2dfda33703
* Allow server TLS configuration to be reloaded via SIGHUP * dynamic tls reloading for nomad agents * code cleanup and refactoring * ensure keyloader is initialized, add comments * allow downgrading from TLS * initalize keyloader if necessary * integration test for tls reload * fix up test to assert success on reloaded TLS configuration * failure in loading a new TLS config should remain at current Reload only the config if agent is already using TLS * reload agent configuration before specific server/client lock keyloader before loading/caching a new certificate * introduce a get-or-set method for keyloader * fixups from code review * fix up linting errors * fixups from code review * add lock for config updates; improve copy of tls config * GetCertificate only reloads certificates dynamically for the server * config updates/copies should be on agent * improve http integration test * simplify agent reloading storing a local copy of config * reuse the same keyloader when reloading * Test that server and client get reloaded but keep keyloader * Keyloader exposes GetClientCertificate as well for outgoing connections * Fix spelling * correct changelog style |
||
|---|---|---|
| .. | ||
| consul.go | ||
| README.md | ||
| sentinel.go | ||
| tls.go | ||
| vault.go | ||
| vault_test.go | ||
Overview
nomad/structs/config is a package for configuration structs that are
shared among packages that needs the same struct definitions, but can't
import each other without creating a cyle. This config package must be
terminal in the import graph (or very close to terminal in the dependency
graph).