New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
rgw: inject tls certs for bucket notification and topic operations #9565
rgw: inject tls certs for bucket notification and topic operations #9565
Conversation
4bd8fbe
to
84ca546
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Neat
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I think this looks good, being pretty straightforward, but I have a couple questions...
I don't see any changes to unit tests. Should we add some validation to the existing unit tests for this to make sure the TLS connections are working as we expect them to?
Should we update any documentation for users about how to use certs?
@BlaineEXE :
Not really, this is internal between Rook and RGW server. If the RGW server is configured with TLS, then Rook as a s3 client should not fail operations sent to the RGW server. |
84ca546
to
11cd3ec
Compare
we do not have any unit tests that cover the session creation between the operator and the RGW. |
11cd3ec
to
1d967d5
Compare
|
f2203fd
to
6e1f01e
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
nit
The certs for accessing TLS enabled RGW is saved as secrets and inject them if controllers for notification and topics if request is sent to TLS enabled RGW endpoint. Signed-off-by: Jiffin Tony Thottan <thottanjiffin@gmail.com> Signed-off-by: Jiffin Tony Thottan <jthottan@redhat.com>
6e1f01e
to
a97747c
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM!
rgw: inject tls certs for bucket notification and topic operations (backport #9565)
Description of your changes:
The certs for accessing TLS enabled RGW is saved as secrets and inject
them if controllers for notification and topics if the request is sent to
TLS enabled RGW endpoint.
Signed-off-by: Jiffin Tony Thottan thottanjiffin@gmail.com
Which issue is resolved by this Pull Request:
Resolves #
Checklist:
make codegen
) has been run to update object specifications, if necessary.