Skip to content

Commit

Permalink
Merge pull request #5 from upmc-enterprises/enable_tls
Browse files Browse the repository at this point in the history 
Added self-signed certs / Enabled TLS only on API endpoint
  • Loading branch information
@stevesloka
stevesloka committed Nov 29, 2015
2 parents 8c307ff + 2856afd commit 3a80763
Show file tree
Hide file tree
Showing 5 changed files with 60 additions and 1 deletion.
1 change: 1 addition & 0 deletions .gitignore
View file
Original file line number Diff line number Diff line change
@@ -1 +1,2 @@
emmie
.vscode/
3 changes: 3 additions & 0 deletions README.MD
View file
Original file line number Diff line number Diff line change
Expand Up @@ -32,6 +32,9 @@ Emmie integrates into the k8s api via the supported go client. Setup your CI ser
* Configure CI to curl Emmie and deploy new namespace
* Bask in the glory of how your team will produce better well tested code

## Generate Self-Signed cert
`openssl req -x509 -newkey rsa:2048 -keyout key.pem -out cert.pem -days 365 -nodes`

## Demo
Watch a demo here:<br>
[![Emmie Demo](http://img.youtube.com/vi/w7rshjxsojA/0.jpg)](http://www.youtube.com/watch?v=w7rshjxsojA)<br>
Expand Down
23 changes: 23 additions & 0 deletions certs/cert.pem
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
28 changes: 28 additions & 0 deletions certs/key.pem
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,28 @@
-----BEGIN PRIVATE KEY-----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-----END PRIVATE KEY-----
6 changes: 5 additions & 1 deletion emmie.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -265,6 +265,10 @@ func main() {
}
client = kubeClient

// create namespace
createNamespace("foo")
deleteNamespace("foo")

// Start server
log.Fatal(http.ListenAndServe(fmt.Sprintf(":%d", *argListenPort), router))
log.Fatal(http.ListenAndServeTLS(fmt.Sprintf(":%d", *argListenPort), "certs/cert.pem", "certs/key.pem", router))
}

0 comments on commit 3a80763

Please sign in to comment.