Skip to content

MWI: Fix missing CA chain in AWS Roles Anywhere exchange#54884

Merged
strideynet merged 4 commits intomasterfrom
strideynet/fix-aws-roles-anywhere-handling-of-chain
May 20, 2025
Merged

MWI: Fix missing CA chain in AWS Roles Anywhere exchange#54884
strideynet merged 4 commits intomasterfrom
strideynet/fix-aws-roles-anywhere-handling-of-chain

Conversation

@strideynet
Copy link
Copy Markdown
Contributor

@strideynet strideynet commented May 16, 2025

The Roles Anywhere work and External PKI work ran concurrently, and it looks like as such, the configured chain override was not added to the AWS Roles Anywhere exchange, which causes x509 validation by AWS to fail.

changelog: Fix configured X509 CA override chain not being used by AWS Roles Anywhere exchange.

@strideynet strideynet marked this pull request as draft May 16, 2025 14:51
@github-actions github-actions Bot requested review from boxofrad and timothyb89 May 16, 2025 14:52
@strideynet strideynet marked this pull request as ready for review May 19, 2025 10:41
@github-actions github-actions Bot requested a review from boxofrad May 19, 2025 10:42
@strideynet strideynet requested a review from espadolini May 19, 2025 12:30
espadolini
espadolini approved these changes May 19, 2025
View reviewed changes
Comment thread lib/tbot/service_workload_identity_aws_ra.go Outdated
Comment thread lib/tbot/service_workload_identity_aws_ra.go Outdated
@public-teleport-github-review-bot public-teleport-github-review-bot Bot removed the request for review from timothyb89 May 19, 2025 12:54
@strideynet strideynet enabled auto-merge May 19, 2025 14:25
@strideynet strideynet added this pull request to the merge queue May 19, 2025
@github-merge-queue github-merge-queue Bot removed this pull request from the merge queue due to failed status checks May 19, 2025
@strideynet strideynet added this pull request to the merge queue May 19, 2025
@github-merge-queue github-merge-queue Bot removed this pull request from the merge queue due to failed status checks May 19, 2025
espadolini
espadolini reviewed May 19, 2025
View reviewed changes
Comment thread lib/tbot/service_workload_identity_aws_ra.go Outdated
@strideynet strideynet enabled auto-merge May 20, 2025 07:51
@strideynet strideynet added this pull request to the merge queue May 20, 2025
Merged via the queue into master with commit 5fd40eb May 20, 2025
42 checks passed
@strideynet strideynet deleted the strideynet/fix-aws-roles-anywhere-handling-of-chain branch May 20, 2025 08:32
@backport-bot-workflows
Copy link
Copy Markdown
Contributor

backport-bot-workflows Bot commented May 20, 2025

@strideynet See the table below for backport results.

Branch Result
branch/v17 Create PR

@strideynet strideynet mentioned this pull request May 20, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@espadolini espadolini espadolini approved these changes

@boxofrad boxofrad boxofrad approved these changes

Assignees

No one assigned

Labels

backport/branch/v17 machine-id size/sm

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@strideynet @boxofrad @espadolini