spiffe
/
spire-tutorials
mirror of https://github.com/spiffe/spire-tutorials.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
132 Commits 10 Branches 0 Tags 1.5 MiB
Commit Graph

22 Commits

Author SHA1 Message Date
Krishna d27c579eb4
Update spire-agent daemonset to use node IP from downward API (#4147). (#117) 
* Update spire-agent daemonset to use node IP from downward API (#4147).

Signed-off-by: Krishnakumar Venkataraman <krishna_kumar08@infosys.com>
 2023-06-09 22:58:30 -07:00
Batuhan Apaydın 916cf3a4a2
use Chainguard's wait-for-it image (#99) 
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com>
 2022-12-23 08:42:58 -07:00
Marcos Yacob 1760207fcc
Stop using sleep command on quickstart client (#100) 
Signed-off-by: Marcos Yacob <marcos.yacob@hpe.com>
 2022-12-19 17:56:10 -03:00
Ryan Turner 9164341a6c
Replace alpine images with scratch images (#98) 
SPIRE is moving away from the alpine Docker release images in favor of
scratch images that contain only the release binary to minimize the size
of the images and include only the software that is necessary to run in
the container.

Signed-off-by: Ryan Turner <turner@uber.com>
 2022-12-14 20:35:15 -07:00
Ryan Turner 31dd3df1fa
Update SPIRE to v1.5.0 (#96) 
Update all tutorials to use SPIRE v1.5.0. Remove usage of deprecated
Server config parameter `default_svid_ttl` in favor of
`default_x509_svid_ttl` and `default_jwt_svid_ttl`.

Signed-off-by: Ryan Turner <turner@uber.com>
 2022-11-03 14:06:01 -06:00
jiashuChen 989868c288
Update to latest spire release 1.2.3 (#72) 
Signed-off-by: Jiashu Chen <cjs20080808@hotmail.com>
 2022-05-06 09:03:17 -06:00
Marcos Yacob 5cb41636f5
Enable Github actions (#78) 
Signed-off-by: Marcos Yacob <marcos.yacob@hpe.com>
 2022-05-01 10:49:50 -06:00
Ben Du de4e309454
Limit spire configmap access to namespace (#71) 
Signed-off-by: Ben Du <dubenjam@amazon.com>
 2022-03-23 09:26:04 -06:00
Andrew Harding 1a5b67f240
Merge pull request #69 from babilen/pr/service-account-allow-list 
Update service account allow list configurable
 2021-10-27 12:21:07 -06:00
Wolodja Wentland 81e19a0bd3
Remove noop NodeResolver 
The noop NodeResolver has been removed in 1.0.0.

See:
- https://github.com/spiffe/spire/pull/2189

Signed-off-by: Wolodja Wentland <wolodja.wentland@control-plane.io>
 2021-10-27 14:39:56 +01:00
Wolodja Wentland 67b0f156e2
Update service account allow list configurable 
The `k8s_sat` and `k8s_psat` NodeAttestor configurable
`service_account_whitelist` has been removed in the 1.1.0 release
after having been deprecated in favour of `service_account_allow_list`
in 1.0.0.

See:
- https://github.com/spiffe/spire/pull/2253
- https://github.com/spiffe/spire/pull/2543

Signed-off-by: Wolodja Wentland <wolodja.wentland@control-plane.io>
 2021-10-27 14:04:29 +01:00
Agustín Martínez Fayó c7775bb260 Update tutorials to use SPIRE 1.0.0 
Signed-off-by: Agustín Martínez Fayó <amartinezfayo@gmail.com>
 2021-07-14 14:46:20 -03:00
Ryuma Yoshida 62ca64a12c Use the healthcheck endpoints in the kubernetes manifests 
Signed-off-by: Ryuma Yoshida <ryuma.y1117@gmail.com>
 2021-04-02 17:27:19 +09:00
lucianozablocki d5f3a4b939
Add readiness probe to k8s config of SPIRE server present in quickstart guide (#51) 
* add readiness probe to spire server

Signed-off-by: Luciano <lucianozablocki@gmail.com>
 2021-01-14 15:18:38 -03:00
Andres Gomez Coronel 6fbae51fdd
Updates SPIRE to v 0.11.0. 
Removed extra step to enable SDS on SPIRE Envoy-x509 Tutorial.
Update test cases.

Signed-off-by: Andres Gomez Coronel <andresgomezcoronel@gmail.com>
 2020-09-14 23:20:33 -03:00
Andres Gomez Coronel c6ab7c1058
Move quickstart tests to its own directory and added script to run test per tutorial. 
Signed-off-by: Andres Gomez Coronel <andres@scytale.io>
 2020-06-08 11:09:51 -03:00
Andres Gomez Coronel 9d113f3ebb
Adding SPIRE integration with Envoy tutorial 
Signed-off-by: Andres Gomez Coronel <andres@scytale.io>
 2020-05-06 17:35:17 -03:00
Eugene Weiss 1ece82c82b Update k8s/quickstart container images to 0.10.0 
Signed-off-by: Eugene Weiss <eugene@scytale.io>
 2020-04-22 15:35:22 -07:00
Eugene Weiss 11430ef58f Add standard skip_kubelet_verification for minikube comment. 2020-04-16 08:54:13 -07:00
Eugene Weiss 9b7b64f577 Change svid_ttl to default_svid_ttl and remove upstream_bundle config. 
Signed-off-by: Eugene Weiss <eugene@scytale.io>
 2020-04-15 14:44:56 -07:00
Marcos Yacob a3e26b6905 AWS require RSA keys, to make upgrade works, we need to update quickstart tutorial ca_key_type to use rsa instead of EC 
Signed-off-by: Marcos Yacob <marcos@scytale.io>
 2020-03-23 16:15:58 -03:00
Marcos Yacob f5a3813339 add oidc-provider 
Signed-off-by: Marcos Yacob <marcos@scytale.io>
 2020-03-20 13:36:06 -03:00