spiffe: add support for spiffe bundle format #36190
+3,096
−2,665
Open
CI (Envoy) / Envoy/Publish and verify
succeeded
Oct 16, 2024 in 1h 7m 23s
Envoy/Publish and verify (success)
Check has finished
Details
Check run finished (success ✔️)
The check run can be viewed here:
Envoy/Publish and verify (pr/36190/main@032737a)
Check started by
Request (pr/36190/main@032737a)
032737a 
#36190 merge main@0b551a8
spiffe: add support for spiffe bundle format
Commit Message: Adds alternative to "trust_domains" config for the spiffe validator—"trust_bundle_map".
Additional Description:
#35567
trust_bundle_map points to a local file containing a SPIFFE bundle map. A file watcher is set up to trigger refreshes to the SPIFFE data when this file is modified. SPIFFE refresh hint and sequence number are currently ignored.Risk Level: medium
Testing: WIP
Docs Changes: TBD
Release Notes: TBD
Environment
Request variables
| Key | Value |
|---|---|
| ref | a0d65ff |
| sha | 032737a |
| pr | 36190 |
| base-sha | 0b551a8 |
| actor | @briansonnenberg |
| message | spiffe: add support for spiffe bundle format... |
| started | 1729118857.89483 |
| target-branch | main |
| trusted | false |
Build image
Container image/s (as used in this CI run)
| Key | Value |
|---|---|
| default | envoyproxy/envoy-build-ubuntu:f94a38f62220a2b017878b790b6ea98a0f6c5f9c |
| mobile | envoyproxy/envoy-build-ubuntu:mobile-f94a38f62220a2b017878b790b6ea98a0f6c5f9c |
Version
Envoy version (as used in this CI run)
| Key | Value |
|---|---|
| major | 1 |
| minor | 33 |
| patch | 0 |
| dev | true |
Loading