hashicorp-ci
bad0ada7cb
auto-updated agent/uiserver/bindata_assetfs.go from commit 27c74f714
2020-12-09 13:12:32 +00:00
hashicorp-ci
4387740f01
auto-updated agent/uiserver/bindata_assetfs.go from commit 613be01f4
2020-12-09 09:29:17 +00:00
hashicorp-ci
67f7511ea8
auto-updated agent/uiserver/bindata_assetfs.go from commit db5283ee2
2020-12-08 15:53:31 +00:00
hashicorp-ci
9a212f13b7
auto-updated agent/uiserver/bindata_assetfs.go from commit 3be03029f
2020-12-08 09:32:32 +00:00
hashicorp-ci
0d35351e2d
auto-updated agent/uiserver/bindata_assetfs.go from commit 4dfa7622d
2020-12-07 09:24:00 +00:00
hashicorp-ci
76d5d98b5e
auto-updated agent/uiserver/bindata_assetfs.go from commit adbd6c0c8
2020-12-03 09:19:50 +00:00
Kyle Havlovitz
88d669c0e0
connect: Fix a case where the active root would get unset even when there wasn't a new one
2020-12-02 11:42:23 -08:00
hashicorp-ci
de2b3a11dd
auto-updated agent/uiserver/bindata_assetfs.go from commit e23b5b003
2020-12-02 15:53:16 +00:00
hashicorp-ci
b08fb88a94
auto-updated agent/uiserver/bindata_assetfs.go from commit 9ac7bc180
2020-12-02 15:46:59 +00:00
hashicorp-ci
e49bf629f8
auto-updated agent/uiserver/bindata_assetfs.go from commit a5b9ada9a
2020-12-02 09:49:40 +00:00
hashicorp-ci
2eedfd57e7
auto-updated agent/uiserver/bindata_assetfs.go from commit cf38309f6
2020-12-01 15:49:06 +00:00
Kyle Havlovitz
c4eff420be
Merge pull request #9009 from hashicorp/update-secondary-ca
...
connect: Fix an issue with updating CA config in a secondary datacenter
2020-11-30 14:49:28 -08:00
Kyle Havlovitz
781cae5809
Use a buffered channel for CA intermediate renew func
2020-11-30 14:37:24 -08:00
hashicorp-ci
4279a2d7d4
auto-updated agent/uiserver/bindata_assetfs.go from commit afe0f2614
2020-11-30 18:47:37 +00:00
hashicorp-ci
70666c22bb
auto-updated agent/uiserver/bindata_assetfs.go from commit b5abbf122
2020-11-30 17:33:21 +00:00
hashicorp-ci
9b16766ffe
auto-updated agent/uiserver/bindata_assetfs.go from commit d1ebe8c14
2020-11-30 17:27:35 +00:00
hashicorp-ci
2a78aefc5a
auto-updated agent/uiserver/bindata_assetfs.go from commit f46ef3e3f
2020-11-30 17:07:25 +00:00
hashicorp-ci
cb4c3b83b9
auto-updated agent/uiserver/bindata_assetfs.go from commit a59a2f860
2020-11-30 16:57:34 +00:00
hashicorp-ci
5f5ac36375
auto-updated agent/uiserver/bindata_assetfs.go from commit 9cf30e74e
2020-11-30 15:09:43 +00:00
Daniel Nephin
9f0f2bd589
Merge pull request #9284 from hashicorp/dnephin/agent-service-register
...
local: mark service as InSync when added to local agent state
2020-11-27 15:49:55 -05:00
Daniel Nephin
33b81067f8
local: mark service and checks as InSync when added
...
If the existing service and checks are the same as the new registration.
2020-11-27 15:31:12 -05:00
Hans Hasselberg
44674bcdf8
fix serf_wan documentation ( #9289 )
...
WAN config is different than LAN config, source of truth is
f72d2042a8/config.go (L315-L326)
and now the docs are correct.
2020-11-27 20:49:43 +01:00
hashicorp-ci
a1644351bc
auto-updated agent/uiserver/bindata_assetfs.go from commit 408174f3b
2020-11-27 15:45:17 +00:00
Daniel Nephin
08b8a9276d
Merge pull request #9247 from pierresouchay/streaming_predictible_order_for_health
...
[Streaming] Predictable order for results of /health/service/:serviceName to mimic memdb
2020-11-25 15:53:18 -05:00
Pierre Souchay
76d95fd388
Applied suggestions from @dnephin
...
* Renamed `cachedHealResultSorter` into `sortCheckServiceNodes`
* Use `<` instead of `strings.Compare`
* Single line comparison in unit test
2020-11-25 21:40:51 +01:00
R.B. Boyer
d2d1b05a4e
server: fix panic when deleting a non existent intention ( #9254 )
...
* server: fix panic when deleting a non existent intention
* add changelog
* Always return an error when deleting non-existent ixn
Co-authored-by: freddygv <gh@freddygv.xyz>
2020-11-24 13:44:20 -05:00
hashicorp-ci
9ccf12289a
auto-updated agent/uiserver/bindata_assetfs.go from commit 6f8b5acbe
2020-11-24 17:51:46 +00:00
hashicorp-ci
3f9d15959c
auto-updated agent/uiserver/bindata_assetfs.go from commit 9c3c7bcf3
2020-11-24 14:38:24 +00:00
Hans Hasselberg
57701695c3
add missing descriptions for metrics
2020-11-23 22:06:30 +01:00
Kit Patella
fcec25de40
add entries for missing fsm operations and mark duplicated metrics prefixes as deprecated
2020-11-23 12:42:51 -08:00
Kyle Havlovitz
13c31ccfce
Clean up the logic in persistNewRootAndConfig
2020-11-20 15:54:44 -08:00
Kit Patella
c6b29a8bba
Merge pull request #9245 from hashicorp/telemetry/fix-missing-and-stale-docs
...
Telemetry/fix missing and stale docs
2020-11-20 12:54:29 -08:00
Pierre Souchay
45151090c1
[Streaming] Predictable order for results of /health/service/:serviceName to mimic memdb
...
This ensures the result is consitent with/witout streaming
Will partially fix #9239
2020-11-20 16:23:35 +01:00
Kyle Havlovitz
0bfda4481f
Add CA server delegate interface for testing
2020-11-19 20:08:06 -08:00
Kit Patella
5c09dc322e
add telemetry and definition help entries for missing catalog and acl metrics
2020-11-19 13:29:44 -08:00
R.B. Boyer
7c7a3e5165
command: when generating envoy bootstrap configs use the datacenter returned from the agent services endpoint ( #9229 )
...
Fixes #9215
2020-11-19 15:27:31 -06:00
Kit Patella
9e54e897d7
remove stale entries and rename/define acl.resolveToken
2020-11-19 13:06:28 -08:00
hashicorp-ci
8368f65006
auto-updated agent/uiserver/bindata_assetfs.go from commit d913af2bb
2020-11-19 18:45:01 +00:00
Freddy
fd5928fa4e
Require operator:write to get Connect CA config ( #9240 )
...
A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that operators with `operator:read` ACL permissions are able to read the Consul Connect CA configuration when explicitly configured with the `/v1/connect/ca/configuration` endpoint, including the private key. This allows the user to effectively privilege escalate by enabling the ability to mint certificates for any Consul Connect services. This would potentially allow them to masquerade (receive/send traffic) as any service in the mesh.
--
This PR increases the permissions required to read the Connect CA's private key when it was configured via the `/connect/ca/configuration` endpoint. They are now `operator:write`.
2020-11-19 10:14:48 -07:00
hashicorp-ci
effe235562
auto-updated agent/uiserver/bindata_assetfs.go from commit 687ce1f9c
2020-11-19 16:13:04 +00:00
Daniel Nephin
671b8cf494
Merge pull request #9224 from hashicorp/dnephin/fix-multiple-http-listeners
...
agent: fix bug with multiple listeners
2020-11-18 16:52:29 -05:00
Daniel Nephin
79963be559
Use freeport
...
To prevent other tests which already use freeport from flaking when port 0 steals their reserved port.
2020-11-18 16:07:34 -05:00
hashicorp-ci
b8659f77c4
auto-updated agent/uiserver/bindata_assetfs.go from commit 591a96d5b
2020-11-18 19:07:25 +00:00
hashicorp-ci
cd003a14a5
auto-updated agent/uiserver/bindata_assetfs.go from commit 1edef424a
2020-11-18 19:00:19 +00:00
Daniel Nephin
738bf9efdc
agent: fix bug with multiple listeners
...
Previously the listener was being passed to a closure in a loop without
capturing the loop variable. The result is only the last listener is
used, so the http/https servers only listen on one address.
This problem is fixed by capturing the variable by passing it into a
function.
2020-11-18 13:03:29 -05:00
hashicorp-ci
b2605d90d2
auto-updated agent/uiserver/bindata_assetfs.go from commit 664f1d9aa
2020-11-18 11:17:06 +00:00
Kyle Havlovitz
9be7c6401c
connect: update some function comments in CA manager
2020-11-17 16:00:19 -08:00
Daniel Nephin
839429eb40
Merge pull request #9160 from hashicorp/dnephin/go-test-race-in-to-out-list
...
ci: change go-test-race package list to exclude list
2020-11-17 13:13:38 -05:00
Matt Keeler
66fd23d67f
Refactor to call non-voting servers read replicas ( #9191 )
...
Co-authored-by: Kit Patella <kit@jepsen.io>
2020-11-17 10:53:57 -05:00
Kit Patella
d15b6fddd3
Merge pull request #9198 from hashicorp/mkcp/telemetry/add-all-metric-definitions
...
Add metric definitions for all metrics known at Consul start
2020-11-16 15:54:50 -08:00