Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Copying the TLS certificate authorities' list to the database #102

Open
ahsimb opened this issue May 3, 2024 · 0 comments
Open

Copying the TLS certificate authorities' list to the database #102

ahsimb opened this issue May 3, 2024 · 0 comments
Labels
feature Product feature

Comments

@ahsimb
Copy link
Collaborator

ahsimb commented May 3, 2024

In some scenarios the user may want to switch on the TLS certificate verification and use a custom CA list file or a bundle. For that purpose, we have the configuration key called trusted_ca. It should be set to a path to the file or a directory with the CA list. This setting is applicable for communication with both the database and the bucket-fs.

The problem arises when we want to pass the bucket-fs connection parameters to a UDF. In order to communicate to the bucket-fs service in exactly the same way as the external application the UDF needs to have access to the custom CA list. Hence the CA list must be uploaded to the file system of the SLC or to the bucket-fs itself where it can be accessed through the mounted directory.
@ahsimb ahsimb added the feature Product feature label May 3, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature Product feature
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@ahsimb