Uploaded image for project: 'Observability and Data Analysis Program'
  1. Observability and Data Analysis Program
  2. OBSDA-788

Allow multitenancy and reencrypt ingress route.

XMLWordPrintable

    • Icon: Feature Feature
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • rhosdt-3.3
    • None
    • PM Tracing
    • False
    • None
    • False
    • Not Selected
    • 0
    • 0% To Do, 100% In Progress, 0% Done
    • 0

      At this time only a passthrough route is able to be used when multitenancy is used. This request is for the ability to use a reencrypt route or edge route when this is configured so that manually cert management is not required if user wants to avoid using the internally signed OCP cert.

       

      apiVersion: tempo.grafana.com/v1alpha1
      kind: TempoStack
      metadata:
        name: dist-test
        namespace: dist-test
      spec:
        tenants:
          mode: openshift 
          authentication: 
            - tenantName: dev 
              tenantId: "1610b0c3-c509-4592-a256-a1871353dbfa" 
            - tenantName: prod
              tenantId: "1610b0c3-c509-4592-a256-a1871353dbfb"
        storageSize: 1Gi
        storage:
          secret:
            name: tempo-s3
            type: s3
        resources:
          total:
            limits:
              memory: 2Gi
              cpu: 2000m
        template:
          gateway:
            enabled: true 
            ingress:
              route:
                termination: reencrypt
              type: route
          queryFrontend:
            jaegerQuery:
              enabled: true

      At this time this is allowed but it does not work with the ocp auth.

            rh-ee-jgomezse Jose Gomez-Selles
            rhn-support-rhowe Ryan Howe
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: