Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

PRO-446: Extend Helm chart options to support configuring GraphDB cluster and connector security with provided TLS assets #132

Merged
merged 1 commit into from
Jan 13, 2025
Merged

PRO-446: Extend Helm chart options to support configuring GraphDB cluster and connector security with provided TLS assets #132

merged 1 commit into from
Jan 13, 2025

Conversation

Secchol
Copy link
Contributor

@Secchol Secchol commented Sep 20, 2024
edited
Loading

Linked to GDB-11142 , GDB-10534 and GDB-11021
Added support for configuring grpc cluster security with externally provided TLS assets.
The following properties can now be configured through the Helm chart options:

  • certificate
  • private key
  • certificate chain
  • keystore
  • truststore
  • root certs
  • certificate revocation list

Added support for configuring Tomcat connector security with externally provided TLS assets.
Added support for the following properties :

  • keystore
  • truststore
  • certificate chain

mihailradkov
mihailradkov reviewed Oct 7, 2024
View reviewed changes
mihailradkov
mihailradkov reviewed Oct 18, 2024
View reviewed changes
mihailradkov
mihailradkov reviewed Oct 18, 2024
View reviewed changes
@Secchol Secchol changed the title Added support for keystore and truststore configuration. Extend Helm chart options to support configuring GraphDB cluster and connector security with provided TLS assets Oct 21, 2024
@Secchol Secchol force-pushed the GDB-10823-Extend-Helm-Chart-With-TLS-Properties branch from 9394a09 to 212661c Compare October 28, 2024 14:49
@Secchol Secchol changed the base branch from main to feature/11-3-features October 29, 2024 13:43
@Secchol Secchol marked this pull request as ready for review October 29, 2024 13:45
@Secchol Secchol requested a review from mihailradkov October 29, 2024 13:46
@mihailradkov mihailradkov changed the title Extend Helm chart options to support configuring GraphDB cluster and connector security with provided TLS assets PRO-446: Extend Helm chart options to support configuring GraphDB cluster and connector security with provided TLS assets Oct 30, 2024
@mihailradkov mihailradkov force-pushed the GDB-10823-Extend-Helm-Chart-With-TLS-Properties branch from 82f8826 to fe4cdbc Compare October 30, 2024 15:24
Base automatically changed from feature/11-3-features to main November 11, 2024 14:45
@mihailradkov mihailradkov force-pushed the GDB-10823-Extend-Helm-Chart-With-TLS-Properties branch 2 times, most recently from 4255c6c to ab6c6e3 Compare November 28, 2024 13:06
@Secchol
PRO-446: Added support for configuring trust stores and key stores
a88971d 
GraphDB Tomcat and GraphDB gRPC cluster can now be configured with TLS for secure
communication with GraphDB.

- Added Tomcat TLS configurations under `configuration.tls`
- Added gRPC TLS configurations under `cluster.tls`
- Updated jobs and scripts to use `https` or `http` depending on whether
  the Tomcat connector security is configured
- Added template for rendering the GraphDB protocol
- Added the protocol in the cronjob for backups
- Used volume projection to simplify the statefulset
- Read key/trust stores passwords as files
- Renamed privateKey to certificateKey
@Secchol Secchol force-pushed the GDB-10823-Extend-Helm-Chart-With-TLS-Properties branch from 65f88ee to a88971d Compare January 10, 2025 16:02
@Secchol Secchol changed the base branch from main to feature/11.4 January 13, 2025 13:58
@Secchol Secchol merged commit 225b495 into feature/11.4 Jan 13, 2025
3 checks passed
@Secchol Secchol deleted the GDB-10823-Extend-Helm-Chart-With-TLS-Properties branch January 13, 2025 14:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mihailradkov mihailradkov mihailradkov approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@Secchol @mihailradkov