-
Notifications
You must be signed in to change notification settings - Fork 372
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
bug: Wire in dev certificate for mounts in kcp start
#3065
Comments
Issues go stale after 90d of inactivity. If this issue is safe to close now please do so with /lifecycle stale |
Stale issues rot after 30d of inactivity. If this issue is safe to close now please do so with /lifecycle rotten |
Rotten issues close after 30d of inactivity. /close |
@kcp-ci-bot: Closing this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/reopen |
@mjudeikis: Reopened this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Describe the bug
This is to track https://github.com/kcp-dev/kcp/pull/3057/files#diff-8788f7c7e1c9b5d5b7df0e3a320164e8cc298040cebea5acaeb4ccd9f85ee854R157
As follow-up:
When running
kcp start
we generate a development certificate for api-server. It is being reused for all rest/API trust in the local kcp instance. We need to reuse the same certificate when running virtual workspaces in dev.When making calls we should use the same CA as our dev certificate. Its callers responsibility to use this certificate when developing virtual-workspaces. Need to document this use case in developers docs too.,
Steps To Reproduce
See PR
Expected Behaviour
Use TLS
Additional Context
No response
The text was updated successfully, but these errors were encountered: