Bump github.com/hashicorp/consul/api from 1.9.1 to 1.18.0 in /backend

[dependabot]

Bumps github.com/hashicorp/consul/api from 1.9.1 to 1.18.0.

Release notes

Sourced from github.com/hashicorp/consul/api's releases.

v1.14.2

1.14.2 (November 30, 2022)

FEATURES:

• connect: Add local_idle_timeout_ms to allow configuring the Envoy route idle timeout on local_app connect: Add IdleTimeout to service-router to allow configuring the Envoy route idle timeout [GH-14340]
• snapshot: (Enterprise Only) Add support for the snapshot agent to use an IAM role for authentication/authorization when managing snapshots in S3.

IMPROVEMENTS:

• dns: Add support for cluster peering .service and .node DNS queries. [GH-15596]

BUG FIXES:

• acl: avoid debug log spam in secondary datacenter servers due to management token not being initialized. [GH-15610]
• agent: Fixed issue where blocking queries with short waits could timeout on the client [GH-15541]
• ca: Fixed issue where using Vault as Connect CA with Vault-managed policies would error on start-up if the intermediate PKI mount existed but was empty [GH-15525]
• cli: (Enterprise Only) Fix issue where consul partition update subcommand was not registered and therefore not available through the cli.
• connect: Fixed issue where using Vault 1.11+ as CA provider would eventually break Intermediate CAs [GH-15217] [GH-15253]
• namespace: (Enterprise Only) Fix a bug that caused blocking queries during namespace replication to timeout
• peering: better represent non-passing states during peer check flattening [GH-15615]
• peering: fix the limit of replication gRPC message; set to 8MB [GH-15503]

v1.14.1

1.14.1 (November 21, 2022)

BUG FIXES:

• cli: Fix issue where consul connect envoy incorrectly uses the HTTPS API configuration for xDS connections. [GH-15466]
• sdk: Fix SDK testutil backwards compatibility by only configuring grpc_tls port for new Consul versions. [GH-15423]

v1.14.0

1.14.0 (November 15, 2022)

BREAKING CHANGES:

• config: Add new ports.grpc_tls configuration option. Introduce a new port to better separate TLS config from the existing ports.grpc config. The new ports.grpc_tls only supports TLS encrypted communication. The existing ports.grpc now only supports plain-text communication. [GH-15339]
• config: update 1.14 config defaults: Enable peering and connect by default. [GH-15302]
• config: update 1.14 config defaults: Set gRPC TLS port default value to 8503 [GH-15302]
• connect: Removes support for Envoy 1.20 [GH-15093]
• peering: Rename PeerName to Peer on prepared queries and exported services. [GH-14854]
• xds: Convert service mesh failover to use Envoy's aggregate clusters. This changes the names of some Envoy dynamic HTTP metrics. [GH-14178]

SECURITY:

... (truncated)

Changelog

Sourced from github.com/hashicorp/consul/api's changelog.

1.14.2 (November 30, 2022)

FEATURES:

• connect: Add local_idle_timeout_ms to allow configuring the Envoy route idle timeout on local_app connect: Add IdleTimeout to service-router to allow configuring the Envoy route idle timeout [GH-14340]
• snapshot: (Enterprise Only) Add support for the snapshot agent to use an IAM role for authentication/authorization when managing snapshots in S3.

IMPROVEMENTS:

• dns: Add support for cluster peering .service and .node DNS queries. [GH-15596]

BUG FIXES:

• acl: avoid debug log spam in secondary datacenter servers due to management token not being initialized. [GH-15610]
• agent: Fixed issue where blocking queries with short waits could timeout on the client [GH-15541]
• ca: Fixed issue where using Vault as Connect CA with Vault-managed policies would error on start-up if the intermediate PKI mount existed but was empty [GH-15525]
• cli: (Enterprise Only) Fix issue where consul partition update subcommand was not registered and therefore not available through the cli.
• connect: Fixed issue where using Vault 1.11+ as CA provider would eventually break Intermediate CAs [GH-15217] [GH-15253]
• namespace: (Enterprise Only) Fix a bug that caused blocking queries during namespace replication to timeout
• peering: better represent non-passing states during peer check flattening [GH-15615]
• peering: fix the limit of replication gRPC message; set to 8MB [GH-15503]

1.13.4 (November 30, 2022)

IMPROVEMENTS:

• auto-config: Relax the validation on auto-config JWT authorization to allow non-whitespace, non-quote characters in node names. [GH-15370]
• raft: Allow nonVoter to initiate an election to avoid having an election infinite loop when a Voter is converted to NonVoter [GH-14897]
• raft: Cap maximum grpc wait time when heartbeating to heartbeatTimeout/2 [GH-14897]
• raft: Fix a race condition where the snapshot file is closed without being opened [GH-14897]

BUG FIXES:

• agent: Fixed issue where blocking queries with short waits could timeout on the client [GH-15541]
• ca: Fixed issue where using Vault as Connect CA with Vault-managed policies would error on start-up if the intermediate PKI mount existed but was empty [GH-15525]
• connect: Fixed issue where using Vault 1.11+ as CA provider would eventually break Intermediate CAs [GH-15217] [GH-15253]
• connect: fixed bug where endpoint updates for new xDS clusters could block for 15s before being sent to Envoy. [GH-15083]
• connect: strip port from DNS SANs for ingress gateway leaf certificate to avoid an invalid hostname error when using the Vault provider. [GH-15320]
• debug: fixed bug that caused consul debug CLI to error on ACL-disabled clusters [GH-15155]
• deps: update go-memdb, fixing goroutine leak [GH-15010] [GH-15068]
• namespace: (Enterprise Only) Fix a bug that caused blocking queries during namespace replication to timeout
• namespace: (Enterprise Only) Fixed a bug where a client may incorrectly log that namespaces were not enabled in the local datacenter
• peering: better represent non-passing states during peer check flattening [GH-15615]
• peering: fix the error of wan address isn't taken by the peering token. [GH-15065]
• peering: when wan address is set, peering stream should use the wan address. [GH-15108]

1.12.7 (November 30, 2022)

BUG FIXES:

... (truncated)

Commits

• 13836d5 Backport of ui: Add ServerExternalAddresses to peer token create form into re...
• 18dffc5 Backport of peering: better represent non-passing states during peer check fl...
• a445588 Backport of docs: Update acl-tokens.mdx into release/1.14.x (#15609)
• e674f36 backport of commit 9cc1010534932586620323c5ed17244f76881dfa (#15606)
• 657616a Backport of Remove log line about server mgmt token init into release/1.14.x ...
• b152669 backport of commit 6f18c57f5b7e74154144cd23ec8e57bfa3037635 (#15529)
• 7c0eec4 Add support for configuring Envoys route idle_timeout (#14340) (#15611)
• c5dd81e Backport of docs: typo on cluster peering k8s into release/1.14.x (#15604)
• 9a235cb Backport of docs: Clean up k8s cluster peering instructions into release/1.14...
• e7f8505 Backport of Add peering .service and .node DNS lookups. into release/1.14...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #759.