Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[v16] SPIFFE Federation: Add support to tbot #46303

Merged
merged 20 commits into from
Sep 17, 2024
Merged

[v16] SPIFFE Federation: Add support to tbot #46303

merged 20 commits into from
Sep 17, 2024

Commits on Sep 5, 2024

  1. Smash out an initial "hacky" implementation of TrustDomainCache

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    fcef992 View commit details
    Browse the repository at this point in the history

  2. Wire trustbundlecache into FetchX509SVID

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    63c8126 View commit details
    Browse the repository at this point in the history

  3. Wire into SDS endpoint

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    1931fb4 View commit details
    Browse the repository at this point in the history

  4. Strip out old CA event handler

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    b564fcb View commit details
    Browse the repository at this point in the history

  5. Initialize TrustBundleCache as needed

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    ece872a View commit details
    Browse the repository at this point in the history

  6. Fix panic due to uninitialized subscriber map

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    7c8d8e6 View commit details
    Browse the repository at this point in the history

  7. Add basic tests for TrustBundleCache

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    adbf7ab View commit details
    Browse the repository at this point in the history

  8. Detect older Auth Server versions without SPIFFEFederation resource 

    support
    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    e059978 View commit details
    Browse the repository at this point in the history

  9. Support AllowPartialSuccess

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    3c1624e View commit details
    Browse the repository at this point in the history

  10. Tidy up logging of old auth server handling

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    eb9973e View commit details
    Browse the repository at this point in the history

  11. Fix TestSDS_FetchSecrets test

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    031011a View commit details
    Browse the repository at this point in the history

  12. Add more test cases for SDS with federated trust domain support

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    adb70f8 View commit details
    Browse the repository at this point in the history

  13. Remove irrelevant comment

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    9c5b2ea View commit details
    Browse the repository at this point in the history

  14. Add test for TrustBundleCache

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    98feadc View commit details
    Browse the repository at this point in the history

  15. Enable parallel for TestTrustBundleCache_RUn

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    bfe9ccf View commit details
    Browse the repository at this point in the history

  16. Fix linter complaints

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    ff54974 View commit details
    Browse the repository at this point in the history

  17. Appease linter

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    f85ad35 View commit details
    Browse the repository at this point in the history

  18. Tidy up retry loop

    @strideynet
    strideynet authored and github-actions committed Sep 5, 2024
    Configuration menu
    Copy the full SHA
    da781bf View commit details
    Browse the repository at this point in the history

Commits on Sep 10, 2024

  1. Try to narrow down trust bundle cache flake (#46377)

    @strideynet
    strideynet committed Sep 10, 2024
    Configuration menu
    Copy the full SHA
    feec425 View commit details
    Browse the repository at this point in the history

Commits on Sep 13, 2024

  1. Workload ID: Add support for Federated Trust Bundles into `spiffe-svi… 

    …d` output (#46023)

* Hack on IncludeFederatedTrustBundle option

* Refactor to better re-use trust bundle set init code

* Add retry loop

* Pass cache into output

* Rewrite subscriber behaviour to avoid racines

* Simplify GetBundleSet

* Add godocs

* Update lib/tbot/service_spiffe_svid_output.go

Co-authored-by: Tim Buckley <tim@goteleport.com>

---------

Co-authored-by: Tim Buckley <tim@goteleport.com>
    @strideynet @timothyb89
    strideynet and timothyb89 committed Sep 13, 2024
    Configuration menu
    Copy the full SHA
    0d08e8d View commit details
    Browse the repository at this point in the history