Commit Graph

21363 Commits

Author SHA1 Message Date
Nathan Coleman 14e409ef54
Configure linter to forbid use of html/template (#21307)
* Configure linter to forbid use of html/template

We should never use html/template due to the performance penalty and the fact that we are highly unlikely to ever be generating HTML templates.

* Link to PR explaining the format of forbidigo.forbid
2024-06-11 16:17:12 -04:00
Jeff Boruszak 963cee200b
docs: External Services CRD (#21264)
* Initial reference page structure

* Most specifications

* Reference page details complete

* Enterprise alerts

* Overview page

* Overview page

* TGW note

* fixes

* Apply suggestions from code review

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>

* Update website/content/docs/k8s/deployment-configurations/external-service.mdx

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>

* Update website/content/docs/connect/config-entries/registration.mdx

* Update website/content/docs/connect/config-entries/registration.mdx

---------

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>
2024-06-11 12:58:12 -07:00
Jeff Boruszak 970353419c
docs: File System Certificates (#21259)
* Reference page updates

* Inline certificate config entry updates

* API Gateway configuration page

* K8s page updates

* Apply suggestions from code review

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>
Co-authored-by: danielehc <40759828+danielehc@users.noreply.github.com>

* Daniele's suggestions

* Encrypt VMs suggestions

* Apply suggestions from code review

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>

---------

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>
Co-authored-by: danielehc <40759828+danielehc@users.noreply.github.com>
2024-06-11 12:58:01 -07:00
Nathan Coleman 04d95d2eda
Use text/template instead of html/template for ACL template policy generation (#21303) 2024-06-11 16:35:41 +00:00
Michael Zalimeni 7ac9b1f985
ci: fix a few missed Envoy version changes in latest bump (#21300) 2024-06-11 14:44:52 +00:00
Michael Zalimeni 3ee6816d8d
ci: fix nightly cron schedules to run once (#21296)
Several of our nightly cron jobs are actually running repeatedly
back-to-back during the designated hour. Change the cron to run them
once as intended.
2024-06-10 18:28:54 -04:00
Dan Stough fe2f8f1c72
docs: remove multiport docs, add v1dns flag (#21278)
* docs: remove multiport docs, add v1dns flag

* v2 catalog notice + redirects

* redirect fixes

* Update website/content/docs/k8s/helm.mdx

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>

---------

Co-authored-by: boruszak <jeffrey.boruszak@hashicorp.com>
Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>
2024-06-10 16:21:58 -04:00
Will Jordan 3c25956f61
Fix broken link in wal-logstore/index.mdx (#21286)
Content was moved in #21099.
2024-06-10 11:41:48 -07:00
sarahalsmiller 2cdc387bd3
Bump Envoy Versions (#21277)
* update envoy versions

* add changelog

* update nightly integrations
2024-06-10 15:29:26 +00:00
Michael Zalimeni ffa7aff207
[NET-8971] docs: update LTS Envoy versions to include 1.29.4 (#21271)
docs: update LTS Envoy versions to include 1.29.4
2024-06-06 16:20:05 +00:00
Dhia Ayachi 2631ec843a
update go version to 1.22.4 (#21265)
* update go version to 1.22.4

* add changelog
2024-06-06 10:46:05 -04:00
Michael Zalimeni 9e23fa7840
[NET-9445] chore: update submodule versions (#21263)
chore: update submodule versions

- Update submodule versions that were released
- Add missing replace directive to troubleshoot submodule
2024-06-05 13:31:43 -04:00
Deniz Onur Duzgun 68a7648d14
security: resolve incorrect type conversions (#21251)
* security: resolve incorrect type conversions

* add changelog

* fix more incorrect type conversions
2024-06-04 21:55:53 +00:00
Deniz Onur Duzgun cb7ae646da
docs: add a note for DNS resolver recommendations (#21250)
* add a warning to DNS resolver configurations

* Update website/content/docs/services/discovery/dns-configuration.mdx

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>

* Update website/content/docs/services/discovery/dns-configuration.mdx

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>

* add references todo

---------

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>
Co-authored-by: Blake Covarrubias <blake@covarrubi.as>
2024-06-04 17:30:53 -04:00
Michael Zalimeni d3ad840d8c
[NET-8953] docs: add backport policy section to CONTRIBUTING (#21252)
docs: add backport policy section to CONTRIBUTING

Add detail about Consul's backport policy w.r.t. LTS/CE.

Also update label docs and remove defunct redirect .md files.
2024-06-04 12:46:20 -04:00
Michael Zalimeni 4edf369313
[NET-8953] ci: disable Ent-only nightly tests on CE (#21242)
ci: disable Ent-only nightly tests on CE
2024-06-03 19:09:59 +00:00
John Murret 6450b6a3b4
update TestHTTPHandlers_AgentMetrics_LeaderShipMetrics to use 3 servers instead of 2 to allow quorum when leadership flails. (#21239)
* update TestHTTPHandlers_AgentMetrics_LeaderShipMetrics to use 3 servers instead of 2 to allow quorom when leadership flails.

* properly sequence defers
2024-06-03 12:10:38 -06:00
Michael Zalimeni 544ce7b9d4
Restore 1.16 backports until 1.19 is released (#21240) 2024-05-30 20:58:06 +00:00
John Murret 11bcf521ae
dns v2 - both empty string and default should be allowed for namespace and partition in CE (#21230)
* dns v2 - both empty string and default should be allowed for namespace and partition in Ce

* add changelog

* use default partition constant

* use constants in validation.

---------

Co-authored-by: Michael Zalimeni <michael.zalimeni@hashicorp.com>
2024-05-28 16:20:59 -06:00
Nathan Coleman ad9ada883c
[NET-9510] Document known OpenShift issue for consul-k8s 1.2.x, 1.3.x and 1.4.x (#21224)
* Add OpenShift networking issue to Known Issues for 1.2.x, 1.3.x and 1.4.x

* Update website/content/docs/release-notes/consul-k8s/v1_2_x.mdx
2024-05-28 15:59:04 -04:00
Michael Zalimeni 9fb50fa769
Fix Consul versions in nightly 1.19 int tests (#21226)
We should be testing against n-2 + LTS, so we need to replace 1.16 with 1.18.
2024-05-28 12:55:52 -04:00
Jeff Boruszak 5f129ad5b2
docs: Fix heading errors in security models (#21227)
fixes
2024-05-28 09:54:38 -07:00
Michael Zalimeni c1a7221406
[NET-9445] Re-enable 1.18 backports during 1.19 RC (#21223)
Re-enable 1.18 backports during 1.19 RC

Follow-up to #21219.
2024-05-28 15:43:36 +00:00
Dan Stough 54a545d0db
build: prepare for 1.20.0 dev (#21219) 2024-05-24 22:00:14 -04:00
Dan Stough f3d1a8bc78
build: set go-build reproducible to false (#21218) 2024-05-24 15:32:59 -04:00
Dan Stough f70fcab2ab
build: bandaid for action-go-build clean flag (#21217) 2024-05-24 18:54:54 +00:00
Michael Zalimeni d2b107ffe5
ci: update BPA to disable inactive CE backports (#21214)
Follow-up to #21094, which temporarily downgraded BPA to allow for old
CE backport labels to be used during Consul's most recent patch release.

Upgrading fully enforces the version manifest and prevents accidental
backports to no-longer-active CE versions.
2024-05-24 13:52:38 -04:00
Dan Stough cf1c030043
feat: update supported envoy to 1.29 (#21142) 2024-05-24 13:26:07 -04:00
Krastin Krastev 912c5f5a3c
docs: relocate Consul capacity planning page from waf/ to docs/ (#21088)
* moving tutorials/waf/capacity-planning to docs/

* Apply suggestions from code review

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>

* add metrics bullet links

---------

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>
2024-05-24 15:29:22 +03:00
Deniz Onur Duzgun 574f53d176
security: enable go stdlib scans (#20905)
* security: enable go stdlib scans

* security: enable go stdlib binary scan

* Fix formating
2024-05-23 13:40:59 -04:00
Blake Covarrubias 6f02144a14
docs: Fix spelling errors (#21204)
Fix spelling errors across docs site.
2024-05-22 22:36:57 +00:00
Ranjandas b2a618ba8a
Fixes annotation and introduce tabs for static-client spec (#21199)
The upstream annotation is not required for external services defined
using the ServiceDefaults Destinations.
2024-05-23 07:27:26 +10:00
NicoletaPopoviciu d5e92da8af
Update Vault/Nomad versions. (#21193)
* Update Vault/Nomad versions.

* Update test-integrations.yml

amend vault versions

* add nomad binary path to GITHUB_PATH

---------

Co-authored-by: Dhia Ayachi <dhia@hashicorp.com>
2024-05-22 14:43:04 -04:00
R.B. Boyer 50b26aa56a
deployer: remove catalog/mesh v2 support (#21194)
- Low level plumbing for resources is still retained for now.
- Retain "Workload" terminology over "Service".
- Revert "Destination" terminology back to "Upstream".
- Remove TPROXY support as it only worked for v2.
2024-05-21 14:52:19 -05:00
Dhia Ayachi 6d088db52b
set go toolchain to go1.22.3 (#21195) 2024-05-21 14:38:48 -04:00
Sujata Roy 943f0072c0
Doc added for Version specific upgrade Consul on Kubernetes components (#21101)
* Added upgrade instruction - NET-4882

* Update website/content/docs/k8s/upgrade/index.mdx

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>

* Update index.mdx

Fixed the link of grpc ports

---------

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>
2024-05-20 16:05:32 -07:00
Jeff Boruszak 1c0f6e5597
docs: Well Architected Framework content migration (#21099)
* Migration

* move page
2024-05-20 14:04:10 -07:00
Dan Stough f12ba3f2a5
chore: fix PR Labeler config (#21141)
chore: fix PR labeler config format
2024-05-20 16:25:59 -04:00
Jeff Boruszak b9e84375a4
docs: FIPS certification (#21131)
* FIPS section

* small updates

* remove month

* backticks
2024-05-20 08:42:58 -07:00
Dhia Ayachi 1f4caaedf2
upgrade deep-copy version, upgrade go to 1.22.3 (#21113)
* upgrade deep-copy version, upgrade go to 1.22.3

* add changelog
2024-05-16 13:40:15 -04:00
John Murret 9b9c836915
latest ui files in main (#21119) 2024-05-15 23:52:11 +00:00
Becki Lee 3c24c4918d
docs: Fix two small typos in "What is Consul?" introduction (#21110)
docs: Fix two typos in Consul introduction
2024-05-15 18:40:32 +00:00
wangxinyi7 8c54eae705
Xw/update changelog main (#21108)
* update changelog
2024-05-15 17:19:29 +00:00
John Murret 04940e2c78
additional changes to ensure sameness groups without DefaultForFailover can be used for DNS (#21107) 2024-05-14 15:33:34 -06:00
Dan Stough 94791f76b5
build: update gha to latest approved tsccr (#21061)
* build: update gha to latest approved tsccr

* chore: update hashicorp gha versions

* fix: update upload artifact workload to have unique ids
2024-05-14 15:49:03 -04:00
John Murret 9b2c1be053
NET-5879 - expose sameness group param on service health endpoint and move sameness group health fallback logic into HealthService RPC layer (#21096)
* NET-5879 - move the filter for non-passing to occur in the health RPC layer rather than the callers of the RPC

* fix import of slices

* NET-5879 - expose sameness group param on service health endpoint and move sameness group health fallback logic into HealthService RPC layer

* fixing deepcopy

* fix license headers
2024-05-14 13:32:49 +00:00
John Murret a975b04302
NET-5879 - move the filter for non-passing to occur in the health RPC layer rather than the callers of the RPC (#21098)
* NET-5879 - move the filter for non-passing to occur in the health RPC layer rather than the callers of the RPC

* fix import of slices

* fix test
2024-05-14 07:05:54 -06:00
Blake Covarrubias 48df56f7d2
docs: Add fault injection to Envoy extensions list (#21087)
Add fault injection to Envoy extensions list
2024-05-13 16:38:36 -07:00
Blake Covarrubias d0ebc85765
docs: Fix docs for `-ui-content-path` CLI flag (#21095)
Fix the rendering of the documentation for the `-ui-content-path` CLI
flag.
2024-05-13 15:05:23 -07:00
Michael Zalimeni d312d0461b
ci: temporarily re-enable retired CE backport labels (#21094)
To ease migration during this week's patch releases, temporarily use the
more permissive version of BPA to allow old + new backport labels to be
used simultaneously.
2024-05-13 18:01:16 +00:00