Auth: add TLS client auth support #1123
Conversation
k8s-ci-robot
added
release-note
|
Hi @kayrus. Thanks for your PR. I'm waiting for a kubernetes member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
k8s-ci-robot
added
needs-ok-to-test
|
Build succeeded.
|
|
Build succeeded.
|
|
Build succeeded.
|
|
Build succeeded.
|
|
Build succeeded.
|
|
Build failed.
|
|
@kayrus: Cannot trigger testing until a trusted user reviews the PR and leaves an In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
Build failed.
|
|
/ok-to-test |
k8s-ci-robot
added
ok-to-test
|
/test cloud-provider-openstack-acceptance-test-e2e-conformance |
|
@lingxiankong: The specified target(s) for
Use In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
HTTPS is not enabled in my environment, @kayrus have you tested this PR? |
|
Build succeeded.
|
@lingxiankong I also don't have TLS env. I added TLS auth support as it is done in common. |
Well, based on the environments of both two of us, TLS is not in common :-) (kidding) I'd rather we only merge code that has been tested in real environment so that we are confident that the added options are doing the right thing. So hopefully there will be someone popping in asking for TLS support or have HTTPS supported can help to test. Hope you could understand. /hold |
k8s-ci-robot
added
the
do-not-merge/hold
k8s-ci-robot
added
the
needs-rebase
k8s-ci-robot
removed
the
needs-rebase
|
Build succeeded.
|
|
Build succeeded.
|
|
@lingxiankong the TLS configuration code is quite common. See https://github.com/etcd-io/etcd/blob/b28a6272b73359591fe22bac5ac8cae8afdbe0cc/clientv3/yaml/config.go#L86 or https://github.com/gophercloud/utils/blob/e38af13814d1b40e82c64bb4d137b0634f629af0/terraform/auth/config.go#L192 |
|
Build succeeded.
|
|
Build failed.
|
|
Build succeeded.
|
|
/test cloud-provider-openstack-acceptance-test-lb-octavia |
|
@lingxiankong: The specified target(s) for
Use In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
Build succeeded.
|
|
/override openlab/cloud-provider-openstack-acceptance-test-csi-manila |
|
@lingxiankong: Overrode contexts on behalf of lingxiankong: openlab/cloud-provider-openstack-acceptance-test-csi-manila In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
/unhold |
k8s-ci-robot
removed
the
do-not-merge/hold
k8s-ci-robot
added
the
lgtm
|
/approve |
|
/lgtm |
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: jichenjc, ramineni The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
the
approved
What this PR does / why we need it:
Adds a support for TLS client auth.
Which issue this PR fixes(if applicable):
fixes #1119
Special notes for reviewers:
Release note: