From ee830cd69e234a851685046ff504762753c5bd66 Mon Sep 17 00:00:00 2001
From: Nick Cabatoff <ncabatoff@hashicorp.com>
Date: Thu, 11 Jun 2020 08:28:04 -0400
Subject: [PATCH] Document the new SSH signing algorithm option.

---
 website/pages/api-docs/secret/ssh/index.mdx | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/website/pages/api-docs/secret/ssh/index.mdx b/website/pages/api-docs/secret/ssh/index.mdx
index b2e2fa1b251c..3dba9d0d10a6 100644
--- a/website/pages/api-docs/secret/ssh/index.mdx
+++ b/website/pages/api-docs/secret/ssh/index.mdx
@@ -211,6 +211,11 @@ This endpoint creates or updates a named role.
 - `allowed_user_key_lengths` `(map<string|int>: "")` – Specifies a map of ssh key types
   and their expected sizes which are allowed to be signed by the CA type.
 
+- `algorithm_signer` `(string: "ssh-rsa")` - Algorithm to sign keys with.  Valid
+  values are `ssh-rsa`, `rsa-sha2-256`, and `rsa-sha2-512`.  Note that `ssh-rsa`
+  is now considered insecure and is not supported by current OpenSSH versions.
+  Defaults to `ssh-rsa` for backwards compatibility.
+
 ### Sample Payload
 
 ```json