Commit Graph

3172 Commits

Author SHA1 Message Date
Seth Hoenig 5b072029f2 consul/connect: add initial support for ingress gateways
This PR adds initial support for running Consul Connect Ingress Gateways (CIGs) in Nomad. These gateways are declared as part of a task group level service definition within the connect stanza.

```hcl
service {
  connect {
    gateway {
      proxy {
        // envoy proxy configuration
      }
      ingress {
        // ingress-gateway configuration entry
      }
    }
  }
}
```

A gateway can be run in `bridge` or `host` networking mode, with the caveat that host networking necessitates manually specifying the Envoy admin listener (which cannot be disabled) via the service port value.

Currently Envoy is the only supported gateway implementation in Consul, and Nomad only supports running Envoy as a gateway using the docker driver.

Aims to address #8294 and tangentially #8647
2020-08-21 16:21:54 -05:00
Shishir Mahajan 7055477860
Podman driver: Add support for signal task. 2020-08-19 17:25:52 -07:00
davemay99 3c12ef8f70 Change 'license set' to 'license put' to reflect correct syntax 2020-08-17 14:10:21 -04:00
Luiz Aoqui d4f8629968
docs: update allocation metrics 2020-08-14 14:16:38 -04:00
James Rasell 01413d8258
docs: update Docker driver to detail new image_pull_timeout params. 2020-08-14 09:40:24 +01:00
Drew Bailey f8c7f94721
prepare release 2020-08-13 17:26:02 -04:00
Drew Bailey 1b330c7f0c
add info about multi-vault namespaces (#8654)
* add info about multi-vault namespaces

* typo
2020-08-12 14:13:22 -04:00
Drew Bailey b7913ecdb9
bump website version 2020-08-12 11:59:50 -04:00
James Rasell d4251929f7
docs: fix incorrect Autoscaler policy block dir detail. 2020-08-12 11:37:59 +01:00
Nick Ethier e39574be59
docker: support group allocated ports and host_networks (#8623)
* docker: support group allocated ports

* docker: add new ports driver config to specify which group ports are mapped

* docker: update port mapping docs
2020-08-11 18:30:22 -04:00
Seth Hoenig 4f0af55a8f docs: update connect integration limitations 2020-08-11 16:43:52 -05:00
Lang Martin 07ea822c6a
nomad debug renamed to nomad operator debug (#8602)
* renamed: command/debug.go -> command/operator_debug.go
* website: rename debug -> operator debug
* website/pages/api-docs/agent: name in api docs
2020-08-11 15:39:44 -04:00
Tim Gross 443fdaa86b
csi: nomad volume detach command (#8584)
The soundness guarantees of the CSI specification leave a little to be desired
in our ability to provide a 100% reliable automated solution for managing
volumes. This changeset provides a new command to bridge this gap by providing
the operator the ability to intervene.

The command doesn't take an allocation ID so that the operator doesn't have to
keep track of alloc IDs that may have been GC'd. Handle this case in the
unpublish RPC by sending the client RPC for all the terminal/nil allocs on the
selected node.
2020-08-11 10:18:54 -04:00
James Rasell 994468a3e0
docs: fix minor formatting issues on docker driver page. (#8578)
Co-authored-by: Chris Baker <1675087+cgbaker@users.noreply.github.com>
2020-08-11 12:41:50 +02:00
Seth Hoenig e9044c47cd consul: clarify consecutive checks in docs 2020-08-10 14:08:09 -05:00
Seth Hoenig fd4804bf26 consul: able to set pass/fail thresholds on consul service checks
This change adds the ability to set the fields `success_before_passing` and
`failures_before_critical` on Consul service check definitions. This is a
feature added to Consul v1.7.0 and later.
  https://www.consul.io/docs/agent/checks#success-failures-before-passing-critical

Nomad doesn't do much besides pass the fields through to Consul.

Fixes #6913
2020-08-10 14:08:09 -05:00
Drew Bailey 5fc0a73b0b
update vault integration docs (#8543)
* update vault integration docs

docs/integrations/vault-integration was a copy of the learn guide. Remove that and move /docs/vault-integration to this location instead

fix link

fix link

Update website/pages/docs/integrations/vault-integration.mdx

Co-authored-by: Michael Schurter <mschurter@hashicorp.com>

Update website/pages/docs/integrations/vault-integration.mdx

Co-authored-by: Michael Schurter <mschurter@hashicorp.com>

Update website/pages/docs/integrations/vault-integration.mdx

Co-authored-by: Charlie Voiselle <464492+angrycub@users.noreply.github.com>

Update website/pages/docs/integrations/vault-integration.mdx

Co-authored-by: Charlie Voiselle <464492+angrycub@users.noreply.github.com>

Update website/pages/docs/integrations/vault-integration.mdx

Co-authored-by: Charlie Voiselle <464492+angrycub@users.noreply.github.com>

Update website/pages/docs/integrations/vault-integration.mdx

Co-authored-by: Charlie Voiselle <464492+angrycub@users.noreply.github.com>

Update website/pages/docs/integrations/vault-integration.mdx

Co-authored-by: Charlie Voiselle <464492+angrycub@users.noreply.github.com>

Update website/pages/docs/integrations/vault-integration.mdx

Co-authored-by: Charlie Voiselle <464492+angrycub@users.noreply.github.com>

* revert accidental deletion

Co-authored-by: Charlie Voiselle <464492+angrycub@users.noreply.github.com>
2020-08-10 14:23:43 -04:00
Charlie Voiselle ac5e3f9e23
Removed version tag
In order to prevent staleness, changed driver links to point to releases page rather than a specific version.

Co-authored-by: Michael Schurter <mschurter@hashicorp.com>
2020-08-07 17:53:36 -04:00
Charlie Voiselle 92a2a0429e
[docs] Updating install instructions to add packages. (#8534)
* Updated install, added packages
* Apply suggestions from code review

Co-authored-by: Michael Schurter <mschurter@hashicorp.com>
2020-08-07 16:27:17 -04:00
Kevin Pruett cdeaa7236f
Implement search via Algolia 2020-08-07 12:36:38 -04:00
Tim Gross 3169839653
docs: always use -ignore-system on node drain with CSI (#8606)
Postrun hooks for allocation runners don't currently block the registration of
terminal health with the servers, which is what allows system jobs to be
drained. So draining nodes with jobs that claim CSI volumes requires the
`-ignore-system` job to ensure that the postrun hook for service jobs gets a
chance to execute.
2020-08-07 11:22:28 -04:00
Luiz Aoqui 0fadad46d3
Merge pull request #8595 from hashicorp/docs/fix-connect-log-level
docs: fix Consul Connect log_level meta key
2020-08-06 11:00:09 -04:00
Luiz Aoqui 602d3373ed
docs: fix Consul Connect log_level meta key 2020-08-05 17:01:03 -04:00
Shishir Mahajan 874f948520
Fix review comments. 2020-08-05 11:51:00 -07:00
Shishir Mahajan 088b0694b4 Add nomad-driver-containerd to nomad UI docs. 2020-08-04 11:29:05 -07:00
Drew Bailey c06a84e4a2
ignore VAULT_NAMESPACE (#8581)
VAULT_NAMESPACE in 0.12.1 and previous versions is already ignored. \n revert change that used it as a default since it will break oss users
2020-07-31 10:33:21 -04:00
James Rasell 90903bb625
Merge pull request #8555 from hashicorp/remove-size-detail-from-docs-homepage
docs: remove Nomad binary size from README and website.
2020-07-30 19:20:23 +02:00
Michael Lange af446cec10 Update Reason to Message in the job scale docs 2020-07-30 09:06:08 -07:00
Buck Doyle bf056b3011
Change capitalisation
Co-authored-by: Tim Gross <tgross@hashicorp.com>
2020-07-30 10:09:47 -05:00
Buck Doyle 7855adf127 Add documentation for job name parameter 2020-07-30 10:03:50 -05:00
Buck Doyle adada0d5b0
Fix placement invocations (#8558) 2020-07-30 09:56:58 -05:00
James Rasell 2fc2cf4482
docs: remove Nomad binary size from README and website.
The Nomad binary size has been detailed differently in places
and is subject to changing almost daily. We should therefore
remove this to avoid confusion and misrepresentation.
2020-07-29 09:04:28 +02:00
Mahmood Ali 582899277f
Merge pull request #8533 from hashicorp/docs-gh-6987-rebase
Add missing `token list` subcommand in list
2020-07-27 09:19:52 -04:00
Drew Bailey bd421b6197
Merge pull request #8453 from hashicorp/oss-multi-vault-ns
oss compoments for multi-vault namespaces
2020-07-27 08:45:22 -04:00
Tim Gross e604220084
docs and changelog entry for `nomad volume deregister -force` (#8537) 2020-07-24 15:13:11 -04:00
Jeff Escalante 7c80b94c60 hard pin and update dependencies 2020-07-24 11:18:02 -04:00
Mahmood Ali 0cf31d732c
Update website/pages/docs/commands/acl/index.mdx
Co-authored-by: Matteo Gazzetta <matteo_gazzetta@hotmail.it>
2020-07-24 11:01:40 -04:00
Mahmood Ali 8644eb386a
Merge pull request #6531 from hashicorp/docs-markdownlintrc
Added a markdownlintrc
2020-07-24 10:41:12 -04:00
James Rasell ff351575b3
Merge pull request #8531 from hashicorp/gh-8527-docs-updates
docs: update website and changelog to detail GH-8527
2020-07-24 16:40:52 +02:00
Drew Bailey b296558b8e
oss compoments for multi-vault namespaces
adds in oss components to support enterprise multi-vault namespace feature

upgrade specific doc on vault multi-namespaces

vault docs

update test to reflect new error
2020-07-24 10:14:59 -04:00
Mahmood Ali bc19dd6b76 Just a small doc fix, `acl token list` subcommand was missing in the list. 2020-07-24 10:09:30 -04:00
Mahmood Ali 4fb205343d
Merge pull request #8513 from hashicorp/security-model-add-recommendations
Add TLS and HTTP Header recommendations to security model documentation
2020-07-24 09:56:56 -04:00
James Rasell 29fbc15bb5
docs: add Namespace field to scale status GET example. 2020-07-24 14:45:50 +02:00
James Rasell 71d9c23e47
docs: clarify scaling stanza is not supported within system jobs. 2020-07-24 10:05:38 +02:00
Michael Schurter 1400e0480d
Merge pull request #8521 from hashicorp/docs-hearbeat
docs: s/hearbeat/heartbeat and fix link
2020-07-23 14:07:24 -07:00
Drew Bailey f04a1d73bc
update version for 0.12.1 2020-07-23 15:36:33 -04:00
Michael Schurter 8340ad4da8 docs: s/hearbeat/heartbeat and fix link
Also fixed the same typo in a test. Fixing the typo fixes the link, but
the link was still broken when running the website locally due to the
trailing slash. It would have worked in prod thanks to redirects, but
using the canonical URL seems ideal.
2020-07-23 11:33:34 -07:00
Brandon Romano 412fee5c24 Revert "updating banner for webinar"
This reverts commit 2c4a801b7de8857a1cd58c40f1d7ff8be951102c.
2020-07-23 10:55:00 -07:00
Kent 'picat' Gruber 94d1a87c22 Small wording adjustment to prevent stuttering
Didn't catch this before, but caught it during my read through today.
2020-07-23 11:18:00 -04:00
Kent 'picat' Gruber aa7e611fa0 Link to link to raw_exec driver 2020-07-23 11:15:29 -04:00