a4e89d72a8
secure vars: filter by path in List RPCs ( #14036 )
...
The List RPCs only checked the ACL for the Prefix argument of the request. Add
an ACL filter to the paginator for the List RPC.
Extend test coverage of ACLs in the List RPC and in the `acl` package, and add a
"deny" capability so that operators can deny specific paths or prefixes below an
allowed path.
2022-08-15 11:38:20 -04:00
4005759d28
move secure variable conflict resolution to state store ( #13922 )
...
Move conflict resolution implementation into the state store with a new Apply RPC.
This also makes the RPC for secure variables much more similar to Consul's KV,
which will help us support soft deletes in a post-1.4.0 version of Nomad.
Reimplement quotas in the state store functions.
Co-authored-by: Charlie Voiselle <464492+angrycub@users.noreply.github.com>
2022-08-15 11:19:53 -04:00
3d2f581b33
Merge pull request #14114 from hashicorp/dependabot/go_modules/oss.indeed.com/go/libtime-1.6.0
...
build(deps): bump oss.indeed.com/go/libtime from 1.5.0 to 1.6.0
2022-08-15 10:17:44 -05:00
460e78f64b
Merge pull request #14112 from hashicorp/dependabot/go_modules/github.com/fsouza/go-dockerclient-1.8.2
...
build(deps): bump github.com/fsouza/go-dockerclient from 1.6.5 to 1.8.2
2022-08-15 10:13:41 -05:00
bb298856b0
build(deps): bump oss.indeed.com/go/libtime from 1.5.0 to 1.6.0
...
Bumps [oss.indeed.com/go/libtime](https://github.com/indeedeng/libtime ) from 1.5.0 to 1.6.0.
- [Release notes](https://github.com/indeedeng/libtime/releases )
- [Commits](https://github.com/indeedeng/libtime/compare/v1.5.0...v1.6.0 )
---
updated-dependencies:
- dependency-name: oss.indeed.com/go/libtime
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-08-15 15:12:03 +00:00
16c43a3bc7
Merge pull request #14104 from hashicorp/f-consistent-makefile-arrows
...
build: use consistent arrows in makefile step output
2022-08-15 10:09:04 -05:00
4f72b0ed72
deps: add cl for fsouza/go-dockerclient
2022-08-15 09:59:49 -05:00
abe3bfce8e
build(deps): bump github.com/fsouza/go-dockerclient from 1.6.5 to 1.8.2
...
Bumps [github.com/fsouza/go-dockerclient](https://github.com/fsouza/go-dockerclient ) from 1.6.5 to 1.8.2.
- [Release notes](https://github.com/fsouza/go-dockerclient/releases )
- [Changelog](https://github.com/fsouza/go-dockerclient/blob/main/container_changes_test.go )
- [Commits](https://github.com/fsouza/go-dockerclient/compare/v1.6.5...v1.8.2 )
---
updated-dependencies:
- dependency-name: github.com/fsouza/go-dockerclient
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-08-15 14:53:54 +00:00
c24ed407c0
Merge pull request #14111 from hashicorp/dependabot/go_modules/github.com/armon/go-metrics-0.4.0
...
build(deps): bump github.com/armon/go-metrics from 0.3.10 to 0.4.0
2022-08-15 09:52:51 -05:00
b103c78f40
Merge pull request #14113 from hashicorp/dependabot/go_modules/github.com/mitchellh/cli-1.1.4
...
build(deps): bump github.com/mitchellh/cli from 1.1.2 to 1.1.4
2022-08-15 09:51:11 -05:00
efeac7e4b8
deps: fixup dependabot go.mod formatting
2022-08-15 09:50:15 -05:00
fc218b48dc
build(deps): bump github.com/armon/go-metrics from 0.3.10 to 0.4.0
...
Bumps [github.com/armon/go-metrics](https://github.com/armon/go-metrics ) from 0.3.10 to 0.4.0.
- [Release notes](https://github.com/armon/go-metrics/releases )
- [Commits](https://github.com/armon/go-metrics/compare/v0.3.10...v0.4.0 )
---
updated-dependencies:
- dependency-name: github.com/armon/go-metrics
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-08-15 14:49:29 +00:00
03ff90f02c
build(deps): bump github.com/mitchellh/cli from 1.1.2 to 1.1.4
...
Bumps [github.com/mitchellh/cli](https://github.com/mitchellh/cli ) from 1.1.2 to 1.1.4.
- [Release notes](https://github.com/mitchellh/cli/releases )
- [Commits](https://github.com/mitchellh/cli/compare/v1.1.2...v1.1.4 )
---
updated-dependencies:
- dependency-name: github.com/mitchellh/cli
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-08-15 14:25:31 +00:00
077f46c74a
Merge pull request #14025 from hashicorp/dependabot/go_modules/go.etcd.io/bbolt-1.3.6
...
build(deps): bump go.etcd.io/bbolt from 1.3.5 to 1.3.6
2022-08-15 09:13:48 -05:00
8a377ece7e
deps: update cl for go.etcd.io/bbolt
2022-08-15 09:13:16 -05:00
b31eb43af2
Merge pull request #14103 from hashicorp/dependabot/go_modules/google.golang.org/grpc-1.48.0
...
build(deps): bump google.golang.org/grpc from 1.45.0 to 1.48.0
2022-08-15 09:10:47 -05:00
30d0e55ebb
deps: update cl for grpc
2022-08-15 09:10:13 -05:00
ce310b350d
Add notes about DAS being prometheus only ( #14040 )
2022-08-15 10:17:31 +02:00
aa1c3cdae2
build: use consistent arrows in makefile step output
2022-08-14 11:20:58 -05:00
d3c0e5db04
build(deps): bump google.golang.org/grpc from 1.45.0 to 1.48.0
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.45.0 to 1.48.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.45.0...v1.48.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-08-14 09:09:31 +00:00
4f0674806e
Error typed changed to dismissable global toast ( #14099 )
2022-08-12 17:04:35 -04:00
0125863b45
Merge pull request #14052 from hashicorp/dependabot/go_modules/github.com/containernetworking/cni-1.1.2
...
build(deps): bump github.com/containernetworking/cni from 1.0.1 to 1.1.2
2022-08-12 09:09:57 -05:00
eb966a4ce8
Merge pull request #14086 from Morantron/patch-1
...
Fix typo in /tools/autoscaling
2022-08-12 09:07:12 -05:00
394aebfbd9
Merge pull request #14088 from hashicorp/b-plan-vault-token
...
cli: support vault token in plan command
2022-08-12 09:05:34 -05:00
1224fdf60d
Merge pull request #14089 from hashicorp/f-docker-disable-healthchecks
...
docker: configuration for disable docker healthcheck
2022-08-12 09:00:31 -05:00
a939245a27
docs: tweak changelog
...
Co-authored-by: James Rasell <jrasell@users.noreply.github.com>
2022-08-12 08:59:58 -05:00
f6a5961a20
docs: correctly state RPC port is used by servers and clients. ( #14091 )
2022-08-12 10:14:14 +02:00
dc761aa7ec
docker: create a docker task config setting for disable built-in healthcheck
...
This PR adds a docker driver task configuration setting for turning off
built-in HEALTHCHECK of a container.
References)
https://docs.docker.com/engine/reference/builder/#healthcheck
https://github.com/docker/engine-api/blob/master/types/container/config.go#L16
Closes #5310
Closes #14068
2022-08-11 10:33:48 -05:00
ba5c45ab93
cli: respect vault token in plan command
...
This PR fixes a regression where the 'job plan' command would not respect
a Vault token if set via --vault-token or $VAULT_TOKEN.
Basically the same bug/fix as for the validate command in https://github.com/hashicorp/nomad/issues/13062
Fixes https://github.com/hashicorp/nomad/issues/13939
2022-08-11 08:54:08 -05:00
1901cfaba8
Merge pull request #14069 from brian-athinkingape/cli-fix-memstats-cgroupsv2
...
cli: for systems with cgroups v2, fix alloation resource utilization showing 0 memory used
2022-08-11 07:27:48 -05:00
741170160f
Update index.mdx
2022-08-11 09:03:52 +02:00
e91d36902f
ci: delete generated files after build ( #14070 )
...
The generated files are created as part of the final build process but
should not present in the repository afterwards.
2022-08-10 20:36:03 -04:00
3d925a78e5
Merge pull request #14065 from hashicorp/b-fwd-vtoken-validation
...
cli: forward request for job validation to nomad leader
2022-08-10 15:14:01 -05:00
3aaaedf52e
cli: forward request for job validation to nomad leader
...
This PR changes the behavior of 'nomad job validate' to forward the
request to the nomad leader, rather than responding from any server.
This is because we need the leader when validating Vault tokens, since
the leader is the only server with an active vault client.
2022-08-10 14:34:04 -05:00
295a33150e
Merge pull request #14077 from Dgotlieb/template-doc-typo-fix
...
template doc typo fix
2022-08-10 14:01:58 -05:00
cf37860a13
test: add unit tests for namespace matching util ( #14078 )
2022-08-10 12:01:00 -04:00
7fbc8baaeb
doc typo fix
...
docker and podman don't suck 🤣
2022-08-10 15:04:07 +03:00
815adbada5
Post 1.3.3 release ( #14064 )
...
* Generate files for 1.3.3 release
* Prepare for next release
* Merge release 1.3.3 files
Co-authored-by: hc-github-team-nomad-core <github-team-nomad-core@hashicorp.com>
2022-08-09 17:27:29 -04:00
63b60ced2a
Add changelog 14069
2022-08-09 14:16:34 -07:00
6621bb9db5
cli: for systems with cgroups v2, fix alloation resource utilization showing 0 memory used
2022-08-09 14:09:14 -07:00
894e61f4dd
[ui] Fixes a bug for first-time SecVars users on namespaces ( #14067 )
...
* Fixes a bug for first-time SecVars users on namespaces
* Namespace computed dep
* Namespace computed dep
2022-08-09 16:56:18 -04:00
34104488a3
refact: update serializer log for prefix and namespace ( #14062 )
2022-08-09 14:08:28 -04:00
4da169e155
[ui] "Can Read" checks on individual Secure Variables ( #14020 )
...
* Changelog and lintfix
* Changelog removed
* Forbidden state on individual variables
* CanRead checked on variable path links
* Mirage fixture with lesser secure variables access, temporary fix for * namespaces
* Read flow acceptance tests
* Unit tests for variable.canRead
* lintfix
* TODO squashed, thanks Jai
* explicitly link mirage fixture vars to jobs via namespace
* Typofix; delete to read
* Linking the original alloc
* Percy snapshots uniquely named
* Guarantee that the alloc we depend on has tasks within it
* Logging variables
* Trying to skip delete
* Now without create flow either
* Dedicated cluster fixture for testing variables
* Disambiguate percy calls
2022-08-09 13:17:55 -04:00
e229037fb8
build(deps): bump go.etcd.io/bbolt from 1.3.5 to 1.3.6
...
Bumps [go.etcd.io/bbolt](https://github.com/etcd-io/bbolt ) from 1.3.5 to 1.3.6.
- [Release notes](https://github.com/etcd-io/bbolt/releases )
- [Commits](https://github.com/etcd-io/bbolt/compare/v1.3.5...v1.3.6 )
---
updated-dependencies:
- dependency-name: go.etcd.io/bbolt
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-08-08 20:48:49 +00:00
0004e0a5b7
build(deps): bump github.com/containernetworking/cni from 1.0.1 to 1.1.2
...
Bumps [github.com/containernetworking/cni](https://github.com/containernetworking/cni ) from 1.0.1 to 1.1.2.
- [Release notes](https://github.com/containernetworking/cni/releases )
- [Commits](https://github.com/containernetworking/cni/compare/v1.0.1...v1.1.2 )
---
updated-dependencies:
- dependency-name: github.com/containernetworking/cni
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-08-08 20:48:29 +00:00
a0f52b9554
Merge pull request #13798 from hashicorp/dependabot/go_modules/github.com/hashicorp/consul/api-1.13.1
...
chore(deps): bump github.com/hashicorp/consul/api from 1.13.0 to 1.13.1
2022-08-08 15:47:17 -05:00
0b52c27a15
Merge pull request #14045 from Abirdcfly/main
...
fix minor unreachable code caused by t.Fatal
2022-08-08 11:47:02 -05:00
f97b677928
ui: handle error messages for when filtering doesn't return matches ( #14048 )
...
* refact: add conditional logic to variables.index
* refact: add conditional logic to variables.path
* refact: update query selectors in assertions
2022-08-08 12:44:38 -04:00
d66943d4f7
fix minor unreachable code caused by t.Fatal
...
Signed-off-by: Abirdcfly <fp544037857@gmail.com>
2022-08-08 23:50:11 +08:00
94c16eda16
Merge pull request #13815 from hashicorp/post-publish-website
...
Introduces the post publish website event
2022-08-08 10:34:31 -05:00
Tim Gross