Details
-
Story
-
Resolution: Done
-
Normal
-
None
-
5
-
False
-
False
-
Pipelines Sprint 216, Pipelines Sprint 217, Pipelines Sprint 218, Pipelines Sprint 219, Pipelines Sprint 220, Pipelines Sprint 221, Pipelines Sprint 222, Pipelines Sprint 223, Pipelines Sprint 224, Pipelines Sprint 225
Description
1. Proposed title of this feature request
ClusterInterceptor calls are done using HTTP instead of HTTPS which is considered a security problem
2. What is the nature and description of the request?
In many environments using HTTPS is a hard requirement. Meaning all traffic needs to be secured. Since the default ClusterInterceptor services are only providing HTTP this is considered insecure and something not allowed. Hence the request is to make sure that all ClusterInterceptor calls are using HTTPS instead, to comply with security regulation/requirements.
3. Why does the customer need this? (List the business requirements here)
There is a hard requirement to have all traffic in OpenShift Container Platform 4 and external secured using HTTPS or equivalent technologies. Since ClusterInterceptor are not offering HTTPS, they can't be used unless they are offering HTTPS.
4. List any affected packages or components.
- OpenShift Pipelines
- ClusterInterceptor