MyFavMirrors
/
minio
mirror of https://github.com/minio/minio.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
minio/cmd/config
History
Andreas Auernhammer 3455f786fa kms: encrypt IAM/config data with the KMS (#12041) 
This commit changes the config/IAM encryption
process. Instead of encrypting config data
(users, policies etc.) with the root credentials
MinIO now encrypts this data with a KMS - if configured.

Therefore, this PR moves the MinIO-KMS configuration (via
env. variables) to a "top-level" configuration.
The KMS configuration cannot be stored in the config file
since it is used to decrypt the config file in the first
place.

As a consequence, this commit also removes support for
Hashicorp Vault - which has been deprecated anyway.

Signed-off-by: Andreas Auernhammer <aead@mail.de>
 		2021-04-22 09:51:09 -07:00
..
api Various improvements in replication (#11949) 2021-04-03 09:03:42 -07:00
cache kms: encrypt IAM/config data with the KMS (#12041) 2021-04-22 09:51:09 -07:00
compress Change the default object content-type to binary/octet-stream (#11508) 2021-02-10 08:56:37 -08:00
dns handle dns.ErrBucketConflict as BucketAlreadyExists (#12013) 2021-04-08 08:24:55 -07:00
etcd fix: load credentials from etcd directly when possible (#11339) 2021-01-25 20:01:49 -08:00
heal rename all references from crawl -> scanner (#11621) 2021-02-26 15:11:42 -08:00
identity ldap: Create services accounts for LDAP and STS temp accounts (#11808) 2021-04-14 22:51:14 -07:00
notify Set the maximum open connections limit in PG and MySQL target configs (#10558) 2020-09-24 22:20:30 -07:00
policy/opa fix: if OPA set do not enforce policy claim (#10149) 2020-07-28 11:47:57 -07:00
scanner allow configuring scanner cycles dynamically (#11931) 2021-03-30 13:59:02 -07:00
storageclass api: Introduce metadata update APIs to update only metadata (#11962) 2021-04-04 13:32:31 -07:00
bool-flag.go Migrate config to KV data format (#8392) 2019-10-22 22:59:13 -07:00
bool-flag_test.go Migrate config to KV data format (#8392) 2019-10-22 22:59:13 -07:00
certs.go Add support for mTLS for Audit log target (#11645) 2021-03-01 09:19:13 -08:00
certs_test.go move the certPool loader function into pkg/certs (#10239) 2020-08-11 08:29:50 -07:00
certsinfo.go print proper certinfo on console when starting up (#9479) 2020-04-30 16:15:29 -07:00
config.go fix: rename crawler as scanner in config (#11549) 2021-02-17 12:04:11 -08:00
config_test.go Add target parsing code for config (#9375) 2020-04-16 17:43:14 -07:00
constants.go kms: encrypt IAM/config data with the KMS (#12041) 2021-04-22 09:51:09 -07:00
crypto.go kms: encrypt IAM/config data with the KMS (#12041) 2021-04-22 09:51:09 -07:00
crypto_test.go introduce new package pkg/kms (#12019) 2021-04-15 08:47:33 -07:00
errors-utils.go fail if port is not accessible (#10616) 2020-10-01 13:23:31 -07:00
errors.go Make number of replication workers configurable. (#11379) 2021-02-02 16:45:06 +05:30
help.go Final changes to config sub-system (#8600) 2019-12-04 15:32:37 -08:00
legacy.go Final changes to config sub-system (#8600) 2019-12-04 15:32:37 -08:00
logger.go Ignore config values from unknown subsystems (#10432) 2020-09-08 08:57:04 -07:00