Project

General

Profile

Actions
Copy link

Feature #51972

closed

cephadm/ingress: support TLS RGW backend

Added by Dimitri Savineau almost 3 years ago. Updated about 1 year ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
% Done:

0%

Source:
Tags:
backport_processed
Backport:
quincy, pacific
Reviewed:
Affected Versions:
Ceph - v16.2.5, Ceph - v17.0.0
Pull request ID:
48874

Description

As per the documentation (and the code), the ingress service via haproxy doesn't support RGW backend with TLS. [1]2

There's no real reason to not support end to end TLS encryption with ingress + RGW

This is a pretty common setup nowadays.

[1] https://docs.ceph.com/en/latest/cephadm/rgw/#high-availability-service-for-rgw
[2] https://docs.ceph.com/en/latest/cephadm/rgw/#prerequisites

Related issues 2 (0 open2 closed)

Copied to Orchestrator - Backport #58176: quincy: cephadm/ingress: support TLS RGW backendResolvedAdam KingActions
Copied to Orchestrator - Backport #58177: pacific: cephadm/ingress: support TLS RGW backendResolvedAdam KingActions
Actions
Copy link

Also available in: Atom PDF