open-consul

History

freddygv a21e5799f7 Use internal server certificate for peering TLS A previous commit introduced an internally-managed server certificate to use for peering-related purposes. Now the peering token has been updated to match that behavior: - The server name matches the structure of the server cert - The CA PEMs correspond to the Connect CA Note that if Conect is disabled, and by extension the Connect CA, we fall back to the previous behavior of returning the manually configured certs and local server SNI. Several tests were updated to use the gRPC TLS port since they enable Connect by default. This means that the peering token will embed the Connect CA, and the dialer will expect a TLS listener.	2022-10-07 09:05:32 -06:00
..
establish.go	feat(cli): add initial peering cli commands	2022-09-01 17:20:13 -04:00
establish_test.go	Use internal server certificate for peering TLS	2022-10-07 09:05:32 -06:00

freddygv a21e5799f7 Use internal server certificate for peering TLS

A previous commit introduced an internally-managed server certificate
to use for peering-related purposes.

Now the peering token has been updated to match that behavior:
- The server name matches the structure of the server cert
- The CA PEMs correspond to the Connect CA

Note that if Conect is disabled, and by extension the Connect CA, we
fall back to the previous behavior of returning the manually configured
certs and local server SNI.

Several tests were updated to use the gRPC TLS port since they enable
Connect by default. This means that the peering token will embed the
Connect CA, and the dialer will expect a TLS listener.

2022-10-07 09:05:32 -06:00

establish.go

feat(cli): add initial peering cli commands

2022-09-01 17:20:13 -04:00

establish_test.go

Use internal server certificate for peering TLS

2022-10-07 09:05:32 -06:00