Change tink-server healthcheck endpoint to healthz instead of fetching /cert
Ensure command line args are always double quoted
Get rid of conflicting boots listen address values
Update boots/hegel/tink* container images to latest sha
Drop useless env vars (both packet/em specific and outdated ones)
Keep versions in variables for DRYness
Move all configurable env vars to .env (also for DRYness)
Specify the same version of tink-worker as tink-serve and tink-cli to hook
Update hook to v0.7.0
Why is this needed
Two main things going on in this PR. First is cleaning up both the docker-compose.yml and .env files so that the docker-compose file can be written as if all the envvars it wants are always specified. Actual environment variables still supersede the values in .env like they also supersede when ${NAME:-default} is specified in the docker-compose.yml file. All in all this means we only need to specify the value of an env var with default once instead of all over the docker-compose.yml file.
The other thing going on in this PR is updates to all the container images and the version of hook being used. The container images have been updated to a relatively recent version that no longer serves or fetches the grpc tls cert via the /cert http url endpoint. The version of Hook has been updated too since the previously used one is almost a year old and thus we haven't been keeping up with hook commit activity. All the versions have been properly pinned down (including tink-worker being kept in sync with tink-server and tink-cli).
How Has This Been Tested?
Both vagrant up and terraform apply have been run and work.
Description
Why is this needed
Two main things going on in this PR. First is cleaning up both the docker-compose.yml and .env files so that the docker-compose file can be written as if all the envvars it wants are always specified. Actual environment variables still supersede the values in .env like they also supersede when
${NAME:-default}
is specified in the docker-compose.yml file. All in all this means we only need to specify the value of an env var with default once instead of all over the docker-compose.yml file.The other thing going on in this PR is updates to all the container images and the version of hook being used. The container images have been updated to a relatively recent version that no longer serves or fetches the grpc tls cert via the /cert http url endpoint. The version of Hook has been updated too since the previously used one is almost a year old and thus we haven't been keeping up with hook commit activity. All the versions have been properly pinned down (including tink-worker being kept in sync with tink-server and tink-cli).
How Has This Been Tested?
Both
vagrant up
andterraform apply
have been run and work.