Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: Normal
Fix Version/s: Logging 5.3.0
Affects Version/s: openshift-4.6
Component/s: Log Collection
Labels:
- devel_ack+
- log-core

Blocked:
False
Ready:
False
Epic Link:
Expand Fluentd Auth Capabilities
Docs QE Status:
NEW
QE Status:
NEW
Release Note Text:
Undefined

Sprint:
Logging (Core) - Sprint 209

SFDC Cases Links:
SFDC Cases Counter:

Description

Currently, you need to always provide a Secret to work with HTTPS. It seems that this code line is responsible for that.

With the following LF CR:

apiVersion: logging.openshift.io/v1
kind: ClusterLogForwarder
metadata:
  name: instance
  namespace: openshift-logging
spec:
  outputs:
    - name: es-created-by-user
      type: elasticsearch
      url: 'https://elasticsearch-server.openshift-logging.svc:9200'
  pipelines:
    - name: forward-to-external-es
      inputRefs:
      - infrastructure
      - application
      - audit
      outputRefs:
      - es-created-by-user

Expected Fluentd entry:

@type elasticsearch
@id es_created_by_user
host elasticsearch-server.openshift-logging.svc
port 9200
verify_es_version_at_startup false
scheme https

Actual:

@type elasticsearch
@id es_created_by_user
host elasticsearch-server.openshift-logging.svc
port 9200
verify_es_version_at_startup false
scheme http

Attachments

Issue Links

blocks

OBSDA-321 Support Log Forwarding API without mTLS with external Elastic Search

Closed

links to

openshift/cluster-logging-operator#1223: LOG-1235: Fix output scheme to ES for https w/o secret

Activity

People

Assignee:: Jeffrey Cantrill

Reporter:: Christian Heidenreich (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 2021/03/23 8:35 AM

Updated:: 2022/08/26 2:23 PM

Resolved:: 2021/11/15 12:56 PM