Hello. This is in relation to this epic: https://jira.onap.org/browse/OOM-1610
As described in epic description, there is a way needed to inject ca certificates to some pods in order to allow the pods to connect to intranet nexus when looking for artifacts, for example. Main use we have in mind is offline onap installation. The problem is how to do it correctly (for dublin). I don't remember details right now, but for beijing certificates were needed to be injected to java truststores (this is probably the easier case), and for some even to system cacerts (and this is the more tricky case). There is no clean way to achieve this right now, it requires some hacky init containers and such like. Making it possible would definitely require modification of helm charts, and possibly even components that make use the certificates. Any thoughts? -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#15432): https://lists.onap.org/g/onap-discuss/message/15432 Mute This Topic: https://lists.onap.org/mt/29733494/21656 Group Owner: [email protected] Unsubscribe: https://lists.onap.org/g/onap-discuss/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
