These are chat archives for spring-cloud/spring-cloud

29th
Jul 2016
Jose Armesto
@fiunchinho
Jul 29 2016 07:50
so... any idea to store secrets?
Ali Moghadam
@alighm
Jul 29 2016 07:51
I’m using Vault to store the Signing Key for my Auth and Resource Services
for the time being, you can just use FeignClient and write up your own vault Client and use that to store your secrets
and have them read via the same client
Dave Syer
@dsyer
Jul 29 2016 07:58
Or use the native encryption features in Spring Cloud
Ali Moghadam
@alighm
Jul 29 2016 07:58
that too :-)
Jakub Kubryński
@jkubrynski
Jul 29 2016 09:46
Hi! I have a strange question. Is there any option to register to Eureka when client doesn't know its public IP? I mean to force Eureka to use request IP to register instance?
Dave Syer
@dsyer
Jul 29 2016 10:04
Don't think so
Jakub Kubryński
@jkubrynski
Jul 29 2016 10:08
It would be very useful if you have service discovery outside of a cloud
Dave Syer
@dsyer
Jul 29 2016 10:22
I agree it's a nice idea. Not sure what "outside of a cloud" means.
Jakub Kubryński
@jkubrynski
Jul 29 2016 10:48
For example in hybrid env - usually you connect cloud with bare-metal DC using VPN but it's not always required
the question if it could be possibly implemnted in Spring Cloud or in Eureka
Fabian Wallwitz
@cforce
Jul 29 2016 14:12
my path variable is null .. although its parz of the url
@RequestMapping(method = RequestMethod.GET, value = "/{userId}", produces = "application/json", consumes = "application/json")
public IUser getUserById(@PathVariable("userId") Long userId);
{{PROT}}://{{DOMAIN}}/users/1 -> userId is NULL
@RequestMapping("/users") public interface IUserEndpoint {..} @RestController public class UserEndpoint extends implements IUserEndpoint {..}
Fabian Wallwitz
@cforce
Jul 29 2016 14:44
do i need to repeat @PathVariable("userId") on @RestController class level?
Marcos Barbero
@marcosbarbero
Jul 29 2016 14:46
I have never used this approach, but I saw a project in my company that was like that and it have used the spring annotations only in the class level. Not in the interface.
Fabian Wallwitz
@cforce
Jul 29 2016 15:03
if i want to share the interface as rest contract between client and server and also for Swagger i need to put it on the interface
and yes, i have checked it .. sadly i have to repeat the paramters anotations in the impl. of the @RequestMapping class
is there already a bug report?..
Jose Armesto
@fiunchinho
Jul 29 2016 16:27
@alighm so on bootstrapping, your application uses Feign to request secrets to Vault?
@dsyer the problem with native encryption in spring is that is only useful to spring applications, and we have some non-spring apps
Jose Armesto
@fiunchinho
Jul 29 2016 16:33
I really like this approach https://github.com/zalando/spring-cloud-config-aws-kms , it'd be nice to have the same thing but for Vault
Ali Moghadam
@alighm
Jul 29 2016 17:44
@fiunchinho yup
Jose Armesto
@fiunchinho
Jul 29 2016 17:46
do you have a public repo somewhere where I can see it in action?
Bob Tiernay
@btiernay
Jul 29 2016 19:49
I would assume it would be a very common requirement for config server to use spring security with a number of application accounts. Does that sound accurate?
The reason I ask is that it is actually quite difficult to get this right with spring security and the interplay of security auto config + cloud server's endpoints.
Trying to customize this so that security applies to all endpoints with the same users / credentials has proven to be non-trivial
Curious if I am alone in that sentiment
Marcos Barbero
@marcosbarbero
Jul 29 2016 20:02
@btiernay I’m not sure I follow what you want to achieve
Matt Benson
@mbenson
Jul 29 2016 21:23
maybe I'm misunderstanding; looks like you commented on my gist at https://gist.github.com/mbenson/bfaca20b70c2280dceec back in February