You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I have a use case where the server certificate is self-signed and doesn't have a hostname in the SAN
How can I make it so that the hostname validation is skipped but the certificate verification still happens when using the PodCommandExecutor?
Most kubernetes clients support constructors that allow passing the HTTP client func NewForConfigAndClient(c *rest.Config, h *http.Client)
this helps in configuring the TLS in the HTTP client to skip the hostname validation if needed.
Is there something that can be done for the pod command executor?
The text was updated successfully, but these errors were encountered:
Are you trying to import velero's package in your code?
Please feel free to fork the repo to add such support, but it may not be merged into upstream, because at the moment velero doesn't have a use case to skip cert when executing hooks.
velero/pkg/podexec/pod_command_executor.go
Line 57 in 4d48273
I have a use case where the server certificate is self-signed and doesn't have a hostname in the SAN
How can I make it so that the hostname validation is skipped but the certificate verification still happens when using the PodCommandExecutor?
Most kubernetes clients support constructors that allow passing the HTTP client
func NewForConfigAndClient(c *rest.Config, h *http.Client)
this helps in configuring the TLS in the HTTP client to skip the hostname validation if needed.
Is there something that can be done for the pod command executor?
The text was updated successfully, but these errors were encountered: