Skip to content

There is now a easier solution to create TLS certs.#176

Merged
ahmetb merged 3 commits intokubernetes:masterfrom
zioproto:fix-https-nginx-docs
Jan 18, 2018
Merged

There is now a easier solution to create TLS certs.#176
ahmetb merged 3 commits intokubernetes:masterfrom
zioproto:fix-https-nginx-docs

Conversation

@zioproto
Copy link
Copy Markdown
Contributor

@zioproto zioproto commented Jan 18, 2018

@k8s-ci-robot k8s-ci-robot added cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. size/M Denotes a PR that changes 30-99 lines, ignoring generated files. labels Jan 18, 2018
ahmetb
ahmetb reviewed Jan 18, 2018
View reviewed changes
staging/https-nginx/README.md
First generate a self signed rsa key and certificate that the server can use for TLS.

```sh
$ make keys secret KEY=/tmp/nginx.key CERT=/tmp/nginx.crt SECRET=/tmp/secret.json
Copy link
Copy Markdown
Member

@ahmetb ahmetb Jan 18, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

do you perhaps need to remove the keys target from the makefile now?

Copy link
Copy Markdown
Contributor Author

@zioproto zioproto Jan 18, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

you are right, I pushed a new commit that improves my change

ahmetb
ahmetb reviewed Jan 18, 2018
View reviewed changes
staging/https-nginx/README.md Outdated

```sh
$ make keys secret KEY=/tmp/nginx.key CERT=/tmp/nginx.crt SECRET=/tmp/secret.json
$ openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /tmp/nginx.key -out /tmp/nginx.crt -subj "/CN=nginxsvc/O=nginxsvc"
Copy link
Copy Markdown
Member

@ahmetb ahmetb Jan 18, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm not sure why you’re changing this part. I think make keys is still valid, you just need to delete make_secret.go (and the secret: target from Makefile) and the kubectl create command below.

Copy link
Copy Markdown
Contributor Author

@zioproto zioproto Jan 18, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You are right. I can keep the makefile for the keys generation. Look at my latest commit. Thank you

@ahmetb
Copy link
Copy Markdown
Member

ahmetb commented Jan 18, 2018

Looks good. Can you remove the BUILD file as it no longer applies after removing the *.go (and we don't use Bazel builds in this repo anymore)?

@k8s-ci-robot k8s-ci-robot added size/L Denotes a PR that changes 100-499 lines, ignoring generated files. and removed size/M Denotes a PR that changes 30-99 lines, ignoring generated files. labels Jan 18, 2018
@ahmetb
Copy link
Copy Markdown
Member

ahmetb commented Jan 18, 2018

/lgtm

@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Jan 18, 2018
@ahmetb ahmetb merged commit 52c1d66 into kubernetes:master Jan 18, 2018
@zhouya0 zhouya0 mentioned this pull request Nov 26, 2019
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ahmetb ahmetb ahmetb left review comments

Assignees

@ahmetb ahmetb

Labels

cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. lgtm "Looks good to me", indicates that a PR is ready to be merged. size/L Denotes a PR that changes 100-499 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@zioproto @ahmetb @k8s-ci-robot