garage/src
Félix Baylac Jacqué f83fa02193 Add allow_world_readable_secrets option to config file
Sometimes, the secret files permissions checks gets in the way. It's
by no mean complete, it doesn't take the Posix ACLs into account among
other things. Correctly checking the ACLs would be too involving (see
Deuxfleurs/garage#658 (comment))
and would likely still fail in some weird chmod settings.

We're adding a new configuration file key allowing the user to disable
this permission check altogether.

The (already existing) env variable counterpart always take precedence
to this config file option. That's useful in cases where the
configuration file is static and cannot be easily altered.

Fixes Deuxfleurs/garage#658

Co-authored-by: Florian Klink <flokli@flokli.de>
2023-10-26 18:25:13 +02:00
..
api s3 api: add missing CORS headers to PostObject responses (fix #609) 2023-10-20 10:37:48 +02:00
block update version to 0.8.4 2023-09-05 23:28:12 +02:00
db Move convert_db command into main garage binary 2023-10-10 12:13:15 +02:00
format-table fix clippy lint in format-table crate 2023-05-17 13:06:37 +02:00
garage Merge pull request 'Add support for specifying rpc_secret_file, metrics_token_file and admin_token_file using environment variables' (#643) from networkException/garage:token-file-env into main-0.8.x 2023-10-19 09:33:12 +00:00
k2v-client introduce dedicated return type for PollRange 2023-06-24 10:17:20 +02:00
model config: make block_size and sled_cache_capacity expressable as strings 2023-09-11 18:34:59 +02:00
rpc fix hang on shutdown 2023-09-12 14:35:48 +02:00
table update version to 0.8.4 2023-09-05 23:28:12 +02:00
util Add allow_world_readable_secrets option to config file 2023-10-26 18:25:13 +02:00
web everywhere: support unix sockets when binding in various places 2023-09-29 18:57:44 +02:00