Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

agent: only enable TLS on gRPC if the HTTPS API port is enabled #5287

Merged
merged 2 commits into from
Feb 13, 2019
Merged

agent: only enable TLS on gRPC if the HTTPS API port is enabled #5287

merged 2 commits into from
Feb 13, 2019

Commits on Jan 29, 2019

  1. agent: add new config flag to force insecure gRPC when TLS is enabled 

    Currently the gRPC server assumes that if you have configured TLS certs
on the agent (for RPC) that you want gRPC to be encrypted. If gRPC is
bound to localhost this can be overkill. For the API we let the user
choose to offer HTTP or HTTPS API endpoints independently of the TLS
cert configuration for a similar reason.

This setting will let someone encrypt RPC traffic with TLS but avoid
encrypting local gRPC traffic if that is what they want to do.
    @rboyer
    rboyer committed Jan 29, 2019
    Configuration menu
    Copy the full SHA
    8a14299 View commit details
    Browse the repository at this point in the history

Commits on Jan 30, 2019

  1. agent: only enable TLS on gRPC if the HTTPS API port is enabled

    @rboyer
    rboyer committed Jan 30, 2019
    Configuration menu
    Copy the full SHA
    29eae58 View commit details
    Browse the repository at this point in the history