Add new PKI issuer verification config fields to issuer resources.

Add the following fields: * "disable_critical_extension_checks" * "disable_path_length_checks" * "disable_name_checks" * "disable_name_constraint_checks" To resources: * data_source_pki_secret_backend_issuer * resource_pki_secret_backend_issuer The fields require Vault Enterprise 1.19+.
hashicorp · Feb 3, 2025 · ee59ce5 · ee59ce5
1 parent baf4ae8
commit ee59ce5
Show file tree

Hide file tree

Showing 6 changed files with 722 additions and 445 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -3,6 +3,7 @@
 FEATURES:
 
 * Update `vault_pki_secret_backend_root_cert` and `vault_pki_secret_backend_root_sign_intermediate` to support the new fields for the name constraints extension. Requires Vault 1.19+ ([#2396](https://github.com/hashicorp/terraform-provider-vault/pull/2396)).
+* Update `vault_pki_secret_backend_issuer` resource with the new issuer configuration fields to control certificate verification. Requires Vault Enterprise 1.19+ ([#2400](https://github.com/hashicorp/terraform-provider-vault/pull/2400)).
 
 BUGS:
-Original file line number
+Diff line change
@@ Expand Up / @@ -3,6 +3,7 @@ @@
     FEATURES:
     * Update `vault_pki_secret_backend_root_cert` and `vault_pki_secret_backend_root_sign_intermediate` to support the new fields for the name constraints extension. Requires Vault 1.19+ ([#2396](https://github.com/hashicorp/terraform-provider-vault/pull/2396)).
+    * Update `vault_pki_secret_backend_issuer` resource with the new issuer configuration fields to control certificate verification. Requires Vault Enterprise 1.19+ ([#2400](https://github.com/hashicorp/terraform-provider-vault/pull/2400)).
     BUGS:
@@ Expand Down @@