Commit Graph

18966 Commits

Author SHA1 Message Date
boruszak 88ae6487b3 /docs/k8s/deployment-configuration/ 2022-09-23 16:11:23 -05:00
boruszak aacfc13996 /docs/k8s/deployment-configurations/multi-cluster/ 2022-09-23 16:08:05 -05:00
boruszak 85a76cbab5 /docs/security/acl/auth-methods 2022-09-23 16:04:00 -05:00
boruszak d5d5192235 /docs/api-gateway/configuration
/docs/api-gateway/
2022-09-23 15:59:02 -05:00
Kyle Schochenmaier 3eb708e964
update helm docs for sync catalog and vault (#14733) 2022-09-23 10:16:05 -07:00
trujillo-adam d0903c581d
Merge pull request #14735 from hashicorp/docs/capigw-typos-usage
fixed typos in CAPIgw usage docs
2022-09-23 09:28:29 -07:00
trujillo-adam edccca6547 fixed typos in CAPIgw usage docs 2022-09-23 09:23:21 -07:00
Chris S. Kim 7ec8a0667a Add new internal endpoint to list exported services to a peer 2022-09-23 09:43:56 -04:00
Krastin Krastev f500289def
Merge pull request #14232 from hashicorp/krastin/website/telemetry-labels
docs: fix website/docs/agent/telemetry labels chart
2022-09-23 14:56:51 +02:00
Roman Kunin d68e1094ec
Fix MD markup (#14702) 2022-09-22 20:00:09 -07:00
freddygv 520507232f Manage local server watches depending on mesh cfg
Routing peering control plane traffic through mesh gateways can be
enabled or disabled at runtime with the mesh config entry.

This commit updates proxycfg to add or cancel watches for local servers
depending on this central config.

Note that WAN federation over mesh gateways is determined by a service
metadata flag, and any updates to the gateway service registration will
force the creation of a new snapshot. If enabled, WAN-fed over mesh
gateways will trigger a local server watch on initialize().

Because of this we will only add/remove server watches if WAN federation
over mesh gateways is disabled.
2022-09-22 19:32:10 -06:00
DanStough 3b89b26992 docs: fix missing bugfix changelog entries 2022-09-22 16:10:40 -04:00
Derek Menteer 9448ece41d Add 1.11.10 changelog entries. 2022-09-22 14:25:35 -05:00
Jared Kirschner a87ce56546
Merge pull request #14701 from mosceo/patch-1
Fix md markup
2022-09-22 12:05:50 -04:00
Roman Kunin 148d2f03e1
Fix md markup 2022-09-22 16:41:52 +10:00
DanStough de58c872ff release updates for 1.13.2, 1.12.5, and 1.11.9 2022-09-21 15:07:44 -04:00
trujillo-adam ad5adb1546
Merge pull request #14690 from hashicorp/docs/fix-api-landing-page-typos
fixed typos in API landing page
2022-09-21 08:37:19 -07:00
trujillo-adam 0e09a30dc3 fixed typos in API landing page 2022-09-21 08:13:40 -07:00
Jared Kirschner 3543ce3fea
Merge pull request #14571 from hashicorp/docs/fox-peering-metrics-labels-table
docs: fix peering metrics labels table
2022-09-21 08:37:19 -04:00
Jared Kirschner b90cfe4457
Merge pull request #14679 from hashicorp/docs/improve-ent-dns-flexibility-oss
docs: all enterprise locality labels now optional
2022-09-21 00:29:27 -04:00
Jared Kirschner 98f95b94f1 docs: address review feedback 2022-09-20 14:43:17 -07:00
John Cowen 733627e462
ui: Topology notices testing/refactor prep (#14575)
* ui: Topology notices testing/refactor prep

* ui: During testing ensure that when global-config=true can be mocked to false (#14578)
2022-09-20 15:49:31 +01:00
John Cowen e174ec3dce
ui: Add initial tests for peering searching/sorting (#14568)
* ui: Add initial tests for peering searching/sorting

* New lint
2022-09-20 15:34:08 +01:00
John Cowen ce4e8faa59
ui: Add merge-central-config to relevant HTTP requests (#14604) 2022-09-20 10:33:19 +01:00
Jared Kirschner 28892e324a docs: fix peering metrics labels table 2022-09-19 19:10:35 -07:00
Jared Kirschner 60779a4eb4 docs: all enterprise locality labels now optional 2022-09-19 15:00:22 -07:00
cskh 5b2d557db1
doc(peering): missing network requirement for peering and the partiti… (#14677)
* doc(peering): missing network requirement for peering and the partition parameter in the list API

* Delete API: move partition from path parameter to query parameter
2022-09-19 16:11:04 -04:00
malizz a3fc665eef
increase the size of txn to support vault (#14599)
* increase the size of txn to support vault

* add test, revert change to acl endpoint

* add changelog

* update test, add passing test case

* Update .changelog/14599.txt

Co-authored-by: Freddy <freddygv@users.noreply.github.com>

Co-authored-by: Freddy <freddygv@users.noreply.github.com>
2022-09-19 09:07:19 -07:00
alex 3f19b1235d
add health metric docs (#14382) 2022-09-19 10:33:24 -04:00
Freddy da5900b4ac
Merge pull request #14556 from hashicorp/NET-818-server-cert-v2 2022-09-16 18:08:57 -06:00
freddygv 03a9611a5e Add changelog entry 2022-09-16 17:57:10 -06:00
freddygv 8166a870b6 Add awareness of server mode to TLS configurator
Preivously the TLS configurator would default to presenting auto TLS
certificates as client certificates.

Server agents should not have this behavior and should instead present
the manually configured certs. The autoTLS certs for servers are
exclusively used for peering and should not be used as the default for
outbound communication.
2022-09-16 17:57:10 -06:00
freddygv 107e4d8494 Test fixes
- Pulls in CLI test fix from main
- Updates psutils to fix TestAgent_Host on M1 Mac
2022-09-16 17:57:10 -06:00
freddygv 0c3853a2d0 Add server certificate manager
This certificate manager will request a leaf certificate for server
agents and then keep them up to date.
2022-09-16 17:57:10 -06:00
freddygv 13dc01c553 Update TLS configurator for peering traffic
When the TLS-enabled gRPC port receives a request for the expected
it must use the auto-tls certificates.
2022-09-16 17:57:09 -06:00
freddygv ef99b30cb8 Generate ACL token for server management
This commit introduces a new ACL token used for internal server
management purposes.

It has a few key properties:
- It has unlimited permissions.
- It is persisted through Raft as System Metadata rather than in the
ACL tokens table. This is to avoid users seeing or modifying it.
- It is re-generated on leadership establishment.
2022-09-16 17:54:34 -06:00
freddygv a33a014b9c Add handling in agent cache for server leaf certs 2022-09-16 17:54:34 -06:00
Riddhi Shah 6cea2de281
Update docs for merge-central-config support (#14597)
Updates API docs to highlight merge-central-config support.
2022-09-16 14:48:03 -07:00
Evan Culver d3bd6d405f
changelog: fix missing backtick (#14663) 2022-09-16 11:30:06 -07:00
Jeff Boruszak 07d076a92c
Merge pull request #14656 from hashicorp/docs/search-metadata-headers
docs: Search Refresh Fixes
2022-09-16 11:31:14 -05:00
boruszak 61c11be969 Clean up 2022-09-16 11:15:55 -05:00
boruszak 3fdb3e894d Spacing and title fixes 2022-09-16 10:28:32 -05:00
Kyle Havlovitz 40da079f18
Merge pull request #14598 from hashicorp/root-removal-fix
connect/ca: Don't discard old roots on primaryInitialize
2022-09-15 14:36:01 -07:00
Jeff Boruszak 3672ebb422
Merge pull request #14643 from hashicorp/docs/search-metadata-headers
docs: Search Description Refresh
2022-09-15 15:49:45 -05:00
Jeff Boruszak f01384d5a0
Delete requirements.mdx 2022-09-15 15:38:56 -05:00
boruszak 94c4ff07a8 Merge 'main' into docs/search-metadata-headers 2022-09-15 15:34:36 -05:00
Kyle Havlovitz a50c13e0e1 Add changelog note 2022-09-15 12:59:16 -07:00
Kyle Havlovitz fe10009a12 connect/ca: don't discard old roots on primaryInitialize 2022-09-15 12:59:09 -07:00
Jeff Boruszak b56f0976df
Merge pull request #14621 from hashicorp/docs/search-desc-batch05
docs: Search Metadata Batch 05
2022-09-15 14:33:59 -05:00
Jeff Boruszak 73d0bca8a1
Apply suggestions from code review
Co-authored-by: trujillo-adam <47586768+trujillo-adam@users.noreply.github.com>
2022-09-15 14:33:39 -05:00