Commit Graph

18670 Commits

Author SHA1 Message Date
malizz 5c470b28dd
Support Stale Queries for Trust Bundle Lookups (#14724)
* initial commit

* add tags, add conversations

* add test for query options utility functions

* update previous tests

* fix test

* don't error out on empty context

* add changelog

* update decode config
2022-09-28 09:56:59 -07:00
David Yu c97c7de1f0
README: Consul Readme improvements (#14773)
* README: Consul Readme improvements

Co-authored-by: Tu Nguyen <im2nguyen@users.noreply.github.com>
2022-09-27 16:18:43 -07:00
Luke Kysow b5e3bfdc05
Make defaulting behaviour of connect.enabled clear (#14768) 2022-09-27 13:04:59 -07:00
Luke Kysow a858e64d62
Update k8s.mdx (#14765) 2022-09-27 09:51:12 -07:00
Eric Haberkorn e80b7068a6
Enable outbound peered requests to go through local mesh gateway (#14763) 2022-09-27 09:49:28 -04:00
David Yu f289526a63
docs: update to Vault secrets backend for partition init service account and Helm values for injector (#14745)
* docs: update to Vault secrets backend
2022-09-27 00:35:59 -07:00
David Fleming 2367e6ffbe
Fix Link: Consul Enterprise Admin Partitions - Usage - CLI (#14755)
Admin partition CLI documentation was pointing at /commands/admin-partition.  Updated to point at /commands/partition. https://www.consul.io/commands/admin-partition returns not found.
2022-09-26 23:22:49 -07:00
Nick Ethier 5e4b3ef5d4
add HCP integration component (#14723)
* add HCP integration

* lint: use non-deprecated logging interface
2022-09-26 14:58:15 -04:00
Derek Menteer d9e42b0f1c
Add envoy connection balancing. (#14616)
Add envoy connection balancing config.
2022-09-26 11:29:06 -05:00
Kyle Schochenmaier 3eb708e964
update helm docs for sync catalog and vault (#14733) 2022-09-23 10:16:05 -07:00
trujillo-adam d0903c581d
Merge pull request #14735 from hashicorp/docs/capigw-typos-usage
fixed typos in CAPIgw usage docs
2022-09-23 09:28:29 -07:00
trujillo-adam edccca6547 fixed typos in CAPIgw usage docs 2022-09-23 09:23:21 -07:00
Chris S. Kim 7ec8a0667a Add new internal endpoint to list exported services to a peer 2022-09-23 09:43:56 -04:00
Krastin Krastev f500289def
Merge pull request #14232 from hashicorp/krastin/website/telemetry-labels
docs: fix website/docs/agent/telemetry labels chart
2022-09-23 14:56:51 +02:00
Roman Kunin d68e1094ec
Fix MD markup (#14702) 2022-09-22 20:00:09 -07:00
DanStough 3b89b26992 docs: fix missing bugfix changelog entries 2022-09-22 16:10:40 -04:00
Derek Menteer 9448ece41d Add 1.11.10 changelog entries. 2022-09-22 14:25:35 -05:00
Jared Kirschner a87ce56546
Merge pull request #14701 from mosceo/patch-1
Fix md markup
2022-09-22 12:05:50 -04:00
Roman Kunin 148d2f03e1
Fix md markup 2022-09-22 16:41:52 +10:00
DanStough de58c872ff release updates for 1.13.2, 1.12.5, and 1.11.9 2022-09-21 15:07:44 -04:00
trujillo-adam ad5adb1546
Merge pull request #14690 from hashicorp/docs/fix-api-landing-page-typos
fixed typos in API landing page
2022-09-21 08:37:19 -07:00
trujillo-adam 0e09a30dc3 fixed typos in API landing page 2022-09-21 08:13:40 -07:00
Jared Kirschner 3543ce3fea
Merge pull request #14571 from hashicorp/docs/fox-peering-metrics-labels-table
docs: fix peering metrics labels table
2022-09-21 08:37:19 -04:00
Jared Kirschner b90cfe4457
Merge pull request #14679 from hashicorp/docs/improve-ent-dns-flexibility-oss
docs: all enterprise locality labels now optional
2022-09-21 00:29:27 -04:00
Jared Kirschner 98f95b94f1 docs: address review feedback 2022-09-20 14:43:17 -07:00
John Cowen 733627e462
ui: Topology notices testing/refactor prep (#14575)
* ui: Topology notices testing/refactor prep

* ui: During testing ensure that when global-config=true can be mocked to false (#14578)
2022-09-20 15:49:31 +01:00
John Cowen e174ec3dce
ui: Add initial tests for peering searching/sorting (#14568)
* ui: Add initial tests for peering searching/sorting

* New lint
2022-09-20 15:34:08 +01:00
John Cowen ce4e8faa59
ui: Add merge-central-config to relevant HTTP requests (#14604) 2022-09-20 10:33:19 +01:00
Jared Kirschner 28892e324a docs: fix peering metrics labels table 2022-09-19 19:10:35 -07:00
Jared Kirschner 60779a4eb4 docs: all enterprise locality labels now optional 2022-09-19 15:00:22 -07:00
cskh 5b2d557db1
doc(peering): missing network requirement for peering and the partiti… (#14677)
* doc(peering): missing network requirement for peering and the partition parameter in the list API

* Delete API: move partition from path parameter to query parameter
2022-09-19 16:11:04 -04:00
malizz a3fc665eef
increase the size of txn to support vault (#14599)
* increase the size of txn to support vault

* add test, revert change to acl endpoint

* add changelog

* update test, add passing test case

* Update .changelog/14599.txt

Co-authored-by: Freddy <freddygv@users.noreply.github.com>

Co-authored-by: Freddy <freddygv@users.noreply.github.com>
2022-09-19 09:07:19 -07:00
alex 3f19b1235d
add health metric docs (#14382) 2022-09-19 10:33:24 -04:00
Freddy da5900b4ac
Merge pull request #14556 from hashicorp/NET-818-server-cert-v2 2022-09-16 18:08:57 -06:00
freddygv 03a9611a5e Add changelog entry 2022-09-16 17:57:10 -06:00
freddygv 8166a870b6 Add awareness of server mode to TLS configurator
Preivously the TLS configurator would default to presenting auto TLS
certificates as client certificates.

Server agents should not have this behavior and should instead present
the manually configured certs. The autoTLS certs for servers are
exclusively used for peering and should not be used as the default for
outbound communication.
2022-09-16 17:57:10 -06:00
freddygv 107e4d8494 Test fixes
- Pulls in CLI test fix from main
- Updates psutils to fix TestAgent_Host on M1 Mac
2022-09-16 17:57:10 -06:00
freddygv 0c3853a2d0 Add server certificate manager
This certificate manager will request a leaf certificate for server
agents and then keep them up to date.
2022-09-16 17:57:10 -06:00
freddygv 13dc01c553 Update TLS configurator for peering traffic
When the TLS-enabled gRPC port receives a request for the expected
it must use the auto-tls certificates.
2022-09-16 17:57:09 -06:00
freddygv ef99b30cb8 Generate ACL token for server management
This commit introduces a new ACL token used for internal server
management purposes.

It has a few key properties:
- It has unlimited permissions.
- It is persisted through Raft as System Metadata rather than in the
ACL tokens table. This is to avoid users seeing or modifying it.
- It is re-generated on leadership establishment.
2022-09-16 17:54:34 -06:00
freddygv a33a014b9c Add handling in agent cache for server leaf certs 2022-09-16 17:54:34 -06:00
Riddhi Shah 6cea2de281
Update docs for merge-central-config support (#14597)
Updates API docs to highlight merge-central-config support.
2022-09-16 14:48:03 -07:00
Evan Culver d3bd6d405f
changelog: fix missing backtick (#14663) 2022-09-16 11:30:06 -07:00
Jeff Boruszak 07d076a92c
Merge pull request #14656 from hashicorp/docs/search-metadata-headers
docs: Search Refresh Fixes
2022-09-16 11:31:14 -05:00
boruszak 61c11be969 Clean up 2022-09-16 11:15:55 -05:00
boruszak 3fdb3e894d Spacing and title fixes 2022-09-16 10:28:32 -05:00
Kyle Havlovitz 40da079f18
Merge pull request #14598 from hashicorp/root-removal-fix
connect/ca: Don't discard old roots on primaryInitialize
2022-09-15 14:36:01 -07:00
Jeff Boruszak 3672ebb422
Merge pull request #14643 from hashicorp/docs/search-metadata-headers
docs: Search Description Refresh
2022-09-15 15:49:45 -05:00
Jeff Boruszak f01384d5a0
Delete requirements.mdx 2022-09-15 15:38:56 -05:00
boruszak 94c4ff07a8 Merge 'main' into docs/search-metadata-headers 2022-09-15 15:34:36 -05:00