173 Commits

Author SHA1 Message Date
Juan Antonio Osorio Robles
9a934e57eb Revert "Add ID property to all entities"
This change breaks several gates, including RDO's package promotion.

This reverts commit f06ba481956d406a1edf644f1c2c3ff55705d0f1.

Change-Id: I0524b7057016daa59ea0a506bdc50a71e9fc8f6a
2017-01-30 21:27:29 +02:00
Jenkins
75a7ebe678 Merge "Add ID property to all entities" 2017-01-27 22:14:07 +00:00
Douglas Mendizábal
f06ba48195 Add ID property to all entities
This patch adds an "id" property to secrets, orders and containers
returned from the API.  The value of the "id" property is the unique
UUID found at the end of the entity reference.

Change-Id: I65bab35807ed2cee6ed5d6aca1c99769678751be
2017-01-26 14:00:01 -06:00
Jenkins
563e164636 Merge "Removes unnecessary utf-8 encoding" 2017-01-24 02:35:26 +00:00
ji-xuepeng
17f60c0583 Removes unnecessary utf-8 encoding
Change-Id: I3f3ad6e8519bb8b35fb33523cf8f03df42c534a7
2017-01-12 12:41:52 +08:00
Mike Carden
83a6128678 DOC Remove a couple of repeated words
Remove words accidentally duplicated during editing.

Change-Id: Id97d7e7c4189208de26717ea32e5f26ce24d96fe
2017-01-11 14:30:37 +11:00
Kaitlin Farr
ed124cbe2e Fix crypto plugin documentation
Changes references from barbican.plugin.crypto.crypto to
barbican.plugin.crypto.base.

Change-Id: I1461ef876aa670cd856a339d1cf8d29e410f5576
2016-11-15 17:49:26 -05:00
Fernando Diaz
140a8182e2 Deprecate Cetificate Resources
Begins the deprecation process for Barbican CAs API,
and Barbican Certificate Orders Resource. This is
done through logging deprecation schedule on API,
as well as adding a warning to the documentation.

Change-Id: Idbe6307fa45527aa225e61b3b1ac9ca86e7660c5
2016-11-03 18:12:28 +00:00
Jeremy Liu
88ba85a2f1 Remove redundant 'the' in doc
Change-Id: I8ce30328e99028d0f711930e2ef545a0cd7909dc
2016-10-22 22:03:39 +08:00
Jenkins
9a6ee3fb60 Merge "Default to Keystone authentication" 2016-10-20 18:26:01 +00:00
Yushiro FURUKAWA
3410ac9c4b Fix typo
Trivialfix 'metdata' to 'metadata'.

Change-Id: I2d7ff9ada22ea561757477e8bb23579cd5a299ee
2016-09-29 22:11:38 +09:00
Arun Kant
6535e559cd Adding rest API for secret-stores resource (Part 4)
Added tests to provide 100% coverage on API and policy logic.

Change-Id: Icb43049250be1d78bdd3db8fbad0dc0381cccaf7
Partially-Implements: blueprint multiple-secret-backend
2016-09-14 10:18:13 -07:00
Arun Kant
669a995196 Adding API docs for multiple backend support changes.
Updated multiple plugin configuration sample as per recent
discussion.

Change-Id: I7d5c0f088c392ae73dea603198c1845c346b2d39
Partially-Implements: blueprint multiple-secret-backend
2016-09-07 11:24:08 -07:00
zhangyanxian
6f46088a65 Fix some typos in database_migrations.rst
Change-Id: I713605e7df2cb0b11d39f7825f70ec220f66e6a6
2016-08-24 08:14:52 +00:00
jfwood
b84434b845 Make 'url' references uppercase for consistency
There are a few places in our documentation where we use lowercase
'url'. This CR changes those to 'URL' for consistency.

Change-Id: I509fd82f1a44bfbc819866a45aaffafb0192bc36
2016-08-16 16:31:56 -05:00
Douglas Mendizábal
8480f4eb4f Add documentation for date-filters
Change-Id: I82a16e372e7d04ad45818faee619ee04dadfab07
DocImpact
2016-08-03 14:43:48 +00:00
Arun Kant
ce6336f393 User with creator role can delete his/her own secret and container
Modified policy and tests to verify this change.

As per this change, user with 'creator' role can delete a secret or
a container as long as that user has initially created that secret
or container.

There is still a difference between 'admin' role and 'creator' role
behavior around delete operation. With this change, users with 'creator'
role cannot delete any other user's secret/container in same project
while user with 'admin' role can do that.

Updated role docs to reflect this behavior.

Change-Id: I53e5529ed34ac4acc76348ca0431cb3de7934b6d
2016-07-25 13:42:01 -07:00
Johannes Grassler
497db2c776 Default to Keystone authentication
This configures Barbican to use Keystone authentication by
default and updates documentation accordingly.

Change-Id: Ie0a1995b971371d18238138575629eeee1a36392
Closes-Bug: #1595428
2016-07-21 09:51:51 +02:00
John McKenzie
592cf2ec28 Add support for modifying Generic Containers
This adds POST and DELETE support for a 'secrets' sub-resource on the
containers resource. This will allow a user to add or remove secret
references to an existing container. Only generic containers are
supported per the blueprint for this feature.

If a secret reference already exists in the container, an appropriate
error will be returned indicating that the secret already exists in
the container. I chose this approach over silently accepting the
update, as the name for the container secret could change, so a delete
and re-add seems to be the safer option if a user just wants to change
the name, which is not something that I see happening too often.
Additionally, the action is a POST and not a PUT, so it shouldn't
really update an existing resource.

APIImpact
Add support for POST and DELETE on container secrets sub-resources

DocImpact
Implements: blueprint api-containers-add-put

Change-Id: I6dfa6715385f421e4f173cf73c2b75b68da67051
2016-06-28 15:07:00 -05:00
Jenkins
502c1fff07 Merge "[Trivial] Remove executable privilege of doc/source/conf.py" 2016-06-16 09:25:57 +00:00
Cassandra Burnias
3d7600d9d4 Fixed typo in crypto plugin docs
This fixes a simple typo in the docs for the crypto plugin.

Change-Id: Ie50fe23fea189ac782602c8cb46ab72569e2a9ad
2016-06-08 15:30:17 -05:00
Kaitlin Farr
3169ac4e18 Fix doc warnings
When building the docs using `tox -e docs`, several warning messages
would print out. This change fixes the issues causing those warnings.

Change-Id: I57503c75f6c07c020bb3bfa34de6aa8f66983ff7
2016-05-19 15:23:25 -04:00
Paulo Ewerton
8abb2c6a0b Use keystone auth plugin
keystonemiddleware admin settings are deprecated
so we should stop using them in favor of a keystone
auth plugin. This patch updates the config file
to use keystone API v3 by default.

Change-Id: I9d10ac29ab33cbdd845573106960e5f181afdb69
Closes-Bug: 1579801
2016-05-16 14:19:41 +00:00
ZhiQiang Fan
abe30d7072 [Trivial] Remove executable privilege of doc/source/conf.py
It is a configuration file, rather than a script.

Change-Id: Idd40314fa28a755d2380ebc71f52e6199a873eb0
2016-04-29 19:27:08 +08:00
Anh Tran
d6412aa3a9 Removes redundants
This patch removes redundant "to" and "the".

Change-Id: I6c1a9012fc331cc546c5fc39dd3fc1051a1257ff
2016-03-24 14:24:14 +07:00
Priti Desai
953e45e88e Publishing API Guide to OpenStack site
Moving files from doc/source/api/userguide/*.rst
to api-guide/source/*.rst,
also add api-guide/source/conf.py for building api-guide,
add a new tox target named api-guide
Taking a reference from this patch which was used for the
similar migration of Nova api guide:
https://review.openstack.org/#/c/230186

Change-Id: I725e7939f9a88185de6ef32b311159b0924b7183
Partial-Bug: #1540665
Needed-By: I7b7c623e6299c803930e41d72510f1a67d909fa3
2016-03-16 12:44:50 -07:00
Mohit Motiani
4fd969521a Nit: occurrences of barbican in small letter.
Changed occurence of Barbican to barbican beacuse according to
convention, project name should start with small letter.

Reference:
https://governance.openstack.org/reference/service-project-naming.html

Change-Id: I086406619c0e395d45f0afdd74135ad5b64d9802
Closes-Bug: #1553349
2016-03-07 20:12:00 +00:00
Fernando Diaz
b2a557ce7d Fix index for API secrets user-guide
Index has wrong bath for the User-Guide. This patch resolves the
path.

Change-Id: Iddebf9b46cfdf1568a351f3413f2d18cf2f833e2
2016-03-04 18:51:18 +00:00
Elvin Tubillara
acd998c66f Make clean up of soft deletions configurable
Adds the following features to the command:
1) Be able to set minimum number of days to keep soft deletions
2) Clean unassociated projects
3) Soft delete secrets that are expired
4) Set verbose flag
5) Set the log file location

Documentation for running the command was also added.

This is the second CR for cleaning up the barbican database.
    1) Simple soft deletion clean up for barbican-db-manage.
    2) Make clean up configurable and add documentation.

Change-Id: I1b2360d967bf4b8378eda4766c7ef3113eedffad
Partially-implements: blueprint clean-db-soft-deletes
2016-03-04 09:34:27 -06:00
Eric-Xie
2058d55808 Change the type of 'bit_length' from string to integer.
Change-Id: I8a94d068112bb7a0558b63a19ee5b6eae62bfc7b
Closes-Bug: #1534436
2016-03-03 10:39:26 +08:00
Jenkins
5b5fc1c940 Merge "Fixing project title" 2016-03-02 20:46:36 +00:00
Jenkins
5a2bb7b810 Merge "User Metadata Documentation" 2016-03-02 20:40:06 +00:00
Jeff Feng
77a164b062 Introducing barbican-manage utility command
A new 'barbican-manage' utility command is introduced as Barbican
admin tool. This command interacts with Barbican service for
management operations which usually cannot be accomplished with
REST APIs. This can improve usability and extensibility in the
future.

The related blueprint is https://review.openstack.org/#/c/253719/

This CR includes
1) implementation of barbican_manage.py
2) unit test code
3) document of barbican-manage command

Co-Authored-By: Michael Perng <mperng@us.ibm.com>
Change-Id: I784b46df86742d00d1737e3f8964280514a7fa1b
2016-03-02 11:29:08 -06:00
Anusha Unnam
8e7390dc0c Fixing project title
According to OpenStack documentation all references
to project names should be lower case.

Change-Id: I265a0288f06be45a8fdd0a9977a538795570529e
Closes-bug:1551879
2016-03-01 20:54:02 +00:00
Fernando Diaz
3498a18567 User Metadata Documentation
This patch add the documentation for using Secret user
metadata.

Change-Id: I3e6d5bb18def55709205f3939b56fddef0eb2bbc
2016-03-01 20:43:08 +00:00
Jenkins
bf4273b2f2 Merge "Simplify the development environment setup" 2016-02-29 15:44:24 +00:00
Jenkins
7ed6940f5c Merge "Updating the project name to barbican" 2016-02-29 09:44:38 +00:00
Douglas Mendizábal
e2413b0fc6 Simplify the development environment setup
This patch simplifies the manual development environment setup
documentation by omiting setup for pyenv or virtualenvwrapper.  They are
both very good environment management tools, but they don't play nice
with each other.

The updated instructions use the virtualenv package directly, and use
the more straight-forward barbican-api script instead of barbican.sh

Change-Id: Idf9717f18e3599839a5bf8b983b47b7802b9187c
2016-02-27 00:19:41 +00:00
Carlos Marin
c6bc39a3a9 Removing orphan and deprecated doc page: api.rst
Change-Id: I35aee4890937bd427b94c9637045628dd5a032f4
Signed-off-by: Carlos Marin <ing.cma@gmail.com>
2016-02-26 14:26:38 -06:00
Douglas Mendizábal
0d8169c4d2 Update and reorganize the doc landing page.
Change-Id: Ica4712abb781e270b1fc7210c6705977db10a691
2016-02-18 12:57:48 -06:00
Jenkins
09e1581f2c Merge "Typo change Barbican to barbican Closes-Bug: 1542508" 2016-02-18 17:43:26 +00:00
Jenkins
a1665a3de1 Merge "'s' to uppercase in "Openstack"" 2016-02-17 19:08:14 +00:00
Jenkins
3f393caee0 Merge "Use local images instead of references" 2016-02-16 07:03:51 +00:00
Douglas Mendizábal
6dbc87dbde Document public secret type
Adds documentation for public secret types.  Add two examples of storing
public secrets, one with a POST followed by PUT, and one with a single
POST.  The second example is incomplete until bug 1441866 is fixed.

Change-Id: I5c892d1b09e6bc0cb155c5591b12f409d3c86419
2016-02-11 16:21:20 -06:00
Douglas Mendizábal
c78e72957a Document Symmetric Secret Type
Document the symmetric secret type.  Also updated a few things in the
secrets reference.

Change-Id: I77ea34896d81830af6fab389fe8604ff4d879615
2016-02-11 11:14:05 -06:00
Fernando Diaz
6d541ffa28 Use local images instead of references
In doc/source/contribute/architecture.rst, there's reference to
.gif files hosted at rackcdn.com. This is considered a privacy
breach in Debian. This patch uses local images rather than a
reference.

Change-Id: Ia192b78384a1e32918169f6ca73f24eeaba6a611
Closes-Bug: 1537346
2016-02-07 15:42:48 -06:00
Aradhana Singh
5d18f678b0 's' to uppercase in "Openstack"
Updated 's' to 'S' in word "Openstack"

Change-Id: Icfef0d1cd3dc6651d8a96f423acddb955671b04e
2016-02-05 18:01:44 -08:00
Karthik Prabhu Vinod
913a6904b4 Updating the project name to barbican
Updating occurences of project name to lowercase as per project naming standards

Change-Id: I8eda73ceb194e2e918cc42227795b83b4759f974
Closes-Bug: 1542529
2016-02-05 23:20:10 +00:00
Luz
a98674de83 Typo change Barbican to barbican
Closes-Bug: 1542508

Change-Id: I6c28446366f26e84af86ab873bbea78165abab4d
2016-02-05 14:24:05 -08:00
Jenkins
0fa7107046 Merge "Adding auditing support for API request using audit middleware" 2016-02-05 13:46:13 +00:00