Skip to content

Commit 11e496c

Browse files
quanjielinistio-testing
authored andcommitted
add trust domain to meshconfig (#697)
* add trust domain to meshconfig * fix build * add comment
1 parent 3215746 commit 11e496c

File tree

5 files changed

+143
-63
lines changed

5 files changed

+143
-63
lines changed

mesh/v1alpha1/config.pb.go

Lines changed: 107 additions & 54 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

mesh/v1alpha1/config.proto

Lines changed: 6 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -157,8 +157,13 @@ message MeshConfig {
157157
// will be used to generate key/cert eventually. This isn't supported for non-k8s case.
158158
bool enable_sds_token_mount = 23;
159159

160+
// The trust domain corresponds to the trust root of a system.
161+
// Refer to https://github.com/spiffe/spiffe/blob/master/standards/SPIFFE-ID.md#21-trust-domain
162+
// Fallback to old identity format(without trust domain) if not set.
163+
string trust_domain = 26;
164+
160165
// $hide_from_docs
161-
// Next available field number: 26
166+
// Next available field number: 27
162167
}
163168

164169
// ConfigSource describes information about a configuration store inside a

mesh/v1alpha1/istio.mesh.v1alpha1.pb.html

Lines changed: 10 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -263,6 +263,16 @@ <h2 id="MeshConfig">MeshConfig</h2>
263263
rules, and other Istio configuration artifacts. Multiple data sources
264264
can be configured for a single control plane.</p>
265265

266+
</td>
267+
</tr>
268+
<tr id="MeshConfig-trust_domain">
269+
<td><code>trustDomain</code></td>
270+
<td><code>string</code></td>
271+
<td>
272+
<p>The trust domain corresponds to the trust root of a system.
273+
Refer to https://github.com/spiffe/spiffe/blob/master/standards/SPIFFE-ID.md#21-trust-domain
274+
Fallback to old identity format(without trust domain) if not set.</p>
275+
266276
</td>
267277
</tr>
268278
</tbody>

proto.lock

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -761,6 +761,11 @@
761761
"id": 23,
762762
"name": "enable_sds_token_mount",
763763
"type": "bool"
764+
},
765+
{
766+
"id": 26,
767+
"name": "trust_domain",
768+
"type": "string"
764769
}
765770
],
766771
"reserved_ids": [

python/istio_api/mesh/v1alpha1/config_pb2.py

Lines changed: 15 additions & 8 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)