Comments (2)
amartinezfayo
commented on July 18, 2024
Thank you @penghuazhou for opening this issue.
It seems that SPIRE Agent in your environment needs to traverse a proxy in order to reach the server. It must be considered that mTLS connections must be established between the agent and server.
Could you elaborate a little more about all the different components that are in your scenario and why you need a proxy?
Thanks!
from spire.
penghuazhou
commented on July 18, 2024
@amartinezfayo, For example, the networks of data centers in the United States and Africa must be connected, and access needs to be done through an SDN agent. Since the SDN agent does not support obtaining keys through Spire, I also need to obtain keys through Ghosttunnel.
from spire.
Related Issues (20)
- Additional CA's in regular TrustBundle HOT 4
- k8s_psat node attestor: allow empty list of clusters HOT 2
- Update the docker image from golang:1.22.3-alpine3.18 to golang:1.22.4-alpine3.20
- Extend spire-server CLI with "append bundle" command HOT 2
- Downstream spire-server does not honour `ca_ttl` configurable. HOT 2
- Extend the plugin Configurer interface to include a Validate func
- Remove deprecated ttl flag HOT 1
- Issue with JWT Key Type Change not Being Reflected on SPIRE Server Restarts HOT 2
- Feature Request: Enhance the "unix" workload attestor to allow discovery of symbols HOT 1
- Rework spire-server validate command to launch plugin instances for validation.
- Same SVID is pushed repeatedly on the FetchX509SVID stream by spire-agent with LRU cache
- Documentation / deployment walk through for SPIRE on TPM. HOT 1
- Agent health check reports ready prematurely HOT 1
- aws_iid attestation fails when ec2 network interfaces aren't listed in expected order
- Spire can support config activationThresholdCap? HOT 2
- Consider deprecating and removing usage of rsa-2048
- Consider using gRPC metrics from go-grpc-middleware
- Histogram instead of summary with quantile for latency metrics
- spire go.mod points at non-main branch of spire-api-sdk
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from spire.