1502547e38
Revert "Merge pull request #10588 from hashicorp/dnephin/config-fix-ports-grpc"
...
This reverts commit 74fb650b6b58bd817336
2021-09-29 12:28:41 -04:00
c321879d1e
Revert "Merge pull request #10618 from hashicorp/dnephin/docs-add-deprecation-version-grpc-port"
...
This reverts commit 81bb5f33eb20feb42d3a
2021-09-29 12:14:32 -04:00
8d1378cc1d
Merge pull request #10988 from hashicorp/dnephin/acl-legacy-remove-config
...
acl: isolate deprecated config and warn when they are used
2021-09-29 11:40:14 -04:00
6b33e3bfd7
Merge pull request #9456 from hashicorp/dnephin/config-deprecation
...
config: Use DeprecatedConfig struct for deprecated config fields
2021-09-29 11:37:40 -04:00
dfc74f56f5
Add TOC to helm reference ( #11144 )
2021-09-28 16:25:40 -07:00
410d57879c
Fix broken link ( #11171 )
2021-09-28 14:04:33 -07:00
5c37819d09
Cleanup unnecessary normalizing method ( #11169 )
2021-09-28 15:31:12 -04:00
bf2a3f6e79
Merge pull request #11084 from krastin/krastin-autopilot-loggingtypo
...
Fix a tiny typo in logging in autopilot.go
2021-09-28 15:11:11 -04:00
d9e78cd3e8
Merge pull request #11167 from hashicorp/add-cross-dc-comm-model-visual
...
Improve mesh gateway diagram
2021-09-28 13:19:18 -04:00
98f53e913f
Improve mesh gateway diagram
...
Diagram now shows all possible cross-DC communication models supported by mesh
gateways for both the control and data planes.
2021-09-28 09:56:05 -07:00
e3248c20c9
agent: Clean up unused built-in proxy config ( #11165 )
2021-09-28 11:29:10 -04:00
981ef464d6
acl: update GetPolicyByName method implementation ( #11055 )
2021-09-28 10:46:27 -04:00
9ef6490533
Merge pull request #10702 from jkirschner-hashicorp/network-segments-docs-enhancements
...
Network segments docs enhancements
2021-09-28 10:24:05 -04:00
020e2692da
Merge pull request #10725 from hashicorp/banks-patch-3
...
Call out the incompatibility of wildcards and L7 permissions
2021-09-28 13:51:41 +01:00
10b52a284b
docs: consul-k8s cli install, add `bin/` to source path ( #11146 )
...
Add `bin/` to path from which you move `consul-k8s` to `/usr/local/bin/consul-k8s`
2021-09-27 22:11:54 -07:00
56d0ba4743
changelog updates for 1.10.3, 1.9.10, and 1.8.16 ( #11160 )
2021-09-27 15:36:14 -05:00
47cef4ea4d
Update alert banner for HashiConf Global 2021 ( #11154 )
2021-09-27 14:25:25 -04:00
7a5f335b7c
ui: Adds Flight icons to our icon set ( #11097 )
...
* ui: Adds Flight icons to our icon set
This commit doesn't actually add anything to the UI, rather just makes
the flight icons available for use.
2021-09-27 18:26:42 +01:00
5e34d89f7f
ui: Hide create buttons for policies/roles/namespaces with readonly access ( #10914 )
...
This PR adds a check to policy, role and namespace list pages to make sure the user has can write those things before offering to create them via a button. (The create page/form would then be a read-only form)
2021-09-27 17:20:44 +01:00
bce724baf1
ui: Don't show the CRD menu for read-only intentions ( #11149 )
...
* ui: Don't show the CRD menu for read-only intentions
The UI bug here manifests itself only when a user/token is configured to have read-only access to intentions. Instead of only letting folks click to see a read only page of the intention, we would show an additional message saying that the intention was read-only due to it being 'Managed by [a kubernetes] CRD'. Whilst the intention was still read only, this extra message was still confusing for users.
This PR fixes up the conditional logic and further moves the logic to use ember-can - looking at the history of the files in question, this bug snuck itself in partly due to it being 'permission-y type stuff' previous to using ember-can and when something being editable or not was nothing to do with ACLs. Then we moved to start using ember-can without completely realising what IsEditable previously meant. So overall the code here is a tiny bit clearer/cleaner by adding a proper can view CRD intention instead of overloading the idea of 'editability'.
2021-09-27 17:19:32 +01:00
ce21c5109b
ui: Adds a set of basic unit tests for abilities ( #11132 )
2021-09-27 16:46:26 +01:00
581357c32a
ui: Remove info panel from the nspace menu when editing nspaces ( #11130 )
...
* ui: Remove info panel form the nspace menu when editing nspaces
2021-09-24 18:05:22 +01:00
01c9dc5728
ui: Add initial partition support to intentions ( #11129 )
...
* ui: Add initial partition support to intentions
2021-09-24 17:31:58 +01:00
94d3849472
docs: Decode K8s secrets with base64decode function
...
Use kubectl's base64decode template function (added in K8s 1.11) to
decode values in Secrets. Removes external call to `base64` utility on
the host system.
2021-09-24 08:59:34 -07:00
eb00b45ef4
ui: Use last-child for selecting the desired nspace instead of nth-child ( #11127 )
2021-09-24 13:04:41 +01:00
e59b8ffc17
ui: Remove refresh-route action for session invalidation ( #11105 )
...
* ui: Move action to the correct button for session invalidation
* Remove refresh-route completely, its not needed
2021-09-24 12:10:10 +01:00
b22684540e
Merge pull request #11028 from hashicorp/docs-k8s-cli-alpha
...
adding k8s-cli alpha docs
2021-09-23 16:35:56 -07:00
52f82f2831
adding timeout flags, wait flag, and updated build procedure
2021-09-23 16:07:56 -07:00
e664dbc352
Refactor table index acl phase 2 ( #11133 )
...
* extract common methods from oss and ent
* remove unreachable code
* add missing normalize for binding rules
* fix oss to use Query
2021-09-23 15:26:09 -04:00
e8ac5fd90b
config: Move ACLEnableKeyListPolicy to DeprecatedConfig
2021-09-23 15:15:00 -04:00
5c40b717ed
config: move acl_ttl to DeprecatedConfig
2021-09-23 15:14:59 -04:00
977f6d8888
config: move acl_{default,down}_policy to DeprecatedConfig
2021-09-23 15:14:59 -04:00
5eafcea4d4
config: Deprecate EnableACLReplication
...
replaced by ACL.TokenReplication
2021-09-23 15:14:59 -04:00
5dc16180ad
config: move ACL master token and replication to DeprecatedConfig
2021-09-23 15:14:59 -04:00
978699943f
docs: Fix grammatical errors in glossary ( #10751 )
2021-09-23 08:36:52 -07:00
1ecec84fd7
Merge pull request #10903 from hashicorp/feature/ingress-sds
...
Add Support to for providing TLS certificates for Ingress listeners from an SDS source
2021-09-23 16:19:05 +01:00
5904e4ac79
Refactor table index ( #11131 )
...
* convert tableIndex to use the new pattern
* make `indexFromString` available for oss as well
* refactor `indexUpdateMaxTxn`
2021-09-23 11:06:23 -04:00
7b4cbe3143
Final readability tweaks from review
2021-09-23 10:17:12 +01:00
e0efb420f7
Add Envoy integration test for split-route SDS case
2021-09-23 10:17:03 +01:00
ab27214a10
Minor improvements to SDS server from review
2021-09-23 10:13:41 +01:00
70bc89b7f4
Fix subtle loop bug and add test
2021-09-23 10:13:41 +01:00
07f81991df
Refactor SDS validation to make it more contained and readable
2021-09-23 10:13:19 +01:00
5cfd030d03
Refactor Ingress-specific lister code to separate file
2021-09-23 10:13:19 +01:00
136928a90f
Minor PR typo and cleanup fixes
2021-09-23 10:13:19 +01:00
20d0bf81f7
Revert abandonned changes to proxycfg for Ent test consistency
2021-09-23 10:13:19 +01:00
a9119e36a5
Fix merge conflict in xds tests
2021-09-23 10:12:37 +01:00
2b755d7b3f
Allow skipping v2 compat tests for SDS as it's only the SDS server integration that doesn't support v2
2021-09-23 10:12:37 +01:00
e01c3585a5
Fix integration tests in CI - serve SDS certs from the Docker image not a mounted path
2021-09-23 10:12:37 +01:00
843079f33a
Fix integration test for older Envoy versions
2021-09-23 10:12:37 +01:00
2281d883b9
Fix some more Enterprise Normalization issues affecting tests
2021-09-23 10:12:37 +01:00
Daniel Nephin
Luke Kysow
Chris S. Kim
Jared Kirschner
Jared Kirschner
Bisakh
Paul Banks
David Yu
R.B. Boyer
Noel Quiles
John Cowen
Blake Covarrubias
trujillo-adam
trujillo-adam
Dhia Ayachi
CJ
Paul Banks