Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

enable API server to use TLS natively (without ingress) #772

Merged
merged 6 commits into from
Sep 16, 2023
Merged

enable API server to use TLS natively (without ingress) #772

merged 6 commits into from
Sep 16, 2023

Conversation

krancour
Copy link
Member

@krancour krancour commented Sep 15, 2023
edited
Loading

This fixes #548

As noted in the issue, this covers cases where Ingress is not used or Ingress is used and company policy requires TLS end-to-end. (I guess those people should have service meshes, but you never know. 🤷 )

TLS with a self-signed cert is also enabled by default so users who ignore installation options still start off on more secure footing.

@krancour
add TLS configuration options to API server
62c86b5 
Signed-off-by: Kent <kent.rancourt@gmail.com>
@krancour
add ability for API server to run with TLS
572fbb4 
Signed-off-by: Kent <kent.rancourt@gmail.com>
@krancour
corresponding chart changes
4fd6404 
Signed-off-by: Kent <kent.rancourt@gmail.com>
@krancour
corresponding Tiltfile changes
15f44f4 
Signed-off-by: Kent <kent.rancourt@gmail.com>
@netlify
Copy link

netlify bot commented Sep 15, 2023
edited
Loading

Deploy Preview for docs-kargo-akuity-io canceled.

Name Link
🔨 Latest commit 091b705
🔍 Latest deploy log https://app.netlify.com/sites/docs-kargo-akuity-io/deploys/6505c12dcdf39700080477f1

@codecov
Copy link

codecov bot commented Sep 15, 2023
edited
Loading

Codecov Report

Patch coverage has no change and project coverage change: -0.14% ⚠️

Comparison is base (77c0c80) 46.72% compared to head (091b705) 46.59%.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main     #772      +/-   ##
==========================================
- Coverage   46.72%   46.59%   -0.14%     
==========================================
  Files          97       97              
  Lines        6780     6799      +19     
==========================================
  Hits         3168     3168              
- Misses       3460     3479      +19     
  Partials      152      152
Files Changed Coverage Δ
internal/api/config/config.go 34.09% <0.00%> (-7.58%) ⬇️
internal/api/server.go 0.00% <0.00%> (ø)

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

devholic
devholic approved these changes Sep 16, 2023
View reviewed changes
internal/api/config/config.go Outdated Show resolved Hide resolved
@krancour krancour merged commit 3e77c98 into akuity:main Sep 16, 2023
@krancour krancour deleted the krancour/native-tls branch September 16, 2023 15:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@devholic devholic devholic approved these changes

@alexmt alexmt Awaiting requested review from alexmt

@gdsoumya gdsoumya Awaiting requested review from gdsoumya

@jessesuen jessesuen Awaiting requested review from jessesuen

@kencochrane kencochrane Awaiting requested review from kencochrane

@rbreeze rbreeze Awaiting requested review from rbreeze

Assignees
No one assigned
Labels
area/api area/charts area/security kind/enhancement priority/normal
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

API server native TLS support
2 participants
@krancour @devholic