This makes it so that tsh will watch for access request resolution on the
correct (root) cluster, and it will not create access requests before the event
watcher is ready.
Fixes#9003 and #9244.
with the function, it renders like this, so deleted the % sign.
"Teleport Cloud commits to SLA of 99.5%% of monthly uptime percentage, a maximum of 3 hours 40 minutes of downtime per month."
Either need to merge this PR or fix in the function.
A bug introduced in #9152 resulted in us publishing a CRL distribution
point to LDAP which was different than the one encoded in the certs.
Refactor the logic for generating these DNs into shared methods
and add test coverage that verifies the certs meet Windows requirements.
Fixes#9292
Fixes https://github.com/gravitational/teleport-private/issues/80
LAT-APP21-5: Insecure random number generation
- updated rand call from rand.Reader.Read to rand.Read
- changed length parameter name from len to l.
- changed byte slice var name to b.
- updated godoc
* add diag to teleport db/app start
* db --cluster flag supports
* add some ut and fix issue ~/.tsh get removed during test
* working mongodb
* fix logout
* fix ut
* code review comment
* fix mysql
* adds necessary line to powershell script and touches up the docs
* touch-ups
* Updates README to the settings that I thought would do the trick. Just tested with these and RDP is timing out for me.
* CR
* CR
* adding warning about the firewall rules mysteriously dissapearing on us and an instruction to use gpupdate.exe
* Switch GPO creation to powershell
* using local file notation
* fixing comments
* fixing mdx errors
Co-authored-by: Zac Bergquist <zmb3@users.noreply.github.com>
NewHTTPClient was not calling CheckAndSetDefault on the provided client.Config which
allowed the DialTimeout to be 0. This allowed dialing auth to hang forever if
auth is unreachable.
Fixes#8866
This adds loadtesting automation and k8s yamls to deploy teleport to a k8s cluster. The grafana
health dashboard is also included and can be consumed by end users to better monitor
their teleport clusters.
- Ensure that the protoc include directory is readable by all users
- Switch back to the root user by default
Either of these changes would have fixed the issue on their own,
but I decided to include both as GRPC should be readable by non-root
users, and I wanted to preserve the original behavior of running
as root unless the $(NOROOT) flags are specified.
Additionally: clarify comments on the make targets, which are
confusingly named, and stop installing goimports since it seems
it was never used.