Uploaded image for project: 'OpenShift Request For Enhancement'
  1. OpenShift Request For Enhancement
  2. RFE-5211

[RFE]Add warning for missing tls.crt key in destination-ca-certificate secret used for reencrypt ingress creation

    XMLWordPrintable

Details

    • False
    • None
    • False
    • Not Selected
    • 0
    • 0% 0%

    Description

      1. Proposed title of this feature request

      Add warning for missing tls.crt key in destination-ca-certificate secret used for reencrypt ingress creation

      2. What is the nature and description of the request?

      Creating a re-encrypt route using ingress needs to create a destination ca certificate secret. If the destination ca certificate secret is created with a key other than tls.crt, then the resulting route does not pick the destination ca certificate, and no warning/error is shown to the users on the OCP web console or in OCP CLI  indicating missing tls.crt key in the secret.

      For example, if ca-bundle.crt key missing on a trusted CA config map used for cluster-wide proxy then the network CO throws an error/warning about the missing key in the config map.

      3. Why does the customer need this? (List the business requirements here)

      Having a meaningful warning can help customers as well as the support engineers to fix the issue. For example, "missing tls.crt in secret <secret_name>".

      This helps improve OCP as a product where the cluster itself shows what is desired and what is missing.

      4. List any affected packages or components.

      Network Edge

      Attachments

        Activity

          People

            mcurry@redhat.com Marc Curry
            rhn-support-dpateriy Divyam Pateriya
            Votes:
            6 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated: