Skip to content

feat(api-client): add cert auth method #29546

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 7 commits into from
Mar 11, 2025
Merged

feat(api-client): add cert auth method #29546

merged 7 commits into from
Mar 11, 2025

Conversation

witochandra
Copy link
Contributor

@witochandra witochandra commented Feb 11, 2025
edited
Loading

Description

This PR adds cert auth method in the vault/api/auth. #29544

https://developer.hashicorp.com/vault/api-docs/auth/cert#login-with-tls-certificate-method

@witochandra witochandra requested a review from a team as a code owner February 11, 2025 12:37
@witochandra witochandra requested a review from rebwill February 11, 2025 12:37
@hashicorp-cla-app HashiCorp CLA App
Copy link

hashicorp-cla-app bot commented Feb 11, 2025
edited
Loading

CLA assistant check
All committers have signed the CLA.

@hashicorp-cla-app HashiCorp CLA App
Copy link

CLA assistant check

Thank you for your submission! We require that all contributors sign our Contributor License Agreement ("CLA") before we can accept the contribution. Read and sign the agreement

Learn more about why HashiCorp requires a CLA and what the CLA includes

Wito Chandra seems not to be a GitHub user.
You need a GitHub account to be able to sign the CLA.
If you have already a GitHub account, please add the email address used for this commit to your account.

Have you signed the CLA already but the status is still pending? Recheck it.

@witochandra witochandra force-pushed the feat/api-client-add-cert-auth-method branch from 3a7fea6 to 135bd95 Compare February 12, 2025 05:30
aslamovamir
aslamovamir reviewed Feb 12, 2025
View reviewed changes
@aslamovamir aslamovamir mentioned this pull request Feb 12, 2025
Closed
aslamovamir
aslamovamir reviewed Feb 12, 2025
View reviewed changes
aslamovamir
aslamovamir reviewed Feb 12, 2025
View reviewed changes
aslamovamir
aslamovamir reviewed Feb 12, 2025
View reviewed changes
aslamovamir
aslamovamir reviewed Feb 12, 2025
View reviewed changes
aslamovamir
aslamovamir reviewed Feb 12, 2025
View reviewed changes
aslamovamir
aslamovamir reviewed Feb 12, 2025
View reviewed changes
aslamovamir
aslamovamir reviewed Feb 12, 2025
View reviewed changes
aslamovamir
aslamovamir reviewed Feb 12, 2025
View reviewed changes
aslamovamir
aslamovamir reviewed Feb 12, 2025
View reviewed changes
aslamovamir
aslamovamir reviewed Feb 12, 2025
View reviewed changes
aslamovamir
aslamovamir reviewed Feb 12, 2025
View reviewed changes
aslamovamir
aslamovamir reviewed Feb 12, 2025
View reviewed changes
aslamovamir
aslamovamir reviewed Feb 12, 2025
View reviewed changes
Copy link
Contributor

@aslamovamir aslamovamir left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks great to me! Thanks for creating this. Left some comments for improvement.

@aslamovamir
Copy link
Contributor

CLA assistant check

Thank you for your submission! We require that all contributors sign our Contributor License Agreement ("CLA") before we can accept the contribution. Read and sign the agreement

Learn more about why HashiCorp requires a CLA and what the CLA includes

Wito Chandra seems not to be a GitHub user. You need a GitHub account to be able to sign the CLA. If you have already a GitHub account, please add the email address used for this commit to your account.

Have you signed the CLA already but the status is still pending? Recheck it.

@witochandra Can you please address these concerns as well? We need to this to proceed with your PR.

@aslamovamir
Copy link
Contributor

@witochandra please feel free to tag me when reviewing the feedback. Thanks again!

@aslamovamir
Copy link
Contributor

@witochandra We also need a changelog entree for this PR: https://github.com/hashicorp/vault/blob/main/changelog/README.md

@witochandra
Copy link
Contributor Author

CLA assistant check
Thank you for your submission! We require that all contributors sign our Contributor License Agreement ("CLA") before we can accept the contribution. Read and sign the agreement
Learn more about why HashiCorp requires a CLA and what the CLA includes
Wito Chandra seems not to be a GitHub user. You need a GitHub account to be able to sign the CLA. If you have already a GitHub account, please add the email address used for this commit to your account.
Have you signed the CLA already but the status is still pending? Recheck it.

@witochandra Can you please address these concerns as well? We need to this to proceed with your PR.

I have addressed that, but I'm not sure what is still pending. 🤔

There were two comments from that bot. One mentioned that I have signed the CLA, while the other stated that I haven't.

Maybe there is a bug in the bot? 😅

Additionally, the email associated with the commits is from my GitHub account.

aslamovamir
aslamovamir reviewed Feb 13, 2025
View reviewed changes
@aslamovamir
Copy link
Contributor

CLA assistant check
Thank you for your submission! We require that all contributors sign our Contributor License Agreement ("CLA") before we can accept the contribution. Read and sign the agreement
Learn more about why HashiCorp requires a CLA and what the CLA includes
Wito Chandra seems not to be a GitHub user. You need a GitHub account to be able to sign the CLA. If you have already a GitHub account, please add the email address used for this commit to your account.
Have you signed the CLA already but the status is still pending? Recheck it.

@witochandra Can you please address these concerns as well? We need to this to proceed with your PR.

I have addressed that, but I'm not sure what is still pending. 🤔

There were two comments from that bot. One mentioned that I have signed the CLA, while the other stated that I haven't.

Maybe there is a bug in the bot? 😅

Additionally, the email associated with the commits is from my GitHub account.

Hmm interesting, maybe try to sign again? There is also the link to Recheck it, can you please trying that?

aslamovamir
aslamovamir reviewed Feb 13, 2025
View reviewed changes
aslamovamir
aslamovamir reviewed Feb 13, 2025
View reviewed changes
@witochandra
Copy link
Contributor Author

CLA assistant check
Thank you for your submission! We require that all contributors sign our Contributor License Agreement ("CLA") before we can accept the contribution. Read and sign the agreement
Learn more about why HashiCorp requires a CLA and what the CLA includes
Wito Chandra seems not to be a GitHub user. You need a GitHub account to be able to sign the CLA. If you have already a GitHub account, please add the email address used for this commit to your account.
Have you signed the CLA already but the status is still pending? Recheck it.

@witochandra Can you please address these concerns as well? We need to this to proceed with your PR.

I have addressed that, but I'm not sure what is still pending. 🤔
There were two comments from that bot. One mentioned that I have signed the CLA, while the other stated that I haven't.
Maybe there is a bug in the bot? 😅
Additionally, the email associated with the commits is from my GitHub account.

Hmm interesting, maybe try to sign again? There is also the link to Recheck it, can you please trying that?

Have tried both.

When I clicked the read & sign button, it showed a form that I have filled & signed.

When I clicked the recheck link, it redirected to this PR page.

In the github action, it showed that the CLA has been signed too.

Github Action

Maybe bug in the bot? 😅

aslamovamir
aslamovamir approved these changes Feb 14, 2025
View reviewed changes
Copy link
Contributor

@aslamovamir aslamovamir left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks a lot for your contribution, @witochandra! Your PR looks good to me and we can go ahead with merging!

@aslamovamir
Copy link
Contributor

CLA assistant check
Thank you for your submission! We require that all contributors sign our Contributor License Agreement ("CLA") before we can accept the contribution. Read and sign the agreement
Learn more about why HashiCorp requires a CLA and what the CLA includes
Wito Chandra seems not to be a GitHub user. You need a GitHub account to be able to sign the CLA. If you have already a GitHub account, please add the email address used for this commit to your account.
Have you signed the CLA already but the status is still pending? Recheck it.

@witochandra Can you please address these concerns as well? We need to this to proceed with your PR.

I have addressed that, but I'm not sure what is still pending. 🤔
There were two comments from that bot. One mentioned that I have signed the CLA, while the other stated that I haven't.
Maybe there is a bug in the bot? 😅
Additionally, the email associated with the commits is from my GitHub account.

Hmm interesting, maybe try to sign again? There is also the link to Recheck it, can you please trying that?

Have tried both.

When I clicked the read & sign button, it showed a form that I have filled & signed.

When I clicked the recheck link, it redirected to this PR page.

In the github action, it showed that the CLA has been signed too.

Github Action

Maybe bug in the bot? 😅

Hmmm this is strange, maybe a not surprise from GitHub pipelines sometimes 😄

@aslamovamir aslamovamir reopened this Feb 14, 2025
@witochandra
Copy link
Contributor Author

@aslamovamir | @rebwill , Please LMK if there are any specific adjustments required to close this.

@aslamovamir aslamovamir merged commit a782fa8 into hashicorp:main Mar 11, 2025
74 of 75 checks passed
@aslamovamir
Copy link
Contributor

@aslamovamir | @rebwill , Please LMK if there are any specific adjustments required to close this.

@witochandra sorry for the delay, your PR has been merged! Thank you very much for your contribution to Vault!

@stevendpclark stevendpclark mentioned this pull request Mar 14, 2025
Merged
6 tasks
@stevendpclark
Copy link
Contributor

stevendpclark commented Mar 14, 2025
edited
Loading

Hello @witochandra,

First off thanks for the contribution!

We had another internal review which has led us to reworking this cert auth client API quite a bit. The API you provided worked well but it behaved a little differently than the other implementations by not using the passed in api.Client. Not doing so meant it didn't honor many of the options that an end-user might have had set, such as namespaces, retry behavior and forced them to setup a client with the TLS configuration (as once they logged in they would probably want to communicate with Vault for something else) as well as passing it in to this new API.

I've filed #29931 that reworks the client, let me know if you have any further questions and or comments.

hellobontempo pushed a commit that referenced this pull request May 21, 2025
@witochandra @aslamovamir @hellobontempo
feat(api-client): add cert auth method (#29546)
bacb617 
* feat(api-client): add cert auth method

* chore: apply feedbacks

* doc: add copyright & update changelog

---------

Co-authored-by: Amir Aslamov <amir.aslamov@hashicorp.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@aslamovamir aslamovamir aslamovamir approved these changes

@rebwill rebwill Awaiting requested review from rebwill rebwill is a code owner automatically assigned from hashicorp/vault

Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@witochandra @aslamovamir @stevendpclark