UNCLASSIFIED - NO CUI

Skip to content

feat: support passing in an additional ca certificate for sso

Jonathan Braswell requested to merge 53-sso-ca into main

Closes #53 (closed)

Added controller.sso.certificateAuthority.secretName to values.yaml. Its expected value is a pem-encoded CA certificate. When it is set, it is mounted into the neuvector-controller-pod at /etc/ssl/certs/oidc.pem. I will be making a subsequent change to the bigbang umbrella chart to create this secret and pass down the secretName when its .Values.sso.certificateAuthority is set.

Edited by Jonathan Braswell

Merge request reports