DOCSP-34677 -- Add HTTPS connection info for 3rd party OM webhooks (#57)

jvincent-mongodb · web-flow · commit ebeaeedbdb9e · 2024-02-20T08:56:23.000-08:00
Add HTTPS connection info for 3rd party OM webhooks. [JIRA](https://jira.mongodb.org/browse/DOCSP-34677) [BUILD](https://workerpool-boxgs.mongodbstitch.com/pages/job.html?collName=queue&jobId=65cfd2ae71111659826a2d74) [STAGING](https://preview-mongodbjvincentmongodb.gatsbyjs.io/ops-manager/DOCSP-34677/tutorial/third-party-service-integrations/#click-configure-for-the-third-party-service-you-want-to-modify)
diff --git a/source/includes/list-tables/third-party-integration-settings-ui.rst b/source/includes/list-tables/third-party-integration-settings-ui.rst
@@ -134,7 +134,7 @@
        for programmatic processing. |mms| sends an alert as an |http|
        POST request in which the request body contains a |json|
        document that uses the same format as the |mms| |api|
-       :doc:`Alerts resource </reference/api/alerts>`.
+       :doc:`Alerts resource </reference/api/alerts>`. 
 
        .. include:: /includes/facts/alert-webhook-mms-event-header.rst
 
@@ -145,6 +145,9 @@
        to the :authrole:`Project Owner` and eventually removes the
        Webhook settings.
 
+       If your webhook requires HTTPS, you must 
+       :ref:`import import your CA certificate into the Ops Manager trust store <add-ca-cert-to-om>`.
+
    * - CA Flowdock Settings
    
      - Sets default values for alert notifications sent to Flowdock.
diff --git a/source/includes/steps-add-ca-cert-to-om-truststore.yaml b/source/includes/steps-add-ca-cert-to-om-truststore.yaml
@@ -0,0 +1,41 @@
+---
+stepnum: 1
+level: 4
+ref: add-mongodb-user-to-db
+title: "Add the CA certificate of the webhook into the Ops Manager HTTP server."
+content: |
+
+  After adding the absolute path to your webhook trust store to the following command, 
+  run it to add your CA certificate to the Ops Manager Java trust store. 
+
+  .. code-block:: sh
+
+    sudo /opt/mongodb/mms/jdk/bin/keytool -noprompt -storepass changeit -import -trustcacerts -alias Webhook_CA -file <AbsolutePathofWebhookTrustStore> -keystore /opt/mongodb/mms/jdk/lib/security/cacerts
+
+---
+stepnum: 2
+level: 4
+ref: nav-add-credentials-automation
+title: "Confirm that the webhook CA certificate has been added."
+content: |
+
+  Run the following command to confirm that the CA certificate has been added successfully.
+
+  .. code-block:: sh
+
+    sudo /opt/mongodb/mms/jdk/bin/keytool -noprompt -storepass changeit -list -v -keystore /opt/mongodb/mms/jdk/lib/security/cacerts | grep -i Webhook_CA
+---
+stepnum: 3
+level: 4
+ref: add-credentials-automation-click-credentials
+title: "Test an HTTPS request to Ops Manager to confirm connectivity."
+content: |
+  
+  After adding your webhook URL to the following command,
+  run it to test your webhook's HTTPS connectivity with Ops Manager. 
+
+  .. code-block:: sh
+
+    sudo curl -vvvv -cacert /opt/mongodb/mms/jdk/lib/security/cacerts <WebhookURL>
+
+...
diff --git a/source/tutorial/add-ca-cert-to-om.txt b/source/tutorial/add-ca-cert-to-om.txt
@@ -0,0 +1,26 @@
+.. _add-ca-cert-to-om:
+
+============================================
+Add CA Certificate to |mms| Java Trust Store
+============================================
+
+.. default-domain:: mongodb
+
+.. contents:: On this page
+   :local:
+   :backlinks: none
+   :depth: 1
+   :class: singlecol
+
+In order to connect a webhook to |mms| with HTTPS, you'll need to import your 
+CA certificate into the |mms| Java Trust Store. 
+
+Prerequisites
+-------------
+
+- Have an accessible |mms| deployment
+
+Add CA Cert to |mms| Java Truststore
+------------------------------------
+
+.. include:: /includes/steps/add-ca-cert-to-om-truststore.rst
