Skip to content

Add a new trust bundle for custom SSL certificates #18450

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 8 commits into from
Aug 8, 2023
Merged

Add a new trust bundle for custom SSL certificates #18450

merged 8 commits into from
Aug 8, 2023

Conversation

aledbf
Copy link
Member

@aledbf aledbf commented Aug 7, 2023
edited
Loading

Description

Summary generated by Copilot

🤖 Generated by Copilot at 3b41472

Add support for custom SSL certificates in cert-manager. Use a new variable and a config map to provide custom CA certificates to cert-manager pods.

Related Issue(s)

Fixes #

How to test

  • Check the configmap gitpod-customer-certificate-bundle exists
  • Check the file /etc/ssl/certs/ca-certificates.crt in a workspace is mounted volume from the ca-certificates configmap
  • Configure the installer with a custom CA certificate and check the /etc/ssl/certs/ca-certificates.crt contains the certificate

Preview status

Gitpod was successfully deployed to your preview environment.

Build Options

Build
  • /werft with-werft
    Run the build with werft instead of GHA
  • leeway-no-cache
  • /werft no-test
    Run Leeway with --dont-test
Publish
  • /werft publish-to-npm
  • /werft publish-to-jb-marketplace
Installer
  • analytics=segment
  • with-dedicated-emulation
  • workspace-feature-flags
    Add desired feature flags to the end of the line above, space separated
Preview Environment / Integration Tests
  • /werft with-local-preview
    If enabled this will build install/preview
  • /werft with-preview
  • /werft with-large-vm
  • /werft with-gce-vm
    If enabled this will create the environment on GCE infra
  • with-integration-tests=all
    Valid options are all, workspace, webapp, ide, jetbrains, vscode, ssh. If enabled, with-preview and with-large-vm will be enabled.
  • with-monitoring

/hold

@roboquat roboquat added size/M and removed size/S labels Aug 7, 2023
nandajavarma
nandajavarma reviewed Aug 7, 2023
View reviewed changes
@aledbf
Copy link
Member Author

aledbf commented Aug 7, 2023
edited by github-actions bot
Loading

/gh run recreate-vm=true

Comment triggered a workflow run

Started workflow run: 5786692878

  • recreate_vm: true

@aledbf aledbf requested a review from nandajavarma August 8, 2023 04:45
@nandajavarma
Copy link
Contributor

nandajavarma commented Aug 8, 2023
edited by github-actions bot
Loading

/gh run recreate-vm=true

Comment triggered a workflow run

Started workflow run: 5793817101

  • recreate_vm: true

@nandajavarma nandajavarma marked this pull request as ready for review August 8, 2023 10:23
@nandajavarma nandajavarma requested a review from a team as a code owner August 8, 2023 10:23
@nandajavarma
Copy link
Contributor

nandajavarma commented Aug 8, 2023
edited by github-actions bot
Loading

/gh run recreate-vm=true

Comment triggered a workflow run

Started workflow run: 5795863545

  • recreate_vm: true

@nandajavarma nandajavarma force-pushed the aledbf/custom-cert-trust branch from 0ed33bf to e18f54c Compare August 8, 2023 11:41
@nandajavarma
Copy link
Contributor

nandajavarma commented Aug 8, 2023
edited by github-actions bot
Loading

/gh run recreate-vm=true

Comment triggered a workflow run

Started workflow run: 5796648395

  • recreate_vm: true

@nandajavarma
Copy link
Contributor

nandajavarma commented Aug 8, 2023
edited by github-actions bot
Loading

/gh run recreate-vm=true

Comment triggered a workflow run

Started workflow run: 5796910545

  • recreate_vm: true

@nandajavarma nandajavarma force-pushed the aledbf/custom-cert-trust branch 2 times, most recently from 59bc477 to 36ceca7 Compare August 8, 2023 12:51
@nandajavarma
Copy link
Contributor

nandajavarma commented Aug 8, 2023
edited by github-actions bot
Loading

/gh run recreate-vm=true

Comment triggered a workflow run

Started workflow run: 5797393527

  • recreate_vm: true

@nandajavarma nandajavarma force-pushed the aledbf/custom-cert-trust branch from 36ceca7 to 3ad0967 Compare August 8, 2023 13:37
@roboquat roboquat added size/L and removed size/M labels Aug 8, 2023
@roboquat roboquat merged commit de4bbbe into main Aug 8, 2023
@roboquat roboquat deleted the aledbf/custom-cert-trust branch August 8, 2023 14:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nandajavarma nandajavarma nandajavarma approved these changes

Assignees
No one assigned
Labels
size/L team: team-engine
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@aledbf @nandajavarma @roboquat