Open reskin89 opened 1 year ago
I have now tested this with Consul Server 1.15.3 and Registrator Lambda Version 0.1.0-beta4 with the same result.
Thanks for the issue @reskin89. I think your assessment is correct. Lambda registrator attempts to write a single JSON-encoded secret including the service leaf cert, root CA cert, and trust domain. A large cert chain could push this over the 4K limit for a standard tier parameter.
Chris, I opened a PR #78 to address this. hopefully its acceptable, it was a quick update/change.
I'm currently running consul 1.14.7 (in the process of upgrading to 1.15.3) with the registrator and layer version 0.1.0-beta2.
I noticed SSM parameters for my lambdas weren't being created, causing a failure in the lambda ingress beta setup.
Upon investigating the debug logs of the lambda regsitrator I found:
My TLS cert is a cert chain (length of 2 certs) so I'm wondering if that throws it over the edge, but it seems the registrator is attempting to put too much data in a single parameter, and may need to be splitting some of this up for modularity and functionality.
If there's any further detailed information you may need to deduce this please let me know.