Uploaded image for project: 'OpenShift Builds'
  1. OpenShift Builds
  2. BUILD-1152

Support self-signed certificates in builds

XMLWordPrintable

    • Icon: Epic Epic
    • Resolution: Unresolved
    • Icon: Critical Critical
    • None
    • None
    • builds-operator, shipwright
    • None
    • Self-Signed Certificates
    • False
    • None
    • False
    • Not Selected
    • To Do
    • SECFLOWOTL-28 - Openshift Builds in clusters with restricted networks
    • 100% To Do, 0% In Progress, 0% Done

      Epic Goal

      Support use cases where a self-signed certificate is used in the build process.

      Why is this important?

      In enterprise environments, TLS certificates are often issued by a "corporate" certificate authority that is not globally trusted by RHEL. Actions that use HTTPS as transport (ex: cloning git source, pulling container images, downloading dependencies) need to be able to find and utilize the correct certificate authority.

      Scenarios

      1. Cloning source code from a private git server
      2. Pulling container images from a private container registry
      3. Pulling dependencies from a private repository (ex: Artifactory).

      Acceptance Criteria (Mandatory)

      • CI - MUST be running successfully with tests automated
      • Release Technical Enablement - Provide necessary release enablement details and documents.
      • ...

      Dependencies (internal and external)

      1. ...

      Previous Work (Optional):

      Open questions::

      Done Checklist

      • Acceptance criteria are met
      • Non-functional properties of the Feature have been validated (such as performance, resource, UX, security or privacy aspects)
      • User Journey automation is delivered
      • Support and SRE teams are provided with enough skills to support the feature in production environment

              Unassigned Unassigned
              adkaplan@redhat.com Adam Kaplan
              Votes:
              1 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated: