From d779bbd69ec3ae5d547f5493608c97d9a6856d92 Mon Sep 17 00:00:00 2001
From: Ahmet Deger <ahmet@ahmetdeger.dev>
Date: Mon, 26 Jan 2026 16:02:23 -0800
Subject: [PATCH] added wait-for-spire init container to ensure SPIRE agent
 readiness

---
 .../minio-rolearn/spire-values.yaml           | 34 +++++++++++++++++++
 1 file changed, 34 insertions(+)

diff --git a/ci/integration/minio-rolearn/spire-values.yaml b/ci/integration/minio-rolearn/spire-values.yaml
index 90036e56..203cf7a8 100644
--- a/ci/integration/minio-rolearn/spire-values.yaml
+++ b/ci/integration/minio-rolearn/spire-values.yaml
@@ -57,6 +57,23 @@ spike-keeper:
   image:
     pullPolicy: Never
     tag: dev
+  extraInitContainers:
+    - name: wait-for-spire
+      image: cgr.dev/chainguard/bash:latest
+      command:
+        - /bin/bash
+        - -c
+        - |
+          echo "Waiting for SPIRE agent socket..."
+          while [ ! -S /spiffe-workload-api/spire-agent.sock ]; do
+            echo "Socket not found, waiting..."
+            sleep 2
+          done
+          echo "SPIRE agent socket is ready"
+      volumeMounts:
+        - name: spiffe-workload-api
+          mountPath: /spiffe-workload-api
+          readOnly: true
 
 spike-nexus:
   enabled: true
@@ -64,3 +81,20 @@ spike-nexus:
     pullPolicy: Never
     tag: dev
   backendStore: lite
+  extraInitContainers:
+    - name: wait-for-spire
+      image: cgr.dev/chainguard/bash:latest
+      command:
+        - /bin/bash
+        - -c
+        - |
+          echo "Waiting for SPIRE agent socket..."
+          while [ ! -S /spiffe-workload-api/spire-agent.sock ]; do
+            echo "Socket not found, waiting..."
+            sleep 2
+          done
+          echo "SPIRE agent socket is ready"
+      volumeMounts:
+        - name: spiffe-workload-api
+          mountPath: /spiffe-workload-api
+          readOnly: true
\ No newline at end of file