gogrlx/nats-server
1
0
Fork 0
mirror of https://github.com/gogrlx/nats-server.git synced 2026-04-02 03:38:42 -07:00
Code Issues Packages Projects Releases Wiki Activity
5,231 Commits 30 Branches 48 Tags
3e8b66286d705df59197ff2660666c35c316140a
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Matthias Hanel 3e8b66286d Js leaf deny (#2693) 
Along a leaf node connection, unless the system account is shared AND the JetStream domain name is identical, the default JetStream traffic (without a domain set) will be denied.

As a consequence, all clients that wants to access a domain that is not the one in the server they are connected to, a domain name must be specified.
Affected from this change are setups where: a leaf node had no local JetStream OR the server the leaf node connected to had no local JetStream. 
One of the two accounts that are connected via a leaf node remote, must have no JetStream enabled.
The side that does not have JetStream enabled, will loose JetStream access and it's clients must set `nats.Domain` manually.

For workarounds on how to restore the old behavior, look at:
https://github.com/nats-io/nats-server/pull/2693#issuecomment-996212582

New config values added:
`default_js_domain` is a mapping from account to domain, settable when JetStream is not enabled in an account.
`extension_hint` are hints for non clustered server to start in clustered mode (and be usable to extend)
`js_domain` is a way to set the JetStream domain to use for mqtt.

Signed-off-by: Matthias Hanel <mh@synadia.com>
2021-12-16 16:53:20 -05:00
.github
No race flag for GHA [ci skip]
2021-08-14 16:43:21 -07:00
conf
Travis updates
2021-11-15 17:23:08 -07:00
doc
remove ADR files from the server
2021-07-13 10:07:31 +02:00
docker
Remove '-s' flag from ldflags from the build
2021-07-28 15:56:58 -07:00
internal
Redact URLs before logging or returning in error (#2643)
2021-10-27 12:44:59 -04:00
jetstream
First pass header support for JetStream
2020-05-30 10:04:23 -07:00
logger
Travis updates
2021-11-15 17:23:08 -07:00
logos
Only linux for travis
2016-04-21 09:33:42 -07:00
scripts
Remove TestNoRace tests from code coverage
2021-11-17 18:25:58 -07:00
server
Js leaf deny (#2693)
2021-12-16 16:53:20 -05:00
test
[FIXED] TLS map: panic for existing user but conn type not allowed
2021-12-15 10:09:18 -07:00
util
Add hardened systemd service
2021-07-27 22:36:32 +02:00
vendor
[UPDATED] golang.org/x/crypto dependency
2021-12-02 13:48:21 -07:00
.coveralls.yml
Should have been included from the coveralls instructions to know more.
2014-07-25 13:16:58 -07:00
.gitignore
Fixed raft bug on catchup logic with external snapshots
2021-02-12 19:58:02 -08:00
.goreleaser-nightly.yml
Remove '-s' flag from ldflags from the build
2021-07-28 15:56:58 -07:00
.goreleaser.yml
Remove '-s' flag from ldflags from the build
2021-07-28 15:56:58 -07:00
.travis.yml
Remove version for misspell and staticcheck tools
2021-11-16 09:06:17 -07:00
CODE-OF-CONDUCT.md
Add CNCF Code of Conduct
2018-03-15 11:38:25 -07:00
dependencies.md
Create dependencies.md [ci skip]
2021-01-06 10:53:35 -06:00
go.mod
[UPDATED] golang.org/x/crypto dependency
2021-12-02 13:48:21 -07:00
go.sum
[UPDATED] golang.org/x/crypto dependency
2021-12-02 13:48:21 -07:00
GOVERNANCE.md
Update GOVERNANCE.md
2020-11-10 10:40:28 -06:00
LICENSE
Update license to Apache 2
2018-03-15 22:31:07 -07:00
main.go
richer api errors proposal
2021-05-26 08:04:50 +02:00
MAINTAINERS.md
Update MAINTAINERS.md
2020-06-22 11:10:49 -05:00
README.md
Release v2.6.6
2021-12-02 11:44:56 -07:00
ROADMAP.md
Cleanup references to 'master' and 'gnatsd' (#2336)
2021-07-01 10:48:30 -04:00
TODO.md
[ADDED] Server sends INFO with cluster URLs to clients with support
2016-07-26 10:55:55 -06:00

README.md

NATS is a simple, secure and performant communications system for digital systems, services and devices. NATS is part of the Cloud Native Computing Foundation (CNCF). NATS has over 40 client language implementations, and its server can run on-premise, in the cloud, at the edge, and even on a Raspberry Pi. NATS can secure and simplify design and operation of modern distributed systems.

License Build Release Slack Coverage Docker Downloads CII Best Practices

Documentation

Contact

  • Twitter: Follow us on Twitter!
  • Google Groups: Where you can ask questions
  • Slack: Click here to join. You can ask question to our maintainers and to the rich and active community.

Contributing

If you are interested in contributing to NATS, read about our...

Security

Security Audit

A third party security audit was performed by Cure53, you can see the full report here.

Reporting Security Vulnerabilities

If you've found a vulnerability or a potential vulnerability in the NATS server, please let us know at nats-security.

License

Unless otherwise noted, the NATS source files are distributed under the Apache Version 2.0 license found in the LICENSE file.

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme Apache-2.0 33 MiB
Languages
Go 99.6%
Shell 0.4%