Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Service ACL support #506

Merged
merged 5 commits into from
Dec 1, 2014
Merged

Service ACL support #506

merged 5 commits into from
Dec 1, 2014

Conversation

armon
Copy link
Member

@armon armon commented Dec 1, 2014

This PR adds the framework to support ACLs around service registration and discovery. The ACL language is extended to add the new service keyword to specify policy for services. The policy language supports the "deny", "read" and "write" levels for services. This allows it to be used to support ACLs on discovery. This PR adds support only for the write enforcement during service registration however.

Fixes #465.

armon added a commit that referenced this pull request Dec 1, 2014
@armon armon merged commit 53de386 into master Dec 1, 2014
@armon armon deleted the f-service-acl branch December 1, 2014 04:11
duckhan pushed a commit to duckhan/consul that referenced this pull request Oct 24, 2021
* remove unnecessary server clusterRole/Bindings and add namespace to metadata
duckhan pushed a commit to duckhan/consul that referenced this pull request Oct 24, 2021
…nnotations (hashicorp#506)

We allow the exclusion of the following:
* Exclude inbound ports
* Exclude outbound ports
* Exclude outbound CIDRs
* Exclude UIDs
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

Extend ACLs to service registration
1 participant