2019-10-15 16:58:50 -04:00
|
|
|
// +build !consulent
|
|
|
|
|
|
|
|
package structs
|
|
|
|
|
2019-10-24 14:38:09 -04:00
|
|
|
import (
|
|
|
|
"fmt"
|
|
|
|
|
|
|
|
"github.com/hashicorp/consul/acl"
|
|
|
|
)
|
|
|
|
|
2019-10-15 16:58:50 -04:00
|
|
|
const (
|
|
|
|
EnterpriseACLPolicyGlobalManagement = ""
|
2019-10-24 14:38:09 -04:00
|
|
|
|
|
|
|
// aclPolicyTemplateServiceIdentity is the template used for synthesizing
|
|
|
|
// policies for service identities.
|
|
|
|
aclPolicyTemplateServiceIdentity = `
|
|
|
|
service "%[1]s" {
|
|
|
|
policy = "write"
|
|
|
|
}
|
|
|
|
service "%[1]s-sidecar-proxy" {
|
|
|
|
policy = "write"
|
|
|
|
}
|
|
|
|
service_prefix "" {
|
|
|
|
policy = "read"
|
|
|
|
}
|
|
|
|
node_prefix "" {
|
|
|
|
policy = "read"
|
|
|
|
}`
|
2019-10-15 16:58:50 -04:00
|
|
|
)
|
2019-10-24 14:38:09 -04:00
|
|
|
|
2020-05-06 13:48:04 -05:00
|
|
|
type ACLAuthMethodEnterpriseFields struct{}
|
|
|
|
|
2020-01-14 10:09:29 -05:00
|
|
|
type ACLAuthMethodEnterpriseMeta struct{}
|
|
|
|
|
|
|
|
func (_ *ACLAuthMethodEnterpriseMeta) FillWithEnterpriseMeta(_ *EnterpriseMeta) {
|
|
|
|
// do nothing
|
|
|
|
}
|
|
|
|
|
|
|
|
func (_ *ACLAuthMethodEnterpriseMeta) ToEnterpriseMeta() *EnterpriseMeta {
|
|
|
|
return DefaultEnterpriseMeta()
|
|
|
|
}
|
|
|
|
|
2019-10-24 14:38:09 -04:00
|
|
|
func aclServiceIdentityRules(svc string, _ *EnterpriseMeta) string {
|
|
|
|
return fmt.Sprintf(aclPolicyTemplateServiceIdentity, svc)
|
|
|
|
}
|
|
|
|
|
|
|
|
func (p *ACLPolicy) EnterprisePolicyMeta() *acl.EnterprisePolicyMeta {
|
|
|
|
return nil
|
|
|
|
}
|
2020-01-14 10:09:29 -05:00
|
|
|
|
|
|
|
func (m *ACLAuthMethod) TargetEnterpriseMeta(_ *EnterpriseMeta) *EnterpriseMeta {
|
|
|
|
return &m.EnterpriseMeta
|
|
|
|
}
|