amoore877
amoore877
Can we not just evict the Agent? Then Agent will be told it's not valid and it will attempt attestation? Or would attestation not happen until the Agent's SVID is...
May want to take configured / remaining TTL into account for backup logic; ie, probably shouldn't back off past SVID expiration?
> What about sorting by the registration entry's `created_at` time from oldest to newest? This way, entries created later would not override the current default. this may be a bit...
To clarify, uniqueness would be a filter on metric user's end; this issue should only address making sure SPIFFE IDs and X509 serials are logged / emitted where available
Bumping on this as I recently noticed this (to me) odd non-reuse of existing SPIFFE concepts and was about to file an issue. If operators of SPIRE in an organization...
From contributor sync: - GetAuthorizedEntries already has a mask to only return some fields - Though without Server API change the DeepFetch will always be everything. Still more efficient in...
From Zack's logrus link: > Logrus is in maintenance-mode. We will not be introducing new features. It's simply too hard to do in a way that won't break many people's...
I agree that some additional customizations could be helpful in a variety of cases, but I am curious on more details for: >Other solutions could allow for targeted customization of...
> Registration Entry > ... > CONS > ... > Would require a 1 extra field on the entry per field on the SVID that required customization. This could easily...
So if some operators want to alter what the plugin itself is doing for their customizations of SVIDs, they either need a code change of the plugin's implementation or (if...