Commit Graph

21425 Commits

Author SHA1 Message Date
Michael Zalimeni a16bfc6a3c
ci: skip 1.18 nightly int tests on CE (#21349)
This version is no longer active in CE.
2024-06-18 15:08:42 -04:00
sarahalsmiller c18c911ac8
[Security] Close cross scripting vulnerability (#21342)
* close vulnerability

* add changelog
2024-06-17 13:54:37 -04:00
Deniz Onur Duzgun 7a19d2e7a4
security: fix AliasCheck panic (#21339)
* security: fix AliasCheck panic

* add changelog
2024-06-14 11:03:10 -04:00
Dan Stough 6302ef31fc
docs: known issue with v2dns SRV requests (#21331)
* docs: known issue with v2dns SRV requests

* Update website/content/docs/release-notes/consul/v1_19_x.mdx

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>

---------

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>
2024-06-14 10:47:43 -04:00
Michael Zalimeni 78715ef718
docs: simplify Envoy version support docs (#21295)
Consistently use `.x` to denote implicit support for Envoy minor
versions under a supported major version unless otherwise noted.

This will clarify for operators that we support new Envoy minor versions
without requiring a docs update on each new release, and will reduce the
maintenance burden for these docs going forward.
2024-06-13 16:10:59 -04:00
Dan Stough 45cb834185
docs: k8s updates for the 1.5.0 release (#21329) 2024-06-13 15:45:55 -04:00
Jeff Boruszak 895e7f86f3
docs: v1.19 corrections (#21324)
* release notes

* Usage pages fixes
2024-06-13 10:14:57 -07:00
Jeff Boruszak e9c983f361
docs: consul-k8s v1.5.0 release notes (#21320)
* consul-k8s 1.5.0 release notes

* Nav Entry

* Envoy version bumps

* Version updates/corrections

* external crd description update
2024-06-12 14:44:35 -07:00
Dan Stough 28c5eaf997
chore: update versions.hcl for 1.19.0 release (#21319) 2024-06-12 17:29:50 +00:00
Dan Stough e0ef346613
docs: update changelog.md for 1.19.0 (#21317) 2024-06-12 16:51:38 +00:00
Jeff Boruszak ed962e8b5e
docs: External CRD fast follow (#21313)
* ESM

* TGW note
2024-06-12 08:50:29 -07:00
Jeff Boruszak bba8dcba80
docs: Consul v1.19 Release Notes (#21279)
* Initial release notes

* Draft of release notes

* spacing fix

* Apply suggestions from code review

Co-authored-by: Aimee Ukasick <aimee.ukasick@hashicorp.com>

* Update website/content/docs/release-notes/consul/v1_19_x.mdx

---------

Co-authored-by: Aimee Ukasick <aimee.ukasick@hashicorp.com>
2024-06-11 20:25:18 +00:00
Nathan Coleman 14e409ef54
Configure linter to forbid use of html/template (#21307)
* Configure linter to forbid use of html/template

We should never use html/template due to the performance penalty and the fact that we are highly unlikely to ever be generating HTML templates.

* Link to PR explaining the format of forbidigo.forbid
2024-06-11 16:17:12 -04:00
Jeff Boruszak 963cee200b
docs: External Services CRD (#21264)
* Initial reference page structure

* Most specifications

* Reference page details complete

* Enterprise alerts

* Overview page

* Overview page

* TGW note

* fixes

* Apply suggestions from code review

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>

* Update website/content/docs/k8s/deployment-configurations/external-service.mdx

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>

* Update website/content/docs/connect/config-entries/registration.mdx

* Update website/content/docs/connect/config-entries/registration.mdx

---------

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>
2024-06-11 12:58:12 -07:00
Jeff Boruszak 970353419c
docs: File System Certificates (#21259)
* Reference page updates

* Inline certificate config entry updates

* API Gateway configuration page

* K8s page updates

* Apply suggestions from code review

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>
Co-authored-by: danielehc <40759828+danielehc@users.noreply.github.com>

* Daniele's suggestions

* Encrypt VMs suggestions

* Apply suggestions from code review

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>

---------

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>
Co-authored-by: danielehc <40759828+danielehc@users.noreply.github.com>
2024-06-11 12:58:01 -07:00
Nathan Coleman 04d95d2eda
Use text/template instead of html/template for ACL template policy generation (#21303) 2024-06-11 16:35:41 +00:00
Michael Zalimeni 7ac9b1f985
ci: fix a few missed Envoy version changes in latest bump (#21300) 2024-06-11 14:44:52 +00:00
Michael Zalimeni 3ee6816d8d
ci: fix nightly cron schedules to run once (#21296)
Several of our nightly cron jobs are actually running repeatedly
back-to-back during the designated hour. Change the cron to run them
once as intended.
2024-06-10 18:28:54 -04:00
Dan Stough fe2f8f1c72
docs: remove multiport docs, add v1dns flag (#21278)
* docs: remove multiport docs, add v1dns flag

* v2 catalog notice + redirects

* redirect fixes

* Update website/content/docs/k8s/helm.mdx

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>

---------

Co-authored-by: boruszak <jeffrey.boruszak@hashicorp.com>
Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>
2024-06-10 16:21:58 -04:00
Will Jordan 3c25956f61
Fix broken link in wal-logstore/index.mdx (#21286)
Content was moved in #21099.
2024-06-10 11:41:48 -07:00
sarahalsmiller 2cdc387bd3
Bump Envoy Versions (#21277)
* update envoy versions

* add changelog

* update nightly integrations
2024-06-10 15:29:26 +00:00
Michael Zalimeni ffa7aff207
[NET-8971] docs: update LTS Envoy versions to include 1.29.4 (#21271)
docs: update LTS Envoy versions to include 1.29.4
2024-06-06 16:20:05 +00:00
Dhia Ayachi 2631ec843a
update go version to 1.22.4 (#21265)
* update go version to 1.22.4

* add changelog
2024-06-06 10:46:05 -04:00
Michael Zalimeni 9e23fa7840
[NET-9445] chore: update submodule versions (#21263)
chore: update submodule versions

- Update submodule versions that were released
- Add missing replace directive to troubleshoot submodule
2024-06-05 13:31:43 -04:00
Deniz Onur Duzgun 68a7648d14
security: resolve incorrect type conversions (#21251)
* security: resolve incorrect type conversions

* add changelog

* fix more incorrect type conversions
2024-06-04 21:55:53 +00:00
Deniz Onur Duzgun cb7ae646da
docs: add a note for DNS resolver recommendations (#21250)
* add a warning to DNS resolver configurations

* Update website/content/docs/services/discovery/dns-configuration.mdx

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>

* Update website/content/docs/services/discovery/dns-configuration.mdx

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>

* add references todo

---------

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>
Co-authored-by: Blake Covarrubias <blake@covarrubi.as>
2024-06-04 17:30:53 -04:00
Michael Zalimeni d3ad840d8c
[NET-8953] docs: add backport policy section to CONTRIBUTING (#21252)
docs: add backport policy section to CONTRIBUTING

Add detail about Consul's backport policy w.r.t. LTS/CE.

Also update label docs and remove defunct redirect .md files.
2024-06-04 12:46:20 -04:00
Michael Zalimeni 4edf369313
[NET-8953] ci: disable Ent-only nightly tests on CE (#21242)
ci: disable Ent-only nightly tests on CE
2024-06-03 19:09:59 +00:00
John Murret 6450b6a3b4
update TestHTTPHandlers_AgentMetrics_LeaderShipMetrics to use 3 servers instead of 2 to allow quorum when leadership flails. (#21239)
* update TestHTTPHandlers_AgentMetrics_LeaderShipMetrics to use 3 servers instead of 2 to allow quorom when leadership flails.

* properly sequence defers
2024-06-03 12:10:38 -06:00
Michael Zalimeni 544ce7b9d4
Restore 1.16 backports until 1.19 is released (#21240) 2024-05-30 20:58:06 +00:00
John Murret 11bcf521ae
dns v2 - both empty string and default should be allowed for namespace and partition in CE (#21230)
* dns v2 - both empty string and default should be allowed for namespace and partition in Ce

* add changelog

* use default partition constant

* use constants in validation.

---------

Co-authored-by: Michael Zalimeni <michael.zalimeni@hashicorp.com>
2024-05-28 16:20:59 -06:00
Nathan Coleman ad9ada883c
[NET-9510] Document known OpenShift issue for consul-k8s 1.2.x, 1.3.x and 1.4.x (#21224)
* Add OpenShift networking issue to Known Issues for 1.2.x, 1.3.x and 1.4.x

* Update website/content/docs/release-notes/consul-k8s/v1_2_x.mdx
2024-05-28 15:59:04 -04:00
Michael Zalimeni 9fb50fa769
Fix Consul versions in nightly 1.19 int tests (#21226)
We should be testing against n-2 + LTS, so we need to replace 1.16 with 1.18.
2024-05-28 12:55:52 -04:00
Jeff Boruszak 5f129ad5b2
docs: Fix heading errors in security models (#21227)
fixes
2024-05-28 09:54:38 -07:00
Michael Zalimeni c1a7221406
[NET-9445] Re-enable 1.18 backports during 1.19 RC (#21223)
Re-enable 1.18 backports during 1.19 RC

Follow-up to #21219.
2024-05-28 15:43:36 +00:00
Dan Stough 54a545d0db
build: prepare for 1.20.0 dev (#21219) 2024-05-24 22:00:14 -04:00
Dan Stough f3d1a8bc78
build: set go-build reproducible to false (#21218) 2024-05-24 15:32:59 -04:00
Dan Stough f70fcab2ab
build: bandaid for action-go-build clean flag (#21217) 2024-05-24 18:54:54 +00:00
Michael Zalimeni d2b107ffe5
ci: update BPA to disable inactive CE backports (#21214)
Follow-up to #21094, which temporarily downgraded BPA to allow for old
CE backport labels to be used during Consul's most recent patch release.

Upgrading fully enforces the version manifest and prevents accidental
backports to no-longer-active CE versions.
2024-05-24 13:52:38 -04:00
Dan Stough cf1c030043
feat: update supported envoy to 1.29 (#21142) 2024-05-24 13:26:07 -04:00
Krastin Krastev 912c5f5a3c
docs: relocate Consul capacity planning page from waf/ to docs/ (#21088)
* moving tutorials/waf/capacity-planning to docs/

* Apply suggestions from code review

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>

* add metrics bullet links

---------

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>
2024-05-24 15:29:22 +03:00
Deniz Onur Duzgun 574f53d176
security: enable go stdlib scans (#20905)
* security: enable go stdlib scans

* security: enable go stdlib binary scan

* Fix formating
2024-05-23 13:40:59 -04:00
Blake Covarrubias 6f02144a14
docs: Fix spelling errors (#21204)
Fix spelling errors across docs site.
2024-05-22 22:36:57 +00:00
Ranjandas b2a618ba8a
Fixes annotation and introduce tabs for static-client spec (#21199)
The upstream annotation is not required for external services defined
using the ServiceDefaults Destinations.
2024-05-23 07:27:26 +10:00
NicoletaPopoviciu d5e92da8af
Update Vault/Nomad versions. (#21193)
* Update Vault/Nomad versions.

* Update test-integrations.yml

amend vault versions

* add nomad binary path to GITHUB_PATH

---------

Co-authored-by: Dhia Ayachi <dhia@hashicorp.com>
2024-05-22 14:43:04 -04:00
R.B. Boyer 50b26aa56a
deployer: remove catalog/mesh v2 support (#21194)
- Low level plumbing for resources is still retained for now.
- Retain "Workload" terminology over "Service".
- Revert "Destination" terminology back to "Upstream".
- Remove TPROXY support as it only worked for v2.
2024-05-21 14:52:19 -05:00
Dhia Ayachi 6d088db52b
set go toolchain to go1.22.3 (#21195) 2024-05-21 14:38:48 -04:00
Sujata Roy 943f0072c0
Doc added for Version specific upgrade Consul on Kubernetes components (#21101)
* Added upgrade instruction - NET-4882

* Update website/content/docs/k8s/upgrade/index.mdx

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>

* Update index.mdx

Fixed the link of grpc ports

---------

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>
2024-05-20 16:05:32 -07:00
Jeff Boruszak 1c0f6e5597
docs: Well Architected Framework content migration (#21099)
* Migration

* move page
2024-05-20 14:04:10 -07:00
Dan Stough f12ba3f2a5
chore: fix PR Labeler config (#21141)
chore: fix PR labeler config format
2024-05-20 16:25:59 -04:00