Skip to content
This repository has been archived by the owner on Jul 27, 2023. It is now read-only.

API ping() uses an endpoint that is secured by ACLs #421

Open
dekimsey opened this issue Jun 30, 2020 · 0 comments
Open

API ping() uses an endpoint that is secured by ACLs #421

dekimsey opened this issue Jun 30, 2020 · 0 comments

Comments

@dekimsey
Copy link

dekimsey commented Jun 30, 2020
edited
Loading

Issue

We were debugging an issue CONSUL_HTTP_TOKEN would cause the application not to start. We found the ping() call was hitting agent/self which requires the agent:read privilege. Our token does not have that privilege.

Solution

An ACL-less option for ping would be /status/leader or /status/peers which do not require an ACL to contact. I think this would better reflect the desired behavior of ping().
@dekimsey dekimsey changed the title API ping() uses an endpoint that is secured by ACLs n ACL API ping() uses an endpoint that is secured by ACLs Jun 30, 2020
@Tipnik Tipnik mentioned this issue Jun 2, 2021
Merged
@sleberknight sleberknight mentioned this issue Aug 16, 2023
Open
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@dekimsey