-
Notifications
You must be signed in to change notification settings - Fork 231
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
How does certificate provider plugin makes it independent of SDS? #354
Comments
SDS - in spite of it sounding like part of xDS - is really a different "beast" . An SDS server is quite different from an xDS server and getting rid of SDS does not mean getting rid of xDS. xDS is still required as described in A29. There are examples:
Hope that answers your questions |
I want to avoid restarting client/server when certificates/trust stores are updated periodically. I see certificate provider plugin framework using file_watcher can potentially help me achieve that.
I created the following bootstrap config
Since bootstrap file MUST include
xds_servers
address, I wonder how does this approach makes it a generic alternative to the SDS server/agent based solution and eliminates the dependency on the SDS protocol as claimed here. ANy example to demonstrate that, will help make it clear.Also, I do NOT want to use xDS control plane. But I am trying to find a way to use file_watcher plugin independent xDS.
The text was updated successfully, but these errors were encountered: