Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SPIFFE_ENDPOINT_SOCKET env support for spire-agent #5776

Draft
wants to merge 7 commits into
base: main
Choose a base branch
from
Draft

SPIFFE_ENDPOINT_SOCKET env support for spire-agent #5776

wants to merge 7 commits into from

Conversation

kfox1111
Copy link
Contributor

Enables specifying SPIFFE_ENDPOINT_SOCKET to the non run subcommands to the spire-agent

partially-fixes: #5770

@kfox1111
SPIFFE_ENDPOINT_SOCKET env suport for spire-agent
d708a65 
Signed-off-by: Kevin Fox <Kevin.Fox@pnnl.gov>
MarcosDY
MarcosDY reviewed Jan 21, 2025
View reviewed changes
cmd/spire-agent/cli/common/defaults_posix.go
Comment on lines +16 to +17
// DefaultSocketPath is the SPIRE agent's default socket path
var DefaultSocketPath string
Copy link
Collaborator

@MarcosDY MarcosDY Jan 21, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This will be used for API calls and health checks, except for the run command, where we will continue using DefaultRunSocketPath.

Is it expected to affect health checks?
If not, should we update the code to modify the default within AddOSFlags instead?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We chatted about this. I believe the current plan is to do everything but run in one pr, and run in a future pr.

@kfox1111 kfox1111 marked this pull request as draft January 27, 2025 16:36
@kfox1111
Copy link
Contributor Author

SPIFFE_ENDPOINT_SOCKET needs to support unix:// on the front according to: https://github.com/spiffe/spiffe/blob/main/standards/SPIFFE_Workload_Endpoint.md#4-locating-the-endpoint

But this patch doesn't work with that currently.

@amartinezfayo amartinezfayo added this to the 1.12.0 milestone Jan 30, 2025
@kfox1111
Parse out entrypoint names
6b52820 
Signed-off-by: Kevin Fox <Kevin.Fox@pnnl.gov>
@kfox1111
Merge branch 'main' into socket-env
a5d09f9 
Signed-off-by: kfox1111 <Kevin.Fox@pnnl.gov>
@kfox1111
Fix lint
837f455 
Signed-off-by: Kevin Fox <Kevin.Fox@pnnl.gov>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@MarcosDY MarcosDY MarcosDY left review comments

@evan2645 evan2645 Awaiting requested review from evan2645 evan2645 is a code owner

@amartinezfayo amartinezfayo Awaiting requested review from amartinezfayo amartinezfayo is a code owner

@azdagron azdagron Awaiting requested review from azdagron

@rturner3 rturner3 Awaiting requested review from rturner3 rturner3 is a code owner

@sorindumitru sorindumitru Awaiting requested review from sorindumitru sorindumitru will be requested when the pull request is marked ready for review sorindumitru is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

@MarcosDY MarcosDY

Labels
None yet
Projects
None yet
Milestone
1.12.0
Development

Successfully merging this pull request may close these issues.

cli socket path env
3 participants
@kfox1111 @MarcosDY @amartinezfayo