Andrej van der Zee

icon indicating a website link https://www.linkedin.com/in/andrejvanderzee/ icon indicating an email [email protected]

icon company Yolt by ING icon location Amsterdam, The Netherlands

Results 12 issues of Andrej van der Zee

Enable native SSL for webui and api

7 comment

[Project board link](https://github.com/orgs/k8ssandra/projects/8/views/1?pane=issue&itemId=13937803) We are moving from opscenter to Reaper. How can we serve reaper with TLS, without setting up a proxy? I am missing SSL config options: ``` server:...

stale
zh:Assess/Investigate
assess

External storage not writable

2 comment

On Android 4.0.4, ZTE Blade III, external storage is not writable. The following method returns false: static public boolean isExternalStorageWritable() { String state = Environment.getExternalStorageState(); if (Environment.MEDIA_MOUNTED.equals(state)) { return true;...

Add EncodeUsagesInRequestAnnotationKey for certificate

9 comment

### Pull Request Motivation We have integrated Cert Manager with GlobalSign ACME. Their backend requires `certificate.spec.encodeUsagesInRequest` explicitly to be `false` and `certificate.spec.usages` to be empty/unset. For example, this generates a...

release-note
needs-rebase
size/S
area/api
needs-ok-to-test
lifecycle/stale
dco-signoff: yes
needs-kind

Add option tokenPath to Vault (cluster)issuer

6 comment

The Vault (cluster)issuer does not allow to read a token from local filesystem, while it does not take care about renewing Vault tokens itself: https://github.com/cert-manager/cert-manager/issues/5437 This means that we have...

do-not-merge/release-note-label-needed
size/S
area/api
needs-ok-to-test
area/vault
dco-signoff: no
needs-kind

Issuer/ClusterIssuer support to specify vault token on local filesystem

The documentation https://cert-manager.io/v0.16-docs/configuration/vault/ sais: ``` cert-manager does not refresh these token automatically and so another process must be put in place to do this. ``` Can I suggest an option...

Issuer/ClusterIssuer vault with mounted JWT token

The configuration of the ClusterIssuer with Vault should have an option for using the mounted token. Currently a secret is configured and read by cert-manager. This is awkward and requires...

Google Connector with groups gives invalid_scope

1 comment

### Preflight Checklist - [X] I agree to follow the [Code of Conduct](https://github.com/dexidp/dex/blob/master/.github/CODE_OF_CONDUCT.md) that this project adheres to. - [X] I have searched the [issue tracker](https://www.github.com/dexidp/dex/issues) for an issue that...

Remove namespace from PodSecurityPolicy helm template

9 comment

This PR fixes using the chart with kustomization terraform provider: ```╷ │ Error: github.com/kbst/terraform-provider-kustomize/kustomize.kustomizationResourceDiff: "policy/PodSecurityPolicy/perfana/mimir-distributed": is not namespace scoped but has metadata.namespace set ``` PodSecurityPolicies are not namespaced so the...

bug
helm
release/notified-changelog-cut

Fix namespaced Role and non-namespaces ClusterRoleBindig in helm chart

This MR: - Removes namespace from non-namespaced `ClusterRoleBinding` object - Adds namespace to namespaced `Role` object

Feature Request: Missing data source keycloak_users

The provider can only data source one particular user, but _not_ all users from a particular realm or group. For example by a new data source `keycloak_users`: ``` data "keycloak_realm"...