luxolus
/
open-consul
2
0
Fork 0
Code Issues 1 Pull Requests Packages Releases Wiki Activity
open-consul/agent
History
Matt Keeler cbd0afc87c
Handle resolving proxy tokens when parsing HTTP requests (#4453) 
Fixes: #4441

This fixes the issue with Connect Managed Proxies + ACLs being broken.

The underlying problem was that the token parsed for most http endpoints was sent untouched to the servers via the RPC request. These changes make it so that at the HTTP endpoint when parsing the token we additionally attempt to convert potential proxy tokens into regular tokens before sending to the RPC endpoint. Proxy tokens are only valid on the agent with the managed proxy so the resolution has to happen before it gets forwarded anywhere.
 		2018-07-30 09:11:51 -04:00
..
ae Spelling (#3958) 2018-03-19 16:56:00 +00:00
cache Fixes #4421: General solution to stop blocking queries with index 0 (#4437) 2018-07-25 20:26:27 +01:00
cache-types Fixes #4421: General solution to stop blocking queries with index 0 (#4437) 2018-07-25 20:26:27 +01:00
checks agent/checks: prevent overflow of backoff 2018-07-12 10:21:49 -07:00
config Gossip tuneables (#4444) 2018-07-26 11:39:49 -04:00
connect connect/ca: simplify passing of leaf cert TTL 2018-07-25 17:51:45 -07:00
consul fix inconsistency in TestConnectCAConfig_GetSet 2018-07-26 07:46:47 -07:00
exec
local agent/local: silly spacing on select statements 2018-07-19 14:21:30 -05:00
metadata
mock
pool
proxy Update proxy manager test - test passing ProxyEnv vars 2018-07-11 16:50:27 -04:00
router Remove unnecessary nil checks 2018-03-27 10:59:42 -05:00
structs Merge pull request #4400 from hashicorp/leaf-cert-ttl 2018-07-25 17:53:25 -07:00
systemd
token
acl.go Updated swith case to use same branch for async-cache and extend-cache 2018-07-02 17:39:34 +02:00
acl_endpoint.go
acl_endpoint_test.go
acl_test.go Fixed indentation in test 2018-07-07 14:03:34 +02:00
agent.go Gossip tuneables (#4444) 2018-07-26 11:39:49 -04:00
agent_endpoint.go Handle resolving proxy tokens when parsing HTTP requests (#4453) 2018-07-30 09:11:51 -04:00
agent_endpoint_test.go Fixes #4421: General solution to stop blocking queries with index 0 (#4437) 2018-07-25 20:26:27 +01:00
agent_test.go Merge pull request #4320 from hashicorp/f-alias-check 2018-07-20 13:01:33 -05:00
bindata_assetfs.go Release v1.2.1 2018-07-12 16:33:56 +00:00
blacklist.go
blacklist_test.go
catalog_endpoint.go agent: clean up connect/non-connect duplication by using shared methods 2018-06-14 09:41:48 -07:00
catalog_endpoint_test.go Move default uuid test into the consul package 2018-06-27 09:21:58 -04:00
check.go
config.go
connect_ca_endpoint.go revert go changes to hide rotation config 2018-06-25 12:26:18 -07:00
connect_ca_endpoint_test.go Merge pull request #4400 from hashicorp/leaf-cert-ttl 2018-07-25 17:53:25 -07:00
coordinate_endpoint.go
coordinate_endpoint_test.go Spelling (#3958) 2018-03-19 16:56:00 +00:00
dns.go Merge remote-tracking branch 'origin/master' into bugfix/prevent-multi-cname 2018-07-10 10:26:45 -04:00
dns_test.go Merge remote-tracking branch 'origin/master' into bugfix/prevent-multi-cname 2018-07-10 10:26:45 -04:00
enterprise_delegate_oss.go Allow for easy enterprise/oss coexistence 2018-05-24 10:36:42 -04:00
event_endpoint.go
event_endpoint_test.go
health_endpoint.go agent: get rid of method checks since they're done in the http layer 2018-06-14 09:41:54 -07:00
health_endpoint_test.go agent: address PR feedback 2018-06-14 09:41:49 -07:00
http.go Handle resolving proxy tokens when parsing HTTP requests (#4453) 2018-07-30 09:11:51 -04:00
http_oss.go agent: rename test to check 2018-06-14 09:42:18 -07:00
http_oss_test.go Close HTTP response in Agent test (HTTPAPI_MethodNotAllowed_OSS) 2018-04-10 13:18:46 -04:00
http_test.go Handle resolving proxy tokens when parsing HTTP requests (#4453) 2018-07-30 09:11:51 -04:00
intentions_endpoint.go agent: 400 error on invalid UUID format, api handles errors properly 2018-06-27 07:40:06 +02:00
intentions_endpoint_test.go agent: 400 error on invalid UUID format, api handles errors properly 2018-06-27 07:40:06 +02:00
keyring.go
keyring_test.go
kvs_endpoint.go
kvs_endpoint_test.go
notify.go
notify_test.go
operator_endpoint.go
operator_endpoint_test.go
prepared_query_endpoint.go agent: accept connect param for execute 2018-06-25 12:24:12 -07:00
prepared_query_endpoint_test.go agent: accept connect param for execute 2018-06-25 12:24:12 -07:00
remote_exec.go
remote_exec_test.go
retry_join.go Use new discover and useragent libs 2018-05-25 15:52:05 -04:00
retry_join_test.go Vendoring update for go-discover. (#4412) 2018-07-25 16:21:04 -07:00
session_endpoint.go
session_endpoint_test.go
snapshot_endpoint.go
snapshot_endpoint_test.go
status_endpoint.go
status_endpoint_test.go
testagent.go Disable TestAgent proxy execution properly 2018-06-25 12:25:38 -07:00
testagent_test.go
translate_addr.go
txn_endpoint.go
txn_endpoint_test.go
ui_endpoint.go Output the service Kind in the /v1/internal/ui/services endpoint 2018-06-25 12:25:40 -07:00
ui_endpoint_test.go Output the service Kind in the /v1/internal/ui/services endpoint 2018-06-25 12:25:40 -07:00
user_event.go Spelling (#3958) 2018-03-19 16:56:00 +00:00
user_event_test.go
util.go
util_test.go
watch_handler.go Support legacy watch.HandlerFunc type for backward compat reduces impact of change 2018-06-14 09:42:05 -07:00
watch_handler_test.go Support legacy watch.HandlerFunc type for backward compat reduces impact of change 2018-06-14 09:42:05 -07:00