UNCLASSIFIED - NO CUI

Skip to content
Snippets Groups Projects

Resolve "Extend git secret creation to include CA"

Resolve "Extend git secret creation to include CA"
660-extend-git-secret-creation-to-include-ca into master
Merged Michael Martin requested to merge 660-extend-git-secret-creation-to-include-ca into master

Summary

Added in changes to support the caFile for Flux git repositories. The chart logic was updated to follow the Flux use of this param to allow caFile to be present without username and password in the case where a public repository is used.

Tested using a copy of the monitoring package in a local apache-hosted git web repository using a self-signed certificate.

Without caFile set, flux would report the error:

bigbang  	gitrepository/monitoring          	False	unable to clone 'https://blackpearl/git/test', error: Get "https://blackpearl/git/test/info/refs?service=git-upload-pack": x509: certificate signed by unknown authority	14.0.0-bb.6/661f4fb010e085e0c13f9d64f2a0bbac496129fb	False

With the caFile set, flux accepted the certificate:

monitoring   https://blackpearl/git/test   True    Fetched revision: 14.0.0-bb.6/661f4fb010e085e0c13f9d64f2a0bbac496129fb   8m26s

Verified the logic creates the bigbang-git-credentials with the caFile field set.

Closes #660 (closed)

Edited by Michael Martin

Merge request reports

Loading
Loading

Activity

Filter activity
  • Approvals
  • Assignees & reviewers
  • Comments (from bots)
  • Comments (from users)
  • Commits & branches
  • Edits
  • Labels
  • Lock status
  • Mentions
  • Merge request status
  • Tracking
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
Please register or sign in to reply

UNCLASSIFIED - NO CUI