Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Gateway discovery in the Helm chart does TLS encryption by default #3618

Closed
1 task
Tracked by #702
mflendrich opened this issue Feb 27, 2023 · 2 comments
Closed
1 task
Tracked by #702

Gateway discovery in the Helm chart does TLS encryption by default #3618

mflendrich opened this issue Feb 27, 2023 · 2 comments
Assignees
@randmonkey
Milestone
KIC v2.9.0

Comments

@mflendrich
Copy link
Contributor

mflendrich commented Feb 27, 2023
edited
Loading

Acceptance Criteria

  • The example values.yaml for all the setups with gateway discovery enabled (Support single controller deployments #702) enable Admin API encryption by default (but with no authentication - just encryption with self-signed certs)
@mflendrich mflendrich mentioned this issue Feb 27, 2023
Closed
12 tasks
@mflendrich mflendrich added this to the KIC v2.9.0 milestone Feb 27, 2023
@mflendrich mflendrich changed the title The released helm chart makes the Admin API traffic TLS-encrypted (but with no authentication based on certificates) Gateway discovery in the Helm chart does TLS encryption by default Feb 27, 2023
@mflendrich
Copy link
Contributor Author

Assigning @randmonkey as discussed in the team call - we believe this is already the case now with the 2.17 chart, this just requires verification

@randmonkey
Copy link
Contributor

In default values we have

  tls:
    # Enable HTTPS listen for the admin API
    enabled: true
    servicePort: 8444
    containerPort: 8444

in env section. So by default, helm charts does TLS encryption for admin APIs.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@randmonkey randmonkey

Labels
None yet
Projects
None yet
Milestone
KIC v2.9.0
Development

No branches or pull requests
2 participants
@mflendrich @randmonkey