Infisical support UNIX socket bindings #4526
Closed
jenova-marie
started this conversation in
Ideas
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
The cloud I'm building is mTLS via SPIFFE/SPIRE using Envoy mTLS proxy on each instance to expose containers. Envoy (and Caddy) can easily proxy to unix sockets. My preference for unix sockets over TCP/IP is for the obvious reason - no tcp/ip stack involvement - and the additional security I can place on the unix socket itself.
For incoming connections it would be really sweet to Envoy proxy directly to Infisical via unix socket.
In my particular case - during the dev period of only my cloud activity - I have postgresql, redis, and infisical running on the same instance. I would like the ability for Infisical to use unix socket connections to both pg and redis - however specifying the correct pg connection string - it still appears Infisical attempts to connect to 127.0.0.1:5432. I didn't test redis and just turned back on the tcp/ip stack for all services.
Thank you for a truly great product!
Beta Was this translation helpful? Give feedback.
All reactions