Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Proxy Support or custom env #152

Closed
lucidph3nx opened this issue Jun 14, 2023 · 4 comments
Closed

Proxy Support or custom env #152

lucidph3nx opened this issue Jun 14, 2023 · 4 comments
Assignees
@jillianwilson

Comments

@lucidph3nx
Copy link

Summary

When operating behind a corporate web proxy, I need to be able to set environment variables on my containers like https_proxy, http_proxy, no_proxy. These instruct most Linux applications that they should send requests via a specified proxy on their way out to the internet.

Use cases

When operating behind a corporate web proxy, all traffic is required to go via the web proxy for security reasons and no other route out of the network exists. I feel like there would be a non zero number of 1Password connect users who are wanting to make this scenario work. I'm quite surprised I'm the first issue mention.

Proposed solution

The helm template for the connect-deployment doesn't allow for any values to be added to environment variables for the containers. I needed to add the 3 mentioned above.
You could either allow in the values, for custom environment variables to be added and append these to the bottom of the env variable lists for the containers, or do something more structured for just my use case. I think allowing custom env variables is fine, but I realise this could have security implications that I am missing.

Is there a workaround to accomplish this today?

As as result of not being able to accomplish this using your helm chart, I've had to use your containers in a generic application chart which has a lot more management overhead for me.

References & Prior Work

I've never done a template like this myself, but I have applied my own env to a number of other helm charts and its been able to handle it ok. I went digging and the first to pop up in my config was datadog, which (although a messy complicated chart) has this include statement in the template which gives an idea of how it could work.
https://github.com/DataDog/helm-charts/blob/e3133172449038caaca4c18342fecd2976be377a/charts/datadog/templates/cluster-agent-deployment.yaml#L297
@Matthiasvanderhallen
Copy link
Contributor

We are facing with the same issue, and are very interested in its resolution.

@jimmi4u
Copy link

jimmi4u commented Oct 15, 2023

We too are facing the same problems, and are very interested in their resolution. Is a solution availible already? Wolud be indeed very nice!

@jillianwilson jillianwilson self-assigned this Jan 23, 2024
@jillianwilson jillianwilson mentioned this issue Jan 24, 2024
Merged
@volodymyrZotov volodymyrZotov mentioned this issue Mar 5, 2024
Merged
@volodymyrZotov
Copy link
Contributor

Implemented in #182

@NotABugItsAFeature
Copy link

I've just noticed that the env variables are only applied on the connect-api container of the onepassword-connect pod. It's not applied on the connect-sync container.
There's no customEnvVars specifically for each of those containers so I had expected it to be applied on both.

@volodymyrZotov volodymyrZotov mentioned this issue Sep 9, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jillianwilson jillianwilson

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@Matthiasvanderhallen @lucidph3nx @jimmi4u @volodymyrZotov @jillianwilson @NotABugItsAFeature