status-im
/
consul
mirror of https://github.com/status-im/consul.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
11,736 Commits 445 Branches 179 Tags 481 MiB
Commit Graph

5 Commits

Author SHA1 Message Date
Matt Keeler 977eb725a7
Refactor AutoConfig RPC to not have a direct dependency on the Server type 
Instead it has an interface which can be mocked for better unit testing that is deterministic and not prone to flakiness.

# Conflicts:
#	agent/pool/pool.go
 2020-07-09 10:37:55 -04:00
Matt Keeler c7a6c5c4f5 Merge pull request #8193 from hashicorp/feature/auto-config/suppress-config-warnings 2020-06-27 14:07:30 +00:00
Matt Keeler 3f2fc48623 Require enabling TLS to enable Auto Config (#8159) 
On the servers they must have a certificate.

On the clients they just have to set verify_outgoing to true to attempt TLS connections for RPCs.

Eventually we may relax these restrictions but right now all of the settings we push down (acl tokens, acl related settings, certificates, gossip key) are sensitive and shouldn’t be transmitted over an unencrypted connection. Our guides and docs should recoommend verify_server_hostname on the clients as well.

Another reason to do this is weird things happen when making an insecure RPC when TLS is not enabled. Basically it tries TLS anyways. We should probably fix that to make it clearer what is going on.
 2020-06-19 20:38:38 +00:00
Matt Keeler 0736c42b72 Allow cancelling startup when performing auto-config (#8157) 
Co-authored-by: Daniel Nephin <dnephin@hashicorp.com>
 2020-06-19 19:16:20 +00:00
Matt Keeler 6375db7b4b Merge pull request #8086 from hashicorp/feature/auto-config/client-config-inject 2020-06-18 14:45:52 +00:00