Resolve "elasticsearch endpoint is throwing certificate error"
General MR
Summary
istio enabled requires elasticsearch self signed cert and mtl to be disabled or will double encrypt. These changes allow istio to handle the mtls traffic encryption if istio is enabled.
Relevant logs/screenshots
N/A
Linked Issue
Links to #204
Upgrade Notices
Elasticsearch Statefulsets Update Strategy
are set to OnDelete
, so in order for the changes in this package mr to take effect (i.e tunneling certificates/mtls handling through istio-proxy) 1) istio must be enabled and 2) the elasticsearch pods need to be manually deleted (for more information see kubernetes documentation on statefulsets updates strategies).