Alexander Scheel
Alexander Scheel
@thequailman Vault as a source of identity would be interesting, but we lack cross-plugin communication... I think this means that the plugin would ultimately need to be an auth plugin,...
I have a draft PR here with this: https://github.com/cipherboy/openbao/pull/2 The regular binary versus stripped binary sizes are: ``` -rwxr-xr-x. 1 cipherboy cipherboy 136M Mar 16 19:28 bao -rwxr-xr-x. 1 cipherboy...
Hello @genelet! #467 was just merged, with some initial support for Postgres. I'd recommend trying it out and letting us know what you think. @DanGhita wants to implement transactions (#292)...
@naphelps Perfect! I think size requirements also come from cloud deployments, as bandwidth costs mean that constantly pulling large images can become pricey. So I wouldn't limit this just to...
I think the best route for someone to get started would be to start with an external plugin which implements it. Then we can evaluate bringing it in-tree at a...
@AdrianAbraham If you're open to implementing this, I'd be happy to review a RFC around this. However, I likely cannot work on this feature as I'm too close to the...
@joewxboy Do you happen to have a link to that proposal?
@celesteking Some commentary on this: The OCSP package uses [`go-retryablehttp.Client`](https://pkg.go.dev/github.com/hashicorp/go-retryablehttp#Client) as its HTTP client; this has a per-request timeout plus a max retries which defaults to 4. Currently this is...
\o Hi @bnevis-i, thanks for the comments :-) > It is very useful to have a templating agent to write config files with Vault-injected secrets that can be called from...
> Anything on that volume can only be a script or a binary that depends on only the kernel ABI in order to survive glibc/musl variations across containers. Ah, very...