Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Set minimum TLS version in webhooks #1424

Closed
sozercan opened this issue Jul 7, 2021 · 1 comment · Fixed by #1426
Closed

Set minimum TLS version in webhooks #1424

sozercan opened this issue Jul 7, 2021 · 1 comment · Fixed by #1426
Assignees
@sozercan
Labels
enhancement New feature or request
Milestone
v3.7.0

Comments

@sozercan
Copy link
Member

sozercan commented Jul 7, 2021
edited
Loading

Describe the solution you'd like

  • Upgrade to CR v0.9.1 or later (✨ Allow TLS minimum version to be configured kubernetes-sigs/controller-runtime#1548)
  • Define a flag to override minimum TLS version
  • Cut vNext release (likely v3.7) with TLS 1.2 as default and provide announcement in the release notes that TLS 1.3 will be default in vNextNext (likely v3.8).
  • Make TLS 1.3 default in vNextNext release. Users can override this to set a lower min TLS version for k8s v1.16 clusters.

Anything else you would like to add:
[Miscellaneous information that will assist in solving the issue.]

Environment:

  • Gatekeeper version:
  • Kubernetes version: (use kubectl version):
@sozercan sozercan added the enhancement New feature or request label Jul 7, 2021
@sozercan sozercan changed the title Set minimum TLS version Set minimum TLS version in webhooks Jul 7, 2021
@sozercan sozercan self-assigned this Jul 7, 2021
@sozercan
Copy link
Member Author

sozercan commented Jul 7, 2021

cc @maxsmythe @willbeason

@sozercan sozercan mentioned this issue Jul 7, 2021
Merged
@sozercan sozercan added this to the v3.7.0 milestone Sep 23, 2021
@sozercan sozercan mentioned this issue Nov 17, 2021
Closed
@sozercan sozercan mentioned this issue Feb 23, 2022
Merged
@cbuto cbuto mentioned this issue Sep 26, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@sozercan sozercan

Labels
enhancement New feature or request
Projects
None yet
Milestone
v3.7.0
Development

Successfully merging a pull request may close this issue.

Set minimum TLS version in webhooks sozercan/gatekeeper
1 participant
@sozercan