As I go through the exercise of configuring consul ACLs I keep running into this thing where I am reading through the API documents and it notes at the bottom of a given endpoint what ACL is required for the endpoint, but there is no way to cross reference what other endpoints are given access via an ACL. Is there really no document that gives the reverse mapping of ACL to api endpoint? The existing documentation seems like it may lead to accidentally granting unintended access.
Hi @drawks, thank you for your feedback. We are actually in the process of developing this documentation. In the meantime, is there a specific API endpoint we can help with ?
A simple table or chart that shows a mapping of ACLs to API endpoints would be great. It isn’t a matter of “I know the endpoint, what is the appropriate ACL?” the current documentation is already written to address that, the issue is more “the docs say I need this ACL for a given endpoint, what other endpoints am I ALSO granting access to when I set this ACL?”