kemko/nomad
1
0
Fork 0
mirror of https://github.com/kemko/nomad.git synced 2026-01-06 02:15:43 +03:00
Code Issues Packages Projects Releases Wiki Activity
23,481 Commits 1 Branch 0 Tags
0c62f445c3e4b8340d29f2f13e9e8e656d114f3b
Commit Graph

23481 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Seth Hoenig
0c62f445c3 build: run gofmt on all go source files 
Go 1.19 will forecefully format all your doc strings. To get this
out of the way, here is one big commit with all the changes gofmt
wants to make.
 2022-08-16 11:14:11 -05:00
Seth Hoenig
aebd61f5c5 build: update to go1.19 2022-08-16 08:40:57 -05:00
Kerim Satirli
c1abf47e16 adds link for Nomad-Pack GitHub action (#14118) 2022-08-16 08:34:26 +02:00
Phil Renaud
1700526125 Handle conflict swith a cas qp on save and create (#14100) 
* Handle conflict swith a cas qp on save and create

* Notify error and give them refresh or overwrite options

* Merge conflict missed, resolved

* Mirage fixture

* Integration test

* Bracket closed (thx jai)

* Adjust tests to account for number of variables with auto-conflicter
 2022-08-15 17:24:34 -04:00
Tim Gross
b9d195224e ACL: disallow missing path in secure variable policy (#14123) 
The HCL parser allows for labels that aren't needed, which makes it easy to
accidentally write a `secure_variable` block that has the intended path as the
label for that block instead of the innner `path` block. This can result in
silent failure to lock down variables if an incorrectly specified block was used
to reduce the scope of capabilities (for example, if another correctly-written
rule allows access to `*`).

We can't detect the extraneous label in the HCL API, but we can detect if we're
missing `path` blocks entirely. Use this to block obvious user errors.
 2022-08-15 17:06:36 -04:00
Tim Gross
fccc49a5eb api: document warnings for setting api.ClientConnTimeout (#14122) 
HTTP API consumers that have network line-of-sight to client nodes can connect
directly for a small number of APIs. But in environments where the consumer
doesn't have line-of-sight, there's a long pause waiting for the
`api.ClientConnTimeout` to expire. Warn about this in the API docs so that
authors can avoid the extra timeout.
 2022-08-15 16:06:02 -04:00
Charlie Voiselle
22194d437a SV CLI: var init (#13820) 
* Nomad dep: add museli/reflow
* SV CLI: var init
 2022-08-15 13:43:29 -04:00
Jai
7079692dda refact: add parent check to boolean (#14115) 
* refact: add parent check to boolean

* chore:  add changelog entry
 2022-08-15 13:42:08 -04:00
Phil Renaud
9f51a5deb2 UI variables made to be unique by namespace and path (#14072) 
* Starting on namespaced id

* Traversal for variables uniqued by namespace

* Delog

* Basic CRUD complete w namespaces included

* Correct secvar breadcrumb joining and testfix now that namespaces are included

* Testfixes with namespaces in place

* Namespace-aware duplicate path warning

* Duplicate path warning test additions

* Trimpath reimplemented on dupe check

* Solves a bug where slash was not being passed to the can write check

* PR fixes

* variable paths integration test fix now uses store

* Seems far less hacky in retrospect

* PR feedback addressed

* test fixes after inclusion of path as local non-model var

* Prevent confusion by dropping namespace from QPs on PUT, since its already in .data

* Solves a harsh bug where you have namespace access but no secvars access (#14098)

* Solves a harsh bug where you have namespace access but no secvars access

* Lint cleanup

* Remove unneeded condition
 2022-08-15 11:56:09 -04:00
Tim Gross
ed55b97f30 secure vars: filter by path in List RPCs (#14036) 
The List RPCs only checked the ACL for the Prefix argument of the request. Add
an ACL filter to the paginator for the List RPC.

Extend test coverage of ACLs in the List RPC and in the `acl` package, and add a
"deny" capability so that operators can deny specific paths or prefixes below an
allowed path.
 2022-08-15 11:38:20 -04:00
Tim Gross
3af6937cf3 move secure variable conflict resolution to state store (#13922) 
Move conflict resolution implementation into the state store with a new Apply RPC. 
This also makes the RPC for secure variables much more similar to Consul's KV, 
which will help us support soft deletes in a post-1.4.0 version of Nomad.

Reimplement quotas in the state store functions.

Co-authored-by: Charlie Voiselle <464492+angrycub@users.noreply.github.com>
 2022-08-15 11:19:53 -04:00
Seth Hoenig
ed26be5179 Merge pull request #14114 from hashicorp/dependabot/go_modules/oss.indeed.com/go/libtime-1.6.0 
build(deps): bump oss.indeed.com/go/libtime from 1.5.0 to 1.6.0
 2022-08-15 10:17:44 -05:00
Seth Hoenig
07e6d98f9a Merge pull request #14112 from hashicorp/dependabot/go_modules/github.com/fsouza/go-dockerclient-1.8.2 
build(deps): bump github.com/fsouza/go-dockerclient from 1.6.5 to 1.8.2
 2022-08-15 10:13:41 -05:00
dependabot[bot]
59872f48af build(deps): bump oss.indeed.com/go/libtime from 1.5.0 to 1.6.0 
Bumps [oss.indeed.com/go/libtime](https://github.com/indeedeng/libtime) from 1.5.0 to 1.6.0.
- [Release notes](https://github.com/indeedeng/libtime/releases)
- [Commits](https://github.com/indeedeng/libtime/compare/v1.5.0...v1.6.0)

---
updated-dependencies:
- dependency-name: oss.indeed.com/go/libtime
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-15 15:12:03 +00:00
Seth Hoenig
f6c5700b08 Merge pull request #14104 from hashicorp/f-consistent-makefile-arrows 
build: use consistent arrows in makefile step output
 2022-08-15 10:09:04 -05:00
Seth Hoenig
2563d17727 deps: add cl for fsouza/go-dockerclient 2022-08-15 09:59:49 -05:00
dependabot[bot]
8783430e02 build(deps): bump github.com/fsouza/go-dockerclient from 1.6.5 to 1.8.2 
Bumps [github.com/fsouza/go-dockerclient](https://github.com/fsouza/go-dockerclient) from 1.6.5 to 1.8.2.
- [Release notes](https://github.com/fsouza/go-dockerclient/releases)
- [Changelog](https://github.com/fsouza/go-dockerclient/blob/main/container_changes_test.go)
- [Commits](https://github.com/fsouza/go-dockerclient/compare/v1.6.5...v1.8.2)

---
updated-dependencies:
- dependency-name: github.com/fsouza/go-dockerclient
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-15 14:53:54 +00:00
Seth Hoenig
dadb0a2c97 Merge pull request #14111 from hashicorp/dependabot/go_modules/github.com/armon/go-metrics-0.4.0 
build(deps): bump github.com/armon/go-metrics from 0.3.10 to 0.4.0
 2022-08-15 09:52:51 -05:00
Seth Hoenig
fcecf09853 Merge pull request #14113 from hashicorp/dependabot/go_modules/github.com/mitchellh/cli-1.1.4 
build(deps): bump github.com/mitchellh/cli from 1.1.2 to 1.1.4
 2022-08-15 09:51:11 -05:00
Seth Hoenig
64f16dd0d3 deps: fixup dependabot go.mod formatting 2022-08-15 09:50:15 -05:00
dependabot[bot]
8d9b264697 build(deps): bump github.com/armon/go-metrics from 0.3.10 to 0.4.0 
Bumps [github.com/armon/go-metrics](https://github.com/armon/go-metrics) from 0.3.10 to 0.4.0.
- [Release notes](https://github.com/armon/go-metrics/releases)
- [Commits](https://github.com/armon/go-metrics/compare/v0.3.10...v0.4.0)

---
updated-dependencies:
- dependency-name: github.com/armon/go-metrics
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-15 14:49:29 +00:00
dependabot[bot]
c8fe8cf822 build(deps): bump github.com/mitchellh/cli from 1.1.2 to 1.1.4 
Bumps [github.com/mitchellh/cli](https://github.com/mitchellh/cli) from 1.1.2 to 1.1.4.
- [Release notes](https://github.com/mitchellh/cli/releases)
- [Commits](https://github.com/mitchellh/cli/compare/v1.1.2...v1.1.4)

---
updated-dependencies:
- dependency-name: github.com/mitchellh/cli
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-15 14:25:31 +00:00
Seth Hoenig
4338ed4e69 Merge pull request #14025 from hashicorp/dependabot/go_modules/go.etcd.io/bbolt-1.3.6 
build(deps): bump go.etcd.io/bbolt from 1.3.5 to 1.3.6
 2022-08-15 09:13:48 -05:00
Seth Hoenig
ab9d10d0c2 deps: update cl for go.etcd.io/bbolt 2022-08-15 09:13:16 -05:00
Seth Hoenig
3d3dc1ae69 Merge pull request #14103 from hashicorp/dependabot/go_modules/google.golang.org/grpc-1.48.0 
build(deps): bump google.golang.org/grpc from 1.45.0 to 1.48.0
 2022-08-15 09:10:47 -05:00
Seth Hoenig
cd66c92923 deps: update cl for grpc 2022-08-15 09:10:13 -05:00
Mike Nomitch
24bd3378fe Add notes about DAS being prometheus only (#14040) 2022-08-15 10:17:31 +02:00
Seth Hoenig
d919c54d5c build: use consistent arrows in makefile step output 2022-08-14 11:20:58 -05:00
dependabot[bot]
9e91c7ded8 build(deps): bump google.golang.org/grpc from 1.45.0 to 1.48.0 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.45.0 to 1.48.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.45.0...v1.48.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-14 09:09:31 +00:00
Phil Renaud
3bb59bee82 Error typed changed to dismissable global toast (#14099) 2022-08-12 17:04:35 -04:00
Seth Hoenig
22610fc0d7 Merge pull request #14052 from hashicorp/dependabot/go_modules/github.com/containernetworking/cni-1.1.2 
build(deps): bump github.com/containernetworking/cni from 1.0.1 to 1.1.2
 2022-08-12 09:09:57 -05:00
Seth Hoenig
ea570b293b Merge pull request #14086 from Morantron/patch-1 
Fix typo in /tools/autoscaling
 2022-08-12 09:07:12 -05:00
Seth Hoenig
d3222e24c3 Merge pull request #14088 from hashicorp/b-plan-vault-token 
cli: support vault token in plan command
 2022-08-12 09:05:34 -05:00
Seth Hoenig
9504a4537b Merge pull request #14089 from hashicorp/f-docker-disable-healthchecks 
docker: configuration for disable docker healthcheck
 2022-08-12 09:00:31 -05:00
Seth Hoenig
1ce64156cd docs: tweak changelog 
Co-authored-by: James Rasell <jrasell@users.noreply.github.com>
 2022-08-12 08:59:58 -05:00
James Rasell
3f5bc76df1 docs: correctly state RPC port is used by servers and clients. (#14091) 2022-08-12 10:14:14 +02:00
Seth Hoenig
0bd42a501c docker: create a docker task config setting for disable built-in healthcheck 
This PR adds a docker driver task configuration setting for turning off
built-in HEALTHCHECK of a container.

References)
https://docs.docker.com/engine/reference/builder/#healthcheck
https://github.com/docker/engine-api/blob/master/types/container/config.go#L16

Closes #5310
Closes #14068
 2022-08-11 10:33:48 -05:00
Seth Hoenig
e96d52d87f cli: respect vault token in plan command 
This PR fixes a regression where the 'job plan' command would not respect
a Vault token if set via --vault-token or $VAULT_TOKEN.

Basically the same bug/fix as for the validate command in https://github.com/hashicorp/nomad/issues/13062

Fixes https://github.com/hashicorp/nomad/issues/13939
 2022-08-11 08:54:08 -05:00
Seth Hoenig
169211251d Merge pull request #14069 from brian-athinkingape/cli-fix-memstats-cgroupsv2 
cli: for systems with cgroups v2, fix alloation resource utilization showing 0 memory used
 2022-08-11 07:27:48 -05:00
Morantron
0eb2194924 Update index.mdx 2022-08-11 09:03:52 +02:00
Luiz Aoqui
e144298b02 ci: delete generated files after build (#14070) 
The generated files are created as part of the final build process but
should not present in the repository afterwards.
 2022-08-10 20:36:03 -04:00
Seth Hoenig
a2d3c29005 Merge pull request #14065 from hashicorp/b-fwd-vtoken-validation 
cli: forward request for job validation to nomad leader
 2022-08-10 15:14:01 -05:00
Seth Hoenig
7b4652440a cli: forward request for job validation to nomad leader 
This PR changes the behavior of 'nomad job validate' to forward the
request to the nomad leader, rather than responding from any server.

This is because we need the leader when validating Vault tokens, since
the leader is the only server with an active vault client.
 2022-08-10 14:34:04 -05:00
Seth Hoenig
58bea53b57 Merge pull request #14077 from Dgotlieb/template-doc-typo-fix 
template doc typo fix
 2022-08-10 14:01:58 -05:00
Jai
5d41a480c3 test: add unit tests for namespace matching util (#14078) 2022-08-10 12:01:00 -04:00
dgotlieb
1d9e6f94f8 doc typo fix 
docker and podman don't suck 🤣
 2022-08-10 15:04:07 +03:00
Luiz Aoqui
939d643fec Post 1.3.3 release (#14064) 
* Generate files for 1.3.3 release

* Prepare for next release

* Merge release 1.3.3 files

Co-authored-by: hc-github-team-nomad-core <github-team-nomad-core@hashicorp.com>
 2022-08-09 17:27:29 -04:00
Brian Chau
c0626dab35 Add changelog 14069 2022-08-09 14:16:34 -07:00
Brian Chau
0464889edc cli: for systems with cgroups v2, fix alloation resource utilization showing 0 memory used 2022-08-09 14:09:14 -07:00
Phil Renaud
1a98b228d1 [ui] Fixes a bug for first-time SecVars users on namespaces (#14067) 
* Fixes a bug for first-time SecVars users on namespaces

* Namespace computed dep

* Namespace computed dep
 2022-08-09 16:56:18 -04:00