New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
xds/bootstrap: add plugin system for credentials specified in bootstrap file #5136
Commits on Feb 1, 2022
-
Support xDS credentials plugin.
Currently the credentials used for communication with the xDS management server is restricted to "google_default" and "insecure". There is no way for users to inject custom credentials, even though the bootstrap can be used to pass in different values. This PR adds support for a new credentials package which can be used to register supported credentials along with a name that can be recognized by the bootstrap. The credential package also registers the currently supported "google_default" and "insecure" options to maintain the status quo. To keep the interface of the credentials builder clean, the insecure credentials now satisfies the grpc credentials bundle interface.
-
-
Use "Get" as the getter name to be consistent with current
registry implementations.
-
Move the credentials registry into bootstrap, delete previously added
xds/credentials/*.go. Also add the relevant builders in the google creds package.
-
-
Move the packages around for better organization as per the suggestions.
1. New bootstrap package that users can use. 2. Move insecure creds builder to google/creds. 3. Move registration to google/ and google/insecure.
-
Don't export creds builders. Remove google/insecure and use
credential/insecure instead. Don't use google/insecure in bootstrap.go as it leads to cyclic dependencies.
-
-
-
-
-
-
-
-
-
-
Revert comments from creds back to credentials. Also change insecureB…
…undle() to return new transport credentials again
-
Change log warning to returning an error instead, when building bundl…
…e fails due to JSON parsing
-
-
-