Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: Critical
Fix Version/s: None
Affects Version/s: None
Component/s: config-tool, documentation
Labels:
- documenation
- triaged

Blocked:
False
Blocked Reason:
None
Ready:
False

RICE Score:
0

SFDC Cases Links:
SFDC Cases Counter:

Description

The config editor (config-tool) is accessible only via unsecured http connection (Web Interface and API). The configuration mostly contains sensitive date like credentials for the database, storagebackend and so on.

Quay instances used in highly regulated environments must use TLS to connect to the config editor.

Attachments

Issue Links

links to

quay/config-tool#188: docs: Add documentation for TLS usage (PROJQUAY-4558)

mentioned on

Merge request - Updated US source to: 1239477 [redhat-3.9] api: Adding ignore timezone flag when parsing datetime (PROJQUAY-5360) (#2079)

Merge request - Updated US source to: a095e1f api: Adding ignore timezone flag when parsing datetime (PROJQUAY-5360) (#2027)

Activity

People

Assignee:: Steven Smith

Reporter:: Wilhelm Weber (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 2022/10/06 10:10 AM

Updated:: 2023/08/01 2:27 PM

Resolved:: 2023/01/30 4:11 PM