open-nomad/.changelog/14922.txt
James Rasell d7b311ce55
acl: correctly resolve ACL roles within client cache. (#14922)
The client ACL cache was not accounting for tokens which included
ACL role links. This change modifies the behaviour to resolve role
links to policies. It will also now store ACL roles within the
cache for quick lookup. The cache TTL is configurable in the same
manner as policies or tokens.

Another small fix is included that takes into account the ACL
token expiry time. This was not included, which meant tokens with
expiry could be used past the expiry time, until they were GC'd.
2022-10-20 09:37:32 +02:00

8 lines
168 B
Plaintext

```release-note:bug
client: Resolve ACL roles within client ACL cache
```
```release-note:bug
client: Check ACL token expiry when resolving token within ACL cache
```