Merge pull request #2862 from wjimenez5271/wjimenez5271-docs

clarify when acl_default_policy takes effect
This commit is contained in:
James Phillips 2017-03-31 08:49:23 -07:00 committed by GitHub
commit fea3c62399
1 changed files with 2 additions and 1 deletions

View File

@ -439,7 +439,8 @@ Consul will not enable TLS for the HTTP API unless the `https` port has been ass
"allow" or "deny"; defaults to "allow". The default policy controls the behavior of a token when "allow" or "deny"; defaults to "allow". The default policy controls the behavior of a token when
there is no matching rule. In "allow" mode, ACLs are a blacklist: any operation not specifically there is no matching rule. In "allow" mode, ACLs are a blacklist: any operation not specifically
prohibited is allowed. In "deny" mode, ACLs are a whitelist: any operation not prohibited is allowed. In "deny" mode, ACLs are a whitelist: any operation not
specifically allowed is blocked. specifically allowed is blocked. *Note*: this will not take effect until you've set `acl_datacenter`
to enable ACL support.
* <a name="acl_down_policy"></a><a href="#acl_down_policy">`acl_down_policy`</a> - Either * <a name="acl_down_policy"></a><a href="#acl_down_policy">`acl_down_policy`</a> - Either
"allow", "deny" or "extend-cache"; "extend-cache" is the default. In the case that the "allow", "deny" or "extend-cache"; "extend-cache" is the default. In the case that the