status-im
/
consul
mirror of https://github.com/status-im/consul.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
13,127 Commits 445 Branches 179 Tags 481 MiB
Commit Graph

393 Commits

Author SHA1 Message Date
Tenpo abb3b443c9 update example for tag_name (#9226) 
* update example for tag_name

In the example for azure the "tag_name" field is wrong cause say "tag_key" and not "tag_name"

* change tag_key by tag_name in the description of azure
 2020-12-15 20:09:48 +00:00
Derek Strickland 1f7ad3bcf5 Fixed mesh gateway config instructions (#9396) 
Added missing words to mesh gateway config instructions, and corrected punctuation a paragraph above. Please review for technical accuracy.
 2020-12-15 19:08:53 +00:00
R.B. Boyer 4acc2714bc docs: call out intentions upgrade issue for 1.9.0+ (#9386) 2020-12-14 15:57:40 +00:00
Maksym 8dbfc2b39a fix 'agent/check/pass/my-check-id' curl example in documentation (#9372) 2020-12-11 12:24:16 +00:00
kaitlincarter-hc 4dae9b7224 Filter API Docs (#9202) 
* reorganize for clarity and update for value syntax

* fix quotes around value

* Apply suggestions from code review

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>

* Apply suggestions from code review

Co-authored-by: Freddy <freddygv@users.noreply.github.com>

Co-authored-by: Blake Covarrubias <blake@covarrubi.as>
Co-authored-by: Freddy <freddygv@users.noreply.github.com>
 2020-12-09 23:04:46 +00:00
Blake Covarrubias 1121dae118 docs: Fix broken URLs in Helm docs 
- Fix anchors for client.extraEnvironmentVars and
server.extraEnvironmentVars.
- Change extraEnvironmentVars data type to `map`.
- Fix external link to kubernetes.io under
connectInject.namespaceSelector.
 2020-12-08 19:15:37 +00:00
Max G 0db4c69602 docs: reword lack of additional required files 2020-12-06 00:48:24 +00:00
Nitya Dhanushkodi f3052972f4 Add docs for envoyExtraArgs (#9206) 2020-12-05 15:26:40 -08:00
Rob Taylor 15bc280564 Fix typo in explanation of connect command (#9295) 
Change `Connect Connect` to `Consul Connect, which is consistent with the command output as shown on this page.
 2020-11-30 15:56:06 +00:00
Hans Hasselberg dfe2be40ea fix serf_wan documentation (#9289) 
WAN config is different than LAN config, source of truth is
f72d2042a8/config.go (L315-L326)
and now the docs are correct.
 2020-11-27 19:51:00 +00:00
David Yu cd0a294084 Bump supported chart to 0.27.0 for Consul 1.9 (#9279) 
* Bump supported chart to 0.27.0 for Consul 1.9
 2020-11-26 00:33:51 +00:00
Mike Morris a05909b3c3 website: remove prerelease banner 2020-11-24 14:46:16 -05:00
Mike Morris dbb1249f13 Merge branch 'stable-website' into release/1.9.0 2020-11-24 14:44:53 -05:00
David Yu 687d504214 docs: adding Consul 1.9.x to compat matrix and link to Envoy compat matrix (#9263) 
* Adding Consul 1.9.x to compat matrix and link to Envoy compat matrix

Adding 1.9.x and link to Envoy compat matrix
 2020-11-24 18:51:01 +00:00
Kit Patella 146466a708 Merge pull request #9261 from hashicorp/telemetry/fix-missing-and-stale-docs-2 
Telemetry/fix missing and stale docs
 2020-11-23 21:34:55 +00:00
Daniel Nephin 39b2a30c56 Merge pull request #9259 from hashicorp/dnephin/doc-streaming-experimental 
docs: mark streaming as experimental
 2020-11-23 21:14:08 +00:00
Freddy ff5215d882 Require operator:write to get Connect CA config (#9240) 
A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that operators with `operator:read` ACL permissions are able to read the Consul Connect CA configuration when explicitly configured with the `/v1/connect/ca/configuration` endpoint, including the private key. This allows the user to effectively privilege escalate by enabling the ability to mint certificates for any Consul Connect services. This would potentially allow them to masquerade (receive/send traffic) as any service in the mesh.

--

This PR increases the permissions required to read the Connect CA's private key when it was configured via the `/connect/ca/configuration` endpoint. They are now `operator:write`.
 2020-11-23 06:27:20 -07:00
Sabeen Syed 97b26f19c7 Update NIA architecture image (#9180) 2020-11-23 07:49:17 +00:00
Kit Patella 6e607d7cd3 Merge pull request #9245 from hashicorp/telemetry/fix-missing-and-stale-docs 
Telemetry/fix missing and stale docs
 2020-11-20 20:55:45 +00:00
Freddy 4e44341d36 Require operator:write to get Connect CA config (#9240) 
A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that operators with `operator:read` ACL permissions are able to read the Consul Connect CA configuration when explicitly configured with the `/v1/connect/ca/configuration` endpoint, including the private key. This allows the user to effectively privilege escalate by enabling the ability to mint certificates for any Consul Connect services. This would potentially allow them to masquerade (receive/send traffic) as any service in the mesh.

--

This PR increases the permissions required to read the Connect CA's private key when it was configured via the `/connect/ca/configuration` endpoint. They are now `operator:write`.
 2020-11-19 16:50:17 -07:00
R.B. Boyer 140c220131
[1.9.0] command: when generating envoy bootstrap configs use the datacenter returned from the agent services endpoint (#9230) 
Manual backport of #9229 into 1.9.0 branch

Fixes #9215
 2020-11-19 15:33:41 -06:00
Kit Patella f3380b1c43 Merge pull request #9091 from scellef/correct-upgrade-guide 
Correcting text on when default was changed in Consul
 2020-11-19 00:55:51 +00:00
Mike Morris c2c8528073 website: update download callout for v1.9.0-rc1 2020-11-18 18:38:06 -05:00
Mike Morris 54fcfec78c Merge branch 'stable-website' into website/1.9.0-rc1 2020-11-18 18:35:01 -05:00
Matt Keeler 1f0007d3f3 [docs] Change links to the DNS information to the right place (#8675) 
The redirects were working in many situations but some (INTERNALS.md) was not. This just flips everything over to using the real link.
 2020-11-17 15:03:27 +00:00
Luke Kysow 35191ac381 Docs for upgrading to CRDs (#9176) 
* Add Upgrading to CRDs docs
 2020-11-13 23:20:11 +00:00
Luke Kysow 9050263072 Docs for upgrading to CRDs (#9176) 
* Add Upgrading to CRDs docs
 2020-11-13 23:20:07 +00:00
Kyle Schochenmaier 4142a8b86a Docs: for consul-k8s health checks (#8819) 
* docs for consul-k8s health checks

Co-authored-by: Derek Strickland <1111455+DerekStrickland@users.noreply.github.com>
Co-authored-by: Ashwin Venkatesh <ashwin@hashicorp.com>
Co-authored-by: Iryna Shustava <ishustava@users.noreply.github.com>
Co-authored-by: Luke Kysow <1034429+lkysow@users.noreply.github.com>
 2020-11-12 22:57:09 +00:00
Kyle Schochenmaier ba82eab3fb Docs: for consul-k8s health checks (#8819) 
* docs for consul-k8s health checks

Co-authored-by: Derek Strickland <1111455+DerekStrickland@users.noreply.github.com>
Co-authored-by: Ashwin Venkatesh <ashwin@hashicorp.com>
Co-authored-by: Iryna Shustava <ishustava@users.noreply.github.com>
Co-authored-by: Luke Kysow <1034429+lkysow@users.noreply.github.com>
 2020-11-12 22:57:05 +00:00
Nitya Dhanushkodi 246bb7123e Merge pull request #9179 from hashicorp/ndhanushkodi-patch-1 
Update Helm compatibility matrix
 2020-11-12 22:55:06 +00:00
Nitya Dhanushkodi b6459fe725 Merge pull request #9179 from hashicorp/ndhanushkodi-patch-1 
Update Helm compatibility matrix
 2020-11-12 22:55:02 +00:00
R.B. Boyer f815014432 agent: return the default ACL policy to callers as a header (#9101) 
Header is: X-Consul-Default-ACL-Policy=<allow|deny>

This is of particular utility when fetching matching intentions, as the
fallthrough for a request that doesn't match any intentions is to
enforce using the default acl policy.
 2020-11-12 16:39:16 +00:00
Paul Banks b4cb9155d8
Update ui-visualization.mdx 2020-11-12 15:53:51 +00:00
Matt Keeler 1f4da2ae9d Add a CLI command for retrieving the autopilot configuration. (#9142) 2020-11-11 18:19:32 +00:00
Mike Morris 9c989fef4d
Merge pull request #9155 from hashicorp/release/1.9.0-beta3 
merge: 1.9.0-beta3
 2020-11-11 12:55:23 -05:00
Joel Watson 85595ab3ea docs: add warning in 0.9.0 upgrade notes 2020-11-11 14:24:45 +00:00
Mike Morris e34b7d0b1b website: update callout to 1.9.0-beta3 2020-11-09 16:16:34 -05:00
Matt Keeler f2dee21aca Add some autopilot docs and update the changelog (#9139) 2020-11-09 19:15:12 +00:00
Matt Keeler 8539565046 Merge pull request #9103 from hashicorp/feature/autopilot-mod 
Switch to using the external autopilot module
 2020-11-09 16:30:48 +00:00
Mike Morris 4f1d2a1c56 chore: upgrade to gopsutil/v3 (#9118) 
* deps: update golang.org/x/sys

* deps: update imports to gopsutil/v3

* chore: make update-vendor
 2020-11-07 01:49:01 +00:00
Paul Banks ec31918507 UI Metrics documentation (#9048) 
* UI Metrics documentation

* Update website/pages/docs/connect/observability/ui-visualization.mdx

* Fix some review comments

* Fix review comments

* Apply suggestions from code review

Co-authored-by: R.B. Boyer <rb@hashicorp.com>

Co-authored-by: R.B. Boyer <rb@hashicorp.com>
 2020-11-06 20:33:08 +00:00
Kim Ngo 7489cacb52 Fix NIA doc links (#9110) 
fix config link and anchor
 2020-11-05 19:37:18 +00:00
Kim Ngo a9af74d339 docs: Add links in CTS docs for the community to get involved (#9060) 2020-10-29 15:09:41 +00:00
Daniel Nephin 7b9ee25956
Merge pull request #9026 from hashicorp/dnephin/streaming-without-cache-query-param 
streaming: rename config and remove requirement for cache=1
 2020-10-28 12:33:25 -04:00
Daniel Nephin 62c9124011 docs: Add the new metrics to telemetry.mdx 2020-10-27 16:49:50 -04:00
Kevin Pruett 5637683f5d
Merge pull request #9021 from hashicorp/pruett.alertbanner-exp 
Expose `expirationDate` prop in <AlertBanner/>
 2020-10-26 16:08:23 -04:00
Kim Ngo 47009930a2
NIA: add Terraform version compatibility (#9023) 2020-10-26 09:46:34 -05:00
Daniel Nephin 853667e7d8 health: change the name of UseStreamingBackend config 
Remove it from the cache section, and update the docs.
 2020-10-23 17:47:01 -04:00
Kevin Pruett 6a946ec6e4
Expose `expirationDate` prop in <AlertBanner/> 2020-10-23 11:19:41 -04:00
James Light 5b10046418
Update managed-deprecated.mdx (#9016) 
fix typo / spell checker replacing w/ wrong word
 2020-10-23 10:54:16 -04:00