Dr 1280 fix pam rotation edit for saas#2161
Closed
jwalstra-keeper wants to merge 11 commits into
Closed
Conversation
* Add support for port mapping If connection has empty port, it will default to the ports defined in this file (can be customized for custom default ports) Also added new parameter allow-file-uploads for RBI * Support empty user/ports and other improvements If a KCM connection has no user, the export will log the record for future process. If a KCM connection has no port, it will default to the port mapping defined in KCM_mappings.json Fixed a duplication issue of SFTP parameters caused by a reference error. Set the autodocker docker-file location as default Reworked how logged records are displayed on output file.
* Add secret-ids argument for thycotic import Add secret-ids arg to import command, to use for debugging Thycotic secret IDs * Pass secret-ids arg from import command to thycotic import Pass secret-ids arg from import command to thycotic import so it can be handled in the Thycotic import * Add handling for secret-ids arg in Thycotic import If user sets secret-ids, the import will: - Check if any of those IDs have come up in the lookup and would have been imported. - Import only the secret-ids set This is useful for debugging, because the lookup API may not return all Thycotic secrets - eg if there a security policy on them, but they may still be fetched. Usage: String (comma separated IDs) `import --format thycotic server_name --secret-ids "123, 124,125"` Python List (strings or integers) `secret_ids=[123, 124, 125]` * Correct secret_ids check Fix conditional logic so import continues if no secret ids are specified --------- Co-authored-by: lthievenaz-keeper <lthievenaz@keepersecurity.com>
…f-record-add/update (#2132)
…, rename Supershell Drive folder labels, and standardize list record_category Fixed nsf-share-folder and nsf-share-record expiration updates, enforced a one-minute minimum on NSF and classic share commands, standardized list/search record_category to lowercase classic/nested, and renamed Supershell Drive folder labels to Nested Shared Folder (Shared) and (NonShared).
* Fix SQL injection in MSSQL password rotation and reject unsafe --password input * allow / and . in login regex
KeeperApp and krouter require configurationUid on set_record_rotation; include PAM config UID, matching revision for existing rotation rows, and an explicit empty resourceUid so IAM semantics are not overridden by stale cache data. Co-authored-by: Cursor <cursoragent@cursor.com>
* Add --online filter to pam gateway list with gateway totals. Co-authored-by: Cursor <cursoragent@cursor.com> * Add -o short option for pam gateway list --online. Co-authored-by: Cursor <cursoragent@cursor.com> --------- Co-authored-by: Cursor <cursoragent@cursor.com>
* Add secret-ids argument for thycotic import Add secret-ids arg to import command, to use for debugging Thycotic secret IDs * Pass secret-ids arg from import command to thycotic import Pass secret-ids arg from import command to thycotic import so it can be handled in the Thycotic import * Add handling for secret-ids arg in Thycotic import If user sets secret-ids, the import will: - Check if any of those IDs have come up in the lookup and would have been imported. - Import only the secret-ids set This is useful for debugging, because the lookup API may not return all Thycotic secrets - eg if there a security policy on them, but they may still be fetched. Usage: String (comma separated IDs) `import --format thycotic server_name --secret-ids "123, 124,125"` Python List (strings or integers) `secret_ids=[123, 124, 125]`
…#2160) * Add pam connection ai command for KeeperAI settings on PAM resources. Implements show, set/unset, and remove with sparse DAG merges, configure_resource meta bootstrap, GSE_DELETION removal, and CLI warnings for duplicate or mirrored options. Co-authored-by: Cursor <cursoragent@cursor.com> * Extend pam connection ai to pamRemoteBrowser records. Co-authored-by: Cursor <cursoragent@cursor.com> --------- Co-authored-by: Cursor <cursoragent@cursor.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.