Uploaded image for project: 'OpenShift Dev Console'
  1. OpenShift Dev Console
  2. ODC-5458

Enabling TLS does mean certifacte etc is required

XMLWordPrintable

    • False
    • False
    • 0
    • Undefined
    • Not Supported
    • ODC Sprint 196

      The UI does not allow me to just enable TLS - it has a required sub-dialog for ca-certificate etc.

      However with public CERTs (e.g. when using managed kafka (or likely Confluent managed kafka - or IBM Event streams etc), this is wrong - just enabling TLS is good enough.

      Here is a snippet of what it will be for the Red Hat managed kafka:

      apiVersion: sources.knative.dev/v1beta1
kind: KafkaSource
metadata:
  name: kafka-source
spec:
  bootstrapServers:
    - come-at-me-bro.kafka.devshift.org:443
  topics:
    - strimzi-canary
  net:
    sasl:
      enable: true
      user:
        secretKeyRef:
          name: my-sasl-secret
          key: user
      password:
        secretKeyRef:
          name: my-sasl-secret
          key: password
    tls:
      enable: true
  sink:
    ref:
      apiVersion: serving.knative.dev/v1
      kind: Service
      name: ping-display

      There we just enable the TLS .... with the YAML editor this works

        1. image-2021-02-03-20-08-05-999.png
          image-2021-02-03-20-08-05-999.png
          17 kB

              jakumar jaivardhan Kumar
              mwessend@redhat.com Matthias Wessendorf
              Karthik Jeeyar Karthik Jeeyar
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: