Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Importing OpenShift CA to our cloud images #26

Open
slaskawi opened this issue Sep 10, 2018 · 2 comments
Open

Importing OpenShift CA to our cloud images #26

slaskawi opened this issue Sep 10, 2018 · 2 comments
Assignees
@rhuss

Comments

@slaskawi
Copy link

As discussed with @rhuss, it would be great if both certificates:

  • {{/var/run/secrets/kubernetes.io/serviceaccount/service-ca.crt}}
  • {{/var/run/secrets/kubernetes.io/serviceaccount/ca.crt}}

were trusted by default. This will make Mutual TLS (or any TLS actually) less painful for app developers. See (1) for Keycloak example.

(1) https://github.com/jboss-dockerfiles/keycloak/pull/143/files#diff-7308745f949334054889d2bdbcd4b3e8R63
@rhuss
Copy link
Contributor

rhuss commented Sep 11, 2018
edited
Loading

Good point, we should add this similarly but should also make it configurable and autodetectable. Note, that these images are also used in a plain Docker context where such certs won't be mirrored into the container.

@rhuss rhuss self-assigned this Sep 11, 2018
@slaskawi
Copy link
Author

@rhuss I totally agree!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rhuss rhuss

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@rhuss @slaskawi