Update SPIRE version in CI (#183)

maxlambrecht · web-flow · commit 1744e873601b · 2025-12-22T18:33:38.000-03:00
Signed-off-by: Max Lambrecht &lt;maxlambrecht@gmail.com&gt;
diff --git a/.github/workflows/scripts/agent.conf b/.github/workflows/scripts/agent.conf
@@ -1,12 +1,14 @@
 agent {
-    data_dir = "./data/agent"
-    log_level = "DEBUG"
     trust_domain = "example.org"
+    log_level = "DEBUG"
+
     server_address = "localhost"
     server_port = 8081
 
-    # Insecure bootstrap is NOT appropriate for production use but is ok for 
-    # simple testing/evaluation purposes.
+    socket_path     = "/tmp/spire-agent/public/api.sock"
+
+    data_dir = "/tmp/spire-agent/data"
+
     insecure_bootstrap = true
 
     admin_socket_path = "$STRIPPED_SPIRE_ADMIN_ENDPOINT_SOCKET"
@@ -18,7 +20,7 @@ agent {
 plugins {
    KeyManager "disk" {
         plugin_data {
-            directory = "./data/agent"
+            directory = "/tmp/spire-agent/keys"
         }
     }
 
diff --git a/.github/workflows/scripts/run-spire.sh b/.github/workflows/scripts/run-spire.sh
@@ -3,7 +3,7 @@
 SCRIPT_DIR=$( cd -- "$( dirname -- "${BASH_SOURCE[0]}" )" &> /dev/null && pwd )
 
 # Constants
-spire_version="1.11.0"
+spire_version="1.14.0"
 spire_folder="spire-${spire_version}"
 spire_server_log_file="/tmp/spire-server/server.log"
 spire_server_socket_path="/tmp/spire-server/private/api.sock"
@@ -65,7 +65,7 @@ wait_for_service "bin/spire-agent healthcheck" "SPIRE Agent" "${spire_agent_log_
 # Register workloads
 for service in "myservice" "myservice2"; do
   echo "Creating entry for '${service}'"
-  bin/spire-server entry create -parentID ${agent_id} -spiffeID spiffe://example.org/${service} -selector unix:uid:$(id -u) -x509SVIDTTL 5 -jwtSVIDTTL 5 -federatesWith spiffe://example-federated.org
+  bin/spire-server entry create -parentID ${agent_id} -spiffeID spiffe://example.org/${service} -dns example.org -selector unix:uid:$(id -u) -x509SVIDTTL 5 -jwtSVIDTTL 5 -federatesWith spiffe://example-federated.org
 done
 
 uid=$(id -u)
diff --git a/.github/workflows/scripts/server.conf b/.github/workflows/scripts/server.conf
@@ -2,8 +2,11 @@ server {
     bind_address = "127.0.0.1"
     bind_port = "8081"
     trust_domain = "example.org"
-    data_dir = "./data/server"
+
+    data_dir     = "/tmp/spire-server"
+
     socket_path = "$SPIRE_SOCKET_PATH"
+
     log_level = "DEBUG"
     ca_ttl = "168h"
     default_x509_svid_ttl = "48h"
@@ -22,13 +25,13 @@ plugins {
     DataStore "sql" {
         plugin_data {
             database_type = "sqlite3"
-            connection_string = "./data/server/datastore.sqlite3"
+            connection_string = "/tmp/spire-server/datastore.sqlite3"
         }
     }
 
     KeyManager "disk" {
         plugin_data {
-            keys_path = "./data/server/keys.json"
+            keys_path = "/tmp/spire-server/keys.json"
         }
     }
 
