meshPlatform configuration via API
in progress
Y
Young-Hwan Kim
As a Cloud Platform Owner I want to be able to setup my meshPlatform via an API endpoint. I also want to keep my configuration up-to-date using automation e.g. for secret rotation.
The endpoint should also allow me to change just a single config item as well as all items.
Also for automating my own DR it would be good to have as much configuration automated as possible
J
Johannes Rudolph
Hi I want to give you all an update on our progress.
Last updated: 2025-10-22
The first API preview has initially shipped in meshStack v2025.34.0 and is currently considered in preview. Please review the meshPlatform API documentation for more details. The current latest version is
meshplatform.v2-preview
What is already available
- replication configuration of meshPlatforms for common platform types (AWS, GCP, Azure, OpenShift and Kubernetes).
- meshstack_platform resource in our terraform provider
What is currently underway
- integrating the meshstack_platform resource in our reference modules for setting up meshStack integration like https://github.com/meshcloud/terraform-azure-meshplatform
- secret management: the API does accept plaintext secret values over encrypted over SSL, but masks them in API responses usingmesh/hidden-secret. We will be replacing this with more information about the secret to enable terraform drift detection against the secret while keeping it secure. We have not received any feedback that customers place value on exposing the e2e crypto we use internally over the API, so this is out of scope for the first version of the API
Future work
- workload identity issuer discovery: at the moment it's not possible to retrieve the workload identity issuer and access_subject values via the API and you still need to retrieve them via meshPanel. We want to remove this restriction so you can apply the meshPlatform terraform modules in one go without looking up information in meshPanel.
- metering configuration: we plan to expose basic metering configuration for platforms. This will include the metering service principals first, before we look into product catalog configuration which is a more generally missing API.
X
Xavier Aznar
Using GCP here. At the moment, we rely on "credentials" to connect Cloud Portal to GCP, but willing to migrate to WIF at some point in the future.
For us, it would be nice to be configure metering automatically. As we don't create Platforms too often, it's not critical, but "nice to have" at some point, just to have the end to end process automated and not having to configure metering by hand.
J
Johannes Rudolph
Hi I want to give you all an update on our progress.
Last updated: 2025-10-22
The first API preview has initially shipped in meshStack v2025.34.0 and is currently considered in preview. Please review the meshPlatform API documentation for more details. The current latest version is
meshplatform.v2-preview
What is already available
- replication configuration of meshPlatforms for common platform types (AWS, GCP, Azure, OpenShift and Kubernetes).
- meshstack_platform resource in our terraform provider
What is currently underway
- integrating the meshstack_platform resource in our reference modules for setting up meshStack integration like https://github.com/meshcloud/terraform-azure-meshplatform
- secret management: the API does accept plaintext secret values over encrypted over SSL, but masks them in API responses usingmesh/hidden-secret. We will be replacing this with more information about the secret to enable terraform drift detection against the secret while keeping it secure. We have not received any feedback that customers place value on exposing the e2e crypto we use internally over the API, so this is out of scope for the first version of the API
Future work
- workload identity issuer discovery: at the moment it's not possible to retrieve the workload identity issuer and access_subject values via the API and you still need to retrieve them via meshPanel. We want to remove this restriction so you can apply the meshPlatform terraform modules in one go without looking up information in meshPanel.
- metering configuration: we plan to expose basic metering configuration for platforms. This will include the metering service principals first, before we look into product catalog configuration which is a more generally missing API.
Jelle den Burger
in progress
We are working on a first version of this. We will start with the Azure Kubernetes Service platform as a first and will continue to add support for more platform types
Jelle den Burger
planned
We aim to implement this in the next 8 weeks.
Jelle den Burger
open
We still have this on the radar but for now it is not on our short-term roadmap. We will keep you updated when something changes!
Jelle den Burger
planned
It's not on the roadmap yet but we plan to enable this + potentially creating a Terraform provider too.