luxolus
/
open-consul
2
0
Fork 0
Code Issues 1 Pull Requests Packages Releases Wiki Activity
open-consul/agent/structs
History
R.B. Boyer 2dba16be52
peering: replicate all SpiffeID values necessary for the importing side to do SAN validation (#13612) 
When traversing an exported peered service, the discovery chain
evaluation at the other side may re-route the request to a variety of
endpoints. Furthermore we intend to terminate mTLS at the mesh gateway
for arriving peered traffic that is http-like (L7), so the caller needs
to know the mesh gateway's SpiffeID in that case as well.

The following new SpiffeID values will be shipped back in the peerstream
replication:

- tcp: all possible SpiffeIDs resulting from the service-resolver
        component of the exported discovery chain

- http-like: the SpiffeID of the mesh gateway
 		2022-06-27 14:37:18 -05:00
..
acl.go acl: gRPC login and logout endpoints (#12935) 2022-05-04 17:38:45 +01:00
acl_cache.go acl: gRPC login and logout endpoints (#12935) 2022-05-04 17:38:45 +01:00
acl_cache_test.go acl: gRPC login and logout endpoints (#12935) 2022-05-04 17:38:45 +01:00
acl_oss.go Manual Structs fixup 2022-04-05 14:51:10 -07:00
acl_test.go acl: gRPC login and logout endpoints (#12935) 2022-05-04 17:38:45 +01:00
auto_encrypt.go
autopilot.go
autopilot_oss.go
catalog.go Manual Structs fixup 2022-04-05 14:51:10 -07:00
catalog_oss.go
check_definition.go UDP check for service stanza #12221 (#12722) 2022-06-06 15:13:19 -04:00
check_definition_test.go
check_type.go UDP check for service stanza #12221 (#12722) 2022-06-06 15:13:19 -04:00
config_entry.go Move ACLResolveResult into acl/resolver package (#13467) 2022-06-17 10:24:43 +01:00
config_entry_discoverychain.go Manual Structs fixup 2022-04-05 14:51:10 -07:00
config_entry_discoverychain_oss.go Manual Structs fixup 2022-04-05 14:51:10 -07:00
config_entry_discoverychain_test.go Remove support for failover to partition 2021-12-06 12:32:24 -07:00
config_entry_export_oss_test.go peering: initial sync (#12842) 2022-04-21 17:34:40 -05:00
config_entry_exports.go structs: ensure exported-services PeerName field can be addressed as peer_name (#12862) 2022-04-27 10:27:21 -05:00
config_entry_exports_test.go peering: initial sync (#12842) 2022-04-21 17:34:40 -05:00
config_entry_gateways.go update gateway-services table with endpoints (#13217) 2022-05-31 16:20:12 -04:00
config_entry_gateways_test.go fix: multiple grpc/http2 services for ingress listeners 2022-05-26 10:43:58 -04:00
config_entry_intentions.go peering, state: account for peer intentions (#13443) 2022-06-16 10:27:31 -07:00
config_entry_intentions_oss.go Manual Structs fixup 2022-04-05 14:51:10 -07:00
config_entry_intentions_test.go peering, state: account for peer intentions (#13443) 2022-06-16 10:27:31 -07:00
config_entry_mesh.go Docs and changelog edits 2022-05-04 08:50:59 -07:00
config_entry_mesh_oss.go
config_entry_oss.go peering: initial sync (#12842) 2022-04-21 17:34:40 -05:00
config_entry_oss_test.go
config_entry_test.go update gateway-services table with endpoints (#13217) 2022-05-31 16:20:12 -04:00
connect.go Manual Structs fixup 2022-04-05 14:51:10 -07:00
connect_ca.go xds: mesh gateways now have their own leaf certificate when involved in a peering (#13460) 2022-06-15 14:36:18 -05:00
connect_ca_test.go
connect_oss.go
connect_proxy_config.go peering: Make Upstream peer-aware (#12900) 2022-04-29 18:12:51 -04:00
connect_proxy_config_oss.go Manual Structs fixup 2022-04-05 14:51:10 -07:00
connect_proxy_config_test.go bulk rewrite using this script 2022-01-20 10:46:23 -06:00
discovery_chain.go peering: replicate all SpiffeID values necessary for the importing side to do SAN validation (#13612) 2022-06-27 14:37:18 -05:00
discovery_chain_oss.go Manual Structs fixup 2022-04-05 14:51:10 -07:00
errors.go
federation_state.go
identity.go Manual Structs fixup 2022-04-05 14:51:10 -07:00
intention.go Add SourcePeer fields to relevant Intentions types (#13390) 2022-06-08 13:24:10 -04:00
intention_oss.go Manual Structs fixup 2022-04-05 14:51:10 -07:00
intention_test.go Add SourcePeer fields to relevant Intentions types (#13390) 2022-06-08 13:24:10 -04:00
operator.go
peering.go peering: replicate all SpiffeID values necessary for the importing side to do SAN validation (#13612) 2022-06-27 14:37:18 -05:00
prepared_query.go peering: initial sync (#12842) 2022-04-21 17:34:40 -05:00
prepared_query_test.go
protobuf_compat.go remove the rest of gogo 2022-03-28 17:34:41 -04:00
sanitize_oss.go
service_definition.go peering: Make Upstream peer-aware (#12900) 2022-04-29 18:12:51 -04:00
service_definition_test.go bulk rewrite using this script 2022-01-20 10:46:23 -06:00
snapshot.go
structs.go peering, internal: support UIServices, UINodes, UINodeInfo (#13577) 2022-06-24 15:17:35 -07:00
structs_filtering_test.go Add SourcePeer fields to relevant Intentions types (#13390) 2022-06-08 13:24:10 -04:00
structs_oss.go peering: accept replication stream of discovery chain information at the importing side (#13151) 2022-05-19 16:37:52 -05:00
structs_oss_test.go add new entmeta stuff. 2022-04-05 14:49:31 -07:00
structs_test.go structs: add convenience methods to sort slices of ServiceName values (#13038) 2022-05-12 10:08:50 -05:00
system_metadata.go Add virtual IP generation for term gateway backed services 2022-01-12 12:08:49 -08:00
testing.go Vendor in rpc mono repo for net/rpc fork, go-msgpack, msgpackrpc. (#12311) 2022-02-14 09:45:45 -08:00
testing_catalog.go
testing_connect_proxy_config.go Manual Structs fixup 2022-04-05 14:51:10 -07:00
testing_intention.go
testing_service_definition.go
txn.go