Additional trusted CAs when deploying via helm
Hey !
We are running Coder airgapped and have the terraform modules in a private git repository but when pulling them it runs into a certificate error. (Unable to get local issuer certificate)
We also have certificate issues when envbuilder tries to pull images from our local registry (tls failed to verify, x509 unknown authority) but that one we can circumvent with the insecure flag.
I have provided my additional CAs in the values file via
First i had to modify the template because it mounts under /etc/ssl/certs as {secret.name}.crt and we have several certs in the same secret under different keys but after that it mounts them all perfectly fine.
The errors remain though 😄
So im guessing my question is how to actually add all my trusted cas so they are trusted everywhere in coder, or at least on the coder pod.
4 Replies
What are you creating this issue for?
i worked around this by using the .gitconfig to trust the correct ca directly separately for every target repository
next up: breaking code-servers dependency on the internet 😄
nice thanks for the follow-up! :-)
regarding this:
First i had to modify the template because it mounts under /etc/ssl/certs as {secret.name}.crt and we have several certs in the same secret under different keys but after that it mounts them all perfectly fine.I will open up an issue :-)