-
Notifications
You must be signed in to change notification settings - Fork 2.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
TLS support for HTTP Endpoint of Collector server #2798
Conversation
Signed-off-by: rjs211 <srivatsa211@gmail.com>
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Overall lgtm. The unit tests are failing to compile though.
@@ -40,12 +40,18 @@ const ( | |||
collectorZipkinAllowedHeaders = "collector.zipkin.allowed-headers" | |||
) | |||
|
|||
var tlsFlagsConfig = tlscfg.ServerFlagsConfig{ | |||
var tlsGRPCFlagsConfig = tlscfg.ServerFlagsConfig{ | |||
Prefix: "collector.grpc", | |||
ShowEnabled: true, |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Perhaps we should remove this option, it is never false
$ grx 'ShowEnabled: ' .
./cmd/collector/app/builder_flags.go:45: ShowEnabled: true,
./cmd/agent/app/reporter/grpc/flags.go:36: ShowEnabled: true,
./cmd/query/app/flags.go:52: ShowEnabled: true,
./cmd/query/app/flags.go:58: ShowEnabled: true,
./plugin/storage/cassandra/options.go:250: ShowEnabled: true,
./plugin/storage/es/options.go:139: ShowEnabled: true,
./pkg/config/tlscfg/flags_test.go:51: ShowEnabled: true,
./pkg/config/tlscfg/flags_test.go:98: ShowEnabled: true,
./pkg/kafka/auth/config.go:94: ShowEnabled: true,
./pkg/kafka/auth/options.go:113: ShowEnabled: true,
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Do you want me to do this as a part of the same PR?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
up to you
Signed-off-by: rjs211 <srivatsa211@gmail.com>
Codecov Report
@@ Coverage Diff @@
## master #2798 +/- ##
==========================================
+ Coverage 95.88% 95.93% +0.04%
==========================================
Files 218 218
Lines 9606 9620 +14
==========================================
+ Hits 9211 9229 +18
+ Misses 327 323 -4
Partials 68 68
Continue to review full report at Codecov.
|
Signed-off-by: rjs211 <srivatsa211@gmail.com>
Signed-off-by: rjs211 <srivatsa211@gmail.com>
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Code lgtm, but coverage will decrease by 0.10%
. Can you add tests to exercise the new paths?
Signed-off-by: rjs211 <srivatsa211@gmail.com>
Signed-off-by: rjs211 <srivatsa211@gmail.com>
Signed-off-by: rjs211 <srivatsa211@gmail.com>
any other tests could be added to increase the PR coverage above 95%? |
…thod Signed-off-by: rjs211 <srivatsa211@gmail.com>
codeov is stuck again, but the report shows +0.04% https://codecov.io/github/jaegertracing/jaeger/commit/03107bed1254f3fc1b5fa2c6ae6d833856412c64 |
@yurishkuro Actually im yet to make CHANGELOG.md entry. Is it possible to revert the commit? I dont want to waste another PR for that.. UPDATE: never mind. Just learnt that reverting creates a new PR as well!! sorry to bother you. |
No need, as this is not a breaking change but a new feature it will be added as part of the release process. Also, we have an abundant number of available PR numbers, so it's ok to waste them 😛 |
Which problem is this PR solving?
Short description of the changes
independent TLS flags are exposed for gRPC and HTTP endpoints, enabling the user to provide different set of key, cert, CA-Cert , etc for each communication channal.
provides the option of enabling TLS/mTLS in none, either one or both of HTTP and gRPC endpoints.
Todo