Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[OSPRH-8065] Rework custom prometheus CA #428

Merged
merged 1 commit into from
Jul 5, 2024
Merged

[OSPRH-8065] Rework custom prometheus CA #428

merged 1 commit into from
Jul 5, 2024

Conversation

vyzigold
Copy link
Contributor

@vyzigold vyzigold commented Jul 3, 2024

Rework how the user specifies CA certificates for
user deployed / external prometheus.

Before the PR the user deployed
prometheus was almost unusable. The TLS was always used no matter the settings (which was a bug). The operator also assumed that the CA cert is a part of the openstack ca bundle. This assumption doesn't make sense for external prometheus.

With this PR the user has an option to specify a secret name and key within that secret which holds the CA certificate.

The functionality around using the metric-storage prometheus by default is still unchanged and works with and without controlplane TLS as before.

@vyzigold
[OSPRH-8065] Rework custom prometheus CA
48c7c78 
Rework how the user specifies CA certificates for
user deployed / external prometheus.

Before the PR the user deployed
prometheus was almost unusable. The TLS was always used
no matter the settings (which was a bug). The operator also assumed
that the CA cert is a part of the openstack ca bundle.
This assumption doesn't make sense for external prometheus.

With this PR the user has an option to specify a secret name
and key within that secret which holds the CA certificate.

The functionality around using the metric-storage prometheus
by default is still unchanged and works with and without
controlplane TLS as before.
@openshift-ci openshift-ci bot requested review from csibbitt and frenzyfriday July 3, 2024 14:05
@openshift-ci OpenShift CI
Copy link
Contributor

openshift-ci bot commented Jul 3, 2024

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: vyzigold

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci openshift-ci bot added the approved label Jul 3, 2024
@vyzigold
Copy link
Contributor Author

vyzigold commented Jul 3, 2024

/hold until GA content is branched

@jlarriba
Copy link
Collaborator

jlarriba commented Jul 5, 2024

/unhold

@jlarriba
Copy link
Collaborator

jlarriba commented Jul 5, 2024

/lgtm

@openshift-ci openshift-ci bot added the lgtm label Jul 5, 2024
@openshift-merge-bot openshift-merge-bot bot merged commit 3c3fb82 into openstack-k8s-operators:main Jul 5, 2024
6 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@csibbitt csibbitt Awaiting requested review from csibbitt

@frenzyfriday frenzyfriday Awaiting requested review from frenzyfriday

Assignees

@jlarriba jlarriba

Labels
approved lgtm
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@vyzigold @jlarriba