-
Story
-
Resolution: Done-Errata
-
Undefined
-
None
-
rhel-system-roles-1.78.1-0.1.el9
-
4
-
sst_system_roles
-
3
-
QE ack, Dev ack
-
False
-
-
Yes
-
Red Hat Enterprise Linux
-
System Roles Sprint 1, System Roles Sprint 2, System Roles Sprint 3, System Roles Sprint 4
-
Enhancement
-
-
Done
-
None
Feature: Add two new parameters:
podman_registry_certificates is a list of dict. Each dict specifies the
certs and keys to use to connect to the specified registry using TLS and
optionally use certificate authentication. More information can be found
in the manpage for containers-certs.d.
podman_validate_certs is a boolean which allows you to require or disable
TLS certificate checking (i.e. if you do not have a CA cert for
podman_registry_certificates and you still want to pull images from a TLS
enabled registry). This corresponds to the parameter "validate_certs"
of the module containers.podman.podman_image. You can also control
certificate validation by using podman_registries_conf to configure
the "insecure" parameter for a registry.
Reason: Users need to be able to configure the TLS settings for
connecting to registries.
Result: Users can connect to registries using TLS and control how
that works.
QE: tests_auth_and_security.yml has been extended for this.
- links to
-
RHEA-2024:130467 rhel-system-roles bug fix and enhancement update