Uploaded image for project: 'OpenShift Virtualization'
  1. OpenShift Virtualization
  2. CNV-43248

[4.16]virt-exportproxy route does not adhere to the ocp4-routes-protected-by-tls compliance rule

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done-Errata
    • Icon: Normal Normal
    • CNV v4.16.2
    • CNV v4.12.0, CNV v4.13.0, CNV v4.14.0, CNV v4.16.0, CNV v4.15.0
    • Storage Platform
    • None
    • 1
    • False
    • Hide

      None

      Show
      None
    • False
    • None
    • ---
    • ---
    • Storage Core Sprint 256, Storage Core Sprint 258
    • No

      Description of problem:

      The exportproxy route does not specify {{insecureEdgeTerminationPolicy}} in the TLS configuration and the ocp4-routes-protected-by-tls compliance rule requires this to be set to None or Redirect.

      Version-Release number of selected component (if applicable):

      4.12.x

      How reproducible:

      Always

      Steps to Reproduce:

      1. Deploy OpenShift Virtualization
2. Check virt-exportproxy Route
3.

      Actual results:

      TLS config missing above field

      Expected results:

      TLS config has insecureEdgeTerminationPolicy set to None or Redirect.

      Additional info:

              rhn-support-awels Alexander Wels
              alitke@redhat.com Adam Litke
              Yan Du Yan Du
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

                Created:
                Updated:
                Resolved: