Skip to content
This repository has been archived by the owner on Jul 15, 2021. It is now read-only.

Add Identity Provider CA CA in command template #168

Closed
wants to merge 5 commits into from
Closed

Add Identity Provider CA CA in command template #168

wants to merge 5 commits into from

Conversation

jenting
Copy link
Contributor

@jenting jenting commented Jun 29, 2020
edited
Loading

The kubeconfig file generated by gangway does not include the self-signed certificate (untrusted) cluster CA which is used to verify the trusted connection between dex. This will cause some confusion when refreshing id-token if users don't have trusted the CA like adding into the local trust or specific oidc auth options in kubeconfig (like idp-certificate-authority or idp-certificate-authority-data).

fixed #148
supersedes #149

vijaykatam and others added 5 commits February 11, 2020 14:45
@vijaykatam
Add Identity Provider CA to kubeconfig
d9102c7 
This change enables usage of self signed cert for the IdP by providing
a config `idpCAPath` in the config map.

Closes: #148

Signed-off-by: Vijay Katam <vkatam@vmware.com>
@vijaykatam
add test for non-empty idp CA
c6cb0c0 
Signed-off-by: Vijay Katam <vkatam@vmware.com>
Merge remote-tracking branch 'upstream/master' into pr/vijaykatam/149
e959a61
Fix unit test failed
e278f52 
Signed-off-by: JenTing Hsiao <jenting.hsiao@suse.com>
Add idpCAPath in documentation
c96f45c 
Signed-off-by: JenTing Hsiao <jenting.hsiao@suse.com>
@jenting jenting closed this Jun 29, 2020
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Enable use of self signed cert for Identity Provider
2 participants
@jenting @vijaykatam