luxolus/open-consul
2
0
Fork 0
Code Issues 1 Pull requests Packages Releases Wiki Activity
13018 commits 1 branch 1 tag 358 MiB
Commit graph

13018 commits

This branch
This branch
All branches
Author SHA1 Message Date
Kent 'picat' Gruber aa46893717 Adjust the ACLs requirement section wording and add link to ACL docs 
It's better to avoid the ambiguous Vault statement that was not clarified and drop the loaded "roles" term in favor of "capabilities" since the ACL system is described as capability-based in previous ACL documentation.
 2020-11-06 16:25:21 -05:00
Kent 'picat' Gruber 7d692f0b13 Use the EnterpriseAlert inline widget 2020-11-06 10:47:22 -05:00
Kent 'picat' Gruber 9e1054097b Add mention of auto_encrypt to mTLS requirements 2020-11-06 10:15:26 -05:00
Kent 'picat' Gruber c3aa90fe27 Fix sublist format for client agent threats 2020-11-05 16:41:15 -05:00
Kent 'picat' Gruber e0735f6fe0 Add link to the keygen command 2020-11-05 16:34:32 -05:00
Kent 'picat' Gruber 0fa4a13233 Use short link to keyring command 2020-11-05 16:33:04 -05:00
Kent 'picat' Gruber 8e1b9cb177 Add link to default_policy with code format to ACLs requirement section 2020-11-05 16:30:00 -05:00
Kent 'picat' Gruber 845cd6d1da Cleanup verify_server_hostname mTLS requirement 2020-11-05 16:27:23 -05:00
Kent 'picat' Gruber 99906ad09d Add extra clarification around verify_incoming_https for localhost 
In many cases access to localhost is restricted to trusted/privellged actors only
 2020-11-05 16:20:41 -05:00
Kent 'picat' Gruber f2c124702c Fix inline links + format in mTLS requirements section 2020-11-05 16:09:07 -05:00
Kent 'picat' Gruber e39c20c715 Capitalize enterprise and add link to enerprise docs 2020-11-05 16:03:14 -05:00
Kent 'picat' Gruber 6688fc7e5c Soften language by replacing utilize with use 2020-11-05 15:59:53 -05:00
Kent 'picat' Gruber 2c62e82143 Actually fix spelling of recommendations 
I obviously have no idea how to spell this word
 2020-11-05 11:13:14 -05:00
Kent 'picat' Gruber ef4c2f40d7 Fix spelling of recomendations 
Thank you @rboyer!
 2020-11-04 17:44:51 -05:00
Kent 'picat' Gruber 9f802dffc2 Revamp security model documentation 2020-11-04 17:05:44 -05:00
hashicorp-ci 6645dfcbb1 auto-updated agent/uiserver/bindata_assetfs.go from commit 0f6c0a5c1 2020-11-04 09:37:51 +00:00
John Cowen 2cb057ac91
ui: Metrics - Provide a fetch-like http client that automatically adds the current ACL token (#9094) 
* Remove local httpGet and shim one in from options

* Add custom httpGet to pass through to provider

* Make a fetch wrapper that adds your token

* Pass the fetch like fetchWithToken wrapper through to the provider

* Fix up httpGet to encode query params again and use fetch-like
 2020-11-04 09:33:37 +00:00
hashicorp-ci ebe0ffce30 auto-updated agent/uiserver/bindata_assetfs.go from commit d5d4155e1 2020-11-03 14:14:58 +00:00
John Cowen 17333e90ce
ui: Storybook Install (#9049) 
* ui: Install storybook into the main project

* Add a basic story for a notice

* Remove empty dependencies
 2020-11-03 14:09:39 +00:00
R.B. Boyer 5c6d322872
use the docker proxy for more envoy integration test containers (#9085) 2020-11-02 14:52:33 -06:00
R.B. Boyer b8a623d3d2
wait_for_namespace should take two args (#9086) 2020-11-02 14:31:19 -06:00
hashicorp-ci 0d8a30d8e3 auto-updated agent/uiserver/bindata_assetfs.go from commit 56c2ff56e 2020-11-02 18:43:31 +00:00
Kenia 10aa848005
ui: Update to not return metrics for ingress gateways (#9081) 2020-11-02 13:38:43 -05:00
Alvin Huang 102aefdb49
use hashicorp docker mirror in envoy helper (#9080) 2020-11-02 11:37:03 -06:00
R.B. Boyer cf5e9872ce
fix envoy integ test wait_for_namespace to actually work on CI (#9082) 2020-11-02 11:14:48 -06:00
hashicorp-ci 0fa484ae8f auto-updated agent/uiserver/bindata_assetfs.go from commit bf32a1799 2020-11-02 16:11:45 +00:00
John Cowen bc4d1f9b65
ui: Remove string casting when passing index/checked for dropmenus (#9077) 
* ui: Remove string casting when passing index/checked

* Check for e.target
 2020-11-02 16:07:08 +00:00
hashicorp-ci 052303f0fa auto-updated agent/uiserver/bindata_assetfs.go from commit 314eeda95 2020-11-02 14:40:27 +00:00
John Cowen a4f6313aa5
ui: Use eslint vs ember-cli-lint, sass vs dart-sass (#9078) 
These two dependency changes means that @hashicorp/pds-ember can be
installed and used without any build/dependency issues
 2020-11-02 14:35:10 +00:00
Alvin Huang d6652b0bc9
use hashicorp docker mirror to prevent rate limit (#9070) 2020-10-30 17:59:13 -04:00
R.B. Boyer c8c87ec317
agent: introduce path allow list for requests going through the metrics proxy (#9059) 
Added a new option `ui_config.metrics_proxy.path_allowlist`. This defaults to `["/api/v1/query", "/api/v1/query_range"]` when the metrics provider is set to `prometheus`.

Requests that do not use one of the allow-listed paths (via exact match) get a 403 Forbidden response instead.
 2020-10-30 16:49:54 -05:00
hashicorp-ci e69d2c99cf auto-updated agent/uiserver/bindata_assetfs.go from commit cf2cfbaf2 2020-10-30 15:27:01 +00:00
R.B. Boyer e0459f4405
ui: make metrics work again (#9072) 
Fixes regression from #9040
 2020-10-30 10:21:57 -05:00
R.B. Boyer 67a0d0c426
state: ensure we unblock intentions queries upon the upgrade to config entries (#9062) 
1. do a state store query to list intentions as the agent would do over in `agent/proxycfg` backing `agent/xds`
2. upgrade the database and do a fresh `service-intentions` config entry write
3. the blocking query inside of the agent cache in (1) doesn't notice (2)
 2020-10-29 15:28:31 -05:00
Daniel Nephin 919a40cc57
Merge pull request #9068 from hashicorp/restore-test-signature 
restore prior signature of test helper so enterprise compiles
 2020-10-29 15:22:30 -04:00
R.B. Boyer 78014653b3 restore prior signature of test helper so enterprise compiles 2020-10-29 13:52:15 -05:00
hashicorp-ci e970f9699f auto-updated agent/uiserver/bindata_assetfs.go from commit 1d6961248 2020-10-29 18:33:41 +00:00
Mike Morris c4321797da
ui: Update node_modules deps path in GNUMakefile (#9066) 
Updates `node_modules` path/makefile target to fix top-level `make ui` command.
 2020-10-29 13:28:55 -05:00
Daniel Nephin bcb67d9861
Merge pull request #9025 from hashicorp/dnephin/streaming-options 
streaming: Use a no-op event publisher if streaming is disabled
 2020-10-29 13:36:51 -04:00
s-christoff ee3eb03f50
cli: Add JSON and Pretty Print formatting for consul snapshot inspect (#9006) 2020-10-29 11:31:14 -05:00
Kim Ngo 1b0efbfd27
docs: Add links in CTS docs for the community to get involved (#9060) 2020-10-29 10:07:20 -05:00
Daniel Nephin 44da869ed4 stream: Use a no-op event publisher if streaming is disabled 2020-10-28 13:54:19 -04:00
Daniel Nephin dc17896fed
Merge pull request #9058 from hashicorp/dnephin/fix-broken-github-workflow 
Remove the workflow file
 2020-10-28 13:11:36 -04:00
Daniel Nephin fe8d85f40b Remove the workflow file 
The comment out file causes github to send us error emails on every commit
 2020-10-28 13:09:29 -04:00
Daniel Nephin eea87e1acf store: use a ReadDB for snapshots 
to remove the cyclic dependency between the snapshot handlers and the state.Store
 2020-10-28 13:07:42 -04:00
R.B. Boyer e3e1d687df
add namespace waiting function to envoy integration tests (#9051) 2020-10-28 11:58:40 -05:00
Daniel Nephin cfe0ffde15
Merge pull request #9026 from hashicorp/dnephin/streaming-without-cache-query-param 
streaming: rename config and remove requirement for cache=1
 2020-10-28 12:33:25 -04:00
Daniel Nephin 03d2be03e7
Merge pull request #8618 from hashicorp/dnephin/remove-txn-readtxn 
state: Use ReadTxn everywhere
 2020-10-28 12:32:47 -04:00
R.B. Boyer ff82fd822f
missed adding the test delay to the l7-intentions envoy integration test (#9052) 2020-10-28 08:43:11 -05:00
Jono Sosulska 95169961f8
Turn off issue labeler for now (#9054) 2020-10-27 17:34:16 -04:00