Commit Graph

19331 Commits (2b81e6e0605e57a18fbd29d47a61cd6d2daabd13)

Author SHA1 Message Date
Roman Kunin a0b1806ba2
Fix MD markup (#14702) 2022-09-22 20:00:09 -07:00
freddygv d818d7b096 Manage local server watches depending on mesh cfg
Routing peering control plane traffic through mesh gateways can be
enabled or disabled at runtime with the mesh config entry.

This commit updates proxycfg to add or cancel watches for local servers
depending on this central config.

Note that WAN federation over mesh gateways is determined by a service
metadata flag, and any updates to the gateway service registration will
force the creation of a new snapshot. If enabled, WAN-fed over mesh
gateways will trigger a local server watch on initialize().

Because of this we will only add/remove server watches if WAN federation
over mesh gateways is disabled.
2022-09-22 19:32:10 -06:00
DanStough 28fc98040e docs: fix missing bugfix changelog entries 2022-09-22 16:10:40 -04:00
Derek Menteer f62557fbcd Add 1.11.10 changelog entries. 2022-09-22 14:25:35 -05:00
Jared Kirschner c81d0d5e5e
Merge pull request #14701 from mosceo/patch-1
Fix md markup
2022-09-22 12:05:50 -04:00
Roman Kunin 4c95e16815
Fix md markup 2022-09-22 16:41:52 +10:00
DanStough 7704daaad5 release updates for 1.13.2, 1.12.5, and 1.11.9 2022-09-21 15:07:44 -04:00
trujillo-adam ca461a1b2d
Merge pull request #14690 from hashicorp/docs/fix-api-landing-page-typos
fixed typos in API landing page
2022-09-21 08:37:19 -07:00
trujillo-adam 767864d791 fixed typos in API landing page 2022-09-21 08:13:40 -07:00
Jared Kirschner b267d09e11
Merge pull request #14571 from hashicorp/docs/fox-peering-metrics-labels-table
docs: fix peering metrics labels table
2022-09-21 08:37:19 -04:00
Alessandro De Blasis 461b42ed48 fix(check): added missing OSService props 2022-09-21 13:10:21 +01:00
Alessandro De Blasis 5719fd6560 fix(checks): os_service OK message in output 2022-09-21 09:27:33 +01:00
Alessandro De Blasis f440966a38 fix(checks): os_service lifecycle bugfix 2022-09-21 09:26:47 +01:00
Alessandro De Blasis fc0dd92dcf fix(agent): uninitialized map panic error 2022-09-21 09:25:54 +01:00
Jared Kirschner 7f0498d9d9
Merge pull request #14679 from hashicorp/docs/improve-ent-dns-flexibility-oss
docs: all enterprise locality labels now optional
2022-09-21 00:29:27 -04:00
Jared Kirschner 37d2d41e65 docs: address review feedback 2022-09-20 14:43:17 -07:00
John Cowen f75804c3bd
ui: Topology notices testing/refactor prep (#14575)
* ui: Topology notices testing/refactor prep

* ui: During testing ensure that when global-config=true can be mocked to false (#14578)
2022-09-20 15:49:31 +01:00
John Cowen 443f5c3e5e
ui: Add initial tests for peering searching/sorting (#14568)
* ui: Add initial tests for peering searching/sorting

* New lint
2022-09-20 15:34:08 +01:00
John Cowen 8b0c09d15c
ui: Add merge-central-config to relevant HTTP requests (#14604) 2022-09-20 10:33:19 +01:00
Jared Kirschner e75f35533b docs: fix peering metrics labels table 2022-09-19 19:10:35 -07:00
Jared Kirschner 90aab0b3bb docs: all enterprise locality labels now optional 2022-09-19 15:00:22 -07:00
cskh 1d7c82c017
doc(peering): missing network requirement for peering and the partiti… (#14677)
* doc(peering): missing network requirement for peering and the partition parameter in the list API

* Delete API: move partition from path parameter to query parameter
2022-09-19 16:11:04 -04:00
malizz 1a0aa38a82
increase the size of txn to support vault (#14599)
* increase the size of txn to support vault

* add test, revert change to acl endpoint

* add changelog

* update test, add passing test case

* Update .changelog/14599.txt

Co-authored-by: Freddy <freddygv@users.noreply.github.com>

Co-authored-by: Freddy <freddygv@users.noreply.github.com>
2022-09-19 09:07:19 -07:00
alex 6a70477aec
add health metric docs (#14382) 2022-09-19 10:33:24 -04:00
Freddy 0095ca0541
Merge pull request #14556 from hashicorp/NET-818-server-cert-v2 2022-09-16 18:08:57 -06:00
freddygv 12489128e0 Add changelog entry 2022-09-16 17:57:10 -06:00
freddygv 5fbb26525b Add awareness of server mode to TLS configurator
Preivously the TLS configurator would default to presenting auto TLS
certificates as client certificates.

Server agents should not have this behavior and should instead present
the manually configured certs. The autoTLS certs for servers are
exclusively used for peering and should not be used as the default for
outbound communication.
2022-09-16 17:57:10 -06:00
freddygv f30bc96239 Test fixes
- Pulls in CLI test fix from main
- Updates psutils to fix TestAgent_Host on M1 Mac
2022-09-16 17:57:10 -06:00
freddygv 02d3ce1039 Add server certificate manager
This certificate manager will request a leaf certificate for server
agents and then keep them up to date.
2022-09-16 17:57:10 -06:00
freddygv 650e1e32e0 Update TLS configurator for peering traffic
When the TLS-enabled gRPC port receives a request for the expected
it must use the auto-tls certificates.
2022-09-16 17:57:09 -06:00
freddygv 0e5131bd33 Generate ACL token for server management
This commit introduces a new ACL token used for internal server
management purposes.

It has a few key properties:
- It has unlimited permissions.
- It is persisted through Raft as System Metadata rather than in the
ACL tokens table. This is to avoid users seeing or modifying it.
- It is re-generated on leadership establishment.
2022-09-16 17:54:34 -06:00
freddygv 0ea3353537 Add handling in agent cache for server leaf certs 2022-09-16 17:54:34 -06:00
Riddhi Shah 59249b7dda
Update docs for merge-central-config support (#14597)
Updates API docs to highlight merge-central-config support.
2022-09-16 14:48:03 -07:00
Evan Culver 4b89b66fc9
changelog: fix missing backtick (#14663) 2022-09-16 11:30:06 -07:00
Nick Wales 3d7decaddc
Merge branch 'main' into main 2022-09-16 12:43:54 -05:00
Jeff Boruszak 4636ff92e4
Merge pull request #14656 from hashicorp/docs/search-metadata-headers
docs: Search Refresh Fixes
2022-09-16 11:31:14 -05:00
boruszak b4cc55d766 Clean up 2022-09-16 11:15:55 -05:00
boruszak f797d128c7 Spacing and title fixes 2022-09-16 10:28:32 -05:00
Kyle Havlovitz 0d9ae52643
Merge pull request #14598 from hashicorp/root-removal-fix
connect/ca: Don't discard old roots on primaryInitialize
2022-09-15 14:36:01 -07:00
Jeff Boruszak 2398fbead5
Merge pull request #14643 from hashicorp/docs/search-metadata-headers
docs: Search Description Refresh
2022-09-15 15:49:45 -05:00
Jeff Boruszak 1814d67cf5
Delete requirements.mdx 2022-09-15 15:38:56 -05:00
boruszak 0e042654dc Merge 'main' into docs/search-metadata-headers 2022-09-15 15:34:36 -05:00
Kyle Havlovitz 573701fc47 Add changelog note 2022-09-15 12:59:16 -07:00
Kyle Havlovitz 6105a7fd9f connect/ca: don't discard old roots on primaryInitialize 2022-09-15 12:59:09 -07:00
Jeff Boruszak 57d410a717
Merge pull request #14621 from hashicorp/docs/search-desc-batch05
docs: Search Metadata Batch 05
2022-09-15 14:33:59 -05:00
Jeff Boruszak 7c2b8e4f5b
Apply suggestions from code review
Co-authored-by: trujillo-adam <47586768+trujillo-adam@users.noreply.github.com>
2022-09-15 14:33:39 -05:00
Jeff Boruszak bd39e1b25c
Merge pull request #14596 from hashicorp/docs/search-desc-batch04
docs: Search Metadata Batch 04
2022-09-15 14:30:09 -05:00
Jeff Boruszak 72e53c7698
Apply suggestions from code review
Co-authored-by: Jared Kirschner <85913323+jkirschner-hashicorp@users.noreply.github.com>
Co-authored-by: Luke Kysow <1034429+lkysow@users.noreply.github.com>
Co-authored-by: trujillo-adam <47586768+trujillo-adam@users.noreply.github.com>
2022-09-15 14:29:34 -05:00
Jeff Boruszak 78c53efc25
Merge pull request #14593 from hashicorp/docs/search-desc-batch03
docs: Search Metadata Batch 03
2022-09-15 13:59:18 -05:00
Jeff Boruszak 2b171fc893
Apply suggestions from code review
Co-authored-by: Jared Kirschner <85913323+jkirschner-hashicorp@users.noreply.github.com>
2022-09-15 13:58:47 -05:00