luxolus
/
open-consul
2
0
Fork 0
Code Issues 1 Pull Requests Packages Releases Wiki Activity
open-consul/agent/consul
History
Matt Keeler cdc4b20afa
ACL Node Identities (#7970) 
A Node Identity is very similar to a service identity. Its main targeted use is to allow creating tokens for use by Consul agents that will grant the necessary permissions for all the typical agent operations (node registration, coordinate updates, anti-entropy).

Half of this commit is for golden file based tests of the acl token and role cli output. Another big updates was to refactor many of the tests in agent/consul/acl_endpoint_test.go to use the same style of tests and the same helpers. Besides being less boiler plate in the tests it also uses a common way of starting a test server with ACLs that should operate without any warnings regarding deprecated non-uuid master tokens etc.
 		2020-06-16 12:54:27 -04:00
..
authmethod Replace whitelist/blacklist terminology with allowlist/denylist (#7971) 2020-05-29 14:19:16 -04:00
autopilot Replace goe/verify.Values with testify/require.Equal (#7993) 2020-06-02 12:41:25 -04:00
discoverychain Construct a default destination if one does not exist for service-router (#7783) 2020-05-05 10:49:50 -05:00
fsm Tokens converted from legacy ACLs get their Hash computed (#8047) 2020-06-08 21:44:06 +02:00
prepared_query Fix a number of problems found by staticcheck 2020-05-19 16:50:14 -04:00
state ACL Node Identities (#7970) 2020-06-16 12:54:27 -04:00
testdata
wanfed
acl.go ACL Node Identities (#7970) 2020-06-16 12:54:27 -04:00
acl_authmethod.go ACL Node Identities (#7970) 2020-06-16 12:54:27 -04:00
acl_authmethod_oss.go acl: add auth method for JWTs (#7846) 2020-05-11 20:59:29 -05:00
acl_authmethod_test.go acl: refactor the authmethod.Validator interface (#7760) 2020-05-01 17:35:28 -05:00
acl_client.go Fix identity resolution on clients and in secondary dcs (#7862) 2020-05-13 13:00:08 -04:00
acl_endpoint.go ACL Node Identities (#7970) 2020-06-16 12:54:27 -04:00
acl_endpoint_legacy.go Some boilerplate to allow for ACL Bootstrap disabling configurability 2020-04-28 09:42:46 -04:00
acl_endpoint_oss.go acl: add auth method for JWTs (#7846) 2020-05-11 20:59:29 -05:00
acl_endpoint_test.go ACL Node Identities (#7970) 2020-06-16 12:54:27 -04:00
acl_oss.go
acl_oss_test.go
acl_replication.go
acl_replication_legacy.go
acl_replication_legacy_test.go
acl_replication_test.go
acl_replication_types.go
acl_server.go Fix identity resolution on clients and in secondary dcs (#7862) 2020-05-13 13:00:08 -04:00
acl_server_oss.go Allow the bootstrap endpoint to be disabled in enterprise. (#7614) 2020-04-14 11:45:39 -04:00
acl_test.go ACL Node Identities (#7970) 2020-06-16 12:54:27 -04:00
acl_token_exp.go
acl_token_exp_test.go
auto_encrypt.go pool: remove version 2020-05-28 23:06:01 +02:00
auto_encrypt_endpoint.go
auto_encrypt_endpoint_test.go
auto_encrypt_test.go
autopilot.go
autopilot_oss.go
autopilot_test.go
catalog_endpoint.go Move compound service names to use ServiceName type 2020-06-12 13:47:43 -06:00
catalog_endpoint_test.go Move compound service names to use ServiceName type 2020-06-12 13:47:43 -06:00
client.go Merge pull request #7966 from hashicorp/pool_improvements 2020-06-04 08:56:26 +02:00
client_serf.go
client_test.go Merge pull request #7966 from hashicorp/pool_improvements 2020-06-04 08:56:26 +02:00
cluster_test.go A couple testing helper updates (#7694) 2020-04-27 12:17:38 -04:00
config.go acl: remove the deprecated `acl_enforce_version_8` option (#7991) 2020-05-29 16:16:03 -05:00
config_endpoint.go connect: ensure proxy-defaults protocol is used for upstreams (#7938) 2020-05-21 16:08:39 -05:00
config_endpoint_test.go acl: remove the deprecated `acl_enforce_version_8` option (#7991) 2020-05-29 16:16:03 -05:00
config_replication.go
config_replication_test.go
connect_ca_endpoint.go Replace whitelist/blacklist terminology with allowlist/denylist (#7971) 2020-05-29 14:19:16 -04:00
connect_ca_endpoint_test.go
consul_ca_delegate.go
coordinate_endpoint.go acl: remove the deprecated `acl_enforce_version_8` option (#7991) 2020-05-29 16:16:03 -05:00
coordinate_endpoint_test.go Replace goe/verify.Values with testify/require.Equal (#7993) 2020-06-02 12:41:25 -04:00
discovery_chain_endpoint.go
discovery_chain_endpoint_test.go acl: remove the deprecated `acl_enforce_version_8` option (#7991) 2020-05-29 16:16:03 -05:00
enterprise_client_oss.go
enterprise_config_oss.go
enterprise_server_oss.go
federation_state_endpoint.go server: don't activate federation state replication or anti-entropy until all servers are running 1.8.0+ (#8014) 2020-06-04 16:05:27 -05:00
federation_state_endpoint_test.go acl: remove the deprecated `acl_enforce_version_8` option (#7991) 2020-05-29 16:16:03 -05:00
federation_state_replication.go server: don't activate federation state replication or anti-entropy until all servers are running 1.8.0+ (#8014) 2020-06-04 16:05:27 -05:00
federation_state_replication_test.go
filter.go
filter_test.go
flood.go agent: refactor to use a single addrFn 2020-05-05 21:08:10 +02:00
gateway_locator.go create lib/stringslice package (#7934) 2020-05-27 11:47:32 -05:00
gateway_locator_test.go agent: handle re-bootstrapping in a secondary datacenter when WAN federation via mesh gateways is configured (#7931) 2020-05-27 11:31:10 -05:00
health_endpoint.go Ingress Gateways for TCP services (#7509) 2020-04-16 14:00:48 -07:00
health_endpoint_test.go acl: remove the deprecated `acl_enforce_version_8` option (#7991) 2020-05-29 16:16:03 -05:00
helper_test.go A couple testing helper updates (#7694) 2020-04-27 12:17:38 -04:00
intention_endpoint.go intentions: fix a bug in Intention.SetHash 2020-06-05 14:51:43 -04:00
intention_endpoint_test.go ACL Node Identities (#7970) 2020-06-16 12:54:27 -04:00
internal_endpoint.go Move compound service names to use ServiceName type 2020-06-12 13:47:43 -06:00
internal_endpoint_test.go Move compound service names to use ServiceName type 2020-06-12 13:47:43 -06:00
issue_test.go
kvs_endpoint.go
kvs_endpoint_test.go ci: Enabled SA2002 staticcheck check 2020-06-05 17:50:11 -04:00
leader.go ACL Node Identities (#7970) 2020-06-16 12:54:27 -04:00
leader_connect.go
leader_connect_test.go
leader_federation_state_ae.go server: don't activate federation state replication or anti-entropy until all servers are running 1.8.0+ (#8014) 2020-06-04 16:05:27 -05:00
leader_federation_state_ae_test.go
leader_routine_manager.go Fix a number of problems found by staticcheck 2020-05-19 16:50:14 -04:00
leader_routine_manager_test.go
leader_test.go ACL Node Identities (#7970) 2020-06-16 12:54:27 -04:00
logging.go
logging_test.go
merge.go agent: don't let left nodes hold onto their node-id (#7747) 2020-05-04 18:39:08 +02:00
merge_test.go
operator_autopilot_endpoint.go
operator_autopilot_endpoint_test.go
operator_endpoint.go
operator_raft_endpoint.go
operator_raft_endpoint_test.go Replace goe/verify.Values with testify/require.Equal (#7993) 2020-06-02 12:41:25 -04:00
prepared_query_endpoint.go acl: remove the deprecated `acl_enforce_version_8` option (#7991) 2020-05-29 16:16:03 -05:00
prepared_query_endpoint_test.go acl: remove the deprecated `acl_enforce_version_8` option (#7991) 2020-05-29 16:16:03 -05:00
raft_rpc.go
replication.go server: don't activate federation state replication or anti-entropy until all servers are running 1.8.0+ (#8014) 2020-06-04 16:05:27 -05:00
replication_test.go
rpc.go pool: remove version 2020-05-28 23:06:01 +02:00
rpc_test.go acl: remove the deprecated `acl_enforce_version_8` option (#7991) 2020-05-29 16:16:03 -05:00
rtt.go
rtt_test.go
segment_oss.go Fix spelling of deregister (#7804) 2020-05-08 10:03:45 -04:00
serf_test.go
server.go server: don't activate federation state replication or anti-entropy until all servers are running 1.8.0+ (#8014) 2020-06-04 16:05:27 -05:00
server_lookup.go
server_lookup_test.go
server_oss.go Move GatewayServices out of Internal 2020-06-12 13:46:47 -06:00
server_serf.go server: don't activate federation state replication or anti-entropy until all servers are running 1.8.0+ (#8014) 2020-06-04 16:05:27 -05:00
server_test.go ACL Node Identities (#7970) 2020-06-16 12:54:27 -04:00
session_endpoint.go acl: remove the deprecated `acl_enforce_version_8` option (#7991) 2020-05-29 16:16:03 -05:00
session_endpoint_test.go acl: remove the deprecated `acl_enforce_version_8` option (#7991) 2020-05-29 16:16:03 -05:00
session_timers.go
session_timers_test.go
session_ttl.go
session_ttl_test.go
snapshot_endpoint.go pool: remove timeout parameter 2020-05-29 08:21:28 +02:00
snapshot_endpoint_test.go pool: remove useTLS and ForceTLS 2020-05-29 08:21:24 +02:00
stats_fetcher.go pool: remove version 2020-05-28 23:06:01 +02:00
stats_fetcher_test.go ci: Add staticcheck and fix most errors 2020-05-28 11:59:58 -04:00
status_endpoint.go
status_endpoint_test.go pool: remove useTLS and ForceTLS 2020-05-29 08:21:24 +02:00
txn_endpoint.go
txn_endpoint_test.go
util.go acl: refactor the authmethod.Validator interface (#7760) 2020-05-01 17:35:28 -05:00
util_test.go ci: Add staticcheck and fix most errors 2020-05-28 11:59:58 -04:00