Migrate ssl truststore into a secret (Jupyter) #176

planetf1 · 2022-08-15T13:24:28Z

Currently the truststore - ie the certificate chain relating the servers we trust (Egeria's root & intermediate Cases, which sign the server cert used by the server chassis) is stored in a configmap.

Generally, certificates, passwords etc should be stored in secrets as these are more secure and opaque.

In this case the exposure is negligible given

this is only for demo purposes
previously we didn't validate certs
this is only an additional root certificate -- these are often provided clear text anyway when installed on an O/S
these are only our self-signed cert chain

planetf1 changed the title ~~Migrate ssl truststore into a secret~~ Migrate ssl truststore into a secret (Jupyter) Aug 15, 2022

planetf1 transferred this issue from odpi/egeria-coco-labs Aug 15, 2022

planetf1 self-assigned this Aug 25, 2022

planetf1 added the containers label Dec 5, 2022

planetf1 added this to Egeria Kubernetes & Container Dec 5, 2022

planetf1 moved this to Security in Egeria V4.0 Planning Dec 5, 2022

planetf1 added this to Egeria V4.0 Planning Dec 5, 2022

planetf1 moved this to Todo in Egeria V4.0 Planning Dec 5, 2022

planetf1 moved this to Todo in Egeria Kubernetes & Container Dec 5, 2022

planetf1 removed this from Egeria V4.0 Planning Mar 23, 2023

planetf1 removed their assignment Jun 13, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Migrate ssl truststore into a secret (Jupyter) #176

Migrate ssl truststore into a secret (Jupyter) #176

planetf1 commented Aug 15, 2022 •

edited

Loading

Migrate ssl truststore into a secret (Jupyter) #176

Migrate ssl truststore into a secret (Jupyter) #176

Comments

planetf1 commented Aug 15, 2022 • edited Loading

planetf1 commented Aug 15, 2022 •

edited

Loading