consul/proto/pbconfig/config.proto

syntax = "proto3";

package hashicorp.consul.internal.config;

message Config {
  string Datacenter = 1;
  string PrimaryDatacenter = 2;
  string NodeName = 3;
  string SegmentName = 4;
  string Partition = 9;
  ACL ACL = 5;
  AutoEncrypt AutoEncrypt = 6;
  Gossip Gossip = 7;
  TLS TLS = 8;
}

message Gossip {
  GossipEncryption Encryption = 1;
  repeated string RetryJoinLAN = 2;
}

message GossipEncryption {
  string Key = 1;
  bool VerifyIncoming = 2;
  bool VerifyOutgoing = 3;
}

message TLS {
  bool VerifyOutgoing = 1;
  bool VerifyServerHostname = 2;
  string CipherSuites = 3;
  string MinVersion = 4;
  // Deprecated_PreferServerCipherSuites is deprecated. It is no longer
  // populated and should be ignored by clients.
  bool Deprecated_PreferServerCipherSuites = 5 [deprecated = true];
}

message ACL {
  bool Enabled = 1;
  string PolicyTTL = 2;
  string RoleTTL = 3;
  string TokenTTL = 4;
  string DownPolicy = 5;
  string DefaultPolicy = 6;
  bool EnableKeyListPolicy = 7;
  ACLTokens Tokens = 8;
  // Deprecated_DisabledTTL is deprecated. It is no longer populated and should
  // be ignored by clients.
  string Deprecated_DisabledTTL = 9 [deprecated = true];
  bool EnableTokenPersistence = 10;
  bool MSPDisableBootstrap = 11;
}

message ACLTokens {
  string InitialManagement = 1;
  string Replication = 2;
  string AgentRecovery = 3;
  string Default = 4;
  string Agent = 5;
  repeated ACLServiceProviderToken ManagedServiceProvider = 6;
}

message ACLServiceProviderToken {
  string AccessorID = 1;
  string SecretID = 2;
}

message AutoEncrypt {
  bool TLS = 1;
  repeated string DNSSAN = 2;
  repeated string IPSAN = 3;
  bool AllowTLS = 4;
}
Implement the insecure version of the Cluster.AutoConfig RPC endpoint Right now this is only hooked into the insecure RPC server and requires JWT authorization. If no JWT authorizer is setup in the configuration then we inject a disabled “authorizer” to always report that JWT authorization is disabled. 5 years ago			`syntax = "proto3";`

proto: add package prefixes for all proto files where it is safe (#13735) We cannot do this for "subscribe" and "partition" this easily without breakage so those are omitted. Any protobuf message passed around via an Any construct will have the fully qualified package name embedded in the protobuf as a string. Also RPC method dispatch will include the package of the service during serialization. - We will be passing pbservice and pbpeering through an Any as part of peer stream replication. - We will be exposing two new gRPC services via pbpeering and pbpeerstream. 2 years ago			`package hashicorp.consul.internal.config;`
Implement the insecure version of the Cluster.AutoConfig RPC endpoint Right now this is only hooked into the insecure RPC server and requires JWT authorization. If no JWT authorizer is setup in the configuration then we inject a disabled “authorizer” to always report that JWT authorization is disabled. 5 years ago
			`message Config {`
Migrate from `protoc` to `buf` (#12841) * Install `buf` instead of `protoc` * Created `buf.yaml` and `buf.gen.yaml` files in the two proto directories to control how `buf` generates/lints proto code. * Invoke `buf` instead of `protoc` * Added a `proto-format` make target. * Committed the reformatted proto files. * Added a `proto-lint` make target. * Integrated proto linting with CI * Fixed tons of proto linter warnings. * Got rid of deprecated builtin protoc-gen-go grpc plugin usage. Moved to direct usage of protoc-gen-go-grpc. * Unified all proto directories / go packages around using pb prefixes but ensuring all proto packages do not have the prefix. 3 years ago			`string Datacenter = 1;`
			`string PrimaryDatacenter = 2;`
			`string NodeName = 3;`
			`string SegmentName = 4;`
			`string Partition = 9;`
			`ACL ACL = 5;`
			`AutoEncrypt AutoEncrypt = 6;`
			`Gossip Gossip = 7;`
			`TLS TLS = 8;`
Implement the insecure version of the Cluster.AutoConfig RPC endpoint Right now this is only hooked into the insecure RPC server and requires JWT authorization. If no JWT authorizer is setup in the configuration then we inject a disabled “authorizer” to always report that JWT authorization is disabled. 5 years ago			`}`

			`message Gossip {`
Migrate from `protoc` to `buf` (#12841) * Install `buf` instead of `protoc` * Created `buf.yaml` and `buf.gen.yaml` files in the two proto directories to control how `buf` generates/lints proto code. * Invoke `buf` instead of `protoc` * Added a `proto-format` make target. * Committed the reformatted proto files. * Added a `proto-lint` make target. * Integrated proto linting with CI * Fixed tons of proto linter warnings. * Got rid of deprecated builtin protoc-gen-go grpc plugin usage. Moved to direct usage of protoc-gen-go-grpc. * Unified all proto directories / go packages around using pb prefixes but ensuring all proto packages do not have the prefix. 3 years ago			`GossipEncryption Encryption = 1;`
			`repeated string RetryJoinLAN = 2;`
Implement the insecure version of the Cluster.AutoConfig RPC endpoint Right now this is only hooked into the insecure RPC server and requires JWT authorization. If no JWT authorizer is setup in the configuration then we inject a disabled “authorizer” to always report that JWT authorization is disabled. 5 years ago			`}`

			`message GossipEncryption {`
Migrate from `protoc` to `buf` (#12841) * Install `buf` instead of `protoc` * Created `buf.yaml` and `buf.gen.yaml` files in the two proto directories to control how `buf` generates/lints proto code. * Invoke `buf` instead of `protoc` * Added a `proto-format` make target. * Committed the reformatted proto files. * Added a `proto-lint` make target. * Integrated proto linting with CI * Fixed tons of proto linter warnings. * Got rid of deprecated builtin protoc-gen-go grpc plugin usage. Moved to direct usage of protoc-gen-go-grpc. * Unified all proto directories / go packages around using pb prefixes but ensuring all proto packages do not have the prefix. 3 years ago			`string Key = 1;`
			`bool VerifyIncoming = 2;`
			`bool VerifyOutgoing = 3;`
Implement the insecure version of the Cluster.AutoConfig RPC endpoint Right now this is only hooked into the insecure RPC server and requires JWT authorization. If no JWT authorizer is setup in the configuration then we inject a disabled “authorizer” to always report that JWT authorization is disabled. 5 years ago			`}`

			`message TLS {`
Migrate from `protoc` to `buf` (#12841) * Install `buf` instead of `protoc` * Created `buf.yaml` and `buf.gen.yaml` files in the two proto directories to control how `buf` generates/lints proto code. * Invoke `buf` instead of `protoc` * Added a `proto-format` make target. * Committed the reformatted proto files. * Added a `proto-lint` make target. * Integrated proto linting with CI * Fixed tons of proto linter warnings. * Got rid of deprecated builtin protoc-gen-go grpc plugin usage. Moved to direct usage of protoc-gen-go-grpc. * Unified all proto directories / go packages around using pb prefixes but ensuring all proto packages do not have the prefix. 3 years ago			`bool VerifyOutgoing = 1;`
			`bool VerifyServerHostname = 2;`
			`string CipherSuites = 3;`
			`string MinVersion = 4;`
			`// Deprecated_PreferServerCipherSuites is deprecated. It is no longer`
			`// populated and should be ignored by clients.`
			`bool Deprecated_PreferServerCipherSuites = 5 [deprecated = true];`
Implement the insecure version of the Cluster.AutoConfig RPC endpoint Right now this is only hooked into the insecure RPC server and requires JWT authorization. If no JWT authorizer is setup in the configuration then we inject a disabled “authorizer” to always report that JWT authorization is disabled. 5 years ago			`}`

			`message ACL {`
Migrate from `protoc` to `buf` (#12841) * Install `buf` instead of `protoc` * Created `buf.yaml` and `buf.gen.yaml` files in the two proto directories to control how `buf` generates/lints proto code. * Invoke `buf` instead of `protoc` * Added a `proto-format` make target. * Committed the reformatted proto files. * Added a `proto-lint` make target. * Integrated proto linting with CI * Fixed tons of proto linter warnings. * Got rid of deprecated builtin protoc-gen-go grpc plugin usage. Moved to direct usage of protoc-gen-go-grpc. * Unified all proto directories / go packages around using pb prefixes but ensuring all proto packages do not have the prefix. 3 years ago			`bool Enabled = 1;`
			`string PolicyTTL = 2;`
			`string RoleTTL = 3;`
			`string TokenTTL = 4;`
			`string DownPolicy = 5;`
			`string DefaultPolicy = 6;`
			`bool EnableKeyListPolicy = 7;`
			`ACLTokens Tokens = 8;`
			`// Deprecated_DisabledTTL is deprecated. It is no longer populated and should`
			`// be ignored by clients.`
			`string Deprecated_DisabledTTL = 9 [deprecated = true];`
			`bool EnableTokenPersistence = 10;`
			`bool MSPDisableBootstrap = 11;`
Implement the insecure version of the Cluster.AutoConfig RPC endpoint Right now this is only hooked into the insecure RPC server and requires JWT authorization. If no JWT authorizer is setup in the configuration then we inject a disabled “authorizer” to always report that JWT authorization is disabled. 5 years ago			`}`

			`message ACLTokens {`
Migrate from `protoc` to `buf` (#12841) * Install `buf` instead of `protoc` * Created `buf.yaml` and `buf.gen.yaml` files in the two proto directories to control how `buf` generates/lints proto code. * Invoke `buf` instead of `protoc` * Added a `proto-format` make target. * Committed the reformatted proto files. * Added a `proto-lint` make target. * Integrated proto linting with CI * Fixed tons of proto linter warnings. * Got rid of deprecated builtin protoc-gen-go grpc plugin usage. Moved to direct usage of protoc-gen-go-grpc. * Unified all proto directories / go packages around using pb prefixes but ensuring all proto packages do not have the prefix. 3 years ago			`string InitialManagement = 1;`
			`string Replication = 2;`
			`string AgentRecovery = 3;`
			`string Default = 4;`
			`string Agent = 5;`
			`repeated ACLServiceProviderToken ManagedServiceProvider = 6;`
Implement the insecure version of the Cluster.AutoConfig RPC endpoint Right now this is only hooked into the insecure RPC server and requires JWT authorization. If no JWT authorizer is setup in the configuration then we inject a disabled “authorizer” to always report that JWT authorization is disabled. 5 years ago			`}`

			`message ACLServiceProviderToken {`
Migrate from `protoc` to `buf` (#12841) * Install `buf` instead of `protoc` * Created `buf.yaml` and `buf.gen.yaml` files in the two proto directories to control how `buf` generates/lints proto code. * Invoke `buf` instead of `protoc` * Added a `proto-format` make target. * Committed the reformatted proto files. * Added a `proto-lint` make target. * Integrated proto linting with CI * Fixed tons of proto linter warnings. * Got rid of deprecated builtin protoc-gen-go grpc plugin usage. Moved to direct usage of protoc-gen-go-grpc. * Unified all proto directories / go packages around using pb prefixes but ensuring all proto packages do not have the prefix. 3 years ago			`string AccessorID = 1;`
			`string SecretID = 2;`
Implement the insecure version of the Cluster.AutoConfig RPC endpoint Right now this is only hooked into the insecure RPC server and requires JWT authorization. If no JWT authorizer is setup in the configuration then we inject a disabled “authorizer” to always report that JWT authorization is disabled. 5 years ago			`}`

			`message AutoEncrypt {`
Migrate from `protoc` to `buf` (#12841) * Install `buf` instead of `protoc` * Created `buf.yaml` and `buf.gen.yaml` files in the two proto directories to control how `buf` generates/lints proto code. * Invoke `buf` instead of `protoc` * Added a `proto-format` make target. * Committed the reformatted proto files. * Added a `proto-lint` make target. * Integrated proto linting with CI * Fixed tons of proto linter warnings. * Got rid of deprecated builtin protoc-gen-go grpc plugin usage. Moved to direct usage of protoc-gen-go-grpc. * Unified all proto directories / go packages around using pb prefixes but ensuring all proto packages do not have the prefix. 3 years ago			`bool TLS = 1;`
			`repeated string DNSSAN = 2;`
			`repeated string IPSAN = 3;`
			`bool AllowTLS = 4;`
auto-config: ensure the feature works properly with partitions (#11699) 3 years ago			`}`