Uploaded image for project: 'Zero Trust Workload Identity Manager'
  1. Zero Trust Workload Identity Manager
  2. SPIRE-371

Add support for another attestation methods

XMLWordPrintable

    • Icon: Ticket Ticket
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • None
    • None
    • False
    • Hide

      None

      Show
      None
    • False

      Today ZTWIM support only k8s_psat attestation method. 
      We need (OSSM team) a mechanism which will allow us to extend attestation methods. 
      For example, add  x509pop attestation without a need to set the CREATE_ONLY_MODE=true. 

      This can be done by exposing some extra config map which will be joined with the main config map by the ZTWIM. Or add the attestation method directly from the CR. 
      The implementation is up to you guys. We just need an ability to extend the SPIRE attestation plugin without a need to set  CREATE_ONLY_MODE=true.

              Unassigned Unassigned
              dkartsev1@redhat.com Dmitry Kartsev
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated: