Skip to content

Commit

Permalink
Changed the socket path location
Browse files Browse the repository at this point in the history 
Signed-off-by: Mariusz Sabath <[email protected]>
  • Loading branch information
@mrsabath
mrsabath committed Sep 22, 2021
1 parent b919cf2 commit b981933
Show file tree
Hide file tree
Showing 4 changed files with 11 additions and 11 deletions.
2 changes: 1 addition & 1 deletion charts/spire/templates/crd_role_binding.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,4 +9,4 @@ roleRef:
subjects:
- kind: ServiceAccount
name: spire-k8s-registrar
namespace: spire
namespace: {{ .Values.namespace }}
12 changes: 6 additions & 6 deletions charts/tornjak/templates/NOTES.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@ Universal Trusted Workload Identity Service has completed.
{{- end }}
{{- if .Values.OIDC.enable }}
OIDC enable: true
OIDC image: {{ .Value.OIDC.image }}
OIDC image: {{ .Values.OIDC.image }}
OIDC service name: {{ .Values.OIDC.serviceName }}
MY_DISCOVERY_DOMAIN: {{ .Values.OIDC.MY_DISCOVERY_DOMAIN }}
{{- end }}
Expand All @@ -33,16 +33,16 @@ Universal Trusted Workload Identity Service has completed.
clusters = {
"{{ .Values.clustername }}" = {
# use_token_review_api_validation = true
service_account_whitelist = ["spire:spire-agent"]
service_account_allow_list = ["spire:spire-agent"]
},
{{- range $k, $v := .Values.k8s_psat.remoteClusters }}
{{- range $k, $v := .Values.k8s_psat.remoteClusters }}
"{{ $v.name }}" = {
service_account_whitelist = ["{{ $v.namespace | default "spire" }}:{{ $v.serviceAccount | default "spire-agent" }}"]
service_account_allow_list = ["{{ $v.namespace | default "spire" }}:{{ $v.serviceAccount | default "spire-agent" }}"]
kube_config_file = "/run/spire/kubeconfigs/{{ $v.name }}"
},
{{- end }}
{{- end }}
}
{{- end }}
}

To learn more about the release, try:

Expand Down
2 changes: 1 addition & 1 deletion charts/tornjak/templates/oidc-dp-configmap.tpl
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@ data:
listen_socket_path = "/run/oidc-discovery-provider/server.sock"
log_level = "info"
server_api {
address = "unix:///{{ .Values.spireServerSocket }}"
address = "unix:///{{ .Values.spireServerSocketDir }}/{{ .Values.spireServerSocketFile }}"
}
nginx.conf: |
user root;
Expand Down
6 changes: 3 additions & 3 deletions charts/tornjak/templates/server-statefulset.tpl
View file
Original file line number Diff line number Diff line change
Expand Up @@ -55,7 +55,7 @@ spec:
- "/opt/spire/bin/spire-server"
- "healthcheck"
- "-socketPath"
- "{{ .Values.spireServerSocket }}"
- "{{ .Values.spireServerSocketDir }}/{{ .Values.spireServerSocketFile }}"
failureThreshold: 2
initialDelaySeconds: 15
periodSeconds: 60
Expand All @@ -67,14 +67,14 @@ spec:
- "/opt/spire/bin/spire-server"
- "healthcheck"
- "-socketPath"
- "{{ .Values.spireServerSocket }}"
- "{{ .Values.spireServerSocketDir }}/{{ .Values.spireServerSocketFile }}"
- "--shallow"
initialDelaySeconds: 5
periodSeconds: 10
{{- end }}
{{- if .Values.OIDC.enable }}
- name: spire-oidc
image: {{ .Value.OIDC.image }}:{{ .Values.spireVersion }}
image: {{ .Values.OIDC.image }}:{{ .Values.spireVersion }}
args:
- -config
- /run/spire/oidc/config/oidc-discovery-provider.conf
Expand Down

0 comments on commit b981933

Please sign in to comment.