etcd-operator icon indicating copy to clipboard operation
etcd-operator copied to clipboard
verified publisher icon coreos

TLS configuration: support kubernetes.io/tls type of secret.

Open jgreat opened this issue 6 years ago • 3 comments

Please consider supporting the the standard tls type of secret or add an option to specify the secret data key names in the config. This would allow for automatic cert generation with tools like cert-manager.

cert-manager generates tls secret objects like this:

kind: Secret
type: kubernetes.io/tls
apiVersion: v1
data:
  ca.crt: ...
  tls.crt: ...
  tls.key: ...

jgreat avatar Apr 23 '19 22:04 jgreat

Is there any progres in this issue?

sz-po avatar Sep 08 '19 20:09 sz-po

This looks like it would be relatively straightforward to implement if you were happy to drop support for the current naming scheme and instead use only tls type secrets. This seems to me like it would be a reasonable thing to do?

I'm trying to use etcd with a self signing issuer from cert-manager which only supports tls secrets and this is causing some real frustration.

I'm happy to put a PR together based on a maintainers advice?

judahrand avatar Nov 26 '19 13:11 judahrand

Is there any update in this issue ? That would be great if we could use the certificate generated from cert-manager.

Smana avatar Jan 17 '20 14:01 Smana