Mitchell Hashimoto
|
0fe99f4f14
|
command/intention/create: -replace does an atomic change
|
2018-06-14 09:42:20 -07:00 |
Mitchell Hashimoto
|
a316ba7f39
|
api: IntentionUpdate API
|
2018-06-14 09:42:20 -07:00 |
Mitchell Hashimoto
|
f03fa81e6a
|
command/intention/match
|
2018-06-14 09:42:19 -07:00 |
Mitchell Hashimoto
|
afbe0c3e6c
|
command/intention/delete: tests
|
2018-06-14 09:42:19 -07:00 |
Mitchell Hashimoto
|
15ce2643e5
|
command/intention/check: check tests
|
2018-06-14 09:42:19 -07:00 |
Mitchell Hashimoto
|
8df851c1ea
|
command/intention/get: tests
|
2018-06-14 09:42:19 -07:00 |
Mitchell Hashimoto
|
50e179c3af
|
command/intention/match
|
2018-06-14 09:42:19 -07:00 |
Mitchell Hashimoto
|
5ed57b393c
|
command/intentions/check
|
2018-06-14 09:42:19 -07:00 |
Mitchell Hashimoto
|
e055f40612
|
command/intention/create: -replace flag, jank, we should change to PUT
|
2018-06-14 09:42:19 -07:00 |
Mitchell Hashimoto
|
4caeaaaa21
|
command/intentions/delete
|
2018-06-14 09:42:19 -07:00 |
Mitchell Hashimoto
|
efa82278e2
|
api: IntentionDelete + tests
|
2018-06-14 09:42:18 -07:00 |
Mitchell Hashimoto
|
aead9cd422
|
command/intention/get: the get command without tests
|
2018-06-14 09:42:18 -07:00 |
Mitchell Hashimoto
|
77d0360de1
|
command/intention/finder: package for finding based on src/dst
|
2018-06-14 09:42:18 -07:00 |
Mitchell Hashimoto
|
a1a7eaa876
|
command/intention/create
|
2018-06-14 09:42:18 -07:00 |
Mitchell Hashimoto
|
bf99a7f54a
|
api: IntentionCheck
|
2018-06-14 09:42:18 -07:00 |
Mitchell Hashimoto
|
b5b29cd6af
|
agent: rename test to check
|
2018-06-14 09:42:18 -07:00 |
Mitchell Hashimoto
|
b961bab08c
|
agent: implement HTTP endpoint
|
2018-06-14 09:42:18 -07:00 |
Mitchell Hashimoto
|
a48ff54318
|
agent/consul: forward request if necessary
|
2018-06-14 09:42:17 -07:00 |
Mitchell Hashimoto
|
b02502be73
|
agent: comments to point to differing logic
|
2018-06-14 09:42:17 -07:00 |
Mitchell Hashimoto
|
526cfc34bd
|
agent/consul: implement Intention.Test endpoint
|
2018-06-14 09:42:17 -07:00 |
Paul Banks
|
bd5e569dc7
|
Make invalid clusterID be fatal
|
2018-06-14 09:42:17 -07:00 |
Paul Banks
|
957aaf69ab
|
Make Service logger log to right place again
|
2018-06-14 09:42:17 -07:00 |
Paul Banks
|
69b668c951
|
Make connect client resolver resolve trust domain properly
|
2018-06-14 09:42:17 -07:00 |
Paul Banks
|
919fd3e148
|
Fix logical conflicts with CA refactor
|
2018-06-14 09:42:17 -07:00 |
Paul Banks
|
73f2a49ef1
|
Fix broken api test for service Meta (logical conflict rom OSS). Add test that would make this much easier to catch in future.
|
2018-06-14 09:42:17 -07:00 |
Paul Banks
|
bd5eb8b749
|
Add default CA config back - I didn't add it and causes nil panics
|
2018-06-14 09:42:17 -07:00 |
Paul Banks
|
dbcf286d4c
|
Ooops remove the CA stuff from actual server defaults and make it test server only
|
2018-06-14 09:42:16 -07:00 |
Paul Banks
|
cac32ba071
|
More test cleanup
|
2018-06-14 09:42:16 -07:00 |
Paul Banks
|
834ed1d25f
|
Fixed many tests after rebase. Some still failing and seem unrelated to any connect changes.
|
2018-06-14 09:42:16 -07:00 |
Paul Banks
|
bdd30b191b
|
Comment cleanup
|
2018-06-14 09:42:16 -07:00 |
Paul Banks
|
5abf47472d
|
Verify trust domain on /authorize calls
|
2018-06-14 09:42:16 -07:00 |
Paul Banks
|
30d90b3be4
|
Generate CSR using real trust-domain
|
2018-06-14 09:42:16 -07:00 |
Paul Banks
|
5a1408f186
|
Add CSR signing verification of service ACL, trust domain and datacenter.
|
2018-06-14 09:42:16 -07:00 |
Paul Banks
|
c808833a78
|
Return TrustDomain from CARoots RPC
|
2018-06-14 09:42:15 -07:00 |
Kyle Havlovitz
|
d1265bc38b
|
Rename some of the CA structs/files
|
2018-06-14 09:42:15 -07:00 |
Kyle Havlovitz
|
1660f9ebab
|
Add more metadata to structs.CARoot
|
2018-06-14 09:42:15 -07:00 |
Kyle Havlovitz
|
baf4db1c72
|
Use provider state table for a global serial index
|
2018-06-14 09:42:15 -07:00 |
Kyle Havlovitz
|
5998623c44
|
Add test for ca config http endpoint
|
2018-06-14 09:42:15 -07:00 |
Kyle Havlovitz
|
c90b353eea
|
Move connect CA provider to separate package
|
2018-06-14 09:42:15 -07:00 |
Mitchell Hashimoto
|
4bb745a2d4
|
agent/cache: change uint8 to uint
|
2018-06-14 09:42:15 -07:00 |
Mitchell Hashimoto
|
6cf2e1ef1a
|
agent/cache: string through attempt rather than storing on the entry
|
2018-06-14 09:42:15 -07:00 |
Mitchell Hashimoto
|
c42510e1ec
|
agent/cache: implement refresh backoff
|
2018-06-14 09:42:14 -07:00 |
Mitchell Hashimoto
|
54a1662da8
|
agent/consul: change provider wait from goto to a loop
|
2018-06-14 09:42:14 -07:00 |
Mitchell Hashimoto
|
749f81373f
|
agent/consul: check nil on getCAProvider result
|
2018-06-14 09:42:14 -07:00 |
Mitchell Hashimoto
|
c57405b323
|
agent/consul: retry reading provider a few times
|
2018-06-14 09:42:14 -07:00 |
Mitchell Hashimoto
|
b4f990bc6c
|
agent: verify local proxy tokens for CA leaf + tests
|
2018-06-14 09:42:14 -07:00 |
Mitchell Hashimoto
|
8f7b5f93cd
|
agent: verify proxy token for ProxyConfig endpoint + tests
|
2018-06-14 09:42:14 -07:00 |
Mitchell Hashimoto
|
4100c9567f
|
command/connect/proxy: set ACL token based on proxy token flag
|
2018-06-14 09:42:14 -07:00 |
Mitchell Hashimoto
|
9435d8088c
|
command/connect/proxy: set proxy ID from env var if set
|
2018-06-14 09:42:14 -07:00 |
Mitchell Hashimoto
|
3a7aaa63bc
|
agent/proxy: pass proxy ID as an env var
|
2018-06-14 09:42:13 -07:00 |