External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-01-21 14:38:00 -03:30
Code Issues Packages Projects Releases Wiki Activity
28,895 Commits 54 Branches 19 Tags
Commit Graph

60 Commits

Author SHA1 Message Date
Ryan Petrello
6f0f56f4f6 verify all Centrify HTTPS requests 2021-03-17 10:19:03 -04:00
Ryan Petrello
1b2d457090 fix a bug in the Centrify Vault plugin 2021-03-17 10:19:03 -04:00
Ryan Petrello
764322b87b more centrify fixes 2021-03-17 10:19:03 -04:00
Asharma-bhavna
51005c0342 Bugs identified during flake8 testing 2021-03-17 10:19:03 -04:00
Asharma-bhavna
cccd021d8b Removed explicitly calling of python json module 2021-03-17 10:19:03 -04:00
Asharma-bhavna
18752a637f Code changes suggested by AWX repo reviewer team 2021-03-17 10:19:03 -04:00
surbhijain1502
f83126643a Removed account name as secret, query changed 2021-03-17 10:19:03 -04:00
surbhijain1502
d913d622d3 Centrify Vault Plugin 
To read Inputs and fetch the data from PAS Portal
 2021-03-17 10:19:03 -04:00
Jérémie Ben Arros
1550989482 add vault namespace support 2021-03-16 09:27:22 -04:00
Jérémie
d94a49ac74
Update hashivault.py 2021-03-16 09:16:55 -04:00
softwarefactory-project-zuul[bot]
9d66b41e84
Merge pull request #7991 from bbayszczak/hashivault_auth_path_in_inputs 
hashivault_kv auth_path moved from metadata to inputs

Reviewed-by: Jake McDermott <yo@jakemcdermott.me>
             https://github.com/jakemcdermott
 2020-09-14 15:28:07 +00:00
Benoit Bayszczak
08c9219f48 rename 'approle_auth_path' to 'default_auth_path' & fix kwargs.get 2020-09-08 10:39:12 +02:00
Benoit Bayszczak
878b754d9f [credential_plugin/hashivault] fix typo 2020-08-28 17:33:19 +02:00
Benoit Bayszczak
16fdf0e28f [credential_plugin/hashivault] add approle_auth_path in inputs 2020-08-28 17:22:07 +02:00
Benoit Bayszczak
00fc5f6b93 hashivault_kv auth_path moved from metadata to inputs 
The auth_path is used with the approle auth method
It's not linked to the secret we are reading but to the auth method,
this parameter has to be moved to inputs
 2020-08-25 18:01:09 +02:00
Ryan Petrello
0c6be1f4d7
Merge branch 'downstream' into devel 2020-08-05 14:48:36 -04:00
Ryan Petrello
f29e7b9c81
properly report 30x errors on credential plugin tests 2020-07-23 14:50:35 -04:00
Ryan Petrello
310a0f88e5
remove the usage of create_temporary_fifo from credential plugins 
this resolves an issue that causes an endless hang on with Cyberark AIM
lookups when a certificate *and* key are specified

the underlying issue here is that we can't rely on the underyling Python
ssl implementation to *only* read from the fifo that stores the pem data
*only once*; in reality, we need to just use *actual* tempfiles for
stability purposes

see: https://github.com/ansible/awx/issues/6986
see: https://github.com/urllib3/urllib3/issues/1880
 2020-07-14 16:24:03 -04:00
Graham Mainwaring
d14aee70a1 Don't follow redirects in credential plugins 2020-07-06 17:18:30 -04:00
AndrewCopeland
4531c418e2 URL encode '/' to '%2F' for conjur credential plugin 2020-06-04 09:57:00 -04:00
Ryan Petrello
cfe8a1722c
properly quote conjur URLs that contain spaces 
see: https://github.com/ansible/awx/issues/7191
 2020-06-01 09:48:15 -04:00
Ryan Petrello
01c89398b7
remove the usage of create_temporary_fifo from credential plugins 
this resolves an issue that causes an endless hang on with Cyberark AIM
lookups when a certificate *and* key are specified

the underlying issue here is that we can't rely on the underyling Python
ssl implementation to *only* read from the fifo that stores the pem data
*only once*; in reality, we need to just use *actual* tempfiles for
stability purposes

see: https://github.com/ansible/awx/issues/6986
see: https://github.com/urllib3/urllib3/issues/1880
 2020-05-27 17:46:00 -04:00
Pierre-Louis Bonicoli
f9d5860d63
Fix pylint errors 2020-04-28 10:33:41 -04:00
Pierre-Louis Bonicoli
d8ac2f5263
Avoid to repeat default value 2020-04-28 10:33:40 -04:00
Pierre-Louis Bonicoli
fdae3cd092
Explicitly references AppRole 2020-04-28 10:33:40 -04:00
Pierre-Louis Bonicoli
139384acc4
Simplify test branches 2020-04-28 10:33:40 -04:00
Pierre-Louis Bonicoli
9d85e8655d
Both methods return a token: rename variable 2020-04-28 10:33:40 -04:00
Pierre-Louis Bonicoli
9fdd9061d3
Remove extraneous call to bool built-in function 2020-04-28 10:33:39 -04:00
kawsark
d3d4ce3804
Modified hashivault.py to support approle 2020-04-28 10:33:37 -04:00
Gabe Muniz
b9829e2bde removed extra quotes in example 2020-03-10 23:08:38 +00:00
Jake McDermott
11af21972d
Use default cloud name if one isn't passed to azure plugin 2020-01-17 12:36:04 -05:00
Jake McDermott
2b02b1affd
Support AzureCloud choices for azure keyvault 2020-01-15 13:13:10 -05:00
Ryan Petrello
ce5bb9197e
rename the CyberArk AIM credential type 
see: https://github.com/ansible/awx/issues/4400
 2019-10-16 15:58:35 -04:00
Jesse Keating
e1bdbeaa5c Restore new style headers 
This leads to having both the new style header and the old compatability
header. Best of both worlds!
 2019-09-18 13:27:55 -07:00
Jesse Keating
b3c264bf21 Use proper headers to auth with Vault 
Reading examples at
https://learn.hashicorp.com/vault/getting-started/apis show needing to
use `X-Vault-Token` header, instead of `Authorization`. Without this
header, the vault server would return a 400 status with an error message
of "missing client token". With this change AWX is now able to interface
with the Hashicorp backend.
 2019-09-18 12:26:47 -07:00
Jake McDermott
35d9a8f839 support nested engine names for hashivault kv v2 secret engine 
Add a field to hashivault plugins for identifying the secret
backend (mount point). If no secret backend is provided, the
first part of the secret path is used.
 2019-07-16 13:13:22 -04:00
olia-dev
b2d84a5d89 related #4274 - moved function 'create_temporary_fifo' to 'awx/main/utils/common.py' and referenced it in other plugins (fixed errors) 2019-07-10 12:39:57 +02:00
olia-dev
7b390fa2fc related #4274 - moved function 'create_temporary_fifo' to 'awx/main/utils/common.py' and referenced it in other plugins 
Signed-off-by: olia-dev <olia-dev@ktah.net>
 2019-07-10 11:41:21 +02:00
olia-dev
2ee03b552d related #4274 - added option to verify server certificate with a specific CA (fixed errors) 2019-07-09 14:14:29 +02:00
olia-dev
7a5efa1adc related #4274 - added option to verify server certificate with a specific CA 2019-07-09 13:59:11 +02:00
olia-dev
f77298643f related #4274 - added option to verify server certificate with a specific CA 2019-07-08 10:39:42 +02:00
jainnikhil30
dbf8df479b
use path instead of *path while dong the join 2019-07-02 07:55:35 -04:00
jainnikhil30
764947c1ae
fix the hashivault v2 lookup 2019-07-02 07:55:32 -04:00
Jake McDermott
9737ab620c
require url scheme for credential type url inputs 
This adds a url formatting type for credential input string fields
The validator for this formatting type will throw an error if the
provided url string doesn't have a url schema.
 2019-04-30 13:41:07 -04:00
Jake McDermott
9b55fa61de
fix required field entry for object_query 2019-04-02 11:24:41 -04:00
Jake McDermott
8b35ac89fc
add timeouts to plugin backends 2019-04-02 11:24:11 -04:00
Jake McDermott
f9e081046c
add object query fields 2019-04-02 11:23:39 -04:00
Jake McDermott
956f588fd8
generalize secret textarea hint 2019-04-02 11:23:28 -04:00
Jake McDermott
cb238c1f24
read cert from memory 
Certificate data lives in the db. We're using a fifo here so we can avoid writing
it to disk when making the http request.
 2019-04-02 11:23:24 -04:00
Jake McDermott
3dee9f0512
add plugin for cyberark aim 2019-04-02 11:23:20 -04:00