Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Git self sign #936

Merged
merged 6 commits into from
Nov 28, 2019
Merged

Git self sign #936

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
210ec13
How to support Git server with self signed certificate
vparfonov Nov 21, 2019
cf219f9
fixing docs
vparfonov Nov 21, 2019
e9219c4
Structure, lang. fixes. (#939)
Nov 25, 2019
bd0fbab
Mark-up fix
Nov 25, 2019
1c99a8e
Update proc_deploying-che-with-support-for-git-repositories-with-self…
vparfonov Nov 25, 2019
0bd1649
form
Nov 26, 2019
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions ...ain/pages/che-7/installation-guide/assembly_advanced-configuration-options.adoc
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -39,6 +39,8 @@ include::proc_configuring-namespace-strategies.adoc[leveloffset=+1]

// include::proc_configuring-che-with-openshift-oauth.adoc[leveloffset=+1]

include::proc_deploying-che-with-support-for-git-repositories-with-self-signed-certificates.adoc[leveloffset=+1]

include::ref_che-configmaps-fields-reference.adoc[leveloffset=+1]

:context: {parent-context-of-advanced-configuration-options}
44 changes: 44 additions & 0 deletions ...loying-che-with-support-for-git-repositories-with-self-signed-certificates.adoc
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,44 @@
[id="deploying-{prod-id-short}-with-support-for-git-repositories-with-self-signed-certificates_{context}"]
= Deploying {prod-short} with support for Git repositories with self-signed certificates

This procedure describes how to configure {prod-short} for deployment with support for Git operations on repositories that use self-signed certificates.

.Prerequisites

* Git version 2 or later.

.Procedure

[discrete]
== Configuring support for self-signed Git repositories on Kubernetes

.Deploying {prod-short} using a link:https://helm.sh/[Helm Chart]

. Configure the workspace exposure strategy using the `global.useGitSelfSignedCerts` property. To do that, add the following option to the `helm upgrade` command:
+
----
$ helm upgrade che --set global.useGitSelfSignedCerts=true
----

. Create a new *configMap* with details about the Git server:
+
[subs="+quotes"]
----
$ kubectl create configmap che-git-self-signed-cert --from-file=__<ca.crt>__ \
--from-literal=githost=__<host:port>__ -n=che
----
+
In the command, substitute `_<ca.crt>_` for the self-signed certificate and _`<host:port>_` for the host and port of the HTTPS connection on the Git server (optional).
+
NOTE: When `githost` is not specified, the given certificate is used for all HTTPS repositories.

// TODO
// [discrete]
// == Configuring support for self-signed Git repositories on OpenShift

Create and start new workspace. Every container used by the workspace mounts a special volume that contains a file with the self-signed certificate. The repository's `.git/config` file contains information about the Git server host (its URL) and the path to the certificate in the `http` section (see Git documentation about link:https://git-scm.com/docs/git-config#Documentation/git-config.txt-httpsslCAInfo[git-config]). For example:

----
[http "https://10.33.177.118:3000"]
sslCAInfo = /etc/che/git/cert/ca.crt
----