ceph/smoke at 9ba5225f6f52125b56a04ae3bc222ad92101701d - ceph

mirror of https://github.com/ceph/ceph synced 2025-01-06 19:20:49 +00:00

History

Sergio de Carvalho 2650ebe8af rgw: improvements to SSE-KMS with Vault * add 'rgw crypt vault prefix' config setting to allow restricting secret space in Vault where RGW can retrieve keys from * refuse Vault token file if permissions are too open * improve concatenation of URL paths to avoid constructing an invalid URL (missing or double '/') * doc: clarify SSE-KMS keys must be 256-bit long and base64 encoded, document Vault policies and tokens, plus other minor doc improvements * qa: check SHA256 signature of Vault zip download * qa: fix teuthology tests broken by previous PR which made SSE-KMS backend default to Barbican Signed-off-by: Andrea Baglioni <andrea.baglioni@workday.com> Signed-off-by: Sergio de Carvalho <sergio.carvalho@workday.com>	2019-11-12 13:51:25 +00:00
..
basic	rgw: improvements to SSE-KMS with Vault	2019-11-12 13:51:25 +00:00
.qa

Sergio de Carvalho 2650ebe8af rgw: improvements to SSE-KMS with Vault

* add 'rgw crypt vault prefix' config setting to allow restricting
  secret space in Vault where RGW can retrieve keys from
* refuse Vault token file if permissions are too open
* improve concatenation of URL paths to avoid constructing an invalid
  URL (missing or double '/')
* doc: clarify SSE-KMS keys must be 256-bit long and base64 encoded,
  document Vault policies and tokens, plus other minor doc improvements
* qa: check SHA256 signature of Vault zip download
* qa: fix teuthology tests broken by previous PR which made SSE-KMS
  backend default to Barbican

Signed-off-by: Andrea Baglioni <andrea.baglioni@workday.com>
Signed-off-by: Sergio de Carvalho <sergio.carvalho@workday.com>

2019-11-12 13:51:25 +00:00

basic

rgw: improvements to SSE-KMS with Vault

2019-11-12 13:51:25 +00:00

.qa