Commit Graph

21321 Commits

Author SHA1 Message Date
Jeff Boruszak 8ae69b264d
docs: Consul on Nomad overview (#20735)
* Nomad overview page

* Apply suggestions from code review

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>

* Fix typos

* Add API gateway

* Remove API gateway support

---------

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>
2024-02-28 15:51:12 -08:00
David Yu 1323b7abf1
docs: Update v2 Catalog API note to re-iterate beta and add downgrade from enterprise note (#20757)
* Update v1_18_x.mdx
* Update traffic-split.mdx

---------

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>
2024-02-28 21:48:14 +00:00
Jared Kirschner 6f48ce153c
docs: add 1.18.0 release date (#20754) 2024-02-28 14:45:09 -05:00
David Yu 14730419f6
docs: Update release notes for 1.18.x (#20751)
Update v1_18_x.mdx
2024-02-28 19:27:07 +00:00
Jeff Boruszak b2e989c01f
docs: v1.18 Consul release notes (#20736)
* v1.18 release notes page

* Remove API gateway
2024-02-28 09:33:20 -08:00
Matt Keeler 1a454b7b47
Make routes controller tests more robust when testing with multiple tenancies (#20743)
When executing the test with multiple tenancies the various mesh controllers remained running across multiple sub-tests. While the resourcetest.Client cleans up resources created with it, resources created by the controllers were not being cleaned up. This could result in subsequent sub tests encountering unexpected values and failing when they should pass.
2024-02-28 11:03:12 -05:00
Jeff Boruszak 90d3a7c16d
docs: v2 and multiport updates for v1.18 (#20705)
* Move consul resource page + redirect

* Updates for v1.18

* Remove beta warning

* Secondary datacenter constraint

* Clarify transparent proxy in prereqs

* Config entry mention

* requested improvements

* suggestions from review

* additional suggestion
2024-02-28 01:14:25 +00:00
sarahalsmiller 930a20b523
Update main changelog for 1.18.0 (#20744)
* update main changelog

* Update CHANGELOG.md
2024-02-28 00:54:33 +00:00
Chris Hut a58f346f55
Hardcode links to CCM to be false (#20732)
Hardcode links to CCM to be false - due to CCM deprecation

Remove changelog item for breaking Ui change
 - since CCM linking no longer exists
2024-02-26 12:34:01 -08:00
Jared Kirschner 3ee926e6b3
docs: Add Consul Enterprise LTS docs (#20720) 2024-02-26 15:27:59 -05:00
sarahalsmiller 670ee90a77
Use correct enterprise meta on wildcard service update (#20721)
* use correct enterprise meta on wildcard service update

* changelog

* rename changelog file
2024-02-26 12:03:08 -06:00
Michael Zalimeni 50b442f7f2
[NET-7713] docs: Update v2 K8s docs to use virtual port references (#20695)
docs: Update v2 K8s docs to use virtual port references

Now that service virtual port references are supported in xRoutes and
config,

- Call out both formats accepted for service port references
- Update K8s examples to use virtual ports (most likely use case)
2024-02-26 12:15:31 -05:00
Matt Keeler 16a0800777
Update API and API Docs regarding disabling gossip for a partition. (#20669) 2024-02-26 12:14:39 -05:00
NicoletaPopoviciu 913055b833
docs - Update k8s compat matrix (#20714)
Update compatibility matrix
2024-02-26 10:08:29 -05:00
wangxinyi7 b1bd6ab91a
revert grpc to http (#20716)
* Revert "refactor the resource client (#20343)"

This reverts commit 3c5cb04b0f.

* Revert "clean up http client (#20342)"

This reverts commit 2b89025eab.

* remove deprecated peer

* fix the typo

* remove forwarding test as it tests grpc, should add it back
2024-02-23 12:27:49 -08:00
David Yu e72152465f
docs: format API GW tab docs (#20707)
* Update install-k8s.mdx

* Update install-k8s.mdx
2024-02-22 15:21:49 -08:00
R.B. Boyer 235747d473
deployer: add a bunch of test coverage and fix a few panics (#20694)
This adds a bunch of coverage of the topology.Compile method. It is not complete, but it is a start.

- A few panics and miscellany were fixed.
- The testing/deployer tests are now also run in CI.
2024-02-22 13:31:50 -06:00
Ruben Nic 317eaa9a87
Fix malformed MDX in install-k8s (#20702)
Fix malformed MDX
2024-02-22 14:05:58 -05:00
David Yu b45314f8e9
docs: GKE Autopilot section (#20697)
* Update install.mdx
* Update install-k8s.mdx
* Update website/content/docs/k8s/installation/install.mdx

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>
2024-02-22 17:28:36 +00:00
Valeriia Ruban dd833d9a36
feat: add alert to link to hcp modal to ask a user refresh a page; up… (#20682)
feat: add alert to link to hcp modal to ask a user refresh a page; updated document link
2024-02-21 09:56:53 -08:00
John Murret 26eed12f04
NET-7813 - DNS : SERVFAIL when resolving PTR records (#20679)
* NET-7813 - DNS : SERVFAIL when resolving PTR records

* Update agent/dns.go

Co-authored-by: Michael Zalimeni <michael.zalimeni@hashicorp.com>

* PR feedback

---------

Co-authored-by: Michael Zalimeni <michael.zalimeni@hashicorp.com>
2024-02-21 17:44:04 +00:00
Michael Zalimeni 858691b6ae
[NET-6741] make: Add target for updating dependencies across all modules (#19785)
make: Add target for updating dependencies across all modules

To enable more consistent and error-proof dependency management, add a
Make target that will set a dependency version across all submodules
that require it.

Also runs `go mod tidy`. This first ensures the dependency addition is
reverted if the module in question does not require it; it also ensures
that any additional cleanup needed in `go.mod`/`go.sum` is applied.
2024-02-21 11:11:15 -05:00
Semir Patel 8ba919f913
v2tenancy: make CE specific version of `resource.Registration` (#20681) 2024-02-20 15:38:06 -08:00
Semir Patel 943426bc79
v2tenancy: add optional LicenseFeature to type Registration struct (#20673) 2024-02-20 14:42:31 -06:00
Chris S. Kim 53afd8f4c5
[CE] Test tenancies for exported-services config manager (#20678)
Sync controller tests from ENT
2024-02-20 10:03:49 -07:00
natemollica-dev 3f3477cdd3
Consul Kubernetes Datadog Integration Docs Update (#20661) 2024-02-20 06:14:07 -08:00
John Maguire 2ed67ba9ae
[NET-7375] Add Skeleton for APIGW ProxyStateTemplateBuilder (#20628)
* WIP

* got empty state working and cleaned up additional code

* Moved api gateway mapper to it's own file, removed mesh port usage for
api gateway, allow gateway to reconcile without routes

* Update internal/mesh/internal/controllers/gatewayproxy/controller.go

Co-authored-by: Nathan Coleman <nathan.coleman@hashicorp.com>

* Feedback from PR Review:
  - rename referencedTCPRoutes variable to be more descriptive
  - fetchers are in alphabetical order
  - move log statements to be more indicative of internal state

---------

Co-authored-by: Nathan Coleman <nathan.coleman@hashicorp.com>
2024-02-16 10:38:08 -05:00
Chris S. Kim f5c2b408f7
Add enterprise docs for deny action (#20654) 2024-02-16 10:17:21 -05:00
Semir Patel 2baf5e78a4
docs: developer docs for resource finalizers (#20631) 2024-02-15 16:41:00 +00:00
Valeriia Ruban 8425cd0f90
chor: change cluster name param to have datacenter.name as default value (#20644)
* chor: change cluster name param to have datacenter.name as default value
2024-02-15 01:26:34 -08:00
Dan Stough 14efb28086
fix(v2dns): add node ttl to workloads, comment cleanup, and changelog (#20643)
* fix(v2dns): add node ttl to workloads, plus comment cleanup

* docs(v2dns): changelog
2024-02-14 17:38:11 -05:00
Derek Menteer 9f7626d501
Ensure all topics are refreshed on FSM restore and add supervisor loop to v1 controller subscriptions (#20642)
Ensure all topics are refreshed on FSM restore and add supervisor loop to v1 controller subscriptions

This PR fixes two issues:

1. Not all streams were force closed whenever a snapshot restore happened. This means that anything consuming data from the stream (controllers, queries, etc) were unaware that the data they have is potentially stale / invalid. This first part ensures that all topics are purged.

2. The v1 controllers did not properly handle stream errors (which are likely to appear much more often due to 1 above) and so it introduces a supervisor thread to restart the watches when these errors occur.
2024-02-14 14:17:55 -06:00
Dan Stough 137c9c0973
[CE] Misc cleanup for V2 DNS (#20640)
* chore: gitignore zed editor

* chore(v2dns): remove ent/ce split from router

* fix(v2dns): v2 workloads now have tenancy in output

* feat(v2dns): support 'cluster' label

* chore(v2dns): less chatty debug logs
2024-02-14 12:40:38 -05:00
wangxinyi7 daebd7a717
update entry sequence (#20637)
* update entry sequence
2024-02-14 09:30:00 -08:00
John Maguire 02e735f40f
[NET-7953] Added computed gateway routes protos and generated code (#20595)
Added computed gateway routes protos and generated code
2024-02-14 11:36:55 -05:00
wangxinyi7 aca26f51d0
update releasing changelog (#20633)
released 1.17.3 1.16.6 and 1.15.10
2024-02-13 17:12:11 -08:00
Valeriia Ruban 9d712ccfc7
chor: adds informative error message when acls disabled and read-only… (#20600)
* adds informative error message when acls disabled and read-only selected

* adds alert to the modal when there is no acls enabled
2024-02-13 14:00:04 -08:00
Chris S. Kim 248969c2a7
Update ComputedTrafficPermissions ACL hooks (#20622) 2024-02-13 15:16:54 -05:00
Melissa Kam 64cd172f30
[CC-7411] Fix environment variable precedence when linking to HCP (#20527)
Fix so that link API values are used over env vars

When a link is created via the API, those values should take precedence over
the values set by environment variables. This change loads all the env vars
initially as part of the config builder rather than on demand.
2024-02-13 14:06:18 -06:00
Chris S. Kim 0c2c7ca9c7
Add samenessgroup registration for enterprise (#20624) 2024-02-13 18:23:19 +00:00
Michael Zalimeni 2c1addfd64
[NET-7015] DNS v2 + Catalog v2 int test (#20607)
test(v2dns): Add Catalog v2 integration test

Add a basic integration test covering major functionality tested against
Catalog v2 resources. This complements existing tests that ensure
compatibility between v1 and v2 DNS when testing against Catalog v1
resources.
2024-02-13 17:40:08 +00:00
Chris S. Kim ab3c6cf1e5
Add BoundReferences to ComputedTrafficPermissions (#20593) 2024-02-13 17:27:24 +00:00
Dan Stough 0f0b080514
[CE] feat(v2dns): add v2 style query metrics (#20608)
feat(v2dns): add v2 style query metrics
2024-02-13 12:08:01 -05:00
Chris S. Kim 7575b53737
Refactor xTP tests (#20597) 2024-02-13 12:02:42 -05:00
Luke Kysow 191561e44f
docs: document behaviour of tls.https.verify_outgoing (#20555)
* docs: document behaviour of tls.https.verify_outgoing

At first it's not clear what verify_outgoing would do for the https
listener as it seems like Consul agent's don't make https requests. Upon
further investigation, it's clear that Consul agents do make https
requests in the following scenarios:
- to implement watches
- to perform checks

In the first scenario, this setting is used here:
a1c8d4dd19/agent/config/runtime.go (L1725)

In the second scenario, it's actually the internal_rpc setting that is
used:
a1c8d4dd19/tlsutil/config.go (L903)

* Update website/content/docs/agent/config/config-files.mdx

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>

---------

Co-authored-by: David Yu <dyu@hashicorp.com>
Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>
2024-02-13 09:01:03 -08:00
Semir Patel b716a9ef6b
resource: reconcile managed types every ~8hrs (#20606) 2024-02-13 10:51:54 -06:00
Tu Nguyen 35f1173689
Updated docs for Consul ECS 0.8.x, architecture, tproxy support (#20473)
* Updated docs for Consul ECS 0.8.x, architecture, tproxy support

* Apply suggestions from code review

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>
Co-authored-by: Ganesh S <ganesh.seetharaman@hashicorp.com>

* add apigw as feature, update images

---------

Co-authored-by: Jeff Boruszak <104028618+boruszak@users.noreply.github.com>
Co-authored-by: Ganesh S <ganesh.seetharaman@hashicorp.com>
2024-02-12 22:59:10 -08:00
Michael Zalimeni 5862c52642
[NET-7948] Bump Envoy version to address multiple CVEs (#20589)
security: Bump Envoy versions to address CVEs
2024-02-12 22:29:50 +00:00
R.B. Boyer 671c436415
mesh: use ComputedImplicitDestinations resource in the sidecar controller (#20553)
Wire the ComputedImplicitDestinations resource into the sidecar controller, replacing the inline version already present.

Also:

- Rewrite the controller to use the controller cache
- Rewrite it to no longer depend on ServiceEndpoints
- Remove the fetcher and (local) cache abstraction
2024-02-12 14:10:33 -06:00
John Murret 7e8f2e5f08
NET-7644/NET-7634 - Implement query lookup for tagged addresses on nodes and services including WAN translation. (#20583)
NET-7644 - Implement tagged addresses and wan translation
2024-02-12 14:27:25 -05:00