luxolus
/
open-consul
2
0
Fork 0
Code Issues 1 Pull Requests Packages Releases Wiki Activity
open-consul/agent/config
History
Kyle Havlovitz f5c5d2f5c6
auto-config: relax node name validation for JWT authorization (#15370) 
* auto-config: relax node name validation for JWT authorization

This changes the JWT authorization logic to allow all non-whitespace,
non-quote characters when validating node names. Consul had previously
allowed these characters in node names, until this validation was added
to fix a security vulnerability with whitespace/quotes being passed to
the `bexpr` library. This unintentionally broke node names with
characters like `.` which aren't related to this vulnerability.

* Update website/content/docs/agent/config/cli-flags.mdx

Co-authored-by: trujillo-adam <47586768+trujillo-adam@users.noreply.github.com>

Co-authored-by: trujillo-adam <47586768+trujillo-adam@users.noreply.github.com>
 		2022-11-14 18:24:40 -06:00
..
testdata cache: refactor agent cache fetching to prevent unnecessary fetches on error (#14956) 2022-10-25 10:27:26 -05:00
agent_limits.go config: validate system limits against limits.http_max_conns_per_client (#7434) 2020-04-02 09:22:17 +02:00
builder.go auto-config: relax node name validation for JWT authorization (#15370) 2022-11-14 18:24:40 -06:00
builder_oss.go re-run gofmt on 1.17 (#11579) 2021-11-16 12:04:01 -06:00
builder_oss_test.go Rename `master` and `agent_master` ACL tokens in the config file format (#11665) 2021-12-01 21:08:14 +00:00
builder_test.go Prevent serving TLS via ports.grpc (#15339) 2022-11-11 14:29:22 -06:00
config.go test: refactor testcontainers and add peering integ tests (#15084) 2022-11-01 15:03:23 -04:00
config_oss.go Fixup acl.EnterpriseMeta 2022-04-05 15:11:49 -07:00
default.go update config defaults, add docs (#15302) 2022-11-09 09:29:55 -08:00
default_oss.go re-run gofmt on 1.17 (#11579) 2021-11-16 12:04:01 -06:00
deprecated.go config: prevent top-level `verify_incoming` enabling mTLS on gRPC port (#13118) 2022-05-18 16:15:57 +01:00
deprecated_test.go config: prevent top-level `verify_incoming` enabling mTLS on gRPC port (#13118) 2022-05-18 16:15:57 +01:00
doc.go Metrics service prefix (#3498) 2017-09-26 17:49:55 -07:00
file_watcher.go Regenerate files according to 1.19.2 formatter 2022-10-24 16:12:08 -04:00
file_watcher_test.go add a rate limiter to config auto-reload (#12490) 2022-04-04 11:31:39 -04:00
flags.go Add separate grpc_tls port. 2022-08-29 13:43:43 -05:00
flags_test.go Revert "Merge pull request #10588 from hashicorp/dnephin/config-fix-ports-grpc" 2021-09-29 12:28:41 -04:00
flagset.go New config parser, HCL support, multiple bind addrs (#3480) 2017-09-25 11:40:42 -07:00
golden_test.go removes ioutil usage everywhere which was deprecated in go1.16 (#15297) 2022-11-10 10:26:01 -06:00
limits.go re-run gofmt on 1.17 (#11579) 2021-11-16 12:04:01 -06:00
limits_windows.go re-run gofmt on 1.17 (#11579) 2021-11-16 12:04:01 -06:00
merge.go Agent Auto Configuration: Configuration Syntax Updates (#8003) 2020-06-16 15:03:22 -04:00
merge_test.go config: Introduce DeprecatedConfig 2021-09-22 13:22:16 -04:00
ratelimited_file_watcher.go add a rate limiter to config auto-reload (#12490) 2022-04-04 11:31:39 -04:00
ratelimited_file_watcher_test.go add a rate limiter to config auto-reload (#12490) 2022-04-04 11:31:39 -04:00
runtime.go Refactor client RPC timeouts (#14965) 2022-10-18 15:05:09 -04:00
runtime_oss.go re-run gofmt on 1.17 (#11579) 2021-11-16 12:04:01 -06:00
runtime_oss_test.go update config defaults, add docs (#15302) 2022-11-09 09:29:55 -08:00
runtime_test.go removes ioutil usage everywhere which was deprecated in go1.16 (#15297) 2022-11-10 10:26:01 -06:00
segment_oss.go re-run gofmt on 1.17 (#11579) 2021-11-16 12:04:01 -06:00
segment_oss_test.go re-run gofmt on 1.17 (#11579) 2021-11-16 12:04:01 -06:00