Endpoints
SPIRL software expects to be able to connect to certain public endpoints to function. You may need to allow list these endpoints in egress filtering systems for your organization.
Management tooling
These endpoints are used by SPIRL's web UI and spirlctl.
| Endpoint | Purpose |
|---|---|
| api.spirl.com:443 | Management API |
| app.spirl.com:443 | Management web UI |
| auth.api.spirl.com:443 | Authentication for web and CLI |
Self-hosted SPIRL server
Self-hosted SPIRL servers will connect to these endpoints.
| Endpoint | Purpose |
|---|---|
| auth.cp.spirl.com:443 | Authenticates a server with the control plane |
| events.cp.spirl.com:443 | Receives events (e.g. SVID issuance) from servers |
| relay-web.cp.spirl.com:443 | Persistent management connection to the control plane |
Hosted SPIRL server
SPIRL agents connecting to a hosted SPIRL server need access to these endpoints.
| Endpoint | Purpose |
|---|---|
| *.agent.spirl.com:443 | Agent API provided by the SPIRL server |
Federation
SPIRL's federation infrastructure is hosted at these endpoints
| Endpoint | Purpose |
|---|---|
| fed.spirl.org:443 | SPIFFE Bundle and OIDC metadata |