Hi All,
I am new to Consul and while reading the ACL part of Consul, I am curious that where Consul saves the tokens of ACL? How Consul recognize the token I use has the permission to do this or that?
Thanks.
Jason
Hi All,
I am new to Consul and while reading the ACL part of Consul, I am curious that where Consul saves the tokens of ACL? How Consul recognize the token I use has the permission to do this or that?
Thanks.
Jason
Consul saves ACL information along with all of the other cluster state - in memory at runtime, and persisted via snapshots and transaction logs in the configured data directory.
hi Max,
Thanks for the reply, that would be the value of parameter “-data-dir”. Btw, is the data persisted there encrypted and how to decrypt it?
Appreciated.
Jason
No, it is not encrypted
Hi Max,
Thanks for the reply.
If it is not encrypted, is there any way I could read the content?
Best Regards,
Jason
The only supported way to read the data is via the Consul HTTP API.
Reading the files directly would require extensive reverse engineering of file formats, and would be relying on internal implementation details that may change in future Consul versions.
Thanks Max, that helps.