Merge branch 'dev' into dev-remove-introduced-labels

Author: NataliaIvakina

modules/ROOT/pages/authentication-authorization/ldap-integration.adoc

@@ -197,7 +197,7 @@ dbms.security.ldap.authorization.system_username=cn=search-account,cn=Users,dc=e
 +
 [source, properties]
 ----
-dbms.security.ldap.authorization.system_password=mypassword
+dbms.security.ldap.authorization.system_password=your_password
 ----
 
 .. Configure which attribute to search for by adding the following lines to the _neo4j.conf_ file (replacing `myattribute` with the actual attribute name):
@@ -490,7 +490,7 @@ ldapsearch -v -H ldap://myactivedirectory.example.com:389 -x -D cn=john,cn=Users
 ----
 # ldapsearch -v -H ldap://<dbms.security.ldap.host> -x -D <dbms.security.ldap.authorization.system_username> -w <dbms.security.ldap.authorization.system_password> -b <dbms.security.ldap.authorization.user_search_base> "<dbms.security.ldap.authorization.user_search_filter>" <dbms.security.ldap.authorization.group_membership_attributes>
 
-ldapsearch -v -H ldap://myactivedirectory.example.com:389 -x -D cn=search-account,cn=Users,dc=example,dc=com -w mypassword -b cn=Users,dc=example,dc=com "(&(objectClass=*)(cn=john))" memberOf
+ldapsearch -v -H ldap://myactivedirectory.example.com:389 -x -D cn=search-account,cn=Users,dc=example,dc=com -w your_password -b cn=Users,dc=example,dc=com "(&(objectClass=*)(cn=john))" memberOf
 ----
 
 . Verify that the value of the returned membership attribute is a group that is mapped to a role in `dbms.security.ldap.authorization.group_to_role_mapping`.

modules/ROOT/pages/clustering/databases.adoc

@@ -268,8 +268,8 @@ Neo4j 5.24 introduces the xref:procedures.adoc#procedure_dbms_cluster_recreateDa
 * To change the database store to a specified backup, while keeping all the associated privileges for the database.
 
 * To make your database write-available again after it has been lost (for example, due to a disaster).
-// See xref:clustering/disaster-recovery.adoc[] for more information.
-
+See xref:clustering/disaster-recovery.adoc[Disaster recovery] for more information.
+ 
 [CAUTION]
 ====
 The recreate procedure works only for real user databases and not for composite databases, or the `system` database.
@@ -468,7 +468,7 @@ SHOW DATABASE foo;
 === Seed from URI
 
 This method seeds all servers with an identical seed from an external source, specified by the URI.
-The seed can either be a full backup, a differential backup (xref:clustering/databases.adoc#cloud-seed-provider[`CloudSeedProvider`] or a dump from an existing database.
+The seed can either be a full backup, a differential backup (xref:clustering/databases.adoc#cloud-seed-provider[`CloudSeedProvider`], or a dump from an existing database.
 The sources of seeds are called _seed providers_.
 
 The mechanism is pluggable, allowing new sources of seeds to be supported (see link:https://www.neo4j.com/docs/java-reference/current/extending-neo4j/project-setup/#extending-neo4j-plugin-seed-provider[Java Reference -> Implement custom seed providers] for more information).

modules/ROOT/pages/clustering/disaster-recovery.adoc

@@ -36,7 +36,7 @@ CALL dbms.cluster.statusCheck(databases :: LIST<STRING>, timeoutMilliseconds = n
 | Name                | Type         | Description
 | databases           | List<String> | Databases for which the status check should run.
 Providing an empty list runs the status check for all *clustered* databases on that server, i.e. it does not run on singles or secondaries.
-| timeoutMilliseconds | Integer | How long to allow for replication, before returning it was unsuccessful.
+| timeoutMilliseconds | Integer | Specifies the maximum wait time for replication before marking it unsuccessful.
 Default value is 1000 milliseconds.
 |===
 
@@ -58,7 +58,7 @@ The procedure returns a row for all primary members of all the requested databas
 | recognisedLeaderTerm  | Integer      | The term of the perceived leader of each primary member.
 If the members report different leaders, the one with the highest term should be trusted.
 | requester             | Boolean      | Whether a server is the requester or not.
-| error                 | String       | Contains the error message if one is present.
+| error                 | String       | Contains any error message if present.
 An example of an error is that one or more of the requested databases do not exist on the requester.
 |===
 

modules/ROOT/pages/clustering/monitoring/status-check.adoc

@@ -85,12 +85,17 @@ By appending `DUMP DATA` to the command `DROP DATABASE`, you can create a dump o
 DROP DATABASE movies DUMP DATA
 ----
 
-These dumps are equivalent to those produced by xref:backup-restore/offline-backup.adoc[`neo4j-admin database dump`] and can be similarly restored using the xref:backup-restore/restore-dump.adoc[`neo4j-admin database load`] command.
-
 In Neo4j, dumps can be stored in the directory specified by the xref:configuration/configuration-settings.adoc#config_server.directories.dumps.root[`server.directories.dumps.root`] setting (by default, the path for storing dumps is xref:configuration/file-locations.adoc#data[`<neo4j-home>/data/dumps`]).
+You can use dumps to create databases through the xref:clustering/databases.adoc#cluster-seed-uri[Seed from URI approach].
 
 The option `DESTROY DATA` explicitly requests the default behavior of the command.
 
+[NOTE]
+====
+The dumps produced by `DUMP DATA` are equivalent to those produced by xref:backup-restore/offline-backup.adoc[`neo4j-admin database dump`]. 
+You can also restore them using the xref:backup-restore/restore-dump.adoc[`neo4j-admin database load`] command.
+====
+
 [[delete-existing-db-with-dump]]
 === Delete a database with `IF{nbsp}EXISTS` and  `DUMP DATA`/`DESTROY DATA`
 

modules/ROOT/pages/database-administration/standard-databases/delete-databases.adoc

@@ -160,74 +160,44 @@ It produces a database dump that can be further examined and potentially repaire
 [[quarantine]]
 == Quarantined databases
 
-There are two ways to get a database into a `quarantined` state:
-
-* By using the xref:procedures.adoc#procedure_dbms_quarantineDatabase[`dbms.quarantineDatabase`] procedure locally to isolate a specific database.
-The procedure must be executed on the instance whose copy of the database you want to quarantine.
-A reason for that can be, for example, when a database is unable to start on a given instance due to a file system permissions issue with the volume where the database is located or when a recently started database begins to log errors.
-The quarantine state renders the database inaccessible on that instance and prevents its state from being changed, for example, with the `START DATABASE` command.
-+
-[NOTE]
-====
-If running in a cluster, database management commands such as `START DATABASE foo` will still take effect on the instances which have *not* quarantined `foo`.
-====
-
-* When a database encounters a severe error during its normal run, which prevents it from a further operation, Neo4j stops that database and brings it into a `quarantined` state.
+When a database encounters a severe error during its normal run, which prevents it from a further operation, Neo4j stops that database and brings it into a `quarantined` state.
 Meaning, it is not possible to restart it with a simple `START DATABASE` command.
-You have to execute `CALL dbms.quarantineDatabase(databaseName, false)` on the instance with the failing database in order to lift the quarantine.
+You have to run `CALL dbms.unquarantineDatabase(server, database, operation)` to lift the quarantine, specifying as `server` the instance with the failing database.
 
-After lifting the quarantine, the instance will automatically try to bring the database to the desired state.
+The `dbms.unquarantineDatabase()` procedure is introduced in Neo4j 2025.01 to replace the now-deprecated  xref:procedures.adoc#procedure_dbms_quarantineDatabase[`dbms.quarantineDatabase`()].
 
-[NOTE]
-====
-It is recommended to run the quarantine procedure over the `bolt://` protocol rather than `neo4j://`, which may route requests to unexpected instances.
-====
+After lifting the quarantine, the instance will automatically try to bring the database to the desired state.
 
 *Syntax:*
 
-`CALL dbms.quarantineDatabase(databaseName,setStatus,reason)`
+`CALL dbms.unquarantineDatabase(server, database, operation)`
 
-*Arguments:*
+*Input arguments:*
 
 [options="header"]
 |===
 | Name           | Type    | Description
-| `databaseName` | String  | The name of the database that will be put into or removed from quarantine.
-| `setStatus`    | Boolean | `true` for placing the database into quarantine; `false` for lifting the quarantine.
-| `reason`       | String  | (Optional) The reason for placing the database in quarantine.
+| `server`       | String  | The identifier of the server where the quarantine for database will be lifted.
+| `database` | String  | The name of the database that will be put into or removed from quarantine.
+| `operation`    | String  | Optional operation to apply while lifting the quarantine.
 |===
 
-*Returns:*
+The possible values for the optional operation are:
 
-[options="header"]
-|===
-| Name           | Type   | Description
-| `databaseName` | String | The name of the database.
-| `quarantined`  | String | Actual state.
-| `result`       | String | Result of the last operation.
-The result contains the user, the time, and the reason for the quarantine.
-|===
+* `keepStateKeepStore` -- do nothing; leave store and cluster state as they are.
+* `replaceStateKeepStore` -- join as a new member, clearing the current cluster state but keeping the store.
+* `replaceStateReplaceStore` -- join as a new member, clearing both the current cluster state and the store.
 
-[NOTE]
-====
-The `dbms.quarantineDatabase` procedure replaces xref:procedures.adoc#procedure_dbms_cluster_quarantinedatabase[`dbms.cluster.quarantineDatabase`], which has been deprecated in Neo4j 4.3 and will be removed with the next major version.
-====
+If you choose to clear the current cluster state, the server will try to join as a new member,
+but this joining can succeed if and only if there is a majority of old members "letting" the new members in.
+Let's assume our cluster has a topology with three primaries.
+If there is only one server in `QUARANTINED` mode, then it is safe to choose `replaceStateKeepStore` or `replaceStateReplaceStore`.
+If there are two servers in `QUARANTINED` mode, then you should not use concurrently `replaceStateKeepStore` or `replaceStateReplaceStore` for both servers because there would be no majority to let them in.
 
-.Quarantine a database
-[source, cypher]
-----
-neo4j@system> CALL dbms.quarantineDatabase("foo",true);
-----
-[queryresult]
-----
-+--------------------------------------------------------------------------------------+
-| databaseName | quarantined | result                                                  |
-+--------------------------------------------------------------------------------------+
-| "foo"        | TRUE        | "By neo4j at 2020-10-15T15:10:41.348Z: No reason given" |
-+--------------------------------------------------------------------------------------+
+*Return arguments:*
+
+The procedure doesn't return any value.
 
-3 row available after 100 ms, consumed after another 6 ms
-----
 
 .Check if a database is quarantined
 [source, cypher]
@@ -251,7 +221,7 @@ neo4j@system> SHOW DATABASE foo;
 ====
 A `quarantined` state is persisted for user databases.
 This means that if a database is quarantined, it will remain so even if that Neo4j instance is restarted.
-You can remove it only by running the xref:procedures.adoc#procedure_dbms_quarantineDatabase[`dbms.quarantineDatabase`] procedure on the instance where the quarantined database is located, passing `false` for the `setStatus` parameter.
+You can remove it only by running the xref:procedures.adoc#procedure_dbms_unquarantineDatabase[`dbms.unquarantineDatabase()`] procedure.
 
 The one exception to this rule is for the built-in `system` database.
 Any quarantine for that database is removed automatically after instance restart.

modules/ROOT/pages/database-administration/standard-databases/errors.adoc

@@ -143,7 +143,7 @@ docker build --file /example/Dockerfile --tag neo4j:{neo4j-version-exact}-enterp
 
 # Create and run a container based on the custom image:
 
-docker run --interactive --tty --name custom-container-1 -p7687:7687 -p7474:7474 -p7473:7473 --env NEO4J_AUTH=neo4j/password --env NEO4J_ACCEPT_LICENSE_AGREEMENT=yes neo4j:{neo4j-version-exact}-enterprise-custom-container-1
+docker run --interactive --tty --name custom-container-1 -p7687:7687 -p7474:7474 -p7473:7473 --env NEO4J_AUTH=neo4j/your_password --env NEO4J_ACCEPT_LICENSE_AGREEMENT=yes neo4j:{neo4j-version-exact}-enterprise-custom-container-1
 ----
 
 The recommended best practices and methods for building efficient Docker images can be found at link:https://docs.docker.com/develop/develop-images/dockerfile_best-practices/[the Docker documentation -> Best practices for writing Dockerfiles].

modules/ROOT/pages/docker/configuration.adoc

@@ -232,7 +232,7 @@ docker run --rm \
 --volume /path/to/local/examples:/examples \
 --publish=7474:7474 \
 --publish=7687:7687 \
---env NEO4J_AUTH=neo4j/<password> \
+--env NEO4J_AUTH=neo4j/your_password \
 neo4j:{neo4j-version-exact}
 
 # Run the Cypher Shell tool with the --file option passing the example.cypher file:
@@ -251,7 +251,7 @@ docker run --rm \
 --volume /path/to/local/examples:/examples \
 --publish=7474:7474 \
 --publish=7687:7687 \
---env NEO4J_AUTH=neo4j/<password> \
+--env NEO4J_AUTH=neo4j/your_password \
 neo4j:{neo4j-version-exact}
 
 # Use the container ID or name to get into the container, and then, run the cypher-shell command and authenticate.

modules/ROOT/pages/docker/operations.adoc

@@ -59,7 +59,7 @@ image:
   imageCredentials:
     - registry: "https://index.docker.io/v1/"
       username: "myusername"
-      password: "mypassword"
+      password: "your_password"
       email: "[email protected]"
       name: "mysecret"
 ----

modules/ROOT/pages/kubernetes/operations/image-pull-secret.adoc

@@ -636,19 +636,19 @@ It will still run with the `Admin` privilege, but that should be considered depr
 | *Syntax* 3+m| dbms.cluster.statusCheck(databases, timeoutMilliseconds) :: (database, serverId, serverName, address, replicationSuccessful, memberStatus, recognisedLeader, recognisedLeaderTerm, requester, error)
 | *Description* 3+a| Performs a rafted status check.
 .3+| *Input arguments* | *Name* | *Type* | *Description*
-| `databases` | `LIST<STRING>` | databases :: LIST<STRING>
-| `timeoutMilliseconds` | `INTEGER` | timeoutMilliseconds = null :: INTEGER
+| `databases` | `LIST<STRING>` | Databases for which the status check should run. Providing an empty list runs the status check for all clustered databases on that server, i.e. it does not run on singles or secondaries.
+| `timeoutMilliseconds` | `INTEGER` | Specifies the maximum wait time for replication before marking it unsuccessful. Default value is 1000 milliseconds.
 .11+| *Return arguments* | *Name* | *Type* | *Description*
-| `database` | `STRING` | database :: STRING
-| `serverId` | `STRING` | serverId :: STRING
-| `serverName` | `STRING` | serverName :: STRING
-| `address` | `STRING` | address :: STRING
-| `replicationSuccessful` | `BOOLEAN` | replicationSuccessful :: BOOLEAN
-| `memberStatus` | `STRING` | memberStatus :: STRING
-| `recognisedLeader` | `STRING` | recognisedLeader :: STRING
-| `recognisedLeaderTerm` | `INTEGER` | recognisedLeaderTerm :: INTEGER
-| `requester` | `BOOLEAN` | requester :: BOOLEAN
-| `error` | `STRING` | error :: STRING
+| `database` | `STRING` | The database for which a status check entry was replicated.
+| `serverId` | `STRING` | The UUID of the server, which did or did not participate in a successful replication of the status check entry.
+| `serverName` | `STRING` | The friendly name of the server, or its UUID if no name is set.
+| `address` | `STRING` | The address of the Bolt port for the server.
+| `replicationSuccessful` | `BOOLEAN` | Indicates if the server (on which the procedure is run) can replicate a transaction.
+| `memberStatus` | `STRING` | The status of each primary member.
+| `recognisedLeader` | `STRING` | The server id of the perceived leader of each primary member.
+| `recognisedLeaderTerm` | `INTEGER` | The term of the perceived leader of each primary member. If the members report different leaders, the one with the highest term should be trusted.
+| `requester` | `BOOLEAN` | Whether a server is the requester or not.
+| `error` | `STRING` | Contains any error message if present. An example of an error is that one or more of the requested databases do not exist on the requester.
 | *Mode* 3+| DBMS
 |===
 
@@ -1056,7 +1056,7 @@ For more information, see the link:{neo4j-docs-base-uri}/cypher-manual/{page-ver
 | *Mode* 3+| WRITE
 |===
 
-[role=label--enterprise-edition label--admin-only]
+[role=label--enterprise-edition label--admin-only label--deprecated-2025.01]
 [[procedure_dbms_quarantineDatabase]]
 === dbms.quarantineDatabase()
 
@@ -1076,6 +1076,43 @@ For more information, see the link:{neo4j-docs-base-uri}/cypher-manual/{page-ver
 | *Mode* 3+| DBMS
 |===
 
+[NOTE]
+====
+It is recommended to use <<procedure_dbms_unquarantineDatabase,`dbms.unquarantineDatabase()`>> over `dbms.quarantineDatabase()` due to its improvements and new features (see the `operation` option ).
+// The deprecated `dbms.quarantineDatabase()` procedure is available in Cypher 5, but not in Cypher 25.
+====
+
+[role=label--enterprise-edition label--admin-only label--new-2025.01]
+[[procedure_dbms_unquarantineDatabase]]
+=== dbms.unquarantineDatabase()
+
+
+.Details
+|===
+| *Syntax* 3+m| dbms.unquarantineDatabase(server, databaseName, operation) :: ()
+| *Description* 3+a| Lift quarantine from a database on a given server.
+.4+| *Input arguments* | *Name* | *Type* | *Description*
+| `server` | `STRING` | The identifier of the server where the quarantine for database will be lifted.
+| `database` | `STRING` | The name of the database for the quarantine will be lifted.
+| `operation` | `STRING` | Optional operation to apply while lifting the quarantine.
+| *Mode* 3+| DBMS
+|===
+
+[NOTE]
+====
+The possible values for the optional operation are:
+
+* `keepStateKeepStore` -- do nothing; leave store and cluster state as they are.
+* `replaceStateKeepStore` -- join as a new member, clearing the current cluster state but keeping the store.
+* `replaceStateReplaceStore` -- join as a new member, clearing both the current cluster state and the store.
+
+If you choose to clear the current cluster state, the server will try to join as a new member,
+but this joining can succeed if and only if there is a majority of old members "letting" the new members in.
+Let's assume our cluster has a topology with three primaries.
+If there is only one server in `QUARANTINED` mode, then it is safe to choose `replaceStateKeepStore` or `replaceStateReplaceStore`.
+If there are two servers in `QUARANTINED` mode, then you should not use concurrently `replaceStateKeepStore` or `replaceStateReplaceStore` for both servers because there would be no majority to let them in.
+====
+
 [role=label--admin-only label--deprecated-5.9]
 [[procedure_dbms_upgrade]]
 === dbms.upgrade()
@@ -1925,6 +1962,13 @@ Replaced by: xref:procedures.adoc#procedure_dbms_routing_getroutingtable[`dbms.r
 Before Neo4j 5.23, the procedure can be run only with the `Admin` privileges. +
 Replaced by xref:clustering/server-syntax.adoc#server-management-syntax[`ENABLE SERVER`].
 
+// New in v6
+| xref:procedures.adoc#procedure_dbms_quarantineDatabase[`dbms.quarantineDatabase()`]
+| label:no[]
+| label:yes[]
+| label:admin-only[] label:deprecated[Deprecated in 2025.01] +
+Replaced by xref:procedures.adoc#procedure_dbms_unquarantineDatabase[`dbms.unquarantineDatabase()`]
+
 | xref:procedures.adoc#procedure_dbms_setDatabaseAllocator[`dbms.setDatabaseAllocator()`]
 | label:no[]
 | label:yes[]