mirror of https://github.com/status-im/consul.git
Update CHANGELOG.md
This commit is contained in:
parent
bc86002be9
commit
8673bc2236
|
@ -3,6 +3,12 @@
|
||||||
BREAKING CHANGES:
|
BREAKING CHANGES:
|
||||||
|
|
||||||
* agent: The ACL requirement for the [agent/force-leave endpoint](https://www.consul.io/api/agent.html#force-leave-and-shutdown) is now `operator:write` rather than `agent:write`. [[GH-7033](https://github.com/hashicorp/consul/pull/7033)]
|
* agent: The ACL requirement for the [agent/force-leave endpoint](https://www.consul.io/api/agent.html#force-leave-and-shutdown) is now `operator:write` rather than `agent:write`. [[GH-7033](https://github.com/hashicorp/consul/pull/7033)]
|
||||||
|
* intentions: Change the ACL requirement and enforcement for wildcard rules. Previously this would look for an ACL rule that would grant access to the service/intention `*`. Now, in order to write a wildcard intention requires write access to all intentions and reading a wildcard intention requires read access to any intention that would match. Additionally intention listing and reading allow access if the requester can read either side of the intention whereas before it only allowed it for permissions on the destination side. [[GH-7028](https://github.com/hashicorp/consul/pull/7028)]
|
||||||
|
|
||||||
|
FEATURES:
|
||||||
|
|
||||||
|
* acl: **(Consul Enterprise only)** auth methods defined in the `default` namespace gained the ability to create tokens in alternate namespaces. This capability was implemented for all existing auth methods.
|
||||||
|
|
||||||
|
|
||||||
## 1.7.0-beta2 (December 20, 2019)
|
## 1.7.0-beta2 (December 20, 2019)
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue