148bfcfd305991c19998f6d04ca8880da137 (#21488)
* backport of commit 81a5e2ee65944c656b8ee7b9e2ed2c374821eef0 (#21498)
* backport of commit 9f741af66497e67d96f3b2f0748e7ff09b2fd43a (#21492)
* backport of commit c3741b0177056d9e999ff03a6542a4811508fa9a (#21485)
* backport of commit bcd7083d94532a143fb49f92621d2c7a448dcd71 (#21481)
* backport of commit fd1683698bad3556d21e783a26ec1bca5d0de671 (#21477)
* backport of commit e3b3c7a8de6f7c3c240ecf798470bbb24c2aaf60 (#21468)
* enos: use on-demand targets (#21459) (#21464)
* backport of commit df304012f3b3f4d7860b3bb3b58f844291495793 (#21457)
* backport of commit a71cdb616567fbcd05c257ba3535d1e2297a9647 (#21445)
* backport of commit 5de6af60760dbcbefd8c8e4eb923f74a5720cf13 (#21440)
* backport of commit 8d22142a3e9d13435b1a65685317fefba7e2f5b3 (#21421)
* backport of commit 9290d5f18843f35bbab60c4030faf302f1c7f511 (#21429)
* backport of commit e3dad5b6da871c82d8688467fcc7279f484c24d4 (#21425)
* backport of commit 5d13092b038397d5970dcaa411c43defe993ab3a (#21422)
* backport of commit 67927a1e9f0a2145b5a5a1e1a8d6d542fe16b25e (#21355)
* backport of commit e31ead37baadfd35f57bd9ef2ff4715e5bf5a46d (#21353)
* backport of commit 416dff8765aa8e546517bf0cad46bf7f6772e0f2 (#21415)
* backport of commit 21bd774c675bffd2cf4093de86765bc04dc1c6f5 (#21417)
* backport of commit 8e40823fe1cf40cecb1e004be29fde5fdb875bdb (#21416)
* backport of commit 58b6cb1c42418d5eb2c5e0d3b1bc9d95b3e3a707 (#21410)
* backport of commit 6157b5ffcb6e0fcd1d0823e4929bf50ef1b00bc8 (#20837)
* backport of commit 774d75e63e2481f28f0890f2b4387303ac232755 (#21294)
* backport of commit 4eed18cf49535b9445c25a39c62f7190321764af (#21358)
* backport of commit 15aee2e0babebaeb7ef3c49fc6221a2bc08cd8fa (#21398)
* backport of commit eb634e93266f411db0e1476e638daf02aab6d0ec (#21394)
* [DOCS] Backport release notes updates (#21386)
* backport of commit d8b811d8da56589ad1de0396d8d09a07c88fdb10 (#21385)
* backport of commit 99cf3836b69149d00e7f5e83c2e623a0155dc252 (#21382)
* backport of commit 3a46ecc389e9096ccea6c6f847b68ada7f8068d7 (#21362)
* Automated dependency upgrades (#243)
* backport of commit 17d63abdb1a8c0e0c3aaf649b34b4645d28dc17b (#21371)
* update version 1.14.1 (#21344)
* backport of commit f12c1285599a1519273bfa68472c598b1fd635bf (#21348)
* backport of commit 3908ec9dc44352548e08f4c86f9ad76c255ce493 (#21331)
* backport of commit d76424cb53c730da5410ec55bff3274a01212843 (#21328)
* backport of commit 3347e5d56b363e58e7be556cfd0875a210c2a2ec (#21326)
* backport of commit 30aac443d0037852b0a5e4b50d59a9bedc5e4445 (#21324)
* backport of commit a1fdf105b3cc2e88483f3fca27729fa06bfbfa7f (#21312)
* backport of commit 41f392c43ff4c9077deb1d1640349b8ba867d139 (#21307)
* backport of commit 042dd57811c900c9f6e2c85b5460d50560f79105 (#21295)
* backport of commit 8cc7be234ac34ff0f703ab092a7314ba9e65b277 (#21293)
* backport of commit c5549cdac681676ae52ea173d737ee1c5d1949a2 (#21272)
* backport of commit d3ae2085ae6242d752cbafb0d0aa9a48b8f4a16b (#21288)
* Bump Go to 1.20.5 (#21284)
* backport of commit e6f3003adcd00fa904309654e69c1201568e62c7 (#21278)
* backport of commit e3c3a52b7b9f8d41c1d04f26b469b53c585587ec (#21242)
* repo hygiene (#32)
* backport of commit 7b56b69959a7e5c1eb6326df3dd92e2411154548 (#21265)
* backport of commit b993384983f2c4d8e38b958fea0d56b0b83306ee (#21258)
* backport of commit 6b87a087afe24e8bd52a2b9ada4b506b20d4fc7e (#21254)
* backport of commit 58f029d6082b5231ca49312c75b360300781d399 (#21240)
* remove rc1 tag (#21103)
* backport of commit ddff68c82a038bdfd1d16d8d389f5cc839e57b67 (#21230)
* backport of commit 052719b9a824da4ee368c3d982070ab290846970 (#21226)
* backport of commit b346b52b62db8ddf2eeaace506f211ea02166b93 (#21224)
* backport of commit a2993878f19f1d1f0042f04c36d292634ac26852 (#21219)
* backport of commit 89469110784efdb8f9ebc481040e5b779303c04e (#21212)
* backport of commit 567917efacd62639103133a7a07efd3076be713b (#21205)
* backport of commit 3b14cd2061b49c8c698205eef87ceb3d0e69983b (#21181)
* backport of commit c823bd99a8ed9d000268b61cd325c3842f0eb933 (#21191)
* backport of commit 65157a6d3fc4412c01c26194468a38760e7e08ea (#21179)
* backport of commit a3657dc604fbffafce5c42f8ad0a972e4cf0213c (#21184)
* backport of commit aba75aac863d4aef51a9062af9b8557a7ecd2eeb (#21177)
* backport of commit 7a47df649d84103aff36a077710c4e21c99d0fea (#21178)
* backport of commit 51c7e3e31ae8c927e35a52ab636a0817cf5f8fc8 (#21176)
* backport of commit 820f7ee22f659352f7fa58e25f3078c21fadb77b (#21175)
* [docs] Agent Process Supervisor Mode (#21056) (#21172)
* backport of commit f2887a253506f80cd507d619dc49a2a495c173c1 (#21139)
* backport of commit 95ad2461624cc002f768b2eac4196b6884f6ddfe (#21162)
* backport of commit 8194ec14fd2ac3bf47fcd5f77e9446753c93a428 (#21154)
* backport of commit 810bb6ccb28fd19d2f381bd60938c833dc96aec1 (#21158)
* Backport of Signal ACME challenge engine if existing challenges were loaded on startup into release/1.14.x (#21142)
* backport of commit 2ec5a28f51fe0b5095a0554627fb3295c7f2ccb4 (#21148)
* backport of commit 27621e05d63ae14475e7a5ec8e8f23277d9eeb98 (#21137)
* backport of commit 0ff9059967aa3fc0f2be0fd46926f9a7f1de5573 (#21124)
* backport of commit b0aa808baaf13ca85061bcd20165559c6e8e4553 (#21114)
* backport of commit 6fa423e3f3e0bde47686fd4bfc6dd2b37031afa4 (#21046)
* backport of commit 787897fa3af5c067f71e997343d436e50a5c97ff (#21095)
* backport of commit 28f72564f8355e60d5a389a02d7a88d8c119fe9d (#21062)
* backport of commit 00f42fa7de50a6bd2466789714f0615f66947b97 (#21091)
* backport of commit 698c39f988f773040868cff8a38b76de03199a2d (#21089)
* backport of commit 8931e4790b46df81cca615865e1f33a127276e1d (#20972)
* backport of commit 508017d073021bc2410ec91cbb26aa95bb9569af (#21075)
* backport of commit f147bc1fb1197495c865145e68015d369fb16a5c (#21086)
* backport of commit 9f87bcfb3b67cbad9ee967ac574484938447f448 (#21085)
* backport of commit 28bcf9a664d3f32a8c162248621ad19548bdccf2 (#21084)
* backport of commit df975cf04e06e0c18c4b23308b7c82fb5664b6a0 (#21013)
* backport of commit 61d35391a74bd8e7fcf0d1b37417c258859a4ddb (#21012)
* backport of commit bbcd3f1c1bb787e15c6008e684b81b83be7245f0 (#21079)
* backport of commit 8e576cf226d090d280ccfdd341107fc5a5a41c9a (#21076)
* backport of commit 08c1efa4d4fa516c40a8b5ede0e8e19f298d7755 (#21074)
* backport of commit ddaf5038f253546b15eae684a8114c04e552b731 (#21068)
* backport of commit 0bd356f6cd9bd82c108535439a7f83796c89030e (#21065)
* backport of commit b023353b2e92fd4ddcf94c735bc595b84fd02fab (#21067)
* backport of commit 6c64a20a394b29197513769307911cd00be0b571 (#21064)
* backport of commit f079b7b0a4de28f1230a270fc35ea5a787ad96d2 (#21060)
* backport of commit 3dbdee528a0ae581858c77512c46f4a1fda87283 (#21054)
* backport of commit f1649fcde397ceddbf29d72f253e1932d9c091bd (#21049)
* backport of commit b9f9f27e8e988c4f441f81df733fb0aa5c513290 (#21038)
* backport of commit 85128585837bcce2cf99f8e1f749c3a4aef204ca (#21032)
* backport of commit 45b9dffea1cf4fe4e506a9ef9138229961bfbbb4 (#21026)
* backport of commit dbe41c4fee5ce88a1f7ce83a64cc3a78116ab1b3 (#21007)
* Backport of audit file changes to release/1.14.x (#20985)
* backport of commit 155003aa0cc054701096444b480bc7ab43d187b2 (#20973)
* backport of commit bb03d116999439bdebed58cb3536a756ba920d8d (#20958)
* backport of commit 00485c767d121f34a23a7a3931c292da45eb8ddb (#20956)
* backport of commit bc9a39a2f1e657c073406b287f3f4783f967d10c (#20954)
* backport of commit 34a722195e730b85de1c1d29f0766264e2552434 (#20951)
* backport of commit 8fe7076c02ac08e4e2e803243c2f9e4ae323ca10 (#20939)
* backport of commit c2a1ce374c6eb340c779fbe26503e949172a6867 (#20948)
* backport of commit a5a49cde3ff8445b024c9652a088c078ebdd4595 (#20949)
* backport of commit e63dc30507cbd65cd7bcd59c317edd663e035af7 (#20946)
* backport of commit 8dde8ae29e2edc663f6c02a87d8a6c1376cc2b52 (#20936)
* backport of commit e4c19ac0af902c83e67c301b6d104d9f1a621750 (#20938)
* backport of commit e32cf520f43c2708a7f6833f86d4fc0bd5620b00 (#20920)
* backport of commit b1c936d4532e2a740e975b45f66818f1560e5584 (#20931)
* backport of commit 82359a9e8ff8902be46f8c54864d594f83e1d41a (#20858)
* backport of commit e5ae00a767fec245c954dd89cc3dec10d0b5f56b (#20857)
* backport of commit 9be2903a34df94a1cd380a03f04e6b9bde9ca5a6 (#20932)
* Backport of UI: Scroll to top after PKI form save (#20929)
* backport of commit 360a406a2f924f0a46491a77bdd9e1fcf03b99fa (#20928)
* backport of commit 8ff31f32a525ed32273a65e6d28b88e24e9cf06e (#20895)
* backport of commit 21eccf8b8df7868c7d454f8ba42d5bec5235a69e (#20866)
* backport of commit 7f2d3f2c5c783dfacc7bc3bb86da4008d8b61bd6 (#20860)
* backport of commit 0defa2a1e74348fc3c3628b9b6a16772a2b3c033 (#20910)
* Update MongoDB Atlas plugin to v0.10.0 (#20882) (#20896)
* backport of commit e65d295c8809f4cc61b63bbc03293586c71c5483 (#20906)
* Backport of Fix transit import/export of hmac-only keys into release/1.14.x (#20902)
* backport of commit b54645514400b7c3db6e4a60b5491cdb7d55ceb6 (#20869)
* backport of commit 344ee1ec3e5721dbc64b1e0f34e08e8c5ffb3bc8 (#20865)
* pin gh workflows and use common jira sync (#198)
* pin gh workflows and use common jira sync (#36)
* backport of commit fe53c4684c2c15425cda6d3d46de973d62230fe6 (#20894)
* backport of commit 657ee3107a10b85b5e72cf1992a4410f8107e8e9 (#20893)
* backport of commit 4b60ffd5ef87e5f6535dcf578ed6c36b24b75174 (#20892)
* backport of commit 10c16ccbcb13fbb0dab56fd7b11b4fdb41609436 (#20875)
* backport of commit 63ccb60b9a6dadf717e6813f9789c7194a2375de (#20877)
* backport of commit 4d7d1755309c753a3d53d637048cc23dc474d876 (#20878)
* backport of commit be2464fbea069f8aed6b6bd271a24ff3ed6037da (#20861)
* backport of commit bd4d7269dd987395426275901afa06b17dc54220 (#20849)
* backport of commit 08ee474850e090cf9100878f02e0bdefc7d959f7 (#20871)
* backport of commit 54685189eb1b210ed14bd3c35a2a337c58ca8e42 (#20851)
* backport of commit 000d754c40b5daaae21e97dd548d3c308c7c6475 (#20870)
* backport of commit 12d851de3755aaeba6531c87db5c488a5782b9cb (#20853)
* backport of commit 7cf3ba33b5bf46954bdc872f9a3b72352fcd7a64 (#20852)
* backport of commit 34571d4d230537126ba4fa879fc161beada742ae (#20850)
* backport of commit 7490a2ebb7f5950321ec7930ee5f911c86febb04 (#20856)
* backport of commit 3b5ca69b62a3c59468754278f579610c0902fa05 (#20839)
* Backport: Add 1.14 draft docs and UI known issue #20665 (#20854)
* backport of commit c67242463c239215a1dbf3b9979787a5f8359bbf (#20830)
* Update SDK version on release branch (#20821)
* Update to rc1 (#20819)
* make changelog correction for release v0.5.0 (#31)
* update changelog (#197)
* Prepare for v0.16.0 release (#241)
* update dependencies (#30)
* update dependencies (#196)
* Bump github.com/hashicorp/vault/api from 1.9.0 to 1.9.1 (#236)
* Bump golang.org/x/oauth2 from 0.6.0 to 0.7.0 (#237)
* Bump google.golang.org/api from 0.114.0 to 0.120.0 (#238)
* Move testing info to its own section in the README (#35)
* Update CHANGELOG.md (#93)
* Bump github.com/hashicorp/vault/api from 1.9.0 to 1.9.1 (#92)
* Bump github.com/ory/dockertest/v3 from 3.8.0 to 3.10.0 (#91)
* Bump github.com/hashicorp/go-hclog from 1.0.0 to 1.5.0 (#87)
* Result of tsccr-helper -pin-all-workflows . (#89)
* Bump github.com/go-ldap/ldap/v3 from 3.4.1 to 3.4.4 (#86)
* Bump github.com/jcmturner/gokrb5/v8 from 8.4.3 to 8.4.4 (#85)
* Update CHANGELOG.md (#34)
* Bump github.com/hashicorp/vault/sdk from 0.7.0 to 0.9.0 (#32)
* Bump github.com/docker/docker (#28)
* Result of tsccr-helper -pin-all-workflows . (#31)
* Bump github.com/hashicorp/go-hclog from 0.16.2 to 1.5.0 (#27)
* Bump github.com/opencontainers/runc from 1.1.4 to 1.1.5 (#26)
* Bump golang.org/x/crypto from 0.0.0-20210711020723-a769d52b0f97 to 0.1.0 (#24)
* Bump golang.org/x/sys in /tools (#22)
* Bump golang.org/x/net from 0.0.0-20220909164309-bea034e7d591 to 0.7.0 (#21)
* Bump github.com/mediocregopher/radix/v4 from 4.1.1 to 4.1.2 (#19)
* update changelog (#65)
* Bump github.com/hashicorp/vault/api from 1.9.0 to 1.9.1 (#63)
* Bump golang.org/x/text from 0.8.0 to 0.9.0 (#64)
* use common bulk dependency upgrades workflow (#239)
* Add display attributes for OpenAPI OperationID\'s (#62)
* Result of tsccr-helper -pin-all-workflows . (#193)
* Result of tsccr-helper -pin-all-workflows . (#29)
* make error responses less verbose (#233)
* [COMPLIANCE] Add Copyright and License Headers (#231)
* Add display attributes for OpenAPI OperationID\'s (#28)
* Add display attributes for OpenAPI OperationID\'s (#192)
* Add display attributes for OpenAPI OperationID\'s (#90)
* Add display attributes for OpenAPI OperationID\'s (#232)
* Bump golang.org/x/sys in /tools (#230)
* Fixes formatting, adds tools dir, cleans up makefile (#229)
* feat: kubernetes_namespace omittable on token create for single namespace Vault role (#27)
* Add OIDC provider for IBM ISAM (#222)
* enable dependabot, update dependencies (#61)
* Prep for independent release; update deps (#26)
* update gha workflows (#228)
* Prep for release; update deps (#191)
* Update deps; prep for release (#227)
* update gha workflows (#83)
* Update go, GHA, k8s, and Vault (#189)
* Update go, k8s, and Vault (#25)
* update GH actions to use common workflows (#60)
* Fixes decoding of prior WAL entries with missing password_policy field (#57)
* Invalidates WAL entry for static role if password policy has changed (#56)
* feat: add audiences option on token create and token_default_audiences option on role create (#24)
* Bump golang.org/x/net from 0.0.0-20210428140749-89ef3d95e781 to 0.7.0 (#53)
* Bump golang.org/x/sys in /tools (#54)
* enable plugin multiplexing (#225)
* enable plugin multiplexing (#82)
* enable plugin multiplexing (#186)
* changelog++ (#183)
* enable plugin multiplexing (#55)
* enable plugin multiplexing (#23)
* changelog++ (#21)
* [COMPLIANCE] Add Copyright and License Headers (#22)
* Bump golang.org/x/crypto from 0.0.0-20211215153901-e495a2d5b3d3 to 0.1.0 (#224)
* Bump golang.org/x/net from 0.0.0-20220607020251-c690dde0001d to 0.7.0 (#223)
* [COMPLIANCE] Add Copyright and License Headers (#20)
* Repo upkeep: Adds makefile, gh action for tests, dependabot, tools (#17)
* adds changelog file (#16)
* [COMPLIANCE] Add Copyright and License Headers (#51)
* Updates Vault API and SDK modules (#52)
* change test to use update operation after removal of create operation (#20)
* CreateOperation should only be implemented alongside ExistenceCheck (#19)
* Updates Vault API and SDK modules (#221)
* update vault sdk/api and Changelog (#81)
* [COMPLIANCE] Add Copyright and License Headers (#80)
* [COMPLIANCE] Add Copyright and License Headers (#15)
* Adds ability to set Google workspace domain for groups search (#220)
* CreateOperation should only be implemented alongside ExistenceCheck (#176)
* [COMPLIANCE] Add Copyright and License Headers (#219)
* [COMPLIANCE] Add Copyright and License Headers (#181)
* Update audience handling for correctness (#179)
* CreateOperation should only be implemented alongside ExistenceCheck (#50)
* CreateOperation should only be implemented alongside ExistenceCheck (#79)
* update golang.org/x/text to v0.3.8 (#48)
* Add support for backport-assistant (#177)
* Ensure a consistent TLS configuration (#173)
* Fix dead link in README for OpenLDAP docs (#49)
* Add /check endpoint to verify env variable setup (#18)
* [COMPLIANCE] Update MPL-2.0 LICENSE (#16)
* Update dependencies (#166)
* Update dependencies (#15)
* [COMPLIANCE] Update MPL 2.0 LICENSE (#78)
* [COMPLIANCE] Update MPL 2.0 LICENSE (#47)
* [COMPLIANCE] Update MPL 2.0 LICENSE (#14)
* [COMPLIANCE] Update MPL 2.0 LICENSE (#215)
* [COMPLIANCE] Update MPL 2.0 LICENSE (#165)
* Update CLIHandler.Auth() to support aborting on any error (#214)
* change transition from done to closed (#12)
* github actions test (#11)
* change default password back to empty string (#10)
* Redis: TLS Support (#9)
* + update gokbr5 lib (#77)
* Update CHANGELOG, add bats instructions comment, up samba setup wait-time (#76)
* changelog++
* Repo hygiene (#14)
* Role namespace configuration possible via LabelSelector (#10)
* Unifies feature set with the Active Directory secrets engine (#40)
* Repo hygiene (#162)
* Update dockertest dependency (#8)
* Update go.mod version to 1.18 (#7)
* Create jira.yml (#6)
* Adds userattr config parameter with default based on schema (#46)
* Removes unused LDAP client interface methods (#45)
* Update module path (#5)
* Adds the last_password field to the static role credential response (#44)
* Updates repository tooling and adds CI to run tests (#41)
* Fixes config updates to retain prior values set (#43)
* Fixes last_bind_password client rotation retry (#42)
* Switch from Radix v3 to v4 (#4)
* Add support for JWT signature algorithm ES384 (#160)
* Add config parameter to include group aliases found in LDAP (#73)
* Add a CHANGELOG file (#71)
* Update team to be \'foundations\' (#13)
* Update jira sync (#39)
* Update jira sync (#12)
* Update jira sync (#158)
* Update jira sync (#70)
* Update jira sync (#212)
* Add remove_instance_name config to CLI and mount config (#68)
* changelog++
* Azure provider - Add Support for US Gov L4 (#211)
* changelog++
* adjust WSL detection (#209)
* VAULT-6727 Role resolution for JWT (#208)
* VAULT-6727 Role resolution for K8S Auth (#156)
* Test against Vault Enterprise (#11)
* fix: do not overwrite headers set by the client (#61)
* Add Custom Provider for SecureAuth IdP (#196)
* Updates google.golang.org/api to v0.83.0 (#205)
* test with kubernetes 1.24 (#9)
* jira sync: use runtime team instead of ecosystem (#154)
* Minor acceptance test improvements (#67)
* changelog++
* Split additional annotations (#7)
* changelog++
* add changelog (#5)
* creds endpoint (#4)
* Add 1.24.0 to CI integration tests (#152)
* Adds ability to use JSON pointer for the user_claim (#204)
* Switch from golang-jwt to cap+jose (#151)
* adding roles endpoint (#3)
* Return nil if no warnings when creating roles (#202)
* Switch from CircleCI to GitHub Actions (#66)
* Switch from CircleCI to GitHub Actions (#201)
* Cache httpClient for connection re-use (#142)
* config endpoint implementation (#2)
* VAULT-2003 Consolidate jwt/jose to use just jwt lib (#148)
* Basic plugin setup (#1)
* repo init
* Fix error code when using the wrong service account (#144)
* Update README.md file
* deps: downgrade google.golang.org/api to avoid forced upgrade on vault (#197)
* Fix some acceptance test issues (#65)
* Fix panic from nil logger (#36)
* Use golang-jwt/jwt/v4 to be inline with vault. (#140)
* Ensure valid entity alias names created for projected volume tokens. (#137)
* Add subkeys endpoint (#59)
* Properly handle role.AliasNameSource migration (#135)
* CI: run tests in verbose mode
* Add HTTP PATCH support for key metadata (#57)
* Do not store local service account token and CA to config. (#122)
* changelog++
* Adds UI postMessage source required for implicit flow (#192)
* test: add bats acceptance test (#64)
* add bats acceptance tests (#187)
* Add PKCE to OIDC Auth (#188)
* return 404 resp for patch when entry does not exist (#56)
* Update jira action (#62)
* Update jira action (#186)
* Update jira action (#130)
* Updates dependencies (#183)
* deps: update dependencies for vault 1.9 release (#52)
* Deprecate token issuer validation (#127)
* Update deps (#60)
* Update dependencies (#33)
* Add custom metadata to data responses (#51)
* Update dependencies (#123)
* Fix WAL debug log line (#32)
* Add a skip_browser argument to make auto-launching of the default browser optional (#182)
* update vault/sdk dependencies (#50)
* Add patch support (#49)
* fix: validate JWT token on alias look ahead (#114)
* maint: misc. updates for build and CI (#115)
* Fix early rotation for roles with WALs, ensure <=1 WAL per role (#28)
* fix: rename alias name source params (#112)
* feat: Support alternate alias naming schemes (#110)
* Fix: typo in pem_keys config description (#101)
* Add custom key metadata (#48)
* Fixes form_post response mode scripting for browser (#174)
* Update README.md
* Update README.md
* Remove vendor, go mod tidy, update lib locations
* Remove vendor, go mod tidy, update lib locations
* Remove vendor, go mod tidy, update lib locations
* Remove vendor, go mod tidy, update lib locations
* Remove vendor, go mod tidy, update lib locations
* Fix Alias lookahead for new JWT private claims (#108)
* Add schema config to rotate-root (#24)
* added Invalidation callback (#45)
* Updates the hashicorp/cap library to v0.1.0 for verification key caching issue (#172)
* Adds ability to provide service account for g suite provider as JSON string (#167)
* Fixes a panic that occurs when an implicit flow is requested (#163)
* Validate JWT supported algorithms against supported set if not provided in config (#161)
* Remove beta comment in README (#57)
* upgrade ldap to newer import path [VAULT-871] (#56)
* A bunch of little fixes (#23)
* Use the request context for Kubernetes API call (#104)
* Adds max_age role parameter and auth_time claim validation (#159)
* Use the cap/oidc library for OIDC based authentication (#158)
* Remove commented out code (#22)
* Add ability to create dynamic credentials in OpenLDAP (#21)
* Use the cap/jwt library for JWT based authentication (#155)
* Strip signature from debug-logged token (#154)
* Fixed README.md
* Added test REDIS container starting.
* Fixed return value from checkRuleAllowed
* cleanup plus add rule checking, start of.
* added variadic rules...
* Update CHANGELOG.md
* Tests running.
* Added DeleteUser
* Started on newUser
* First commit.
* adds changelog file (#151)
* fixes bound_claims validation for provider-specific group and user info fetching (#149)
* Update jira sync github action (#146)
* Update jira sync github action (#53)
* Update jira sync github action (#100)
* Update jira sync github action (#46)
* Update jira sync github action (#20)
* Use docker mirror (#44)
* Updated jwt projected tokens (#99)
* Use docker mirror (#98)
* Adds OIDC namespace_in_state option (#140)
* Improve authorization error (#137)
* Remove provider_config DisplayAttrs.Value (#141)
* Adds new config option `disable_local_ca_jwt` (#97)
* Update api/sdk/vendoring (#18)
* adding EdDSA (ed25519) to supported algorithms (#129)
* Fix AD password rotation (#16)
* Adds gsuite provider specific extension for fetching groups and user information (#123)
* Read cert and JWT from filesystem by default
* Support for distributed groups claims on Azure (#120)
* Add response check to prevent panic (#14)
* Support provider specific handling (#118)
* ensure delete role is forwarded to primary (#13)
* Adds optional validate_iss_claim config param to allow skip iss validation (#91)
* Add password policy support (#12)
* only verify LDAP upndomain if set (#47)
* Fix: Forward rotation requests from performance nodes to the primary (#10)
* Moves auth_url error message for non-OIDC flow into ui constants (#112)
* Include allow_delete_versions in kv/config... (#42)
* Add a note about defaults
* docs: add pull request template (#87)
* docs: add pull request template (#41)
* docs: add pull request template (#7)
* docs: add pull request template (#106)
* Move tests from travis to circle
* Update deps and vendoring
* Add optional client_nonce for OIDC logins (#104)
* Change noexpire to noexpired (#6)
* Add RACF support (#5)
* Change default_role to be lowercase (#100)
* Add client config option disabling FAST negotiation (#43)
* Fix request headers example (#42)
* Update api and sdk deps
* Update api and sdk deps
* Update api and sdk deps
* Update api and sdk deps
* Update sdk dep
* Update api and sdk deps
* Revert ldap to 3.1.3 (#4)
* Support form_post mode (#98)
* Move Factory code into an InitializeFunc (#3)
* Add 0.1.0 secret engine (#1)
* update ldap lib for upndomain (#39)
* Add timeout to OIDC callback listener (#97)
* Replace hashicorp/gokrb5 with jcmturner/gokrb5/v8 (#37)
* Initial commit
* Update dependencies (#95)
* update vault sdk dependency and tidy
* Add missing test name
* Move tests into sub tests
* Add the ability to match bound claims using globs (#89)
* Additional test scenarios
* update field descriptions
* add positive and negative login tests
* allow serviceaccount and namespace to be splat
* strip travis build status
* switch to circleci
* fix build, minor maintenance
* strip innerLoop
* reduce nested loops
* rewrite loop
* Additional review changes
* Code review changes
* version bump vault api and sdk
* Update README to note plugin in beta
* remove the /internal lib
* use dependency of github.com/hashicorp/gokrb5
* Add ability to match bound claims using globs (i.e. wildcards)
* add display attributes necessary to create kubernetes roles in the ui (#71)
* send audience to tokenreview api (#74)
* move WriteHeader up a line
* Default OIDC callback listener to only listen on localhost (#86)
* verify login realm matches across kerb and ldap
* vendor dependencies
* bring tests for gokrb5
* shorten minimum length requirement
* length check when parsing krb5tokens
* strip observation on maintenance
* tune explanation and add notice
* add README as artifact
* update go mod
* move gokrb5 to internal directory
* pull in gokrb5 updates
* move ldap conn to after spnego auth
* pull in panic prevention
* undo go mod changes
* remove self as original creator of plugin
* fix README example of service
* strip dupe VAULT_TOKEN line from separate PRs
* Updates to integration to work on macOS
* Updates to dev-env to run on macOS
* Setting dev env VAULT_TOKEN variable that is being passed at vault container run
* fix indentation
* prep for Vault addition
* Update Makefile
* more customisation for callback URL (#80)
* add CLI handler
* remaining changes from feedback
* use errwrap.Wrapf
* fix fmt import errs
* strip unused \"fmt\" import
* Update path_config.go
* update to latest gokrb5 library
* use latest vault version
* use most recent vault version tag
* add make dev-env command with docs
* run integration tests through CI
* specify reader when calling policy.Rotate() (#36)
* Vault login for WSL - Hardened openURL function for WSL (#77)
* Add support for boolean values in bound claims (#73)
* trim any trailing / characters in a kubernetes host when doing token review (#69)
* add parameter callbackhost (#71)
* Use auth headers rather than body
* correct path to compiled binary
* Add Integration Script
* updated go.mod and go.sum
* Add option in the role for specifying the audience claim.
* Add option for specifying the jwt issuer in the configuration.
* Add common token fields to OIDC login response (#67)
* Updating vault dep
* Updating vault dep
* Updating vault dep
* code maintenance
* use else if to populate cfg
* changes per feedback
* Revert \"Merge pull request #10 from hashicorp/code-maintenance\"
* update code style
* place paths on the backend
* update deprecated fields
* error casing
* descope errors and log more warnings
* standardize imports like vaults
* add tokenutil fields
* force go mod to continue using prev lib
* Update build badge to CIrcleCI
* use const for config/ldap
* Convert a single string groups claim into a list of one (#63)
* strip unnecessary dependencies
* first pass switching to ldaputil sdk
* Updating vault dep
* Updating vault dep
* Updating vault dep
* Switch from travis to circleci (#64)
* strip unused .travis.yml
* Update README.md
* switch to go mod and circleci
* Update README.md
* Update README.md
* Updating vault dep
* Updating vault dep
* Updating vault dep
* Updating vault dep
* Updating vault dep
* Updating vault dep
* Update cidr check to ensure connection info
* Update cidr check to ensure connection info
* Forward OIDC logins received on performance standbys (#61)
* Updating vault dep
* Updating vault dep
* Updating vault dep
* Bump api/sdk
* Bump api/sdk
* Fix tests
* Update tests
* Remove nil check for now, it isn\'t clear we should bail
* Update token bound cidrs
* Update token bound cidrs
* Tokenutilize (#67)
* Tokenutilize (#59)
* Bump api/sdk
* Update api/sdk
* Add option to allow verbose OIDC logging (#57)
* Change leeways to TypeSignedDurationSecond (#58)
* delete_version_after: Use TypeSignedDurationSecond
* Remove delete_version_after from data and undelete paths
* Add delete_version_after
* Add configurable expiration/notbefore leeways (#53)
* Allow SA names and namespaces to contain wildcards (#58)
* update path config to use display attributes (#64)
* update path config to use display attributes (#56)
* Don\'t panic in CLI on nil auth URL response (#55)
* Restore client_id check (#54)
* Add functionality to check against a list of claims (#50)
* Improve role config jwt bound constraint check (#49)
* Add JWKS support (#43)
* Update pointerstructure module (#45)
* Update README.md
* remove nbsp\'s
* Add contributors section
* Mention -k is KVNO
* Improve Readme
* reinstate config createOperation
* fmt
* Allow SPNEGO on GET
* Update README.md
* Initial commit
* explicitly close the listener
* Fix upgrade error (#31)
* Update vendor folder
* Update vendor folder
* Update vendor folder
* Bump deps
* Bump deps
* Bump deps
* Add 401 negotiate
* Update deps, including Vault -> 1.1.1
* Bump travis and make fmt
* Bump travis and make fmt
* Bump travis and make fmt
* Update to go modules
* Update to go modules
* Switch to go.mod
* Interpret bound claims value as a \"matches any of\" test if a list is provided (#41)
* Use configured TLS certs for OIDC operations (#40)
* Disable /login path for roles with role_type oidc (#38)
* Fix locking/policy creation location (#30)
* Fix policy creation race (#29)
* Escape URL in CLI helper on Windows (#37)
* Include oidc_scopes in role read (#35)
* Enforce bound_cidrs in OIDC flow (#34)
* Provide a more helpful error message when a login attempt gets an (#60)
* Bump jose dep and fix compile (#33)
* bump Vault deps
* Fix build
* Update Vault dep
* Bump vault dep
* Add canceling upgrade goroutine func (#28)
* Make upgrade error messages distinct between primary and secondaries (#27)
* Don\'t return if we fail to check if the upgrade has completed (#26)
* Improve claims verification (#31)
* Change default CLI port to 8250 (#28)
* Improvements with legacy roles and allowed_redirect handling (#26)
* Don\'t run upgrade to local mounts on performance standbys (#25)
* Add OIDC support (#24)
* dep prune
* fix logical check
* fix login test
* update README to Vault 1.0
* add field information for ui (#56)
* Add travis support
* Allow configuration of supported signing algorithms (#16)
* Fix test (#24)
* fixed minor typo in error message (#20)
* ran \'make fmt\'
* add service account info to entity alias metadata
* update vendor with \'dep ensure\'
* update how we run the tests
* Check empty keys during write
* Disallow writing to empty paths
* Update path definition to work with OpenAPI
* Update README.md
* Add travis.yml file
* Allow specifying delimiters to access group information in nested claims (#15)
* Support new Projected Service Account tokens (#43)
* Fix regression with dependencies (#44)
* Remove some boilerplate that some linters complain about
* Update README.md
* Improve context lifetime handling for OIDC provider
* don\'t run upgrade if we are a performance standby (#14)
* Fix broken test
* Validate audience claim if provided even if bound_audiences isn\'t set
* bump deps
* bump deps
* bump deps
* Remove debugging leftover
* Add MIME type headers to the TokenReview request
* Make priority of header over body more explicit
* Support Authorization header
* upload vendor dependencies
* upgrade dependencies, most notably: jcmturner/gokrb5(v4->v5)
* Change display name separator to hyphen
* Allow trailing newline char in backend config JWT
* \"token\" -> \"jwt\", in line with azure/kube
* Capitalize Discovery
* Use discovery instead of issuer in params
* Bump deps
* Initial commit (#1)
* first commit
* Fix login with ECDSA signed JWTs with forked library
* Error wrap the JWT validation errors (#32)
* Add namespace to token display name
* Add warning and handling of root path (#12)
* Bump deps
* Bump deps
* Add bound cidrs for roles (#28)
* dont return the jwt
* strip comment
* fix test failure
* Bump deps
* Bump deps
* Update dependencies
* Update dependencies
* Remove the downgrade code (#11)
* Cache global config (#10)
* rename directory
* rename package
* BUGFIX: Enable the group list path as well
* Adjust sleep timings to make things happier on first mount
* Add a sleep if the upgrade check fails; see comment (#9)
* Add path help to the invalid path (#8)
* Change const to the correct replication type
* Make updates to upgrading on secondaries and version numbers (#7)
* Make the warning show the appropriate kv subcommand
* Update upgrade_test.go
* Rename .travis.yaml to .travis.yml
* Update README.md
* Create .travis.yaml
* Fix data race
* Replace logxi with hclog
* Update wording of warning
* Add a default handler that warns the user about the versioned API (#4)
* Use a canary check to kick off the upgrade rather than a config setting (#5)
* address feedback
* Update deps (#6)
* Let core handle TTLs
* dep update
* update deps
* Remove client secret from being returned on config
* Add an existence check for the data path (#3)
* Add path help text (#2)
* Add scripts
* Initial Implementation of the versioned K/V store (#1)
* Create Makefile
* Update README.md
* Update README.md
* Create LICENSE
* Fix spelling error (#21)
* Bump some deps
* Update deps
* Mention binaries in README
* Upload binaries for darwin/win as well
* Update API key
* Add travis build badge
* Enable github release uploading
* Add missing vendor files
* Update plugin path
* Travis: install -> before_install
* Add travis install step
* Add .travis.yml
* Update update_deps.sh
* Follow vault-plugin-auth-kubernetes structure
* Remove 32bit arches as they break gokrb5
* Add makefile and build scripts
* README formatting
* Add installation/configuration instructions
* Add basic README
* Update git location
* Add LICENSE (MPL 2.0)
* Bump deps
* first commit
* Update vendoring
* Update vendor
* Add login tests
* Import ldap group to policy mapping
* Import ldap group to policy mapping
* Rename to just kerberos
* Rename to just kerberos
* Sync Auth options with ldap plugin
* Remove debug printf
* Disable renewals for now
* Clean, test login
* Unittest path_config and validate keytab before storing it
* Rename parameter to authorization
* Sync updates
* Update deps
* Plumb context through paths and funcs that touch storage
* Somewhat working
* Split up
* Add vendor/
* Initial import
* Update Deps and add context (#17)
* Add seal wrap storage config
* Fix typo in readme
* Persona -> Alias in test
* Update deps (#11)
* Update vault deps
* s/persona/alias
* Update the vault dep to pull in Alias changes
* Update README.md
* Add a note about the security model.
* Add a separate Token Reviewer token to use with the kubernetes API (#9)
* Validate that the user returned from TokenReview is a service account (#7)
* Make the PEM Signing Keys Optional (#4)
* Update README.md
* Initial merge (#1)
* first commit
* Sun Feb 04 2024 opensuse_buildserviceAATTojkastl.de- Update to version 1.15.5:
* backport of UI: JSON editor styling fix (#23306)
* backport of UI: make resultant-acl banner dismissable (#25108)
* Go update to 1.21.5 on 1.15 (#25101)
* Revert licese reporting 1.15 (#25087)
* Update 1.15 to Go 1.21.6 (#25077)
* backport of commit afe599145dda0a3fa1ddce0bf2853c8d07a12bb5 (#25092)
* Backport of UI: Database fixes (#24947) into release/1.15 (#25042)
* bump github.com/hashicorp/go-kms-wrapping/wrappers/azurekeyvault/v2 version to include support for azure workload identities (#24954) (#25068)
* Backport of Update vault-plugin-secrets-ad to v0.16.2 into release/1.15.x (#25062)
* backport of commit 49a59bda5ebdc8beb0a85af25c7be46b270ad4fe (#25072)
* Sun Feb 04 2024 Johannes Kastl - new package openbao: provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys (open source fork of Hashicorp Vault)
  
ICM