|
|
5675a469da
|
feat: enable annotations as alias metadata
- enable the ability to set additional alias metadata via annotations
|
2025-11-15 15:40:54 +11:00 |
|
|
|
489969fed8
|
Merge pull request 'feat: upgrade vault provider' (#18) from benvin/upgrade_provider into master
Reviewed-on: #18
|
2025-11-15 15:40:16 +11:00 |
|
|
|
1ee07dd52f
|
feat: upgrade vault provider
- upgrade to hashicorp/vault 5.4.0
|
2025-11-15 15:38:22 +11:00 |
|
|
|
0869b6f723
|
Merge pull request 'feat: add kubernetes auth engine' (#17) from benvin/k8s_auth into master
Reviewed-on: #17
|
2025-11-15 10:51:18 +11:00 |
|
|
|
bc9b4eebdc
|
feat: add kubernetes auth engine
- add kubernetes authentication
- add policy to manage kubernetes auth engine roles/config
|
2025-11-15 10:50:17 +11:00 |
|
|
|
9f4b77a765
|
Merge pull request 'feat: update policy names to be path based' (#16) from benvin/policy_rework into master
Reviewed-on: #16
|
2025-11-15 10:49:19 +11:00 |
|
|
|
4364b444fd
|
feat: update policy names to be path based
- change policy names to be based on the path they are stored at
|
2025-11-15 10:48:17 +11:00 |
|
|
|
fee61c3eb5
|
Merge pull request 'feat: add new puppetca' (#15) from benvin/new_puppetca into master
Reviewed-on: #15
|
2025-07-10 21:51:02 +10:00 |
|
|
|
23e3fb88ea
|
feat: add new puppetca
- update puppetmaster/puppetca cidrs
|
2025-07-10 21:49:36 +10:00 |
|
|
|
8fd8913554
|
Merge pull request 'feat: add new puppetmasters to vault approles' (#14) from benvin/new_puppetmasters into master
Reviewed-on: https://git.query.consul/unkin/terraform-vault/pulls/14
|
2025-05-31 15:17:40 +10:00 |
|
|
|
1f35fec37c
|
feat: add new puppetmasters to vault approles
|
2025-05-31 15:17:22 +10:00 |
|
|
|
b46d36d03b
|
Merge pull request 'feat: update gitea runners' (#13) from benvin/update_runners into master
Reviewed-on: https://git.query.consul/unkin/terraform-vault/pulls/13
|
2025-05-25 10:32:37 +10:00 |
|
|
|
ac36f9355c
|
feat: update gitea runners
- changed gitea runners, updating cidrs
|
2025-05-25 10:31:29 +10:00 |
|
|
|
50d1e31ea5
|
Merge pull request 'feat: enable access to puppetcerts' (#12) from neoloc/puppet_terraform into master
Reviewed-on: https://git.query.consul/unkin/terraform-vault/pulls/12
|
2025-04-27 16:26:25 +10:00 |
|
|
|
d508dcd4a9
|
feat: enable access to puppetcerts
- enable the terraform-incus repo to access puppet certs
|
2025-04-27 16:26:05 +10:00 |
|
|
|
4aac926c6a
|
Merge pull request 'feat: enable access to kv/service/packer/builder/docker-incus-client' (#11) from neoloc/add_packer_path into master
Reviewed-on: https://git.query.consul/unkin/terraform-vault/pulls/11
|
2025-04-23 18:25:28 +10:00 |
|
|
|
05268f9dd8
|
feat: enable access to kv/service/packer/builder/docker-incus-client
|
2025-04-23 18:24:36 +10:00 |
|
|
|
80c14ef4e4
|
Merge pull request 'neoloc/incus' (#10) from neoloc/incus into master
Reviewed-on: https://git.query.consul/unkin/terraform-vault/pulls/10
|
2025-04-07 16:27:29 +10:00 |
|
|
|
feee7a265e
|
feat: remove k8s pki engines
|
2025-04-07 16:25:52 +10:00 |
|
|
|
8bc67e1e5b
|
feat: add terraform-incus approle/policy
|
2025-04-07 16:22:41 +10:00 |
|
|
|
275b640adc
|
feat: add packer-builder policy
|
2025-04-07 16:22:22 +10:00 |
|
|
|
2dc37cc8c4
|
Merge pull request 'feat: add pki for k8s' (#9) from neoloc/k8s_pki into master
Reviewed-on: https://git.query.consul/unkin/terraform-vault/pulls/9
|
2025-01-27 21:06:30 +11:00 |
|
|
|
9b9afdce58
|
feat: add pki for k8s
- add pki for k8s
- add policy to manage k8s/*/roles/*
|
2025-01-27 21:05:51 +11:00 |
|
|
|
cd9c006203
|
Merge pull request 'fix: fix rolename' (#8) from neoloc/oops into master
Reviewed-on: https://git.query.consul/unkin/terraform-vault/pulls/8
|
2025-01-11 21:33:04 +11:00 |
|
|
|
2d345cc63b
|
fix: fix rolename
- had duplicate role
- change policy name to match approle
- updated ttl as packer builds can take some time
|
2025-01-11 21:32:33 +11:00 |
|
|
|
99b643b458
|
Merge pull request 'feat: add packer-builder role' (#7) from neoloc/packer-builder into master
Reviewed-on: https://git.query.consul/unkin/terraform-vault/pulls/7
|
2025-01-11 21:06:36 +11:00 |
|
|
|
f83ba13158
|
feat: add packer-builder role
- limit access to workstation and gitea runners
|
2025-01-11 21:01:17 +11:00 |
|
|
|
e4d80e42dc
|
Merge pull request 'feat: add incus-cluster role/policies' (#6) from neoloc/incus into master
Reviewed-on: https://git.query.consul/unkin/terraform-vault/pulls/6
|
2025-01-06 23:16:53 +11:00 |
|
|
|
12e04b3db7
|
feat: add incus-cluster role/policies
- add policy and role to manage incus cluster join tokens
|
2025-01-06 23:16:06 +11:00 |
|
|
|
aa518c1b44
|
Merge pull request 'feat: add terraform_nomad role' (#5) from neoloc/nomad into master
Reviewed-on: https://git.query.consul/unkin/terraform-vault/pulls/5
|
2024-12-28 17:15:04 +11:00 |
|
|
|
fc22ac1711
|
feat: add terraform_nomad role
- add approle and policy for nomad terraform
|
2024-12-28 17:14:14 +11:00 |
|
|
|
d5bd00d8ab
|
Merge pull request 'feat: add puppetapi approle/policy' (#4) from neoloc/puppetapi into master
Reviewed-on: https://git.query.consul/unkin/terraform-vault/pulls/4
|
2024-12-15 17:07:29 +11:00 |
|
|
|
63dd355311
|
feat: add puppetapi approle/policy
|
2024-12-15 17:07:01 +11:00 |
|
|
|
bfda3f2f72
|
Merge pull request 'fix: fix vault_* groups' (#3) from neoloc/fix_group into master
Reviewed-on: https://git.query.consul/unkin/terraform-vault/pulls/3
|
2024-10-21 20:02:14 +11:00 |
|
|
|
f597e0a979
|
fix: fix vault_* groups
- fix vault_admin group
|
2024-10-21 20:01:21 +11:00 |
|
|
|
fd0fe2403b
|
Merge pull request 'feat: add vault admin group' (#2) from neoloc/vault_admin_ldapgroup into master
Reviewed-on: https://git.query.consul/unkin/terraform-vault/pulls/2
|
2024-10-21 19:43:24 +11:00 |
|
|
|
bcdb81e060
|
feat: add vault admin group
- assign global-admin policy
|
2024-10-21 19:42:49 +11:00 |
|
|
|
9e3cbce264
|
Merge pull request 'neoloc/terraformvault' (#1) from neoloc/terraformvault into master
Reviewed-on: https://git.query.consul/unkin/terraform-vault/pulls/1
|
2024-09-26 23:06:26 +10:00 |
|
|
|
f78416361b
|
feat: manage terraform access to vault
- add approle for terraform, tf_vault
- add policices to manage terraform access to vault
- add policices for default access to vault from ldap users
|
2024-09-26 22:59:40 +10:00 |
|
|
|
582f38c68f
|
feat: update ldap backend
- confirm users can authenticate
- add `vault_access` group with base rights for users
|
2024-09-26 17:30:18 +10:00 |
|
|
|
7b9e27cfe6
|
feat: enable retrieving bindpass from vault
- set bindpass/binddn/url correctly for ldap
- retrieve bindpass from vault
|
2024-09-23 22:49:53 +10:00 |
|
|
|
14790f8277
|
feat: import current status
- import pki, ssh, kv, rundeck engines
- deploy all roles from terraform
- deploy all policies from terraform
- deploy all approles from terraform
|
2024-09-23 22:01:18 +10:00 |
|
|
|
4bee3b8313
|
Initial commit
|
2024-09-09 22:57:00 +10:00 |
|
