Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

First TLS instrumentation #20

Merged
merged 29 commits into from
Jan 18, 2024
Merged

First TLS instrumentation #20

merged 29 commits into from
Jan 18, 2024

Conversation

Abuelodelanada
Copy link
Contributor

@Abuelodelanada Abuelodelanada commented Dec 8, 2023
edited
Loading

This PR fixes: #15

  • Adds TLS config for the workers
  • Adds TLS config for the NGINX workload in the coordinator.

And goes in tandem with:

How to test it:

  1. Deploy this bundle (You need to pack the coordinator and the worker)
bundle: kubernetes
applications:
  ca:
    charm: self-signed-certificates
    channel: edge
    revision: 52
    scale: 1
    constraints: arch=amd64
  coord:
    charm: local:mimir-coordinator-k8s-21
    scale: 1
    constraints: arch=amd64
    storage:
      data: kubernetes,1,1024M
    trust: true
  worker:
    charm: local:mimir-worker-k8s-8
    scale: 1
    options:
      all: true
    constraints: arch=amd64
    storage:
      data: kubernetes,1,1024M
    trust: true
relations:
- - coord:mimir-cluster
  - worker:mimir-cluster
- - coord:certificates
  - ca:certificates
  1. Check that the worker config file has the TLS settings in place: juju ssh --container mimir worker/0 cat /etc/mimir/mimir-config.yaml
  2. Check the nginx config in the coordinator has SSL: juju ssh --container nginx coord/0 cat /etc/nginx/nginx.conf

@Abuelodelanada Abuelodelanada marked this pull request as ready for review December 14, 2023 13:24
sed-i
sed-i reviewed Dec 14, 2023
View reviewed changes
src/charm.py Show resolved Hide resolved
src/charm.py Outdated Show resolved Hide resolved
src/charm.py Outdated Show resolved Hide resolved
src/charm.py Outdated Show resolved Hide resolved
src/mimir_coordinator.py Outdated Show resolved Hide resolved
tests/integration/test_tls.py Show resolved Hide resolved
tox.ini Show resolved Hide resolved
tox.ini Show resolved Hide resolved
dstathis
dstathis reviewed Dec 15, 2023
View reviewed changes
metadata.yaml Outdated Show resolved Hide resolved
src/charm.py Outdated Show resolved Hide resolved
@Abuelodelanada Abuelodelanada changed the title WIP: First TLS instrumentation First TLS instrumentation Jan 2, 2024
@Abuelodelanada Abuelodelanada mentioned this pull request Jan 16, 2024
Merged
lucabello
lucabello reviewed Jan 17, 2024
View reviewed changes
src/charm.py Outdated Show resolved Hide resolved
lib/charms/mimir_coordinator_k8s/v0/mimir_cluster.py Outdated Show resolved Hide resolved
@Abuelodelanada Abuelodelanada merged commit 8920465 into main Jan 18, 2024
13 checks passed
@Abuelodelanada Abuelodelanada deleted the tls branch January 18, 2024 21:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lucabello lucabello lucabello approved these changes

@PietroPasotti PietroPasotti Awaiting requested review from PietroPasotti PietroPasotti is a code owner

@simskij simskij Awaiting requested review from simskij simskij is a code owner

@IbraAoad IbraAoad Awaiting requested review from IbraAoad IbraAoad is a code owner

@mmkay mmkay Awaiting requested review from mmkay mmkay is a code owner

@dstathis dstathis Awaiting requested review from dstathis dstathis is a code owner

@sed-i sed-i Awaiting requested review from sed-i sed-i is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

add TLS support
4 participants
@Abuelodelanada @dstathis @lucabello @sed-i