venafi-integration-core 2.2.0 → 2.3.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/bundle.mjs +20 -0
- package/package.json +1 -1
package/bundle.mjs
CHANGED
|
@@ -32604,6 +32604,26 @@ kubectl logs -f <satellite-pod> -n satellite
|
|
|
32604
32604
|
|
|
32605
32605
|
**Key diagnostic**: If the satellite gets an access token after a discovery run but machine identities never appear in the UI, the connector response was accepted by the satellite but rejected by the platform. Check \`GET /v1/machines/{id}/discovery\` for \`errorCount > 0\`.
|
|
32606
32606
|
|
|
32607
|
+
**Tip: Connector logs in satellite output**: The satellite streams connector pod logs through its own log output. Even after a connector pod has scaled to zero and its logs are gone, you can find them in the satellite logs by grepping for \`"plugin":\`:
|
|
32608
|
+
|
|
32609
|
+
\`\`\`bash
|
|
32610
|
+
kubectl logs <satellite-pod> -n satellite | grep '"plugin":'
|
|
32611
|
+
\`\`\`
|
|
32612
|
+
|
|
32613
|
+
### Knative Revision Naming
|
|
32614
|
+
|
|
32615
|
+
When the platform deploys a connector, it creates a Knative service (ksvc) with an immutable revision. If you need to manually patch a ksvc (e.g., to change env vars or image for debugging), you **must include a new revision name** \u2014 Knative rejects spec changes without a name change:
|
|
32616
|
+
|
|
32617
|
+
\`\`\`bash
|
|
32618
|
+
# This will FAIL \u2014 "saw the following changes without a name change"
|
|
32619
|
+
kubectl patch ksvc <name> -n plugins --type merge -p '{"spec":{"template":{"spec":{"containers":[{"image":"new-image"}]}}}}'
|
|
32620
|
+
|
|
32621
|
+
# This WORKS \u2014 include a new revision name
|
|
32622
|
+
kubectl patch ksvc <name> -n plugins --type merge -p '{"spec":{"template":{"metadata":{"name":"<name>-debug-001"},"spec":{"containers":[{"image":"new-image"}]}}}}'
|
|
32623
|
+
\`\`\`
|
|
32624
|
+
|
|
32625
|
+
Note: Manual ksvc patches are for debugging only. The satellite routes to the revision from the last \`req.plugin.deploy\` command, so manually created revisions won't receive traffic from Venafi Cloud workflows. For normal development, use the standard \`make push\` \u2192 \`make manifests\` \u2192 PATCH \u2192 Test Connection flow.
|
|
32626
|
+
|
|
32607
32627
|
### Debugging Discovery Results via API
|
|
32608
32628
|
|
|
32609
32629
|
\`discoveryStatus: COMPLETED\` does NOT mean certificates were stored. It only means the workflow finished. The platform silently rejects malformed certificates.
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "venafi-integration-core",
|
|
3
|
-
"version": "2.
|
|
3
|
+
"version": "2.3.0",
|
|
4
4
|
"description": "MCP server providing shared knowledge, templates, and tools for building Venafi integrations (connectors and adaptable drivers)",
|
|
5
5
|
"main": "bundle.mjs",
|
|
6
6
|
"type": "module",
|