Skip to content

Support HTTPS proxy with self-signed (or private) CA #2633

New issue
Jump to bottom
New issue
Jump to bottom
Open
Open
Support HTTPS proxy with self-signed (or private) CA#2633
Labels
kind:enhancementNew feature or requesttopic: cluster&service configurationAnything related to cluster and service configuration persistencetopic:deploymentBugs in or enhancements to deployment stagestopic:docsDocumentationtopic:networkingNetworking-related issues
@gdemonet

Description

@gdemonet
gdemonet
opened on Jun 17, 2020

Component: salt, containerd

Why this is needed:

Some users may want to run MetalK8s behind a private proxy, using HTTPS with a certificate not signed by a publicly trusted CA. Today, we cannot configure this CA bundle in BootstrapConfiguration.

What should be done: Add an option to pass this bundle for trusting the proxy certificate, and document it properly.

Test plan: Run our CI deployments behind such a proxy! (Should already be the case... for HTTP at least)

Metadata

Assignees

No one assigned

    Labels

    kind:enhancementNew feature or requesttopic: cluster&service configurationAnything related to cluster and service configuration persistencetopic:deploymentBugs in or enhancements to deployment stagestopic:docsDocumentationtopic:networkingNetworking-related issues

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions