Details
-
Story
-
Resolution: Done
-
Major
-
None
-
None
-
None
-
8
-
False
-
False
-
Sprint 215, Sprint 216, Sprint 217, Sprint 218, Sprint 219, Sprint 220
Description
As an OpenShift administrator
I want to provide the registry operator with a custom certificate authority for S3 storage
so that I can use a third-party S3 storage provider.
Acceptance criteria
- Users can specify a configmap name (from openshift-config) in config.imageregistry/cluster's spec.storage.s3.
- The operator uses CA from this configmap to check S3 bucket.
- The image registry pod uses CA from this configmap to access the S3 bucket.
- When a custom CA is defined, the operator/image-registry should still trust certificate authorities that are used by Amazon S3 and other well-known CAs.
- An end-to-end test that runs minio and checks the image registry becomes healthy with it.
Attachments
Issue Links
- relates to
-
RFE-2600 Support a custom CA for the certificate of the integrated OpenShift Container Platform registry
-
- Accepted
-
- links to
