open-consul

History

freddygv b1050e4229 Update prepared query cluster SAN validation Previously SAN validation for prepared queries was broken because we validated against the name, namespace, and datacenter for prepared queries. However, prepared queries can target: - Services with a name that isn't their own - Services in multiple datacenters This means that the SpiffeID to validate needs to be based on the prepared query endpoints, and not the prepared query's upstream definition. This commit updates prepared query clusters to account for that.		2021-08-20 17:40:33 -06:00
..
clusters	Update prepared query cluster SAN validation	2021-08-20 17:40:33 -06:00
endpoints	Update prepared query cluster SAN validation	2021-08-20 17:40:33 -06:00
listeners	Regen golden files	2021-06-15 14:18:25 -06:00
rbac	xds: ensure single L7 deny intention with default deny policy does not result in allow action (CVE-2021-36213) (#10619 )	2021-07-15 10:09:00 -05:00
routes	connect: update supported envoy versions to 1.18.2, 1.17.2, 1.16.3, and 1.15.4 (#10101 )	2021-04-29 15:22:03 -05:00
alt-test-leaf-cert.golden	Use golden files for gateway certs and fix listener test flakiness	2020-04-27 11:08:41 -06:00
alt-test-leaf-key.golden	Use golden files for gateway certs and fix listener test flakiness	2020-04-27 11:08:41 -06:00
alt-test-root-cert.golden	Use golden files for gateway certs and fix listener test flakiness	2020-04-27 11:08:41 -06:00
cache-test-leaf-cert.golden	Always return a gateway cluster (#8158 )	2020-06-19 13:31:39 -06:00
cache-test-leaf-key.golden	Always return a gateway cluster (#8158 )	2020-06-19 13:31:39 -06:00
db-test-leaf-cert.golden	Always return a gateway cluster (#8158 )	2020-06-19 13:31:39 -06:00
db-test-leaf-key.golden	Always return a gateway cluster (#8158 )	2020-06-19 13:31:39 -06:00
test-leaf-cert.golden	Connect: allow configuring Envoy for L7 Observability (#5558 )	2019-04-29 17:27:57 +01:00
test-leaf-key.golden	Connect: allow configuring Envoy for L7 Observability (#5558 )	2019-04-29 17:27:57 +01:00
test-root-cert.golden	Connect: allow configuring Envoy for L7 Observability (#5558 )	2019-04-29 17:27:57 +01:00