From 444517080bbde6cae42485767c9aef3077089a84 Mon Sep 17 00:00:00 2001 From: Matt Keeler Date: Fri, 7 Feb 2020 08:30:40 -0500 Subject: [PATCH] Fix a bug with ACL enforcement of reads on namespaced config entries. (#7239) --- agent/consul/config_endpoint.go | 2 ++ 1 file changed, 2 insertions(+) diff --git a/agent/consul/config_endpoint.go b/agent/consul/config_endpoint.go index e8faca01e5..0100207917 100644 --- a/agent/consul/config_endpoint.go +++ b/agent/consul/config_endpoint.go @@ -88,6 +88,8 @@ func (c *ConfigEntry) Get(args *structs.ConfigEntryQuery, reply *structs.ConfigE if err != nil { return err } + lookupEntry.GetEnterpriseMeta().Merge(&args.EnterpriseMeta) + if authz != nil && !lookupEntry.CanRead(authz) { return acl.ErrPermissionDenied }