Uploaded image for project: 'Project Quay'
  1. Project Quay
  2. PROJQUAY-2050

Support OCP Edge-Termination Routes

XMLWordPrintable

      Story: As a Quay administrator using the Operator I want to opt out of Operator-based TLS management, so I can rely and re-use OCP-based certificate provisioning and rotation using classic edge based Routes.

      Implementation: https://github.com/quay/enhancements/blob/main/enhancements/tls-managed-component.md

       

      Acceptance criteria:

      • During default deployments (without user specific configuration) TLS termination is managed by the Route
        • Default Route for Quay must contain its spec.tls.termination field set to "edge".
      • Users can still provide their own key and certs (through spec.configBundleSecret)
        • When users provide their own key and cert those must be present in the created Route object.

       

      Test plan:

      There is a test plan for this one, it is in https://github.com/quay/enhancements/blob/main/enhancements/tls-managed-component.md#test-plan

       

            rmarasch@redhat.com Ricardo Maraschini (Inactive)
            DanielMesser Daniel Messer
            luffy zhang luffy zhang
            Votes:
            0 Vote for this issue
            Watchers:
            7 Start watching this issue

              Created:
              Updated:
              Resolved: