New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
xds: implement XdsServerCredentials #7636
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The builder should completely stop using ProtocolNegotiator when removing the old builder methods.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Actually, this exposes problems. If a user calls useTransportSecurity() it won't have any effect and won't give them an appropriate error.
So instead of delegating these calls to the |
I have removed the |
If you used the ServerCredentials factory method for NettyServerBuilder, then you wouldn't have a problem as NettyServerBuilder will fail any protocol negotiator changes when using ServerCredentials. You need to use the proper factory method of NettyServerBuilder based on whether ServerCredentials is provided or not.
Yes, I explicitly mentioned |
d52274b
to
cc71e1f
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I rewrote the XdsServerBuilder changes. They are pretty small now, but use the old code path for the old code and new code path for new code.
Don't forget to fill out the ExperimentalApi URI.
Co-authored-by: Eric Anderson <ejona@google.com>
Will remove the
useXdsSecurity*
methods fromXdsServerBuilder
in the next PR.