Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

adding ability to connnect over SSL w/o authentication. #558

Merged
merged 4 commits into from Nov 16, 2017
Merged

adding ability to connnect over SSL w/o authentication. #558

merged 4 commits into from Nov 16, 2017

Conversation

shawn-hurley
Copy link
Contributor

Describe what this PR does and why we need it:
Allows the broker to only connect over TLS while etcd authentication is off.
Changes proposed in this pull request

  • only return the default transport if etcd client cert, client key and ca file are empty
  • if client cert and client key are set, use them in the TLS config

Which issue this PR fixes (This will close that issue when PR gets merged)
fixes #554

@openshift-ci-robot openshift-ci-robot added the size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. label Nov 16, 2017
@shawn-hurley shawn-hurley added bug needs-review and removed size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. labels Nov 16, 2017
@coveralls
Copy link

Coverage Status

Changes Unknown when pulling 95467e8 on shawn-hurley:issue-554 into ** on openshift:master**.

jmrodri
jmrodri approved these changes Nov 16, 2017
View reviewed changes
Copy link
Contributor

@jmrodri jmrodri left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ACK

@shawn-hurley shawn-hurley added do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. and removed needs-review labels Nov 16, 2017
@shawn-hurley
Copy link
Contributor Author

I am going to add some test cases around the etcd_client.

@openshift-ci-robot openshift-ci-robot added the size/L Denotes a PR that changes 100-499 lines, ignoring generated files. label Nov 16, 2017
@shawn-hurley shawn-hurley added needs-review and removed do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. labels Nov 16, 2017
@coveralls
Copy link

Coverage Status

Changes Unknown when pulling 2d2b367 on shawn-hurley:issue-554 into ** on openshift:master**.

djzager
djzager approved these changes Nov 16, 2017
View reviewed changes
Copy link
Member

@djzager djzager left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

pkg/clients/etcd_test.go
}
}

func TestEtcdVersion(t *testing.T) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍

@coveralls
Copy link

Coverage Status

Changes Unknown when pulling 7fcce72 on shawn-hurley:issue-554 into ** on openshift:master**.

@djzager djzager merged commit bf47390 into openshift:master Nov 16, 2017
jianzhangbjz pushed a commit to jianzhangbjz/ansible-service-broker that referenced this pull request May 17, 2018
@shawn-hurley @djzager
adding ability to connnect over SSL w/o authentication. (openshift#558)
1a0f82f 
* adding ability to connnect over SSL w/o authentication.

* Adding test coverage for etcd client.

* adding testing for etcd version.

* adding coverage
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jmrodri jmrodri jmrodri approved these changes

@eriknelson eriknelson eriknelson approved these changes

@djzager djzager djzager approved these changes

Assignees
No one assigned
Labels
size/L Denotes a PR that changes 100-499 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Broker should be able to connect to ETCD over TLS while being unauthenticated
6 participants
@shawn-hurley @coveralls @jmrodri @eriknelson @djzager @openshift-ci-robot