Consul is a distributed, highly available, and data center aware solution to connect and configure applications across dynamic, distributed infrastructure.
 
 
 
 
 
 
Go to file
R.B. Boyer 6a39b47448 Support Incremental xDS mode (#9855)
This adds support for the Incremental xDS protocol when using xDS v3. This is best reviewed commit-by-commit and will not be squashed when merged.

Union of all commit messages follows to give an overarching summary:

xds: exclusively support incremental xDS when using xDS v3

Attempts to use SoTW via v3 will fail, much like attempts to use incremental via v2 will fail.
Work around a strange older envoy behavior involving empty CDS responses over incremental xDS.
xds: various cleanups and refactors that don't strictly concern the addition of incremental xDS support

Dissolve the connectionInfo struct in favor of per-connection ResourceGenerators instead.
Do a better job of ensuring the xds code uses a well configured logger that accurately describes the connected client.
xds: pull out checkStreamACLs method in advance of a later commit

xds: rewrite SoTW xDS protocol tests to use protobufs rather than hand-rolled json strings

In the test we very lightly reuse some of the more boring protobuf construction helper code that is also technically under test. The important thing of the protocol tests is testing the protocol. The actual inputs and outputs are largely already handled by the xds golden output tests now so these protocol tests don't have to do double-duty.

This also updates the SoTW protocol test to exclusively use xDS v2 which is the only variant of SoTW that will be supported in Consul 1.10.

xds: default xds.Server.AuthCheckFrequency at use-time instead of construction-time
2021-04-29 18:54:53 +00:00
.changelog Support Incremental xDS mode (#9855) 2021-04-29 18:54:53 +00:00
.circleci remove Codecov from CI runs (#10145) 2021-04-28 22:09:55 +00:00
.github fix: remove period to fix broken link (#9912) 2021-03-22 10:47:10 -04:00
acl acl: remove t.Parallel 2020-11-17 12:37:02 -05:00
agent Support Incremental xDS mode (#9855) 2021-04-29 18:54:53 +00:00
api Rename "cluster" config entry to "mesh" (#10127) 2021-04-28 22:14:03 +00:00
bench
build-support connect: update centralized upstreams representation in service-defaults (#10015) 2021-04-15 14:21:44 -05:00
command Support Incremental xDS mode (#9855) 2021-04-29 18:54:53 +00:00
connect Allow passing ALPN next protocols down to connect services. Fixes #4466. (#9920) 2021-03-26 11:34:47 +00:00
contributing contributing: add a quick doc on adding new streaming topics. 2021-04-01 17:19:59 -04:00
demo
grafana add readme outlining how to edit and publish 2021-01-12 14:47:11 -08:00
internal state: add a regression test for state store schema 2021-01-15 18:49:55 -05:00
ipaddr
lib lib/retry: allow jitter to exceed max wait. 2021-04-07 18:33:11 -04:00
logging Support Incremental xDS mode (#9855) 2021-04-29 18:54:53 +00:00
proto connect: update centralized upstreams representation in service-defaults (#10015) 2021-04-15 14:21:44 -05:00
sdk Implement traffic redirection exclusion based on proxy config and user-provided values (#10134) 2021-04-29 16:24:15 +00:00
sentinel
service_os
snapshot testing: skip slow tests with -short 2020-12-07 13:42:55 -05:00
terraform
test Support Incremental xDS mode (#9855) 2021-04-29 18:54:53 +00:00
testrpc add testrpc.WaitForServiceIntentions to help unflake tests that manipulate intentions (#8867) 2020-10-07 14:20:25 -05:00
tlsutil introduce certopts (#9606) 2021-03-22 10:16:41 +01:00
types Move RPC router from Client/Server and into BaseDeps (#8559) 2020-08-27 11:23:52 -04:00
ui ui: Add a max height and scroll to the intention perm header lists (#10128) 2021-04-29 09:42:17 +00:00
vendor mod: bump to github.com/hashicorp/mdns v1.0.4 (#10018) 2021-04-14 14:17:52 -05:00
version Putting source back into Dev Mode 2021-04-16 02:49:46 +00:00
website Improve doc: add note about address validation (#10123) 2021-04-29 17:39:09 +00:00
.dockerignore
.gitignore website: remove netlify artifacts and port missing redirects over to new format (#9601) 2021-01-21 10:16:17 -05:00
.golangci.yml xds: remove deprecated usages of xDS (#9602) 2021-02-22 15:00:15 -06:00
.hashibot.hcl
CHANGELOG.md Putting source back into Dev Mode 2021-04-16 02:49:46 +00:00
GNUmakefile connect: connect CA Roots in the primary datacenter should use a SigningKeyID derived from their local intermediate (#9428) 2021-02-08 13:18:51 -06:00
INTERNALS.md
LICENSE
NOTICE.md
README.md Added docs link to Learn tutorial for Kind. (#8610) 2020-09-11 17:03:35 -04:00
Vagrantfile
codecov.yml Update all the references in CI and makefile to the bindata file location 2020-10-01 16:19:10 +01:00
go.mod Support Incremental xDS mode (#9855) 2021-04-29 18:54:53 +00:00
go.sum mod: bump to github.com/hashicorp/mdns v1.0.4 (#10018) 2021-04-14 14:17:52 -05:00
main.go
main_test.go
package-lock.json

README.md

Consul CircleCI Discuss

Consul is a distributed, highly available, and data center aware solution to connect and configure applications across dynamic, distributed infrastructure.

Consul provides several key features:

  • Multi-Datacenter - Consul is built to be datacenter aware, and can support any number of regions without complex configuration.

  • Service Mesh/Service Segmentation - Consul Connect enables secure service-to-service communication with automatic TLS encryption and identity-based authorization. Applications can use sidecar proxies in a service mesh configuration to establish TLS connections for inbound and outbound connections without being aware of Connect at all.

  • Service Discovery - Consul makes it simple for services to register themselves and to discover other services via a DNS or HTTP interface. External services such as SaaS providers can be registered as well.

  • Health Checking - Health Checking enables Consul to quickly alert operators about any issues in a cluster. The integration with service discovery prevents routing traffic to unhealthy hosts and enables service level circuit breakers.

  • Key/Value Storage - A flexible key/value store enables storing dynamic configuration, feature flagging, coordination, leader election and more. The simple HTTP API makes it easy to use anywhere.

Consul runs on Linux, Mac OS X, FreeBSD, Solaris, and Windows. A commercial version called Consul Enterprise is also available.

Please note: We take Consul's security and our users' trust very seriously. If you believe you have found a security issue in Consul, please responsibly disclose by contacting us at security@hashicorp.com.

Quick Start

A few quick start guides are available on the Consul website:

Documentation

Full, comprehensive documentation is available on the Consul website:

https://www.consul.io/docs

Contributing

Thank you for your interest in contributing! Please refer to CONTRIBUTING.md for guidance.