actions/vault-action
5
0
Fork 0
mirror of https://github.com/hashicorp/vault-action.git synced 2025-11-15 02:23:46 +00:00
Code Activity Actions
206 commits 7 branches 48 tags 5.7 MiB
Commit graph

14 commits

Author SHA1 Message Date
Christopher Swenson
540241117c
Use RSA-2048 key instead of 4096 
After bumping jest, the RSA signing performance went down by a factor of
2 or so, which causes tests to fail (since they went from ~3 seconds to
~6 seconds to generate a 4096-bit RSA signature). The tests generate
these signatures to fake responses from GitHub.

After replacing the keys with a 2048-bit key, the signing times are now
under a second.
 2022-06-28 12:09:43 -07:00
Tom Proctor
4f536680b6
Update default branch 2022-04-28 11:24:54 +01:00
Tom Proctor
8e9712e63b
Fix tests from jest-when version bump (#311) 
* Fix tests from jest-when version bump
* Delete unused test helpers
* Add workflow_dispatch for tests
 2022-04-28 11:12:56 +01:00
Christopher Swenson
40fb8d7236
Write a better error message when secret not found (follow-up) (#306) 
* Write a better error message when key not found

* Address additional comments on #182

Co-authored-by: Simon Johansson <simon@simonjohansson.com>
 2022-04-20 15:53:24 -07:00
Kamil Domański
2f64a97498
make "role" input optional (#291) 
* make "role" input optional

Per Vault documentation it doesn't have to be provided,
and the auth provider's "default_role" parameter is required
precisely for this case.
https://www.vaultproject.io/api/auth/jwt
 2022-04-07 15:34:46 +01:00
Alex Kulikovskikh
c502100fbe
feat(): add support for github provided jwt auth (#257) 
* fix: update `privateKeyRaw` condition

* fix: add `contents: read` permission

* fix: get token via `@actions/core`

- Update README
- Switch to use `getIDToken` method for Github token retrieval
- Bump `@actions/core` to 1.6.0
- Add `jwtGithubAudience` input
- Remove unnecessary code

* fix: add description for `jwtGithubAudience`

* fix: move default value for `jwtGithubAudience` to `action.yml`

* docs: fix typo in README & grammar

* test: add tests

* fix: reset `dist/index.js`

* fix: remove default value for `jwtGithubAudience` from `action.yml`

* fix: reset `dist/index.js`

* fix: reset `dist/index.js`
 2021-10-08 09:46:21 -07:00
Raman Harnak
9e8f22534f
Implement JWT auth (#188) 2021-05-04 08:49:35 -04:00
ZANCO Bertrand
2f76ad395b
Add ability to export Vault Token (#127) 
* Add export Vault Token

* Set correct condition for default value

* Add test for exportToken
Fix key with dash

* Restore index.js
 2020-10-01 10:22:10 -04:00
Jason O'Donnell
f7f0d5a289
Simplify secret request UX (#102) 
* Simplify secret UX

* Update doc

* Fix tests
 2020-08-11 10:06:28 -04:00
Richard Simpson
5c464962be
feat: add generic auth (#39) 
* feat: add generic auth

Adds the ability to authenticate against any normal Vault endpoint by added the `authPayload` input.

When an unrecognized method is provided, the action will attempt to hit `v1/auth/<method>/login` with the provided `authPayload and parse out the token in the response
 2020-04-04 13:19:48 -05:00
Richard Simpson
0188d9d223
feat: add support for (nearly) any engine (#15) 
* feat: add support for (nearly) any engine

* cache response and fixup data depth logic

* use starting slash as non-kv sentinel value

* add tests for custom engines

* improve docs and add descriptor of generic support

* update dist
 2020-02-05 16:33:12 -06:00
Giancarlo França
f229481670
feat: support for KV version 1 and custom-named engines (#12) 
* feat: kv v1 and engine path

* doc: add custom version and engine path usage docs

Co-authored-by: Richard Simpson <richardsimpson@outlook.com>
 2020-02-04 09:40:55 -06:00
Antoine Méausoone
3b9239de79
feat(authenticate): add approle auth method (#10) 
* feat(authenticate): add approle auth method

* docs(readme): update readme

* fix: update index.js

* fix: update got to 10.2.2 to fix ncc

* chore: clean up code slightly

* chore: update tests to use got correctly

* chore(test): fix integration tests

* chore: streamline method logic

* chore: make role and secret required in approle

Co-authored-by: Sébastien FAUVART <sebastien.fauvart@gmail.com>
Co-authored-by: Richard Simpson <richardsimpson@outlook.com>
 2020-01-28 19:10:19 -06:00
Richard Simpson
38c189f087
chore(test): organize tests a bit better (#7) 
* chore(test): organize tests a bit better

* add caching
 2019-11-24 16:00:31 -06:00