Mitchell Hashimoto
|
70d1d5bf06
|
agent: get rid of method checks since they're done in the http layer
|
2018-06-14 09:41:54 -07:00 |
|
Paul Banks
|
125555e1aa
|
require -> assert until rebase
|
2018-06-14 09:41:54 -07:00 |
|
Paul Banks
|
9309422fd9
|
Add Connect agent, catalog and health endpoints to api Client
|
2018-06-14 09:41:54 -07:00 |
|
Mitchell Hashimoto
|
845f7cd8ad
|
agent/consul/state: ensure exactly one active CA exists when setting
|
2018-06-14 09:41:54 -07:00 |
|
Mitchell Hashimoto
|
ffe4cdfc15
|
agent/connect: support any values in the URL
|
2018-06-14 09:41:54 -07:00 |
|
Mitchell Hashimoto
|
75bf0e1638
|
agent/connect: support SpiffeIDSigning
|
2018-06-14 09:41:53 -07:00 |
|
Mitchell Hashimoto
|
17ca8ad083
|
agent/connect: rename SpiffeID to CertURI
|
2018-06-14 09:41:53 -07:00 |
|
Mitchell Hashimoto
|
0cbcb07d61
|
agent/connect: use proper keyusage fields for CA and leaf
|
2018-06-14 09:41:53 -07:00 |
|
Mitchell Hashimoto
|
73442ada5a
|
agent/connect: address PR feedback for the CA.go file
|
2018-06-14 09:41:53 -07:00 |
|
Mitchell Hashimoto
|
d28ee70a56
|
agent: implement an always-200 authorize endpoint
|
2018-06-14 09:41:53 -07:00 |
|
Mitchell Hashimoto
|
a54d1af421
|
agent/consul: encode issued cert serial number as hex encoded
|
2018-06-14 09:41:53 -07:00 |
|
Mitchell Hashimoto
|
4210003c86
|
agent/structs: hide some fields from JSON
|
2018-06-14 09:41:52 -07:00 |
|
Mitchell Hashimoto
|
63d674d07d
|
agent: /v1/connect/ca/configuration PUT for setting configuration
|
2018-06-14 09:41:52 -07:00 |
|
Mitchell Hashimoto
|
1c3dbc83ff
|
agent/consul/fsm,state: snapshot/restore for CA roots
|
2018-06-14 09:41:52 -07:00 |
|
Mitchell Hashimoto
|
90f423fd02
|
agent/consul/fsm,state: tests for CA root related changes
|
2018-06-14 09:41:52 -07:00 |
|
Mitchell Hashimoto
|
1c72639d60
|
agent/consul: set more fields on the issued cert
|
2018-06-14 09:41:52 -07:00 |
|
Mitchell Hashimoto
|
c2588262b7
|
agent: /v1/connect/ca/leaf/:service_id
|
2018-06-14 09:41:52 -07:00 |
|
Mitchell Hashimoto
|
571d9aa785
|
agent: CA root HTTP endpoints
|
2018-06-14 09:41:51 -07:00 |
|
Mitchell Hashimoto
|
e40afd6a73
|
agent/consul: CAS operations for setting the CA root
|
2018-06-14 09:41:51 -07:00 |
|
Mitchell Hashimoto
|
578db06600
|
agent/consul: tests for CA endpoints
|
2018-06-14 09:41:51 -07:00 |
|
Mitchell Hashimoto
|
891cd22ad9
|
agent/consul: key the public key of the CSR, verify in test
|
2018-06-14 09:41:51 -07:00 |
|
Mitchell Hashimoto
|
d768d5e9a7
|
agent/consul: test for ConnectCA.Sign
|
2018-06-14 09:41:51 -07:00 |
|
Mitchell Hashimoto
|
f4ec28bfe3
|
agent/consul: basic sign endpoint not tested yet
|
2018-06-14 09:41:51 -07:00 |
|
Mitchell Hashimoto
|
548ce190d5
|
agent/connect: package for agent-related Connect, parse SPIFFE IDs
|
2018-06-14 09:41:50 -07:00 |
|
Mitchell Hashimoto
|
7349c94c23
|
connect: create connect package for helpers
|
2018-06-14 09:41:50 -07:00 |
|
Mitchell Hashimoto
|
6d294b6bb4
|
agent/structs: json omit QueryMeta
|
2018-06-14 09:41:50 -07:00 |
|
Mitchell Hashimoto
|
e7536e5485
|
agent: /v1/connect/ca/roots
|
2018-06-14 09:41:50 -07:00 |
|
Mitchell Hashimoto
|
5a950190f3
|
agent/consul: RPC endpoints to list roots
|
2018-06-14 09:41:50 -07:00 |
|
Mitchell Hashimoto
|
130098b7b5
|
agent/consul/state: CARoot structs and initial state store
|
2018-06-14 09:41:49 -07:00 |
|
Mitchell Hashimoto
|
4d852e62a3
|
agent: address PR feedback
|
2018-06-14 09:41:49 -07:00 |
|
Mitchell Hashimoto
|
22a0eb6c67
|
agent: commenting some tests
|
2018-06-14 09:41:49 -07:00 |
|
Mitchell Hashimoto
|
6313bc5615
|
agent: clarified a number of comments per PR feedback
|
2018-06-14 09:41:49 -07:00 |
|
Mitchell Hashimoto
|
353953fcd2
|
agent/consul: Health.ServiceNodes ACL check for Connect
|
2018-06-14 09:41:49 -07:00 |
|
Mitchell Hashimoto
|
b6c0cb7115
|
agent/consul: Catalog endpoint ACL requirements for Connect proxies
|
2018-06-14 09:41:49 -07:00 |
|
Mitchell Hashimoto
|
3b07686648
|
agent: remove ConnectProxyServiceName
|
2018-06-14 09:41:49 -07:00 |
|
Mitchell Hashimoto
|
2feef5f7a3
|
agent/consul: require name for proxies
|
2018-06-14 09:41:48 -07:00 |
|
Mitchell Hashimoto
|
714026dfb7
|
agent: validate service entry on register
|
2018-06-14 09:41:48 -07:00 |
|
Mitchell Hashimoto
|
125fb96ff1
|
agent/structs: tests for PartialClone and IsSame for proxy fields
|
2018-06-14 09:41:48 -07:00 |
|
Mitchell Hashimoto
|
9781cb1ace
|
agent/local: anti-entropy for connect proxy services
|
2018-06-14 09:41:48 -07:00 |
|
Mitchell Hashimoto
|
44ec8d94d2
|
agent: clean up connect/non-connect duplication by using shared methods
|
2018-06-14 09:41:48 -07:00 |
|
Mitchell Hashimoto
|
368137b81b
|
agent: /v1/health/connect/:service
|
2018-06-14 09:41:48 -07:00 |
|
Mitchell Hashimoto
|
7d79f9c46f
|
agent/consul: implement Health.ServiceNodes for Connect, DNS works
|
2018-06-14 09:41:47 -07:00 |
|
Mitchell Hashimoto
|
406366c45b
|
agent: working DNS for Connect queries, I think, but have to
implement Health endpoints to be sure
|
2018-06-14 09:41:47 -07:00 |
|
Mitchell Hashimoto
|
fd33b76ec2
|
agent: /v1/catalog/connect/:service
|
2018-06-14 09:41:47 -07:00 |
|
Mitchell Hashimoto
|
e01914a025
|
agent/consul: Catalog.ServiceNodes supports Connect filtering
|
2018-06-14 09:41:47 -07:00 |
|
Mitchell Hashimoto
|
2062e37270
|
agent/consul/state: ConnectServiceNodes
|
2018-06-14 09:41:47 -07:00 |
|
Mitchell Hashimoto
|
7ed26e2c64
|
agent/consul: enforce ACL on ProxyDestination
|
2018-06-14 09:41:47 -07:00 |
|
Mitchell Hashimoto
|
0c0c0a58e7
|
agent/consul: proxy registration and tests
|
2018-06-14 09:41:46 -07:00 |
|
Mitchell Hashimoto
|
68107e9767
|
agent: /v1/agent/services test with connect proxies (works w/ no change)
|
2018-06-14 09:41:46 -07:00 |
|
Mitchell Hashimoto
|
4d4a8443e8
|
agent: test /v1/catalog/node/:node to list connect proxies
|
2018-06-14 09:41:46 -07:00 |
|