Agustín Martínez Fayó
Agustín Martínez Fayó
SPIRE creates some directories that store sensitive data, with certain permissions to restrict access (e.g. agent and server data directories). On Windows, those directories are created with the [CreateDirectory function](https://docs.microsoft.com/en-us/windows/win32/api/winbase/nf-winbase-createdirectory)...
``` --- FAIL: TestStreamSecrets (0.07s) --- FAIL: TestStreamSecrets/Unknown_resource (0.00s) handler_test.go:632: Error Trace: /home/runner/work/spire/spire/pkg/agent/endpoints/sdsv3/assertions.go:50 /home/runner/work/spire/spire/pkg/agent/endpoints/sdsv3/handler_test.go:632 Error: Status code="Internal" msg="malformed header: missing HTTP status; malformed header: missing HTTP content-type" does not match...
Current tests don't cover the `Run` function (in the server and in the agent) that runs the server and the agent. There are things like endpoints preparation (create / not...
go-spiffe now supports Named Pipes in gRPC target strings, since v2.1.1. This can simplify the current usage of named pipes in SPIRE through the go-spiffe library.
Agents used to issue JWT-SVIDs with a TTL hardcoded to 5 minutes. When we refactored the Server APIs, the agents were changed to consume the new Server APIs. The NewJWTSVID...
# [RFC] Serverless architecture support Co-authored by @MarcosDY. ## Background Serverless computing allows to build applications eliminating the need to manage infrastructure. With serverless applications, the cloud service provider automatically...
Update the SPIRE Kubernetes Workload Registrar to work with a SPIRE Agent socket exposed over named pipes.
Explore the possibility to implement a plugin that provides support to store issued identities on disk. Storing issued identities on disk is something that may be useful in a variety...
This PR introduces the `gcp_kms` KeyManager plugin, that uses the Google Cloud Key Management Service. [Tests are pending]. Fixes #3194.
## Background SPIRE is a critical component in any production system that relies on SPIRE to provide identities to workloads. As a result, if SPIRE is not able to properly...