adding hpcs-server spiffeID configuration to server

telliere · telliere · commit 9a21fa96838b · 2024-04-03T15:29:20.000+02:00
diff --git a/server/app.py b/server/app.py
@@ -44,6 +44,11 @@
         timeout_in_seconds=None,
     )
 
+if configuration["spire-agent"].get("hpcs-server-spiffeid"):
+    spire_interactions.hpcs_server_spiffeid = configuration["spire-agent"].get(
+        "hpcs-server-spiffeid"
+    )
+
 if configuration["spire-server"].get("pre-command"):
     spire_interactions.pre_command = configuration["spire-server"]["pre-command"]
     if configuration["spire-server"]["pre-command"] == '""':
diff --git a/server/lib/spire_interactions.py b/server/lib/spire_interactions.py
@@ -9,6 +9,7 @@
 
 
 jwt_workload_api = None
+hpcs_server_spiffeid = "spiffe://hpcs/hpcs-server/workload"
 
 
 def token_generate(spiffeID: SpiffeId) -> subprocess.CompletedProcess:
@@ -73,7 +74,7 @@ def get_server_identity_JWT() -> JwtSvid:
     # Perform an api fetch using pyspiffe
     SVID = jwt_workload_api.fetch_svid(
         audiences=["TESTING"],
-        subject=SpiffeId("spiffe://lumi-sd-dev/lumi-sd-server"),
+        subject=SpiffeId(f"{hpcs_server_spiffeid}"),
     )
     return SVID
 
