Containers-roadmap: Feature Request: ECS-mediated Container Identity
aaithal
All 10 comments
Offhand, the main things that we would need to be able to have feature parity with the EC2 method are:
- An increasing timestamp of some sort. Ideally the time of the request to the metadata service, but that does increase burden.
- An instance ID or some other kind of unique information that can be verified with a call to the external API.
- This information available in a signed form that is _only_ available from within the container.
jefferai
on 13 Jul 2016
👍18
An enthusiastic +1 to this request.
memory
on 12 Sep 2016
👍8
Also +1. This is a legitimately useful security feature.
ftrimble
on 12 Sep 2016
👍4
+1
panga
on 27 Sep 2016
+1
lyoungblood
on 11 Nov 2016
+1
jhmartin
on 26 Feb 2017
This would be awesome to have as it would bring feature parity between our EC2 and ECS deployments.
deverton
on 6 Mar 2017
+1
CpuID
on 1 Jun 2017
+1
any update on this needed security feature ?
sec9
on 9 Jan 2018
+1
hylaride
on 18 Dec 2018
Was this page helpful?
0 / 5 - 0 ratings
Related issues
MartinDevillers
路
3Comments
jeremietharaud
路
3Comments
ORESoftware
路
3Comments
aliabas7
路
3Comments
groodt
路
3Comments
Most helpful comment
Offhand, the main things that we would need to be able to have feature parity with the EC2 method are: