Loading...

XML

Word

Printable

Details

Type: Enhancement
Resolution: Unresolved
Priority: Major
Fix Version/s: 3.x
Affects Version/s: 3.3.0.GA
Component/s: Team B: DevWorkspace + Operator, Web Terminal + Operator, editors/IDEs + built-in vscode extensions, Universal Developer Image, machine-exec, dev environment config
Labels:
- Customer5
- certificates
- triaged
- udi

Blocked:
False
Blocked Reason:
None
Ready:
False

SFDC Cases Counter:
SFDC Cases Links:

Description

We can mount the public certificates into the Workspace pod by following this chapter of documentation:

https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.3/html-single/administration_guide/index#importing-untrusted-tls-certificates

While these certificates gets mounted into the /public-certs location in the Workspace pod, they are not automatically added into the java truststore. It seems they are added into the java truststore automatically only in community UDI, not in a product one. This would be sensible default behaviour which would simplify integration with any external system at customer's environment, such as Artifactory/Nexus.

Right now, the process for importing certificates into tooling container java truststore is fairly manual:

https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.3/html-single/user_guide/index#enabling-maven-artifact-repositories

ACTUAL BEHAVIOUR:

Public certificates are mounted into the Workspace pod, but are not added to the Java truststore automatically

EXPECTED BEHAVIOUR:

Public certificates are mounted into the Workspace pod AND they are automatically imported into the java truststore.

Attachments

Activity

People

Assignee:: Mario Loriedo

Reporter:: Anton Giertli

Votes:: 1 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2023/01/30 12:45 PM

Updated:: 2023/04/04 7:04 PM