This repository has been archived by the owner on Oct 6, 2019. It is now read-only.
Summary:
The deployment config file has slightly changed. The certificate information has been moved to its own struct. Check this wiki page for samples, or the sample config file
Goldfish now also accepts non-approle tokens for deployment. They still must be wrapped. The procedures for bootstrapping are identical, goldfish will determine whether the token is approle or not. The recommended bootstrap method is still an approle token, and therefore deployment instructions on wiki pages will remain in approle fashion.
Fixes:
- 1718640 Fixed a bug in token creator regarding periodic TTLs
- e63d3e1 PKI integration now includes the
issuing_cafield, for a full certificate chain
Features:
- 9c75ad5 Allow custom login paths (#185)
- ca3d9a0 Support for Vault with custom CA certs (#220)
- 089caa6 Support for bootstrapping with a non-approle wrapped token (#222)
- 143f6f3 Support
ip_sansandalt_namesfields to PKI integration (#223) - 5280814 Added explicit
common_namefield to PKI integration - ee66442 Allow for multi-line pastes in secret input boxes (#234)
- f64ef16 Added warning notification for users when their token is about to expire
- dd2576b Added a revoke-self button on login page
Misc:
- 35184cc Fixed misaligned footer on low-resolution screens
- 344fca9 Secrets page inputs made monospace (#235)
- ad4d0ce Corrected sort triangle orientation (#236)
- 803e758 Vault API updated to v0.9.3
- 888c28b Added self-compile instructions
- cf72faa Updated VueJS to v2.5.13
- 0de45b3 Minor text changes
Verifications:
SHA256 sum of binaries:
- goldfish-linux-amd64:
a716db6277afcac21a404b6155d0c52b1d633f27d39fba240aae4b9d67d70943 - goldfish-windows-amd64.exe:
1a270bda441168e17d96952c78a24725ccd40c637b702e8e27e3ab5d664de10b