4d3b281369
etcdserver: fix spell errors
2016-08-13 20:54:48 -07:00
9063ce5e3f
etcdserver, embed: stricter reconfig checking
...
Make --strict-reconfig-check a default and check if cluster is healthy when
adding a member.
2016-08-05 16:59:25 -07:00
87498e0209
v2http: use guest access in non-TLS mode
...
Fix https://github.com/coreos/etcd/issues/6075 .
2016-08-01 14:00:38 -07:00
de2c3ec3db
etcdserver, api, membership: don't race on setting version
...
Fixes #6029
2016-07-26 18:21:40 -07:00
5066981cc7
v2http: test with 'ClientCertAuthEnabled'
2016-07-20 16:24:33 -07:00
25aeeb35c3
v2http: set 'ClientCertAuthEnabled' in client.go
2016-07-20 16:24:15 -07:00
68ece954fb
v2http: add 'ClientCertAuthEnabled' in handlers
2016-07-20 16:23:41 -07:00
0f0d32b073
v2http: move 'testdata' from 'etcdhttp'
2016-07-20 16:20:42 -07:00
ff5709bb41
v2http: client cert cn authentication
...
introduce client certificate authentication using certificate cn.
2016-07-20 16:20:13 -07:00
ab17165352
v2http: refactor http basic auth
...
refactor http basic auth code to combine basic auth extraction and validation
2016-07-20 16:20:05 -07:00
299ebc6137
v3rpc: don't elide next progress notification on progress notification
...
Fixes #5878
2016-07-20 11:37:20 -07:00
8abae076d1
rpctypes, clientv3: retry RPC on EtcdStopped
...
Fixes #5983
2016-07-19 18:29:12 -07:00
58aa3483c3
grpcproxy: add filter to watcher
2016-07-18 13:02:34 -07:00
51c5c307fa
rpctypes: test error equivalence with Error()
...
grpc.Errorf() now returns *rpcError, which makes comparisons shallow.
2016-07-14 15:59:06 -07:00
b0f2e5e64a
Merge pull request #5927 from xiang90/pacing
...
*: deny proposals when there is a huge gap between apply/commit
2016-07-14 11:47:53 -07:00
27b03f0ed5
*: deny proposals when there is a huge gap between apply/commit
2016-07-14 10:02:55 -07:00
81d5ae3ce1
rpctypes: use permission deny code for permission deny error
2016-07-13 10:32:10 -07:00
b9f6de9277
Merge pull request #5895 from smallfish/master
...
etcdserver/api/v2http, Documentation: fix debug pprof index miss / in end
2016-07-12 07:10:53 -07:00
e6d15b966c
etcdserver/api/v2http, Documentation: fix debug pprof index miss / in end
2016-07-08 10:21:05 +08:00
427496ebb8
v3rpc: lock progress and prevKV map correctly
2016-07-07 15:01:05 -07:00
929d6ab62c
Merge pull request #5850 from xiang90/get_o_kv
...
*: support get-old-kv in watch
2016-07-05 16:37:24 -07:00
c853704ac9
*: support get-old-kv in watch
2016-07-05 16:17:09 -07:00
70bf768005
Merge pull request #5861 from xiang90/fix_watch
...
v3rpc: do not panic on user error for watch
2016-07-03 13:56:33 -07:00
13a4056327
v3rpc: do not panic on user error for watch
2016-07-03 08:57:48 -07:00
ba023e539a
etcdserver/api: print only major.minor version API
...
Before
2016-07-01 14:57:50.927170 I | api: enabled capabilities for version 3.0.0
After
2016-07-01 14:57:50.927170 I | api: enabled capabilities for version 3.0
2016-07-01 14:58:06 -07:00
bc6d7659af
Merge pull request #5795 from xiang90/filter
...
*: support watch with filters
2016-06-28 14:07:12 -07:00
dced92f8bd
*: support watch with filters
...
Now user can filter events with types. The API is also extensible.
It might make sense for the proxy to filter out events based on
more expensive/customized filter.
2016-06-28 13:46:57 -07:00
8df37d53d6
auth, etcdserver: let Authenticate() fail if auth isn't enabled
...
Successful Authenticate() would be confusing and make trouble shooting
harder if auth isn't enabled in a cluster.
2016-06-26 22:49:23 -07:00
a1c7a7df5e
*: use capnslog for grpclog
2016-06-20 20:35:03 -07:00
e5583b26eb
Merge pull request #5711 from xiang90/client_bytes
...
*: add client network metrics
2016-06-20 12:03:18 -07:00
35fd81e465
*: add client network metrics
2016-06-20 11:18:06 -07:00
6f28b43806
*: fix pending events metrics
2016-06-19 23:00:39 -07:00
18253e2723
*: support getting all users and roles in auth v3
...
This commit expands RPCs for getting user and role and support list up
all users and roles. etcdctl v3 is now support getting all users and
roles with the newly added option --all e.g. etcdctl user get --all
2016-06-17 16:22:41 +09:00
da2f2a5189
auth: add root user and root role
2016-06-08 19:55:08 -07:00
62f8ec25c0
clientv3: use grpc reconnection logic
2016-06-08 01:04:59 -07:00
6e149e3485
etcdserver: following updates for proto change
2016-06-07 13:32:07 -07:00
83ce1051ff
auth: make naming consistent
2016-06-07 10:54:50 -07:00
94f22e8a07
*: rename RPCs and structs related to revoking
...
This commit renames RPCs and structs related to revoking.
1. UserRevoke -> UserRevokeRole
2. RoleRevoke -> RoleRevokePermission
2016-06-05 16:57:23 +09:00
60fc1e4d4e
auth, etcdserver: error codes for revoking non existing role and permission
...
This commit adds error codes for representing revoking non existing
role (from user) and permission (from role).
2016-06-05 16:41:10 +09:00
c7a1423d45
*: support deleting a role in auth v3
...
This commit implements RoleDelete() RPC for supporting deleting a role
in auth v3. It also adds a new subcommand "role delete" to etcdctl.
2016-06-04 13:42:45 +09:00
0cb1343109
*: support revoking a key from a role in auth v3
...
This commit implements RoleRevoke() RPC for supporting revoking a key
from a role in auth v3. It also adds a new subcommand "role revoke" to
etcdctl.
2016-06-04 13:42:45 +09:00
957b07c408
*: support revoking a role from a user in auth v3
...
This commit implements UserRevoke() RPC for supporting revoking a role
from a user in auth v3. It also adds a new subcommand "user revoke" to
etcdctl.
2016-06-04 13:39:26 +09:00
10ee69b44c
*: support getting role in auth v3
...
This commit implements RoleGet() RPC of etcdserver and adds a new
subcommand "role get" to etcdctl v3. It will list up permissions that
are granted to a given role.
$ ETCDCTL_API=3 bin/etcdctl role get r1
Role r1
KV Read:
b
d
KV Write:
a
c
d
2016-06-03 13:03:54 +09:00
5609fdb9a8
*: support getting user in etcdctl v3
...
This commit adds a new subcommand "user get" to etcdctl v3. It will
list up roles that are granted to a given user.
Example:
$ ETCDCTL_API=3 bin/etcdctl user get u1
User: u1
Roles: r1 r2 r3
This commit also modifies the layout of InternalRaftRequest for
frequent update of auth related members.
2016-06-02 12:10:19 +09:00
7709cd84bb
Merge pull request #5505 from heyitsanthony/v3rpc-watcher-close
...
v3rpc: fix race on ctrl channel when watcher stream closes
2016-05-31 14:24:10 -07:00
283318d547
v3rpc: add ErrConnClosed for closed client
...
For https://github.com/coreos/etcd/issues/5495 .
2016-05-31 11:15:01 -07:00
09e8f5782e
v3rpc: fix race on closing watcher stream ctrl channel
...
Sometimes close would race with the recvLoop, leading the
recvLoop to write to a close channel.
2016-05-31 11:07:31 -07:00
6f8cc58214
Merge pull request #5490 from mitake/errcode
...
etcdserver, auth: not return grpc error code directly in the apply phase
2016-05-30 22:00:54 -07:00
9c767cbf98
Merge pull request #5464 from heyitsanthony/fix-victim-watchers
...
mvcc: tighten up watcher cancelation and revision handling
2016-05-30 20:09:39 -06:00
5144318af0
etcdserver, auth: not return grpc error code directly in the apply phase
...
Current permission checking mechanism doesn't return its error code
well. The internal error (code = 13) is returned to client and the
retry mechanism doesn't work well. This commit fixes the problem.
2016-05-31 11:04:34 +09:00
Gyu-Ho Lee