consul/.changelog
Hans Hasselberg bc5e2ddfc3 add primary keys to list keyring (#8522)
During gossip encryption key rotation it would be nice to be able to see if all nodes are using the same key. This PR adds another field to the json response from `GET v1/operator/keyring` which lists the primary keys in use per dc. That way an operator can tell when a key was successfully setup as primary key.

Based on https://github.com/hashicorp/serf/pull/611 to add primary key to list keyring output:

```json
[
  {
    "WAN": true,
    "Datacenter": "dc2",
    "Segment": "",
    "Keys": {
      "0OuM4oC3Os18OblWiBbZUaHA7Hk+tNs/6nhNYtaNduM=": 6,
      "SINm887hKTzmMWeBNKTJReaTLX3mBEJKriDyt88Ad+g=": 6
    },
    "PrimaryKeys": {
      "SINm887hKTzmMWeBNKTJReaTLX3mBEJKriDyt88Ad+g=": 6
    },
    "NumNodes": 6
  },
  {
    "WAN": false,
    "Datacenter": "dc2",
    "Segment": "",
    "Keys": {
      "0OuM4oC3Os18OblWiBbZUaHA7Hk+tNs/6nhNYtaNduM=": 8,
      "SINm887hKTzmMWeBNKTJReaTLX3mBEJKriDyt88Ad+g=": 8
    },
    "PrimaryKeys": {
      "SINm887hKTzmMWeBNKTJReaTLX3mBEJKriDyt88Ad+g=": 8
    },
    "NumNodes": 8
  },
  {
    "WAN": false,
    "Datacenter": "dc1",
    "Segment": "",
    "Keys": {
      "0OuM4oC3Os18OblWiBbZUaHA7Hk+tNs/6nhNYtaNduM=": 3,
      "SINm887hKTzmMWeBNKTJReaTLX3mBEJKriDyt88Ad+g=": 8
    },
    "PrimaryKeys": {
      "SINm887hKTzmMWeBNKTJReaTLX3mBEJKriDyt88Ad+g=": 8
    },
    "NumNodes": 8
  }
]
```

I intentionally did not change the CLI output because I didn't find a good way of displaying this information. There are a couple of options that we could implement later:
* add a flag to show the primary keys
* add a flag to show json output

Fixes #3393.
2020-08-18 07:51:22 +00:00
..
7628.txt Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
7899.txt Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
7970.txt Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
8158.txt Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
8190.txt Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
8194.txt Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
8211.txt Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
8216.txt Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
8218.txt Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
8222.txt Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
8268.txt Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
8311.txt Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
8343.txt Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
8371.txt Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
8494.txt [backport/1.8.x] connect: use stronger validation that ingress gateways have compatible protocols defined for their upstreams (#8494) 2020-08-13 15:26:23 -05:00
8522.txt add primary keys to list keyring (#8522) 2020-08-18 07:51:22 +00:00
changelog.tmpl Introducing changelog-gen (#8387) 2020-08-07 11:53:35 +02:00
note.tmpl Link issue in note template (#8502) 2020-08-13 08:24:10 +00:00