Cryptr: a GUI for Hashicorp's Vault
Changelog:
/*
on secret mountsThere are two primary purposes of this release:
Other:
The primary purpose of this release is performance:
Other:
The primary features of this release are as follows:
Changelog:
Support for Versioned Secrets (KV V2 secret engine)
- Create, Read, Update, Delete, Undelete, Destroy, Move operations all supported
- Added support for wildcard policies on v2 secret backends
Other
- Improved capabilities checking before executing move requests
- Upgrade: Update to Electron 4.0
- Feature: swap raw and hide values for icons
- Feature: make Hide Values persistent
- Fixed: numbers and arrays now get cast as strings and objects!!
- Fixed: object sub-properites modified in JSON did not propogate to UI
- Fixed: Values of type Number were cast as Strings on edit
- Fixed: Arrays were improperly cast as Object on edits
- Added: Stricter type checking
- Added: Support for non-key-value values in Arrays
- Added: Support for Numbers and Arrays
- Bug: Fixed case where new secret path is set to "secret/"
- Fix bug where Share fails to properly set type
- Disable middle click
- Remove nodeIntegration and require() ability to decrease attack surface. Refactor appropriately
- Swap clipboard for polyfill, removing dependency on node API
- Prevent window navigation when dropping a link
- Update copyright
- show icon or error when secret data is null
- clear "TOKEN" as username
- improve error output for move requests
The primary features of this release are as follows:
Changelog
The primary features of this release are as follows:
Changelog
- Feature: Easily share secrets!
- Feature: Added support for saving multiple Vault endpoints at login
- Feature: Ability to duplicate secrets
- Feature: "X-Cryptr-Version" header now send to Vault endpoint on every request
- Feature: Local fonts prevent app from reaching out to Google servers for fonts
- Enhancement: User is now thoroughly warned before taking destructive actions (delete/update/overwrite/move)
- Enhancement: Development on Windows is now supported
- Enhancement: Restructured a core component into reusable code
- Enhancement: Created framework for automated testing of Cryptr
- Enhancement: Overwrite alert is now only produced for secrets, not folders
- Updated screenshot
Create Secret page has a new UI, new vault dev server support, and prompting of the user to renew their auth token. JSON secrets can now be more easily created.
Changelog
- Feature: New "Create Secret" page
- Feature: Add Vault dev server support
- Feature: User is now prompted to renew before auth token expires
- Enhancement: White space is no longer concatenated in a secret name
- Enhancement: When a secret is created/updated/moved, it is automatically navigated to
- Enhancement: Underscore to Space conversions improved
- Enhancement: Move button is now more transparent
- Enhancement: Raw view improved
- Enhancement: Make topbar more draggable
- Bug: Navigating to secrets too quickly could cause odd behavior
- Bug: Switching to 'raw' on file and back, changes to JSON view and not File view
- Bug: Sidebar can be grow beyond 3/4 width of page
- Bug: JSON edited in RAW mode would not be reflected in structured view
- Updated screenshot
The ability to edit a secret in RAW view is under development, as well the ability to graphically add new objects/strings/arrays/numbers to an already existing secret.
Changelog
- Feature: Drastically faster loading time after login
- Feature: Added Multi-Value secret view and update support
- Feature: Toggle ability to see all hidden values
- Feature: Default hiding of "value" fields behind asterisks for secrets
- Feature: Raw JSON viewing support
- Enhancement: Improved UI for downloading files
- Enhancement: Improved UI for viewing secrets
- Enhancement: Enhanced clearing of data from RAM at logout
- Enhancement: Improved login URL checking
- Enhancement: Passwords/tokens no longer removed when changing Auth type on login screen
- Enhancement: Enhanced security: testing a provided vault endpoint more thoroughly before sending credentials
- Enhancement: Now tests the v1/sys/seal-status for vault validity test rather than v1/sys/init
- Enhancement: Enhanced error output surrounding token login
- Enhancement: Enhance UI of Delete function
- Enhancement: Consolidated Logout and ClearData functionality to one location
- Enhancement: Moved refreshData code to a better home, reducing code complexity
- Enhancement: Added warning when moving a secret would overwrite another secret
- Enhancement: Fixed bug where a move request would create a duplicate secret in sidebar hierarchy
- Enhancement: Enhanced placeholder UI for dashboard
- Enhancement: Optimize loading time for large vault folder structures
- Enhancement: Restrict the filesystem-saved user data to minimal set
- Enhancement: Update bower packages
- Bug: Fix for if a user has a deny policy removed while app is open and between logouts
- Bug: Fix issue where window doesn't appear at startup.
- Bug: Old login errors now disappear upon successful login