status-im
/
consul
mirror of https://github.com/status-im/consul.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

Notes on ACL token storage and permissions

This commit is contained in:
Paul Banks 2018-03-02 16:22:12 +00:00
parent e833b535a6
commit c57451a414
No known key found for this signature in database
GPG Key ID: C25A851A849B8221
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
website/source/docs/agent/options.html.md
View File

@ -139,10 +139,10 @@ will exit with an error at startup.
filesystem locking, meaning some types of mounted folders (e.g. VirtualBox filesystem locking, meaning some types of mounted folders (e.g. VirtualBox
shared folders) may not be suitable. **Note:** both server and non-server shared folders) may not be suitable. **Note:** both server and non-server
agents may store ACL tokens in the state in this directory so read access may agents may store ACL tokens in the state in this directory so read access may
grant access to any tokens on servers and on any tokens used to register grant access to any tokens on servers and to any tokens used during service
services on non-servers. On Unix-based platforms the files are written with registration on non-servers. On Unix-based platforms the files are written
0600 permissions so you should ensure only trusted processes can execute as with 0600 permissions so you should ensure only trusted processes can execute
the same user as Consul. On Windows, you should ensure the directory has as the same user as Consul. On Windows, you should ensure the directory has
suitable permissions configured as these will be inherited. suitable permissions configured as these will be inherited.
* <a name="_datacenter"></a><a href="#_datacenter">`-datacenter`</a> - This flag controls the datacenter in * <a name="_datacenter"></a><a href="#_datacenter">`-datacenter`</a> - This flag controls the datacenter in