New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add SubscribeToRotatedIdentities interface #24300
Conversation
287cf26
to
b828145
Compare
1342cf0
to
41eb691
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM with one non-blocking comment about cilium-id
.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
looks good, some minor suggestions
41eb691
to
a3c1e4a
Compare
/test Job 'Cilium-PR-K8s-1.25-kernel-4.19' failed: Click to show.Test Name
Failure Output
If it is a flake and a GitHub issue doesn't already exist to track it, comment |
Let's wait for tests to complete ⏳. mlh will set the label automatically if all is green. |
Seems like this is currently blocked by #24471. |
a3c1e4a
to
636a667
Compare
636a667
to
b5dd43c
Compare
Updated to latest changes on master |
/test |
b5dd43c
to
2fa4f25
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM ✔️
integration test failures seem related to this change
|
2fa4f25
to
9270227
Compare
Rebased with fixes to test |
/test |
This change adds a SubscribeToRotatedIdentities function. This gives a channel which is used to pass identity updates back from the certificate proider to the auth manager. In the auth manager there can better be acted upon to receive the IDs and re-trigger a mTLS handshake if needed. Signed-off-by: Maartje Eyskens <maartje.eyskens@isovalent.com>
9270227
to
5b38844
Compare
/test |
rest-runtime fails due to network issue
|
/test-runtime |
This change adds a SubscribeToRotatedIdentities function.
This gives a channel which is used to pass identity updates
back from the certificate proider to the auth manager.
In the auth manager there can better be acted upon to
receive the IDs and re-trigger a mTLS handshake if needed.