meshPlatform configuration via API
in progress
Y
Young-Hwan Kim
As a Cloud Platform Owner I want to be able to setup my meshPlatform via an API endpoint. I also want to keep my configuration up-to-date using automation e.g. for secret rotation.
The endpoint should also allow me to change just a single config item as well as all items.
Also for automating my own DR it would be good to have as much configuration automated as possible
J
Johannes Rudolph
Hi I want to give you all an update on our progress.
The API preview has initially shipped in meshStack v2025.34.0 and is currently considered in preview. Please review the meshPlatform API documentation for more details.
This API supports basic configuration of meshPlatforms for common platform types (AWS, GCP, Azure, OpenShift and Kubernetes). One important limitation right now is that setting up metering configuration is not yet possible, but we will consider this for a later iteration.
We are currently developing a mesh_platform resource for the meshStack terraform provider and plan on integrating this more tightly with our reference modules for setting up meshStack integration like https://github.com/meshcloud/terraform-azure-meshplatform soon after.
At this stage we are especially looking for further feedback on
- secret management: the API does accept plaintext secret values over encrypted over SSL, but masks them in API responses usingmesh/hidden-secret. meshStack stores secrets using asymmetric encryption internally so that the API is incapable of later retrieving the stored value. We are considering adding support for client-side end-to-end encryption to improve security posture. Please let us know if you have a platform configuration automation use case that requires secrets (eg. can't use workload identity federation) and would benefit from such an improvement
- workload identity issuer discovery: at the moment it's not possible to retrieve the workload identity issuer and access_subject values via the API and you still need to retrieve them via meshPanel. Does your use case require or benefit from retrieving them via API too?
- metering configuration: please let us know how relevant automated metering and price catalog configuration are to your automation use cases. We will probably break these out into separate feature requests to tackle in the future.
Jelle den Burger
in progress
We are working on a first version of this. We will start with the Azure Kubernetes Service platform as a first and will continue to add support for more platform types
Jelle den Burger
planned
We aim to implement this in the next 8 weeks.
Jelle den Burger
open
We still have this on the radar but for now it is not on our short-term roadmap. We will keep you updated when something changes!
Jelle den Burger
planned
It's not on the roadmap yet but we plan to enable this + potentially creating a Terraform provider too.