testkube oauth2 proxy support for custom tls certs

Question

testkube oauth2 proxy support for custom tls certs

gberche-orange opened this issue a year ago · 2 comments

Describe the enhancement you'd like to see

As a Testkube operator
in order to use oauth2 proxy with a self-signed OIDC endpoint
I need testkube oauth2 helm chart to support mounting such custom certs through an extra volume + volume mount, similar to https://github.com/bitnami/charts/blob/4f55b58df012d9bbad764182a6f3c415b36b9767/bitnami/oauth2-proxy/values.yaml#L568-L571

workaround

Post process helm chart rendering, with flux my team uses the following to mount custom tls certs from host

  postRenderers:
    # Mount host ssl certs to corpotate FQDN used
    - kustomize:
        patchesJson6902:
          - target:
              kind: Deployment
              name: oauth2-proxy
            patch:
              - op: add
                path: /spec/template/spec/volumes
                value: []
              - op: add
                path: /spec/template/spec/volumes/-
                value:
                  name: cert-volume
                  hostPath:
                    path: /etc/ssl/certs
                    type: Directory
              - op: add
                path: /spec/template/spec/containers/0/volumeMounts
                value: []
              - op: add
                path: /spec/template/spec/containers/0/volumeMounts/-
                value:
                  mountPath: /etc/ssl/certs
                  name: cert-volume

Additional context
Add any other context, CLI input/output, etc. about the enhancement here.

Answer 1 · 2023-04-07T08:12:01.000Z

hi @gberche-orange!
We have added an option to specify volumes for oauth2 Deployment. Please try and let us know about the results.

Answer 2 · 2023-04-07T16:41:05.000Z

tested with 1.10.337, works perfectly, thanks a lot @ypoplavs, !