mirror of https://github.com/hashicorp/consul
5e9f02d4be
* Define file-system-certificate config entry * Collect file-system-certificate(s) referenced by api-gateway onto snapshot * Add file-system-certificate to config entry kind allow lists * Remove inapplicable validation This validation makes sense for inline certificates since Consul server is holding the certificate; however, for file system certificates, Consul server never actually sees the certificate. * Support file-system-certificate as source for listener TLS certificate * Add more required mappings for the new config entry type * Construct proper TLS context based on certificate kind * Add support or SDS in xdscommon * Remove unused param * Adds back verification of certs for inline-certificates * Undo tangential changes to TLS config consumption * Remove stray curly braces * Undo some more tangential changes * Improve function name for generating API gateway secrets * Add changelog entry * Update .changelog/20873.txt Co-authored-by: Jared Kirschner <85913323+jkirschner-hashicorp@users.noreply.github.com> * Add some nil-checking, remove outdated TODO * Update test assertions to include file-system-certificate * Add documentation for file-system-certificate config entry Add new doc to nav * Fix grammar mistake * Rename watchmaps, remove outdated TODO --------- Co-authored-by: Melisa Griffin <melisa.griffin@hashicorp.com> Co-authored-by: Jared Kirschner <85913323+jkirschner-hashicorp@users.noreply.github.com> |
||
|---|---|---|
| .. | ||
| api-gateway.mdx | ||
| control-plane-request-limit.mdx | ||
| exported-services.mdx | ||
| file-system-certificate.mdx | ||
| http-route.mdx | ||
| index.mdx | ||
| ingress-gateway.mdx | ||
| inline-certificate.mdx | ||
| jwt-provider.mdx | ||
| mesh.mdx | ||
| proxy-defaults.mdx | ||
| sameness-group.mdx | ||
| service-defaults.mdx | ||
| service-intentions.mdx | ||
| service-resolver.mdx | ||
| service-router.mdx | ||
| service-splitter.mdx | ||
| tcp-route.mdx | ||
| terminating-gateway.mdx | ||