spire icon indicating copy to clipboard operation
spire copied to clipboard

Published 20 hours ago verified publisher icon spiffe

SPIRE should support SPIFFE Bundle sequence number

Open evan2645 opened this issue 4 years ago • 2 comments

The SPIFFE bundle specification allows for an optional sequence number to be set, which allows consumers to understand which bundles are "newer" or "older", and also allows them to measure propagation.

SPIRE does not currently support setting a sequence number on its bundles, but it should!

This issue is done when the SPIFFE bundle published by the federation api has a sequence number included, and when servers and agents log updates to the bundle by sequence number.

evan2645 avatar Apr 09 '20 22:04 evan2645

doesn't SPIRE support sequence numbers in the Bundle yet?

mchurichi avatar Sep 28 '22 22:09 mchurichi

It doesn't yet. It doesn't persist them nor increment them when the bundle is appended during rotation.

azdagron avatar Sep 28 '22 22:09 azdagron