Expose needed services on the control socket #1828
Merged
Commits on Dec 21, 2016
-
Expose needed services on the control socket
For swarm mode to function without exposing a TCP port, we need services such as the dispatcher and node CA to be exposed on the control socket (i.e. a unix socket). This commit changes the manager to expose those services, and changes the raft proxy to inject some information into the context when calling the handler directly that identifies the local node. The authorization code in "ca" is updated to check for this information on the context and make use of it, instead of returning an error from RemoteNode. Also, the CA server now renewing a certificate over the control socket. Signed-off-by: Aaron Lehmann <aaron.lehmann@docker.com>
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.