Actions
Bug #28888
closedExtra apache configuration needed for cert-based docker syncing
Difficulty:
Triaged:
No
Description
In order to pull docker content in an authenticated way, some extra config is required in apache under the 443 virtual host:
RequestHeader set SSL_CLIENT_I_DN "%{SSL_CLIENT_I_DN}s"
RequestHeader set SSL_CLIENT_VERIFY "%{SSL_CLIENT_VERIFY}s"
RequestHeader set SSL_SERVER_S_DN_OU "%{SSL_SERVER_S_DN_OU}s"
RequestHeader set SSL_CLIENT_S_DN "%{SSL_CLIENT_S_DN}s"
RequestHeader set SSL_CLIENT_S_DN_X509 "%{SSL_CLIENT_S_DN_X509}s"
We can wrap it in <Location /v2/> ... </Location> if we want to minimize exposure.
Updated by The Foreman Bot over 4 years ago
- Status changed from New to Ready For Testing
- Pull request https://github.com/theforeman/puppet-katello/pull/319 added
Updated by Justin Sherrill over 4 years ago
- Blocks Tracker #28736: Use Pulp 3 for File and Container content in Katello added
Updated by Justin Sherrill over 4 years ago
- Status changed from Ready For Testing to Closed
Applied in changeset puppet-katello|decf125c670943459495212c2030d3be4d0e46b6.
Actions