Support TLS for kas->kas traffic (!741) · Merge requests · GitLab.org / cluster-integration / GitLab Agent for Kubernetes

Mikhail Mazurskiy requested to merge ash2k/tls-kas-kas into master Sep 27, 2022

Fixes gitlab-org/gitlab#375325 (closed).

Tested this locally with CI tunnel authn/authz disabled and the following kas config:

private_api:
  listen:
    network: "tcp"
    address: "172.16.123.1:8155"
    authentication_secret_file: "/Users/mike/src/gdk/gitlab/.gitlab_kas_secret"
    certificate_file: "/Users/mike/src/gdk/gdk.test.pem"
    key_file: "/Users/mike/src/gdk/gdk.test-key.pem"
    ca_certificate_file: "/Users/mike/src/gdk/localhost.crt"

Edited Sep 27, 2022 by Mikhail Mazurskiy

Support TLS for kas->kas traffic

Merge request reports