Teleport 13 supports clients running `>=12.0.0 && <=13.x.x` and all of
them already support Role `v6`, thus the downgrade logic can be removed
without impact.
* Add ability to request RouteToCluster in generated certs
* Start to account for identity impersonation when using client
* Expose routed and unrouted impersonated identities
* Fix tests
* Add Close method to mock auth
* Add support for other tests to use AuthenticatedUserClientFromIdentity
* Neater wrapping of args
* Add new assets for integration enroll flow
* Adapt integration status after switch to enum
* Prettier
* Fix some lints
* Rename enum numbers according to conventions
This PR picks the kubernetes proxy address from `webapi/ping` endpoint
when tls routing is disabled and the user didn't provided the `--proxy`
flag when calling `tctl auth sign --format=kubernetes`
If tls routing is enabled, it takes precendence over `kube_public_addr`.
Fixes#10396
* athena audit logs - publisher
* pass also version id
* Update lib/events/athena/publisher.go
Co-authored-by: rosstimothy <39066650+rosstimothy@users.noreply.github.com>
* rename snsCli and parse large_events_payload url before
* use aws sdk retry
* Wrapping errors
* update description
* go mod tidy
* Drop unused endpoints
* move log and awsCOnfig to top level config
* update aws-sdk-go-v2 deps
* address last PR comments
* update e_import and run go mod tidy
* go mod tidy
* make ci linter happy
---------
Co-authored-by: rosstimothy <39066650+rosstimothy@users.noreply.github.com>
* AWS-hosted OpenSearch support.
* Review: comments, case, cleanup.
* Review: comments, region discovery, typos, shared func, fix error type, fix empty CA case.
* Review: address comments.
- add docs
- refactor opensearch engine code
- make `opensearchsql` default client
- drop utils.CloneRequest function, it is not suitable for general use
- drop "extra args" functionality, it should be a separate PR and more generic
- minor refactorings
* Fix: linting, refactoring issues.
* Review: update the comment for accuracy.
* Correct merge issue.
* Review: reuse transport, use different context, rename tests
* Review: unexport internal error types, explicitly test the error serialization.
Closes#14950
Indicate the effects of using long directory names. Edit a `Notice`
component with warnings about prohibited directories in order to make
room for this.
* fix iam statements for AWS assumed-role identity
* configurator tries to convert assumed-role to role
* revert IAM semaphore to use identity name
* hide the unused --attach flag, fix typo
* godoc reminder for databases with IAM db users
* add AWS Keyspaces and DynamoDB to AWS configurator
* relax constraint on external id in fileconfig
* add fileconf test for externalid w/o assume role
* check for actions before prompting to confirm
* fix teleport discovery bootstrap --confirm
* update formatting
This commit aligns line breaks to ~80 chars, nests code blocks under numbered steps where appropriate, and other minor formatting edits.
* use standard prereq partials
* respond to reviews
* linter fixes
* Limit results after sorting
* Rename `sortAndLimitResults` -> `rankResults`
* Add `useResourceSearch` test, check if the items are sorted correctly
* Use `renderHook` from the testing library, fix test name
* update tctl partial format
* standardize cloud warning in cluster guides
* standardize prereqs in machine id guides
Also uncomments a video block that was never made available once the video was created
* cleanup partial
* standardize prereq partial use throughout
* add partials to more guides
* linter fixes
Fixes#9156
In case someone manually browses to a top-level docs section, ensure
that each top-level URL path redirects to the intro page (or only page)
for that section.