mirror of https://github.com/status-im/consul.git
5e9f02d4be
* Define file-system-certificate config entry * Collect file-system-certificate(s) referenced by api-gateway onto snapshot * Add file-system-certificate to config entry kind allow lists * Remove inapplicable validation This validation makes sense for inline certificates since Consul server is holding the certificate; however, for file system certificates, Consul server never actually sees the certificate. * Support file-system-certificate as source for listener TLS certificate * Add more required mappings for the new config entry type * Construct proper TLS context based on certificate kind * Add support or SDS in xdscommon * Remove unused param * Adds back verification of certs for inline-certificates * Undo tangential changes to TLS config consumption * Remove stray curly braces * Undo some more tangential changes * Improve function name for generating API gateway secrets * Add changelog entry * Update .changelog/20873.txt Co-authored-by: Jared Kirschner <85913323+jkirschner-hashicorp@users.noreply.github.com> * Add some nil-checking, remove outdated TODO * Update test assertions to include file-system-certificate * Add documentation for file-system-certificate config entry Add new doc to nav * Fix grammar mistake * Rename watchmaps, remove outdated TODO --------- Co-authored-by: Melisa Griffin <melisa.griffin@hashicorp.com> Co-authored-by: Jared Kirschner <85913323+jkirschner-hashicorp@users.noreply.github.com> |
||
|---|---|---|
| .. | ||
| config_entry.go | ||
| discovery_chain.go | ||
| discovery_chain_test.go | ||
| exported_peered_services.go | ||
| exported_peered_services_test.go | ||
| federation_state_list_mesh_gateways.go | ||
| federation_state_list_mesh_gateways_test.go | ||
| gateway_services.go | ||
| gateway_services_test.go | ||
| glue.go | ||
| health.go | ||
| health_blocking.go | ||
| health_blocking_test.go | ||
| health_test.go | ||
| helpers_test.go | ||
| intention_upstreams.go | ||
| intention_upstreams_test.go | ||
| intentions.go | ||
| intentions_ce.go | ||
| intentions_test.go | ||
| internal_service_dump.go | ||
| internal_service_dump_test.go | ||
| leafcerts.go | ||
| peered_upstreams.go | ||
| peered_upstreams_test.go | ||
| peering_list.go | ||
| peering_list_test.go | ||
| resolved_service_config.go | ||
| resolved_service_config_test.go | ||
| service_http_checks.go | ||
| service_http_checks_test.go | ||
| service_list.go | ||
| service_list_test.go | ||
| trust_bundle.go | ||
| trust_bundle_test.go | ||