Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add HTTP health server (closes #115) #227

Open
wants to merge 17 commits into
base: main
Choose a base branch
from
Open

Add HTTP health server (closes #115) #227

wants to merge 17 commits into from

Conversation

keeganwitt
Copy link
Contributor

@keeganwitt keeganwitt commented Dec 7, 2024
edited by faisal-memon
Loading

fixes #115

@keeganwitt keeganwitt marked this pull request as ready for review December 7, 2024 22:18
@keeganwitt
Copy link
Contributor Author

I'm not sure if I did this the right way. We also might want more checks than I've implemented.

@faisal-memon faisal-memon added this to the 0.10.0 milestone Dec 9, 2024
@faisal-memon
Copy link
Collaborator

Thanks @keeganwitt for submitting this.

faisal-memon
faisal-memon reviewed Dec 10, 2024
View reviewed changes
cmd/spiffe-helper/config/config.go Outdated Show resolved Hide resolved
cmd/spiffe-helper/main.go Outdated Show resolved Hide resolved
cmd/spiffe-helper/main.go Outdated Show resolved Hide resolved
faisal-memon
faisal-memon reviewed Dec 13, 2024
View reviewed changes
pkg/health/health.go Outdated Show resolved Hide resolved
@keeganwitt
Keep ParseConfigFile in main
07985d7 
Signed-off-by: Keegan Witt <[email protected]>
@keeganwitt
Fix tests
28885ec 
Signed-off-by: Keegan Witt <[email protected]>
@keeganwitt
Merge remote-tracking branch 'upstream/main' into 115
1e7ccd1
@keeganwitt
Upgrade golangci-lint to fix error
59af728 
Error: can't load config: the Go language version (go1.22) used to build golangci-lint is lower than the targeted Go version (1.23.3)

Signed-off-by: Keegan Witt <[email protected]>
faisal-memon
faisal-memon reviewed Dec 16, 2024
View reviewed changes
Makefile Outdated Show resolved Hide resolved
keeganwitt and others added 4 commits December 16, 2024 16:45
@keeganwitt @faisal-memon
Update cmd/spiffe-helper/config/config.go
68a27ba 
Co-authored-by: Faisal Memon <[email protected]>
Signed-off-by: Keegan Witt <[email protected]>
@keeganwitt @faisal-memon
Update README.md
6084685 
Co-authored-by: Faisal Memon <[email protected]>
Signed-off-by: Keegan Witt <[email protected]>
@keeganwitt
Fix remaining config renames
944d880 
Signed-off-by: Keegan Witt <[email protected]>
@keeganwitt
Merge branch 'main' into 115
15928aa
faisal-memon
faisal-memon reviewed Dec 17, 2024
View reviewed changes
pkg/health/health.go
"github.com/spiffe/spiffe-helper/pkg/sidecar"
)

func StartHealthServer(hclConfig *config.Config, log logrus.FieldLogger, sidecar *sidecar.Sidecar) error {
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Rather than pass the full config here can we just take in the health check config? Can you create a Config struct in this directory and have main populate and pass that in here?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If we did, we'd also need to pass DaemonMode as a separate argument.

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It can just be part of the same config struct

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So create a new HealthServerConfig struct?

faisal-memon
faisal-memon reviewed Dec 18, 2024
View reviewed changes
pkg/sidecar/sidecar.go
Comment on lines +174 to +186
svidFile := path.Join(s.config.CertDir, s.config.SVIDFileName)
svidKeyFile := path.Join(s.config.CertDir, s.config.SVIDKeyFileName)
svidBundleFile := path.Join(s.config.CertDir, s.config.SVIDBundleFileName)
if err := disk.WriteX509Context(svidResponse, s.config.AddIntermediatesToBundle, s.config.IncludeFederatedDomains, s.config.CertDir, s.config.SVIDFileName, s.config.SVIDKeyFileName, s.config.SVIDBundleFileName, s.config.CertFileMode, s.config.KeyFileMode); err != nil {
s.config.Log.WithError(err).Error("Unable to dump bundle")
s.fileWritesSuccess[svidFile] = false
s.fileWritesSuccess[svidKeyFile] = false
s.fileWritesSuccess[svidBundleFile] = false
return
}
s.fileWritesSuccess[svidFile] = true
s.fileWritesSuccess[svidKeyFile] = true
s.fileWritesSuccess[svidBundleFile] = true
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Everything here is either all true or all false. I think we can just consolidate to a single variable like x509WriteSuccess

Copy link
Contributor Author

@keeganwitt keeganwitt Dec 18, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Are you proposing the JSON returned would no longer be a map of filenames to boolean, but instead something like

{
  "x509WriteSuccess": true
  "jwtWriteStatus": {
    "file1.jwt": true,
    "file2.jwt": false
  }
}

?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@faisal-memon faisal-memon faisal-memon left review comments

@kfox1111 kfox1111 kfox1111 left review comments

@MarcosDY MarcosDY Awaiting requested review from MarcosDY MarcosDY is a code owner

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
0.10.0
Development

Successfully merging this pull request may close these issues.

Kubernetes Sidecar Usecase
3 participants
@keeganwitt @faisal-memon @kfox1111