core: add ACL token expiry state, struct, and RPC handling.
The ACL token state schema has been updated to utilise two new indexes which track expiration of tokens that are configured with an expiration TTL or time. A new state function allows listing ACL expired tokens which will be used by internal garbage collection. The ACL endpoint has been modified so that all validation happens within a single function call. This is easier to understand and see at a glance. The ACL token validation now also includes logic for expiry ttl and times. The ACL endpoint upsert tests have been condensed into a single, table driven test. There is a new token canonicalize which provides a single place for token canonicalization, rather than logic spread in the RPC handler.
Showing
+1091 -203
nomad/state/indexer/indexer.go
0 → 100644
nomad/state/indexer/indexer_test.go
0 → 100644
nomad/state/indexer/time.go
0 → 100644
nomad/state/indexer/time_test.go
0 → 100644
nomad/state/state_store_acl.go
0 → 100644
nomad/state/state_store_acl_test.go
0 → 100644
nomad/structs/acl.go
0 → 100644
nomad/structs/acl_test.go
0 → 100644
Please register or sign in to comment