Open ThorpeJosh opened 9 months ago
JiggsNephron
commented
8 months ago Wondering the same here. I have to enable Post entirely even though all I need is restart. I was hoping to be able to be more granular by using ALLOW_RESTARTS=1 without POST=1.
raetha
commented
6 months ago I was looking at this same issue and it appears that the block for POST occurs in the rules before the allow statements for stop, start, and restart. That appears to be creating the situation where POST is still required since that rule is applied first. I believe the three new allow rules just need to be placed above the POST blocking rule and this should work as documented. Unfortunately it needs to be fixed in the repo, or you would need to build your own docker image. It isn't something that can be changed on the fly in the existing container image.
If I set the environment variable
ALLOW_RESTARTS=1then permission is still denied for any stop/restart/kill operation due to them all beingPOSTmethods (blocked by default).If I set the environment variable
POST=1then stop/restart/kill operations work even ifALLOW_RESTARTS=0.Is this a bug or is
ALLOW_RESTARTSa depreciated configuration? It is not in theREADME.mdbut it is still in thehaproxy.cfg.