fixed issues related to TLS verification. #8

JohnCMcDonough · 2018-02-02T03:15:33Z

I found two issues related to TLS verification.

Originally, the check relied on "falsy" conversions that were invalid.

elt.cluster['insecure-skip-tls-verify'] == 'true'

where elt.cluster['insecure-skip-tls-verify'] was a boolean, and 'true' was a string.

true == 'true' is false.

The other issue, is that it expected certificate-authority-data and certificate-authority even if skipTLSVerify was true.

brendandburns · 2018-02-08T04:54:34Z

@JohnCMcDonough LGTM. Please sign the CLA and then we can merge this!

JohnCMcDonough · 2018-02-09T02:59:26Z

Alright, I've signed the agreement! At least, I think I have...

brendandburns · 2018-02-16T06:38:24Z

CLA still shows as missing, is your email associated with your github the same as what you signed from?

brendandburns · 2018-02-16T06:38:34Z

(also now needs a rebase...)

esselius · 2018-04-27T10:22:09Z

Is this CLA being taken care of?

My workaround was making the kube config key value be a string, but then kubectl complains and I have to switch it back and forth..

brendandburns · 2018-11-15T23:56:56Z

This PR is now obsolete, since the requirement for CA cert was removed.

Closing.

fixed issues related to TLS verification.

fd50bc1

JohnCMcDonough mentioned this pull request Feb 2, 2018

insecure-skip-tls-verify is Ignored in Kube Config #7

Closed

brendandburns closed this Nov 15, 2018

Provide feedback