Commit Graph

13485 Commits

Author SHA1 Message Date
R.B. Boyer 3357a14339
server: ensure that central service config flattening properly resets the state each time (#10245)
The prior solution to call reply.Reset() aged poorly since newer fields
were added to the reply, but not added to Reset() leading serial
blocking query loops on the server to blend replies.

This could manifest as a service-defaults protocol change from
default=>http not reverting back to default after the config entry
reponsible was deleted.

Backport of #10239 to 1.9.x
2021-05-14 13:20:49 -05:00
R.B. Boyer 89180eb281
agent: ensure we hash the non-deprecated upstream fields on ServiceConfigRequest (#10240) (#10244)
Backport of #10240 to 1.9.x
2021-05-14 10:49:18 -05:00
Freddy 235118c44d Add changelog entry for network area timeout updates (#10241) 2021-05-13 21:06:15 +00:00
R.B. Boyer a179607457
[1.9.x] connect: update supported envoy versions to 1.16.4, 1.15.5, 1.14.6, and 1.13.7 (#10232)
manual backport of #10231 to 1.9.x
2021-05-12 14:26:56 -05:00
Daniel Nephin ff6d4c75b4
Merge pull request #10218 from hashicorp/dnephin/backport-local-agent-fix
[1.9.x] agent/local: do not persist the agent or user token
2021-05-12 13:19:29 -04:00
Kenia fd255c48d6 ui: Add conditionals to Lock Session list items (#10121)
* Add conditionals to Lock Session list items

* Add changelog

* Show ID in details if there is a name to go in title

* Add copy-button if ID is in the title

* Update TTL conditional

* Update .changelog/10121.txt

Co-authored-by: John Cowen <johncowen@users.noreply.github.com>

Co-authored-by: John Cowen <johncowen@users.noreply.github.com>
2021-05-11 15:40:50 +00:00
Daniel Nephin 1aa15c7c61 agent/local: only fallback to agent token for deletes
Fallback to the default user token for synching registrations.
2021-05-10 16:04:05 -04:00
Daniel Nephin fb10c229e2 Add changelog 2021-05-10 16:03:51 -04:00
Daniel Nephin 3dc91798c6 agent/local: do not persist the agent tokens
Only default to the user token and agent token for the sync. Change the
exported methods to only return the stored tokens associated with a
specific check or service.
2021-05-10 16:03:30 -04:00
John Cowen b5eaabc0fb ui: Fix nspace spacing issue (#10157)
This fixes the spacing bug in nspaces only by only showing Description if the namespace has one, and removing the extra 2 pixel margin of dds for when dts aren't rendered/don't exist.
2021-05-10 10:20:13 +00:00
John Cowen 89aa58da15 ui: Adds ability to show a 'partial' list in list-collections (#10174)
* ui: Add support for showing partial lists in ListCollection

* Add CSS for partial 'View more' button, and move all CSS to /components

* Enable partial view for intention permissions
2021-05-07 15:55:37 +00:00
John Cowen 14fbeca616 ui: [BUGFIX] De-duplicate Tag rendering (#10186)
* Add some tests for duplicated and non-duplicated tags

* Ensure tags get de-duped and add docs

* Update docs to include info on the recursive-ness
2021-05-07 11:08:18 +00:00
Daniel Nephin 21ae726430
Merge pull request #10196 from hashicorp/backport-ci-changes
[1.9.x] Backport CI changes
2021-05-06 16:01:48 -04:00
Daniel Nephin cd55f89f84 Merge pull request #10189 from hashicorp/dnephin/http-api-health-query-meta
http: set consistency header properly for health endpoint
2021-05-06 18:05:50 +00:00
Daniel Nephin 6858a8caf5 ci: add a verify CI job to ensure CI checks are run (#10179)
This workflow will be added as a branch protection rule in github.
2021-05-06 12:33:43 -04:00
Daniel Nephin a43731fc32 ci: allow cherry-picking a manual backport to other release branches
If an automatic backport fails to more than one release branch we need
to crate a PR to backport it. So far we've had to create a backport PR
for each target release branch.

With this change, we may be able to create only a single PR, and then
run the backport automation to cherry-pick it into other release
branches.

The idea is that if a change introduced in version n-1 caused a
conflict, and there are no other changes, then the backport automation
should be able to use the same commit for version n-2 and n-3.
2021-05-06 12:32:58 -04:00
John Cowen dd586af4ef ui: Remove extra nspace value from service upstreams (#10152)
* ui: Remove extra nspace value from service upstreams
2021-05-04 16:45:31 +00:00
John Cowen 1d81d707dd ui: Adds CRD popover 'informed action' for intentions managed by CRDs (#10100)
* ui: Adds CRD popover 'informed action' for intentions add via CRDs
2021-05-04 16:24:35 +00:00
John Cowen 18e1267220
ui: Adds human formatting to nanosecond based session durations (#10062) (#10141)
* ui: Adds human formatting to nanosecond based session durations
2021-05-04 14:01:41 +01:00
Luke Kysow 6675af4b0a Give descriptive error if auth method not found (#10163)
* Give descriptive error if auth method not found

Previously during a `consul login -method=blah`, if the auth method was not found, the
error returned would be "ACL not found". This is potentially confusing
because there may be many different ACLs involved in a login: the ACL of
the Consul client, perhaps the binding rule or the auth method.

Now the error will be "auth method blah not found", which is much easier
to debug.
2021-05-03 20:39:55 +00:00
R.B. Boyer c20f3a0695 dev: adding a make target to regenerate envoy golden files (#10158) 2021-04-30 16:27:54 +00:00
R.B. Boyer ee30a54c7f
[1.9.x] connect: update supported envoy versions to 1.16.3, 1.15.4, 1.14.7, 1.13.7 (#10105) 2021-04-29 15:49:16 -05:00
John Cowen c6905c0b39 ui: Add a max height and scroll to the intention perm header lists (#10128) 2021-04-29 09:42:21 +00:00
Jamie Finnigan 1c8164f5df remove Codecov from CI runs (#10145) 2021-04-28 22:09:58 +00:00
Matt Keeler aa2099d12a Add prometheus guage definitions for replication metrics. (#10109) 2021-04-23 21:06:21 +00:00
Paul Banks 7a682b33af
Fix panic bug in snapshot inspect (#10091) (#10108)
* Fix panic bug in snapshot inspect

* Add changelog entry

* Update .changelog/10091.txt

* Undo bad GitHub UI merge

* Undo bad GitHub UI merge
2021-04-23 21:29:06 +01:00
Matt Keeler 7093e48f97
[Backport/1.9.x] Backport #10073 (#10104)
* Merge pull request #10094 from hashicorp/update-fingerprint

updating fingerprint

* Add replication metrics (#10073)

Co-authored-by: Daniel Nephin <dnephin@hashicorp.com>
2021-04-23 16:17:09 -04:00
Matt Keeler 5eb34113dd Update changelog and add telemetry docs (#10107) 2021-04-23 20:05:38 +00:00
R.B. Boyer 962563f31b test: switch envoy integration tests to use pkill instead of ps+grep+awk+kill (#10097) 2021-04-23 18:24:10 +00:00
John Cowen 4827df9f4c ui: Vertically stack methods listing in the L7 intentions form (#10052)
* ui: Vertically stack methods listing in the L7 intentions form
2021-04-22 11:24:17 +00:00
R.B. Boyer c41074a344
Merge pull request #10079 from hashicorp/1.9.x-ca-force-skip-xc
[1.9.x] connect/ca: Allow ForceWithoutCrossSigning for all providers
2021-04-21 13:07:39 -05:00
Kyle Havlovitz f65b9ac4cf Merge pull request #9672 from hashicorp/ca-force-skip-xc
connect/ca: Allow ForceWithoutCrossSigning for all providers
2021-04-20 15:30:37 -05:00
Sam Salisbury ab82cf8c65 Merge pull request #10065 from hashicorp/ci/update-ssh-rw-key
ci: rotate the read/write SSH key fingerprint
2021-04-19 17:18:38 +00:00
hashicorp-ci 3821d6702a Putting source back into Dev Mode 2021-04-15 22:10:01 +00:00
hashicorp-ci 3c1c22679e
Release v1.9.5 2021-04-15 18:15:03 +00:00
hashicorp-ci 7398f36168
update bindata_assetfs.go 2021-04-15 18:15:02 +00:00
R.B. Boyer 8980514c46
update changelog for 1.9.5 (#10042) 2021-04-15 12:03:06 -05:00
Kent 'picat' Gruber 2e84559d4b Merge pull request #10030 from hashicorp/fix-ent-audit-log-bypass
Add synthetic enterprise entry for CVE-2021-28156
2021-04-15 16:14:39 +00:00
Kent 'picat' Gruber dc937c9532 Merge pull request #10023 from hashicorp/fix-raw-kv-xss
Add content type headers to raw KV responses
2021-04-15 13:44:02 +00:00
Daniel Nephin 04d3575f11 Merge pull request #10025 from hashicorp/dnephin/fix-snapshot-auth-methods
snapshot: fix saving of auth methods
2021-04-14 21:19:24 +00:00
R.B. Boyer 0e7ab74f17
[1.9.x] mod: bump to github.com/hashicorp/mdns v1.0.4 (#10019)
backport of #10018 to 1.9.x
2021-04-14 14:42:10 -05:00
Daniel Nephin 01998aeaf0 Merge pull request #10014 from hashicorp/dnephin/changelog
Add changelog for enterprise change
2021-04-14 18:10:15 +00:00
Matt Keeler 72aee1d8c4 Move static token resolution into the ACLResolver (#10013) 2021-04-14 16:40:12 +00:00
Mike Wickett b8c7982a00 Merge pull request #10008 from hashicorp/mw.update-homepage-links
website: update why hashicorp links
2021-04-14 14:59:05 +00:00
ketzacoatl dcb3679401 add consul-haskell to libraries-and-sdks documentation (#9982)
See also https://github.com/alphaHeavy/consul-haskell/issues/40.
2021-04-14 01:07:10 +00:00
Kendall Strautman f1e78729b7 fix(website): docs link text color (#10001) 2021-04-12 17:48:22 +00:00
Freddy 7b88faca15 Merge pull request #9042 from lawliet89/tg-rewrite 2021-04-08 12:59:22 -06:00
Paul Banks bb985743e9 cache: Fix bug where connection errors can cause early cache expiry (#9979)
Fixes a cache bug where TTL is not updated while a value isn't changing or cache entry is returning fetch errors.
2021-04-08 10:11:46 +00:00
Paul Banks 5587296464 Merge pull request #9977 from hashicorp/grpc-tuning
streaming: Grpc tuning
2021-04-08 10:10:22 +00:00
Paul Banks 78c1528c48 cache: fix bug where TTLs were ignored leading to leaked memory in client agents (#9978)
* Fix bug in cache where TTLs are effectively ignored

This mostly affects streaming since streaming will immediately return from Fetch calls when the state is Closed on eviction which causes the race condition every time.

However this also affects all other cache types if the fetch call happens to return between the eviction and then next time around the Get loop by any client.

There is a separate bug that allows cache items to be evicted even when there are active clients which is the trigger here.

* Add changelog entry

* Update .changelog/9978.txt
2021-04-08 10:09:29 +00:00