[Config] Update the 'Security hardening guide' to using a new config #3665

andreyaksenov · 2023-09-01T13:37:08Z

Previous step: #3945
Feedback: #3959

Product: Tarantool
Since: 3.0
Root document: https://www.tarantool.io/en/enterprise_doc/security/
SME: @ Totktonada

Details

Currently, box.cfg examples are used.

P.S. Some environment variables should also be updated (comparison table).

Create the Connections topic in the Configuration section (see also Connections and Authentication). The structure of this topic might be:
- Overview (iproto, connectors, replication, sharding)
- Listen URI (ip+port, unix socket)
- Advertise URI (domain names can be used)
- SSL (Traffic encryption will be moved here, mention certificate reloading)
Create the Authentication topic in the Configuration section and move the info from the Access control section.
- Add corresponding options to reference.

The text was updated successfully, but these errors were encountered:

andreyaksenov · 2024-01-23T08:32:22Z

andreyaksenov added 3.0 config EE EE functionality labels Sep 1, 2023

andreyaksenov mentioned this issue Sep 1, 2023

[Epic] 3.0 config - Part 1 #3544

Closed

14 tasks

andreyaksenov mentioned this issue Dec 21, 2023

[Epic] 3.0 config - Part 2 #3957

Closed

14 tasks

andreyaksenov self-assigned this Dec 26, 2023

andreyaksenov mentioned this issue Dec 26, 2023

new format of the iproto.* config options. #3945

Closed

andreyaksenov mentioned this issue Jan 9, 2024

3.0 iproto uri params #3973

Merged

This was linked to pull requests Jan 10, 2024

Connection settings #3985

Merged

Authentication settings #3991

Merged

andreyaksenov closed this as completed in #3985 Jan 23, 2024