Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

opened in error #12068

Closed
wants to merge 292 commits into from
Closed

opened in error #12068

wants to merge 292 commits into from

Conversation

webvictim
Copy link
Contributor

@webvictim webvictim commented Apr 19, 2022

No description provided.

jakule and others added 30 commits March 5, 2022 00:11
* Also add windows desktops sorter and its type converters
* Use forked vulcand/predicate library: allows traversing
  by embedded fields

Part of RFD 55
* Include tbot binary in Teleport packages and installs

This includes the tbot binary in .rpm, .deb, and .pkg distributions,
and ensures the binary is installed using the `install` script in
.tar.gz packages.

* Remove tbot from macOS client-only builds
The upload completer scans for uploads that need to be completed,
likely due to an error or process restart. Prior to this change,
it only completed uploads that had 1 or more parts. Since completing
an upload is what cleans up the directory on disk (or in the case of
cloud storage, finishes the multipart upload), it was possible
for us to leave behind empty directories (or multipart uploads)
for uploads with no parts.

This change makes it valid to complete uploads with no parts, which
ensures that these directories get cleaned up.

Also fix an issue with the GCS uploader, which failed to properly calculate
the upload ID from the path. This is because strings.Split(s, "/") returns an empty
string as the last element when s ends with a /.

Updates #9646
Ensure that the logic which checks for (and emits) a session.end
event also applies for windows.desktop.session.end events.

For this to work, we use the StreamSessionEvents API instead of
GetEvents. This is because the streaming API works for any stream
of audit events, and GetSessionEvents is specific to SSH and the
chunks index format used by SSH sessions.

Lastly, ensure that desktop related events are also captured in the
session recording stream (but omitted when streaming the events to
the browser during session playback). This allows us to use the
start event in order to reconstruct a missing end event.
When completing a file-based upload, open the parts files one at a time
and write them to the upload, closing each file before opening the next
one.

This is preferrable to opening them all at once and closing all files at
the end, because it consumes less file descriptors.

Updates #10660
…10844) (#10911)

Before this commit, if `--proxy` was set, it would be passed as it to the kubeconfig file. Due to this, if the `--proxy` URL did not have a scheme, it would default to `http`,  leading to the issue reported in https://github.com/gravitational/cloud/issues/1358.

With this commit, we now try to parse the `--proxy` URL and set its scheme to `https` in case it's not set.
In case it's set, we only allow `--proxy` URLs with the `http` and `https` schemes.
b6756348 Disable autocomplete on the SSH login input (gravitational/webapps#605) (gravitational/webapps#639) gravitational/webapps@b6756348

In addition,
Desktops:
* Fix clipboard sync
* Maintain aspect ratio on Desktop Playback 
* only synchronize clipboards if data was or is going to be sent 
* desktop playback error handling 
* smooth out progress bar

Others:
* Use role v5, all protocols, reduced RBAC
* Simplify add node instructions

[source: -w teleport-v9] [target: -t branch/v9]
Send COM_QUIT message when closing MySQL connection.

Backport #10984 to branch/v9
Add support for MariaDB AWS RDS with IAM authentication version 10.6+.

Backport #10333

Co-authored-by: Paul Gottschling <paul.gottschling@goteleport.com>
Co-authored-by: Alan Parra <alan.parra@goteleport.com>
Co-authored-by: Roman Tkachenko <roman@goteleport.com>
* docs: update database guides to use configurator

* Apply suggestions from code review

Co-authored-by: Roman Tkachenko <roman@goteleport.com>

* docs(database): add auto-discovery IAM policies reference

* docs(database): update with code review suggestions

* docs(database): update with review suggestions

* Apply suggestions from code review

Co-authored-by: Paul Gottschling <paul.gottschling@goteleport.com>

* docs(database): remove H3 lines

* docs(database): update auto-discovery reference

* docs(database): update policy examples to be more restrictive

* Apply suggestions from code review

Co-authored-by: Paul Gottschling <paul.gottschling@goteleport.com>

Co-authored-by: Roman Tkachenko <roman@goteleport.com>
Co-authored-by: Paul Gottschling <paul.gottschling@goteleport.com>

Co-authored-by: Roman Tkachenko <roman@goteleport.com>
Co-authored-by: Paul Gottschling <paul.gottschling@goteleport.com>
Contrary to current wording `systemctl restart teleport` is _not_ graceful. The graceful equivalent is `systemctl reload teleport`.
stevenGravy and others added 11 commits April 18, 2022 14:16
Fix several issues in the installation page:
- Update links gravitational.io -> goteleport.com
- Remove section on building from source and link to the README
  instead (the README will always be more up to date, and if
  you're comfortable building from source you're probably accustomed
  to looking there anyway)
) (#12042)

* feat(tctl): sign command to generate database access credentials

* feat(tctl): make auth sign parameters app-name and db-name mutually exclusive

* feat(tctl): add flag db-user to auth sign command

* test(tctl): remove references to deprecated package ioutil

* test(tctl): update test to check error type

* chore(tctl): add godoc to `getDatabaseServer` function

* refactor(tctl): rename database-related flags in auth sign

* refactor(tctl): rename flag from `db` to `db-service`
Original behaviour did not take effect in CI due to a different entrypoint.

This restores the original behaviour (which will link external links when using make -C build.assets test-docs) but disables the external linting in CI for reliability.

Updates #11940
@github-actions github-actions bot added application-access audit-log Issues related to Teleports Audit Log bpf Used to bugs with bpf and enhanced session recording. database-access Database access related issues and PRs desktop-access documentation helm kubernetes rdp rfd Request for Discussion tctl tctl - Teleport admin tool tsh tsh - Teleport's command line tool for logging into nodes running Teleport. labels Apr 19, 2022
@webvictim webvictim closed this Apr 19, 2022
@webvictim webvictim changed the title gus/actual v9/docs lint external fix opened in error Apr 19, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
application-access audit-log Issues related to Teleports Audit Log bpf Used to bugs with bpf and enhanced session recording. database-access Database access related issues and PRs desktop-access documentation helm kubernetes rdp rfd Request for Discussion tctl tctl - Teleport admin tool tsh tsh - Teleport's command line tool for logging into nodes running Teleport.
Projects
None yet
Development

Successfully merging this pull request may close these issues.