kubernetes

infra

kubernetes

Fork 0

Commit Graph

Author	SHA1	Message	Date
Dustin	7698e039d1	postgresql: Use a private CA-signed TLS cert The PostgreSQL server managed by Postgres Operator uses a self-signed certificate by default. In order to enable full validation of the server certificate, we need to use a certificate signed by a known CA that the clients can trust. To that end, I have added a cert-manager Issuer specifically for PostgreSQL. The CA certificate is also managed by cert-manager; it is self-signed and needs to be distributed to clients out-of-band.	2023-10-18 18:47:09 -05:00

Author

SHA1

Message

Date

Dustin

7698e039d1

postgresql: Use a private CA-signed TLS cert

The PostgreSQL server managed by *Postgres Operator* uses a self-signed
certificate by default.  In order to enable full validation of the
server certificate, we need to use a certificate signed by a known CA
that the clients can trust.  To that end, I have added a *cert-manager*
Issuer specifically for PostgreSQL.  The CA certificate is also managed
by *cert-manager*; it is self-signed and needs to be distributed to
clients out-of-band.

2023-10-18 18:47:09 -05:00

1 Commits (12d3c32855f7f3536918a1836fc8ea9c7e2e2ae7)