Lightrun
question-mark
Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

[Suggestion] - Allow setting TLS host(s)

See original GitHub issue

Suggestion

Dear Atlassian charts team,

we would like to be able to set the TLS host(s) separately from the normal (rules) hosts to make it easier to work with wildcard certificates (issued e.g. with Letsencrypt) which is especially useful on pre-prod environments.

Example known from many other charts:

  ingress:
    enabled: true
    apiVersion: ...
    hostName: service.staging.example.com
    tls:
    - hosts:
      - *.staging.example.com
      secretName: tls-secret
    ...

Thank you Patrick

Product

Jira, Confluence, Bitbucket, Other

Code of Conduct

  • I agree to follow this project’s Code of Conduct

Issue Analytics

  • State:open
  • Created 2 years ago
  • Comments:6 (4 by maintainers)

github_iconTop GitHub Comments

1reaction
nanuxcommented, Jan 11, 2022

Thank you for the explanation. If you have a working example, would you mind raising a PR with the proof of concept and describe how to test the setup?

0reactions
bianchi2commented, Nov 16, 2022

@pathob I can see what you are trying to achieve here. I was just wondering if wildcard works for you in rules[0].host. Obviously not, otherwise you’d never raise this issue. The change should be pretty straightforward:

spec:
{{ if and (.Values.ingress.tlsSecretName) (.Values.ingress.tlsHost) }}
  tls:
    - hosts:
        - {{ .Values.ingress.tlsHost }}
      secretName: {{ .Values.ingress.tlsSecretName }}
{{ end }}

and in values have ingress.tlsHost or even better a list of hosts (then the syntax in ingress template will be different).

Read more comments on GitHub >

github_iconTop Results From Across the Web

Exchange Server TLS guidance Part 2: Enabling TLS 1.2 and ...
We recommend configuring the value to have a consistent state across your servers. For example; consider what would happen if TLS 1.2's values ......
Read more >
Solved: ISE 3.0 TLS v1.2 enable. - Cisco Community
To enable TLS 1.2, I only need to uncheck 'Allow TLS 1.0' and 'Allow TLS 1.1' on Administration > System > Settings >...
Read more >
Configuring TLS Settings - Trend Micro
Use the management console to enable the TLS settings for messages entering and exiting IMSVA. With IMSVA acting as the server, enable incoming...
Read more >
Enable TLS for a Deployment — MongoDB Ops Manager 6.0
With the Client Certificate Mode setting, you can set if the client must present a TLS certificate to connect to the deployments in...
Read more >
Enable or Disable TLS Versions on ESXi Hosts - VMware Docs
To disable TLS 1.0 and enable both TLS 1.1 and TLS 1.2 on all hosts in a cluster, run the following command. ./reconfigureEsx...
Read more >

github_iconTop Related Medium Post

No results found

github_iconTop Related StackOverflow Question

No results found

github_iconTroubleshoot Live Code

Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free

github_iconTop Related Reddit Thread

No results found

github_iconTop Related Hackernoon Post

No results found

github_iconTop Related Tweet

No results found

github_iconTop Related Dev.to Post

No results found

github_iconTop Related Hashnode Post

No results found
Previous page

Retain state while refreshing

Next page

[Suggestion] - Library chart which contains common logic between Atlassian charts