Skip to content

feat(operator): improved private ca support from host #2173

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
May 23, 2025
Merged

feat(operator): improved private ca support from host #2173

merged 3 commits into from
May 23, 2025

Conversation

emosbaugh
Copy link
Member

@emosbaugh emosbaugh commented May 19, 2025
edited
Loading

What this PR does / why we need it:

Pass the ca bundle detected from the host to the operator chart.

Mounts the CA into the operator container at path /certs/ca-certificates.crt and sets the SSL_CERT_DIR env var so that golang will use the certificate.

Adds extraVolumes and extraVolumeMounts keys to the helm values file to pass through to the operator deployment similar to the velero helm chart.

Related #2168

Which issue(s) this PR fixes:

Does this PR require a test?

Does this PR require a release note?

Does this PR require documentation?

@github-actions GitHub Actions
Copy link

github-actions bot commented May 19, 2025
edited
Loading

This PR has been released (on staging) and is available for download with a embedded-cluster-smoke-test-staging-app license ID.

Online Installer:

curl "https://staging.replicated.app/embedded/embedded-cluster-smoke-test-staging-app/ci/appver-dev-177f195" -H "Authorization: $EC_SMOKE_TEST_LICENSE_ID" -o embedded-cluster-smoke-test-staging-app-ci.tgz

Airgap Installer (may take a few minutes before the airgap bundle is built):

curl "https://staging.replicated.app/embedded/embedded-cluster-smoke-test-staging-app/ci-airgap/appver-dev-177f195?airgap=true" -H "Authorization: $EC_SMOKE_TEST_LICENSE_ID" -o embedded-cluster-smoke-test-staging-app-ci.tgz

Happy debugging!

@emosbaugh emosbaugh force-pushed the emosbaugh/sc-123420/mount-ca-into-operator-container branch from 28f856e to dbaeee8 Compare May 20, 2025 16:46
@emosbaugh emosbaugh force-pushed the emosbaugh/sc-123420/mount-ca-into-operator-container branch from dbaeee8 to 28b189c Compare May 21, 2025 12:52
@emosbaugh emosbaugh marked this pull request as ready for review May 21, 2025 13:12
diamonwiggins
diamonwiggins approved these changes May 21, 2025
View reviewed changes
Copy link
Member

@diamonwiggins diamonwiggins left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@emosbaugh emosbaugh merged commit 8d0a1e3 into main May 23, 2025
124 of 127 checks passed
@emosbaugh emosbaugh deleted the emosbaugh/sc-123420/mount-ca-into-operator-container branch May 23, 2025 16:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@diamonwiggins diamonwiggins diamonwiggins approved these changes

@sgalsaleh sgalsaleh Awaiting requested review from sgalsaleh

Assignees
No one assigned
Labels
type::feature
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@emosbaugh @diamonwiggins