Releases · hvac/hvac

01 Nov 14:17

jeffwecan

v0.7.0

d7133ac

v0.7.0

DEPRECATION NOTICES:

All auth method classes are now accessible under the auth property on the hvac.Client class. GH-310. (E.g. the github, ldap, and mfa Client properties' methods are now accessible under Client.auth.github, etc.)
All secrets engines classes are now accessible under the secrets property on the hvac.Client class. GH-311 (E.g. the kv, Client property's methods are now accessible under Client.secrets.kv)
All system backend classes are now accessible under the sys property on the hvac.Client class. GH-314 ([GH-314] through [GH-325]) E.g. methods such as enable_secret_backend() under the Client class are now accessible under Client.sys.enable_secrets_engine(), etc.

IMPROVEMENTS:

Support for Vault Namespaces. GH-268
Support for the Identity secrets engine. GH-269
Support for the GCP auth method. GH-240
Support for the Azure auth method. GH-286
Support for the Azure secrets engine. GH-287
Expanded Transit secrets engine support. GH-303

Thanks to @tiny-dancer, @jacquat, @deejay1, @MJ111, @jasonarewhy, and @alexandernst for their lovely contributions.

Assets 4

05 Sep 13:59

jeffwecan

v0.6.4

524b50c

v0.6.4

IMPROVEMENTS:

New KV secret engine-related classes added. See the KV documentation under hvac's readthedocs.io site for usage / examples. GH-257 / GH-260

MISCELLANEOUS:

Language classifiers are now being included with the distribution. GH-247
Token no longer being sent in URL path for the Client.renew_token method. GH-250
Support for the response structure in newer versions of Vault within the Client.get_policy method. GH-254
config and plugin_name parameters added to the Client.enable_auth_backend method. GH-253

Thanks to @ijl, @rastut, @seuf, @downeast for their lovely contributions.

Assets 4

08 Aug 12:51

jeffwecan

v0.6.3

06d5a27

v0.6.3

DEPRECATION NOTICES:

The auth_github() method within the hvac.Client class has been marked as deprecated and will be removed in hvac v0.8.0 (or later). Please update any callers of this method to use the hvac.Client.github.login() instead.
The auth_ldap() method within the hvac.Client class has been marked as deprecated and will be removed in hvac v0.8.0 (or later). Please update any callers of this method to use the hvac.Client.ldap.login() instead.

IMPROVEMENTS:

New Github auth method class added. See the documentation for usage / examples. GH-242
New Ldap auth method class added. See the documentation for usage / examples. GH-244
New Mfa auth method class added. See the documentation for usage / examples. GH-255
auth_aws_iam() method updated to include "region" parameter for deployments in different AWS regions. GH-243

DOCUMENTATION UPDATES:

Additional guidance for how to configure hvac's Client class to leverage self-signed certificates / private CA bundles has been added at: Making Use of Private CA. GH-230
Docstring for verify Client parameter corrected and expanded. GH-238

MISCELLANEOUS:

Automated PyPi deploys via travis-ci removed. GH-226
Repository transferred to the new "hvac" GitHub organization; thanks @ianunruh! GH-227
Codecov (automatic code coverage reports) added. GH-229 / GH-228
Tests subdirectory reorganized; now broken up by integration versus unit tests with subdirectories matching the module path for the code under test. GH-236

Thanks to @otakup0pe, @FabianFrank, @andrewheald for their lovely contributions.

Assets 4

19 Jul 13:23

jeffwecan

v0.6.2

ab18e94

v0.6.2

BACKWARDS COMPATIBILITY NOTICE:

With the newly added hvac.adapters.Request class, request kwargs can no longer be directly modified via the _kwargs attribute on the Client class. If runtime modifications to this dictionary are required, callers either need to explicitly pass in a new adapter instance with the desired settings via the adapter propery on the Client class or access the _kwargs property via the adapter property on the Client class.

See the Advanced Usage section of this module's documentation for additional details.

IMPROVEMENTS:

sphinx documentation and readthedocs.io project added. GH-222
README.md included in setuptools metadata. GH-222
All tune_secret_backend() parameters now accepted. GH-215
Add read_lease() method GH-218
Added adapter module with Request class to abstract HTTP requests away from the Client class. GH-223

Thanks to @bbayszczak, @jvanbrunschot-coolblue for their lovely contributions.

Assets 4

05 Jul 12:12

jeffwecan

v0.6.1

e374b47

v0.6.1

IMPROVEMENTS:

Update unwrap() method to match current Vault versions [GH-149]
Initial support for Kubernetes authentication backend [GH-210]
Initial support for Google Cloud Platform (GCP) authentication backend [GH-206]
Update enable_secret_backend function to support kv version 2 [GH-201]

BUG FIXES:

Change URL parsing to allow for routes in the base Vault address (e.g., https://example.com/vault) [GH-212].

Thanks to @mracter, @cdsf, @sin, @seanmalloy, for their lovely contributions.

Assets 3

16 Jun 20:47

jeffwecan

v0.6.0

d610ba6

v0.6.0

BACKWARDS COMPATIBILITY NOTICE:

Token revocation now sends the token in the request payload. Requires Vault >0.6.5
Various methods have new and/or re-ordered keyword arguments. Code calling these methods with positional arguments
may need to be modified.

IMPROVEMENTS:

Ensure mount_point Parameter for All AWS EC2 Methods [GH-195]
Add Methods for Auth Backend Tuning [GH-193]
Customizable approle path / mount_point [GH-190]
Add more methods for the userpass backend [GH-175]
Add transit signature_algorithm parameter [GH-174]
Add auth_iam_aws() method [GH-170]
lookup_token function POST token not GET [GH-164]
Create_role_secret_id with wrap_ttl & fix get_role_secret_id_accessor [GH-159]
Fixed json() from dict bug and added additional arguments on auth_ec2() method [GH-157]
Support specifying period when creating EC2 roles [GH-140]
Added support for /sys/generate-root endpoint [GH-131] / [GH-199]
Added "auth_cubbyhole" method [GH-119]
Send token/accessor as a payload to avoid being logged [GH-117]
Add AppRole delete_role method [GH-112]