confd ACL support for consul backend

ACL support for consul backend

Open provonet opened this issue 10 years ago • 13 comments

Hi,

Consul 0.4.0 supports acl's, are there any plans to support this in the consul backend ?

cheers,

Johan

Oct 07 '14 13:10 provonet

@provonet How would this work? Are the ACLs per key?

Oct 08 '14 04:10 kelseyhightower

the acls are per prefix (see: http://www.consul.io/docs/internals/acl.html) within a config.toml file it might look like this:

[template] src = "config.yaml.tmpl" dest = "/opt/bla/config.yaml" prefix = "/bla" token = '00112233AABB' keys = [ "key1", "key2", ] where token is the UUID for the particular ACL.

Oct 08 '14 18:10 provonet

@provonet Ok that looks pretty straight forward. +1

Oct 09 '14 04:10 kelseyhightower

This feature would help a lot to secure consul setups with confd +1

May 27 '15 14:05 m1no

Dec 09 '15 17:12 juicedM3

I was hoping that the auth-token config param would at least pass the master token to consul but it doesn't. Just master token support would be a good start.

Dec 09 '15 18:12 juicedM3

I've dug around the code and found if I set the ENV variable CONSUL_HTTP_TOKEN, I can pass the master token.

Dec 09 '15 19:12 juicedM3

I've forked the code and have a working example (https://github.com/juicedM3/confd). I need to write tests and create a pull request.

Dec 11 '15 20:12 juicedM3

Pull request https://github.com/kelseyhightower/confd/pull/369.

Dec 14 '15 17:12 juicedM3

Is there any update regarding the status of this feature?

Jan 10 '17 09:01 rares-aioanei

Feel free to take a crack at a PR.

Jan 10 '17 15:01 bacongobbler

still no update i guess?

Jun 10 '17 12:06 billyteves

Project dev has essentially stalled for the last two years, so yes.

Jun 10 '17 15:06 bacongobbler

confd confd copied to clipboard

ACL support for consul backend

confd
confd copied to clipboard