Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature/paf 153 #134

Open
wants to merge 8 commits into
base: master
Choose a base branch
from
Open

Feature/paf 153 #134

wants to merge 8 commits into from

Conversation

JHoldergov
Copy link
Contributor

@JHoldergov JHoldergov commented Feb 1, 2024
edited
Loading

What?**

To access PRP1 we have to access the link via a secure way. So we have a self-signing certificate provided.

Why?

This is the most secure way for the services to talk to each other, we have set the NODE_AUTH=0 because as a self signing cert it does not have a recognised authority hence why we keep the following in the ims reolver deployment

    - name: NODE_OPTIONS
          value: "--use-openssl-ca"

        {{ if or (eq .KUBE_NAMESPACE .BRANCH_ENV) (eq .KUBE_NAMESPACE .UAT_ENV) }}
        - name: NODE_TLS_REJECT_UNAUTHORIZED
          value: "0"

We will need to add prod option in there.

How?

So the best way for Node is to mount a config map as a persistent storage to store the cert then mount the config map as a volume in/etc/ss/certs and call it in the PAF app.

Testing?

Next step

Screenshots (optional)

Anything Else? (optional)

@JHoldergov JHoldergov added the WIP Work in progress label Feb 1, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
WIP Work in progress
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@JHoldergov