TLS support for clusters-service #538

foot · 2022-03-08T06:23:33Z

Fixes #532

Modifies build process, now builds a gitops binary in a workflow if you need a ref other than main
- Simon, 2022-03-11: This is locked to weaveworks/weave-gitops@931b52e (main) right now as a main has failed to build a new gitops binary due to more gitlab account locking.
Removes the nginx-ingress-controller
- Disables the alerting acceptance tests for now as they rely on the ingress-controller to talk to alertmanager
clusters-service listens to TLS by default

Helm chart updated w/ tls section where you can specify a TLS secret (e.g. as generated by cert-manager)

tls:
  enabled: true
  # if no tls secret is specified then we generate it in-mem in the server
  secretName: ""

User-guide updates are in weaveworks/weave-gitops#1689

yiannistri

Looks great! 💯 💯 💯

foot added the enhancement New feature or request label Mar 8, 2022

Base automatically changed from auth-integration to main March 8, 2022 13:34

foot added 7 commits March 9, 2022 06:26

TLS support for clusters-service

39d2653

lint it

fd5c98b

skip tls checks

dc247cb

more S

bbf4f60

Accept self signed certs

17b1ce1

try insecure certs option elsewhere

138f248

https not http

ccd93cf

foot force-pushed the tls-support branch from c07cd61 to ccd93cf Compare March 8, 2022 19:26

foot added 20 commits March 9, 2022 07:04

print some more errors

52839c7

warnf innit

1519652

insecure

1167b03

another form of eventually..

3b59b37

rm ingress-controller

f12b097

insecure kubectl

bfdcb6d

not an optional secret

ab29b92

build gitops bin

1ba8b6a

more errors please

2d2311b

single quotes you shall have

d5d4965

Merge remote-tracking branch 'origin/main' into tls-support

d3932df

path has to be local

2fd30dc

good old v2

ceafea4

just build it

23a9a5b

check it out

b7bebff

gh token

ea462b3

build and cache

b2caf01

have a path

3ccc818

try tmp

0521fd0

uhg

d1e0554

foot added 15 commits March 10, 2022 16:55

don't cache

c34f3ae

set the flag

ae142c8

more flags

26e0d44

fix up fmt

63e5627

test out workflows

efaf95b

drop the path

04a8439

smoke tests need the bin too

3420c4f

works

5493c6a

one more time

76e4aa3

curl it

acac8be

lets execute

7629139

gogogo

b23ac38

gitops version innit

ec5a0fa

its a folder..

37b20ea

tls skip profiles checks

ad8e714

yiannistri approved these changes Mar 10, 2022

View reviewed changes

foot added 4 commits March 11, 2022 11:27

Delete insecurely

b6e11d6

fix ref

22916f3

fix fix fix

07682d1

skip alertmanager tests

6ed706f

foot merged commit 7b3e86c into main Mar 11, 2022

foot deleted the tls-support branch March 11, 2022 06:34

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

TLS support for clusters-service #538

TLS support for clusters-service #538

Uh oh!

foot commented Mar 8, 2022 •

edited

Loading

Uh oh!

yiannistri left a comment

Uh oh!

Uh oh!

TLS support for clusters-service #538

TLS support for clusters-service #538

Uh oh!

Conversation

foot commented Mar 8, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

yiannistri left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

foot commented Mar 8, 2022 •

edited

Loading