Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

agent: return the default ACL policy to callers as a header #9101

Merged
merged 5 commits into from
Nov 12, 2020
Merged

agent: return the default ACL policy to callers as a header #9101

merged 5 commits into from
Nov 12, 2020

Conversation

rboyer
Copy link
Member

@rboyer rboyer commented Nov 4, 2020

Header is: X-Consul-Default-ACL-Policy=<allow|deny>

This is of particular utility when fetching matching intentions, as the
fallthrough for a request that doesn't match any intentions is to
enforce using the default acl policy.

@rboyer
agent: return the default ACL policy to callers as a header
d1f0a4e 
Header is: X-Consul-Default-ACL-Policy=<allow|deny>

This is of particular utility when fetching matching intentions, as the
fallthrough for a request that doesn't match any intentions is to
enforce using the default acl policy.
@rboyer rboyer added this to the 1.9.0 milestone Nov 4, 2020
@rboyer rboyer requested review from mkeeler, picatz and a team November 4, 2020 20:15
@rboyer rboyer self-assigned this Nov 4, 2020
@github-actions github-actions bot added the theme/api Relating to the HTTP API interface label Nov 4, 2020
freddygv
freddygv reviewed Nov 11, 2020
View reviewed changes
Copy link
Contributor

@freddygv freddygv left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think it would be useful to add a test to http_test.go that verifies the header is being set from the agent config.

api/api.go Outdated Show resolved Hide resolved
@rboyer rboyer requested a review from freddygv November 11, 2020 23:07
@rboyer
Copy link
Member Author

rboyer commented Nov 11, 2020

@freddygv I've added tests, a changelog entry, and updated the website.

freddygv
freddygv approved these changes Nov 11, 2020
View reviewed changes
Copy link
Contributor

@freddygv freddygv left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

:shipit:

@rboyer rboyer merged commit 61eac21 into master Nov 12, 2020
@rboyer rboyer deleted the return-default-acl-policy branch November 12, 2020 16:38
@hashicorp-ci
Copy link
Contributor

🍒 Starting backport cherry picking.

To cherry-pick post-merge, add backport labels and re-run https://circleci.com/gh/hashicorp/consul/279555.

@hashicorp-ci
Copy link
Contributor

🍒✅ Cherry pick of commit 61eac21 onto release/1.9.x succeeded!

hashicorp-ci pushed a commit that referenced this pull request Nov 12, 2020
@rboyer @hashicorp-ci
agent: return the default ACL policy to callers as a header (#9101)
f815014 
Header is: X-Consul-Default-ACL-Policy=<allow|deny>

This is of particular utility when fetching matching intentions, as the
fallthrough for a request that doesn't match any intentions is to
enforce using the default acl policy.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@freddygv freddygv freddygv approved these changes

@picatz picatz picatz approved these changes

@mkeeler mkeeler Awaiting requested review from mkeeler

Assignees

@rboyer rboyer

Labels
theme/api Relating to the HTTP API interface
Projects
None yet
Milestone
1.9.0
Development

Successfully merging this pull request may close these issues.
5 participants
@rboyer @hashicorp-ci @freddygv @picatz @hashibot-web