https://github.com/spiffe/spire-controller-manager-dynamic-registration

spire-controller-manager-dynamic-registration
https://github.com/spiffe/spire-controller-manager-dynamic-registration

Last synced: 10 days ago
JSON representation

spire-controller-manager-dynamic-registration

• Host: GitHub
• URL: https://github.com/spiffe/spire-controller-manager-dynamic-registration
• Owner: spiffe
• License: apache-2.0
• Created: 2026-05-14T14:02:46.000Z (about 1 month ago)
• Default Branch: main
• Last Pushed: 2026-05-21T01:37:09.000Z (26 days ago)
• Last Synced: 2026-05-21T06:55:03.615Z (25 days ago)
• Language: Go
• Size: 25.4 KB
• Stars: 0
• Watchers: 0
• Forks: 0
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# SPIRE Controller Manager Dynamic Registration

[![Apache 2.0 License](https://img.shields.io/github/license/spiffe/helm-charts)](https://opensource.org/licenses/Apache-2.0)

[![Development Phase](https://github.com/spiffe/spiffe/blob/main/.img/maturity/dev.svg)](https://github.com/spiffe/spiffe/blob/main/MATURITY.md#development)

A server and agent set of helpers to register non Kubernetes node attestors with the spire server so the spire-controller-manager can use them.

## Warning

This code is very early in development and is very experimental. Please do not use it in production yet. Please do consider testing it out, provide feedback,

and maybe provide fixes.

## How it Works

The registration agent runs as a sidecar to the spire-agent. It loads the agent's svid and contacts the registration server using it and a kubernetes psat.

The registration server verifies the agents svid and k8s psat. If they all check out, it registers it with the spire-server.