This project is mirrored from https://gitee.com/mirrors/nomad.git.
Pull mirroring failed .
Repository mirroring has been paused due to too many failed attempts. It can be resumed by a project maintainer.
Repository mirroring has been paused due to too many failed attempts. It can be resumed by a project maintainer.
- 01 Aug, 2022 7 commits
-
-
Seth Hoenig authored
Unblock 'check.method' in service validation. Add tests around making sure this value gets plumbed through.
-
Tim Gross authored
This PR continues work we've started on other test suites to use the native golang test runner instead of the custom framework.
-
Seth Hoenig authored
deps: update raft library
-
Seth Hoenig authored
deps: update test package
-
Seth Hoenig authored
Another attempt at resolving the flakey TestNomad_BootstrapExpect_NonVoter
-
James Rasell authored
-
Seth Hoenig authored
Upgrading to v0.3.0 gives us the ability to add more context to test case failures. https://github.com/shoenig/test/pull/23
-
- 28 Jul, 2022 4 commits
-
-
Tim Gross authored
This test is a fairly trivial test of the agent RPC, but the test setup waits for a short fixed window after the node starts to send the RPC. After looking at detailed logs for recent test failures, it looks like the node registration for the first node doesn't get a chance to happen before we make the RPC call. Use `WaitForResultUntil` to give the test more time to run in slower test environments, while allowing it to finish quickly if possible.
-
Tim Gross authored
OOM detection under cgroups v2 is flaky under versions of `containerd` before v1.6.3, but our `containerd` dependency is transitive on `moby/moby`, who have not yet updated. Disable this test for cgroups v2 environments until we can update the dependency chain.
-
Tim Gross authored
The `golang.org/x/net/context` package was merged into the stdlib as of go 1.7. Update the imports to use the identical stdlib version. Clean up import blocks for the impacted files to remove unnecessary package aliasing.
-
Lars Lehtonen authored
-
- 26 Jul, 2022 2 commits
-
-
Seth Hoenig authored
website: enable setting custom tool for launching website dev container
-
Seth Hoenig authored
When working in a podman environment, it's nice to just run the website development container using podman.
-
- 25 Jul, 2022 2 commits
-
-
asymmetric authored
fix alloc working directory path
-
Scott Holodak authored
-
- 22 Jul, 2022 8 commits
-
-
Jai authored
* ui: add namespace filter feature ui: add namespace filtering to variables.index test: namespace filter refact: fix action in template ui: move data fetching and query param logic to ui: controller query parameter logic ui: prevent from forwarding query param ui: create variables controller refact: use dependency injection for controlling parent qp chore: clean-up reset in route chore: clean-up reset in route * ui: add namespace filter to secure var form (#13629) ui: update variable factory to accept namespaces refact: update api to accept disabled ui: add namespace setting logic to form refact: remove debugger refact: get correct selectors for ui: move data loading to namespace-filter component chore: prettify template ui: update factory to handle namespace setting refact: remove inline styling for grid class * ui: fix placement of filter in `SecureVariablesForm` (#13762) * refact: conditionally render css class * chore: remove unused CSS property * refact: edit path-input class to prevent textarea override * refact: inject missing store service (#13763) * chore: patch fixes for when no default namespace is available (#13782) * test: add tests for namespace filtering conditions (#13816) * test: add tests for namespace filtering and namespaces appearing in form * patch namespace related issue to saving and querying (#13825) * refact: use namespace id, not entity * refact: update adapter to edit request to include qp * ui: early exit if no snapshot * refact: test passes wrong interface to method * chore: add missing url update URL builder * refact: model in doesn't have absolutePath * Align error message * chore: update tests (#13905) * chore: patch brittle tests with better selectors * chore: update assertion count Co-authored-by:
Phil Renaud <phil@riotindustries.com>
-
Luiz Aoqui authored
-
Seth Hoenig authored
cleanup: remove unneeded darwin lib
-
Seth Hoenig authored
-
Charlie Voiselle authored
-
Seth Hoenig authored
-
Tim Gross authored
When we delete a namespace, we check to ensure that there are no non-terminal jobs or CSI volume, which also covers evals, allocs, etc. Secure variables are also namespaces, so extend this check to them as well.
-
Seth Hoenig authored
cleanup: use constants for on_update values
-
- 21 Jul, 2022 9 commits
-
-
Tim Gross authored
When we delete a namespace, we check to ensure that there are no non-terminal jobs, which effectively covers evals, allocs, etc. CSI volumes are also namespaced, so extend this check to cover CSI volumes.
-
Seth Hoenig authored
-
Michael Schurter authored
-
Seth Hoenig authored
client: add support for checks in nomad services
-
Seth Hoenig authored
-
Seth Hoenig authored
servicedisco: ensure service uniqueness in job validation
-
Seth Hoenig authored
client: use test timeouts for network fingerprinters in dev mode
-
Tim Gross authored
Workload identities grant implicit access to policies, and operators will not want to craft separate policies for each invocation of a periodic or dispatch job. Use the parent job's ID as the JobID claim.
-
Tim Gross authored
The search RPC used a placeholder policy for searching within the secure variables context. Now that we have ACL policies built for secure variables, we can use them for search. Requires a new loose policy for checking if a token has any secure variables access within a namespace, so that we can filter on specific paths in the iterator.
-
- 20 Jul, 2022 8 commits
-
-
Seth Hoenig authored
-
Tim Gross authored
Most of our objects use int64 timestamps derived from `UnixNano()` instead of `time.Time` objects. Switch the keyring metadata to use `UnixNano()` for consistency across the API.
-
Tim Gross authored
To discourage accidentally DoS'ing the cluster with secure variables data, we're providing a very low limit to the maximum size of a given secure variable. This currently matches the limit for dispatch payloads. In future versions, we may increase this limit or make it configurable, once we have better metrics from real-world operators.
-
Tim Gross authored
Document the secure variables keyring commands, document the aliased gossip keyring commands, and note that the old gossip keyring commands are deprecated.
-
Tim Gross authored
-
Will Jordan authored
Return 429 response on HTTP max connection limit. Instead of silently closing the connection, return a `429 Too Many Requests` HTTP response with a helpful error message to aid debugging when the connection limit is unintentionally reached. Set a 10-millisecond write timeout and rate limiter for connection-limit 429 response to prevent writing the HTTP response from consuming too many server resources. Add `nomad.agent.http.exceeded metric` counting the number of HTTP connections exceeding concurrency limit.
-
Seth Hoenig authored
-
Phil Renaud authored
-