Loading...

XML

Word

Printable

Type: Story
Resolution: Done
Priority: Normal
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
- groomed

Work Type:
Strategic Product Work
Blocked:
False
Blocked Reason:
None
Ready:
False
Epic Link:
Azure ARO support
Feature Link:
OCPSTRAT-460 - Optimized HyperShift Operator Deployment on AKS and Adaptive Environment Detection
Intelligence Requested:
Market:

Sprint:
Hypershift Sprint 258
Cost of Delay:
0
WSJF:
0
Risk Score:
0

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

User Story:

As an end user of a hypershift cluster, I want to be able to:

Not see internal host information when inspecting a serving certificate of the kubernetes API server

so that I can achieve

No knowledge of internal names for the kubernetes cluster.

From slack thread: https://redhat-external.slack.com/archives/C075PHEFZKQ/p1722615219974739

We need 4 different certs:

common sans
internal san
fqdn
svc ip

links to

openshift/hypershift#4566: HOSTEDCP-1861: cpo: separate KAS cert into internal and external

openshift/hypershift#4595: [release-4.17] HOSTEDCP-1861: cpo: separate KAS cert into internal and external

Assignee:: Seth Jennings

Reporter:: Cesar Wong

QA Contact:: Jie Zhao

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2024/08/02 4:49 PM

Updated:: 2024/09/04 8:08 PM

Resolved:: 2024/08/26 8:24 PM