Add support for CAGetConfiguration (399) (#404)

Consul.Test/ConnectTest.cs

@@ -41,5 +41,18 @@ public async Task Connect_CARoots()
             Assert.NotNull(root.RootCert);
             Assert.NotNull(root.SigningKeyID);
         }
+
+        [Fact]
+        public async Task Connect_GetCAConfigurationTest()
+        {
+            var req = await _client.Connect.CAGetConfig();
+            var result = req.Response;
+
+            Assert.Equal("consul", result.Provider);
+            Assert.NotEmpty(result.Config);
+            Assert.False(result.ForceWithoutCrossSigning);
+            Assert.NotEqual((ulong)0, result.CreateIndex);
+            Assert.NotEqual((ulong)0, result.ModifyIndex);
+        }
     }
 }

Consul/Connect.cs

@@ -26,6 +26,33 @@
 
 namespace Consul
 {
+    public class CAConfig
+    {    /// <summary>
+         /// Provider is the CA provider implementation to use.
+         /// </summary>
+        public string Provider { get; set; }
+        /// <summary>
+        /// Configuration is arbitrary configuration for the provider. This
+        /// should only contain primitive values and containers (such as lists and maps).
+        /// </summary>
+        public Dictionary<string, object> Config { get; set; }
+        /// <summary>
+        ///  State is read-only data that the provider might have persisted for use
+        ///  after restart or leadership transition. For example this might include
+        ///  UUIDs of resources it has created. Setting this when writing a configuration is an error.
+        /// </summary>
+        public Dictionary<string, string> State { get; set; }
+        /// <summary>
+        /// ForceWithoutCrossSigning indicates that the CA reconfiguration should go
+        /// ahead even if the current CA is unable to cross sign certificates. This
+        /// risks temporary connection failures during the rollout as new leafs will be
+        /// rejected by proxies that have not yet observed the new root cert but is the
+        /// only option if a CA that doesn't support cross signing needs to be reconfigured or mirated away from.
+        /// </summary>
+        public bool ForceWithoutCrossSigning { get; set; }
+        public ulong CreateIndex { get; set; }
+        public ulong ModifyIndex { get; set; }
+    }
     public class Connect : IConnectEndpoint
     {
         private readonly ConsulClient _client;
@@ -48,6 +75,21 @@ public Task<QueryResult<CARoots>> CARoots(QueryOptions q, CancellationToken ct =
         {
             return _client.Get<CARoots>("/v1/connect/ca/roots", q).Execute(ct);
         }
+        /// <summary>
+        /// CAGetConfig returns the current CA configuration.
+        /// </summary>
+        public Task<QueryResult<CAConfig>> CAGetConfig(CancellationToken ct = default)
+        {
+            return CAGetConfig(QueryOptions.Default, ct);
+        }
+
+        /// <summary>
+        /// CAGetConfig returns the current CA configuration.
+        /// </summary>
+        public Task<QueryResult<CAConfig>> CAGetConfig(QueryOptions q, CancellationToken ct = default)
+        {
+            return _client.Get<CAConfig>("/v1/connect/ca/configuration", q).Execute(ct);
+        }
     }
 
     public partial class ConsulClient : IConsulClient

Consul/Interfaces/IConnectEndpoint.cs

@@ -28,5 +28,7 @@ public interface IConnectEndpoint
     {
         Task<QueryResult<CARoots>> CARoots(QueryOptions q, CancellationToken ct = default);
         Task<QueryResult<CARoots>> CARoots(CancellationToken ct = default);
+        Task<QueryResult<CAConfig>> CAGetConfig(QueryOptions q, CancellationToken ct = default);
+        Task<QueryResult<CAConfig>> CAGetConfig(CancellationToken ct = default);
     }
 }