Add support for communicating with Consul over TLS #14

Closed

lx wants to merge 0 commits from consul-tls into main

pull from: consul-tls

merge into: Deuxfleurs:main

Deuxfleurs:main

Deuxfleurs:ci-fmt

Deuxfleurs:feature/acme

Conversation 1 Commits - Files changed -

lx commented 2021-12-30 19:59:34 +00:00

Owner

Copy link

As the title says, Diplonat can now communicate with Consul over a TLS connection. This is usefull to create a more secure environment where access to Consul is restricted to holders of client keys (we are doing this on the staging cluster, see nixcfg repo).

This adds the following three environment variables:

• DIPLONAT_CONSUL_CA_CERT
• DIPLONAT_CONSUL_CLIENT_CERT
• DIPLONAT_CONSUL_CLIENT_KEY

which expect file paths, similar to those used by the Consul CLI.

To use TLS, remember to also set the DIPLONAT_CONSUL_URL to an https:// URL !

As the title says, Diplonat can now communicate with Consul over a TLS connection. This is usefull to create a more secure environment where access to Consul is restricted to holders of client keys (we are doing this on the staging cluster, see `nixcfg` repo). This adds the following three environment variables: - `DIPLONAT_CONSUL_CA_CERT` - `DIPLONAT_CONSUL_CLIENT_CERT` - `DIPLONAT_CONSUL_CLIENT_KEY` which expect file paths, similar to those used by the Consul CLI. To use TLS, remember to also set the `DIPLONAT_CONSUL_URL` to an `https://` URL !

lx added 2 commits 2021-12-30 19:59:35 +00:00

Add TLS support for Consul 04bdd029fe

Update Rust version in docker build 730c9049ad

lx added 1 commit 2022-08-24 16:22:11 +00:00

Add possibility to skip tls verification for consul e7f6c15bc1

lx added 1 commit 2022-12-01 16:42:45 +00:00

Make repo a nix flake 04528d1e60

lx force-pushed consul-tls from 04528d1e60 to e7f6c15bc1 2022-12-01 16:44:32 +00:00 Compare

lx added 1 commit 2022-12-01 16:50:00 +00:00

Default value for skip tls parameter 2a910c7af2

lx commented 2022-12-01 16:52:12 +00:00

Author

Owner

Copy link

Merged with #16

Merged with #16

lx closed this pull request 2022-12-01 16:52:12 +00:00

lx deleted branch consul-tls 2022-12-01 16:52:17 +00:00

Some checks reported errors

Hide all checks

continuous-integration/drone/push Build was killed

Required

Details

continuous-integration/drone/pr Build was killed

Required

Details

Pull request closed

This pull request cannot be reopened because the branch was deleted.

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels   

bug

Something is not working

  

duplicate

This issue or pull request already exists

  

enhancement

New feature

  

help wanted

Need some help

  

invalid

Something is wrong

  

question

More information is needed

  

wontfix

This won't be fixed

No labels

bug

duplicate

enhancement

help wanted

invalid

question

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: Deuxfleurs/diplonat#14

No description provided.