https://www.consul.io/docs/security/acl/acl-system
node_prefix "" {
policy = "write"
}
service_prefix "" {
policy = "read"
}
acl = {
enabled = true
default_policy = "deny"
enable_token_persistence = true
tokens {
"agent" = "f1f30bb8-af83-ac3e-8944-efe03d782ac6"
}
}
systemctl restart consul
journalctl -u consul
dig @localhost -p 8600 consul.service.consul
node_prefix "" {
policy = "read"
}
service_prefix "" {
policy = "read"
}
query_prefix "" {
policy = "read"
}
dig @localhost -p 8600 consul.service.consul