diff --git a/README.md b/README.md index 972b9d39..2749a53b 100644 --- a/README.md +++ b/README.md @@ -78,7 +78,7 @@ for more in-depth information. | [common](charts/common) | Common chartbuilding components ... | ![Version: 0.x](https://img.shields.io/badge/version-0.x-brightgreen) | ![App version: 0.x](https://img.shields.io/badge/app%20version-0.x-brightgreen) | | [csi-secret-provider-class](charts/csi-secret-provider-class) | A Helm chart to create a SecretP... | ![Version: 0.x](https://img.shields.io/badge/version-0.x-brightgreen) | ![App version: 0.x](https://img.shields.io/badge/app%20version-0.x-brightgreen) | | [customer-center](charts/customer-center) | Chart for Customer-Center applic... | ![Version: 0.x](https://img.shields.io/badge/version-0.x-brightgreen) | ![App version: 3.3.x](https://img.shields.io/badge/app%20version-3.3.x-brightgreen) | -| [kubernetes-etcd-backup](charts/kubernetes-etcd-backup) | Chart for kubernetes-etcd-backup... | ![Version: 1.2.x](https://img.shields.io/badge/version-1.2.x-brightgreen) | ![App version: 1.0.x](https://img.shields.io/badge/app%20version-1.0.x-brightgreen) | +| [kubernetes-etcd-backup](charts/kubernetes-etcd-backup) | Chart for kubernetes-etcd-backup... | ![Version: 1.3.x](https://img.shields.io/badge/version-1.3.x-brightgreen) | ![App version: 1.0.x](https://img.shields.io/badge/app%20version-1.0.x-brightgreen) | | [mopsos](charts/mopsos) | Deploy Mopsos to a Kubernetes Cl... | ![Version: 0.x](https://img.shields.io/badge/version-0.x-brightgreen) | ![App version: 0.x](https://img.shields.io/badge/app%20version-0.x-brightgreen) | | [openshift-etcd-backup](charts/openshift-etcd-backup) | Chart for openshift-etcd-backup ... | ![Version: 1.8.x](https://img.shields.io/badge/version-1.8.x-brightgreen) | ![App version: 1.8.x](https://img.shields.io/badge/app%20version-1.8.x-brightgreen) | | [osschallenge](charts/osschallenge) | Chart for OSS-Challenge application | ![Version: 0.x](https://img.shields.io/badge/version-0.x-brightgreen) | ![App version: ed.x](https://img.shields.io/badge/app%20version-ed.x-brightgreen) | diff --git a/charts/kubernetes-etcd-backup/Chart.yaml b/charts/kubernetes-etcd-backup/Chart.yaml index 2d5dbe45..37b04bc4 100644 --- a/charts/kubernetes-etcd-backup/Chart.yaml +++ b/charts/kubernetes-etcd-backup/Chart.yaml @@ -3,7 +3,7 @@ apiVersion: v2 name: kubernetes-etcd-backup description: Chart for kubernetes-etcd-backup solution type: application -version: 1.2.0 +version: 1.3.0 appVersion: v1.0.6 keywords: - kubernetes-etcd-backup @@ -20,4 +20,4 @@ maintainers: annotations: artifacthub.io/changes: | - kind: changed - description: "Allow configuration of extraVolume/Mounts" + description: "Add insecureSkipTlsVerify flag" diff --git a/charts/kubernetes-etcd-backup/README.md b/charts/kubernetes-etcd-backup/README.md index f4b265e5..67d54d50 100644 --- a/charts/kubernetes-etcd-backup/README.md +++ b/charts/kubernetes-etcd-backup/README.md @@ -1,6 +1,6 @@ # kubernetes-etcd-backup -![Version: 1.2.0](https://img.shields.io/badge/Version-1.2.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: v1.0.6](https://img.shields.io/badge/AppVersion-v1.0.6-informational?style=flat-square) +![Version: 1.3.0](https://img.shields.io/badge/Version-1.3.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: v1.0.6](https://img.shields.io/badge/AppVersion-v1.0.6-informational?style=flat-square) Chart for kubernetes-etcd-backup solution @@ -27,7 +27,8 @@ This chart is maintained by [Adfinis](https://adfinis.com/?pk_campaign=github&pk | backup.umask | string | `"0027"` | Set umask during the backup | | etcdCertification.etcdPeerTlsName | string | `"changeme"` | etcd-peer-tls secret name | | etcdCertification.etcdServerCaName | string | `"changeme"` | etcd-server-ca secret name | -| etcdConfiguration.endpoint | string | `"changeme"` | Etcd endpoint ip or hostname without protocol or port | +| etcdConfiguration.endpoint | string | `"changeme"` | Etcd endpoint ip or hostname without protocol or port Example: etcd.kube-system.svc.cluster.local | +| etcdConfiguration.insecureSkipTlsVerify | bool | `false` | Skip server certificate verification Useful for scenarios where etcd nodes are external endpoints (access through etcd service in kube-system namespace) and have a different CN/SAN in the certificate . Otherwise, "failed to verify certificate: x509: certificate is valid for etcd-2, etc., not etcd.kube-system.svc.cluster.local" | | extraVolumeMounts | list | `[]` | | | extraVolumes | list | `[]` | | | fullnameOverride | string | `""` | | diff --git a/charts/kubernetes-etcd-backup/templates/configmap.yaml b/charts/kubernetes-etcd-backup/templates/configmap.yaml index 932f76ab..10809a27 100644 --- a/charts/kubernetes-etcd-backup/templates/configmap.yaml +++ b/charts/kubernetes-etcd-backup/templates/configmap.yaml @@ -12,3 +12,6 @@ data: ETCD_BACKUP_KEEP_COUNT: {{ .Values.backup.keepcount | quote }} ETCD_BACKUP_UMASK: {{ .Values.backup.umask | quote }} ENDPOINT: {{ .Values.etcdConfiguration.endpoint | quote }} + {{- if .Values.etcdConfiguration.insecureSkipTlsVerify }} + ETCDCTL_INSECURE_SKIP_TLS_VERIFY: "true" + {{- end }} diff --git a/charts/kubernetes-etcd-backup/values.yaml b/charts/kubernetes-etcd-backup/values.yaml index 474b305d..5d5f44d6 100644 --- a/charts/kubernetes-etcd-backup/values.yaml +++ b/charts/kubernetes-etcd-backup/values.yaml @@ -22,7 +22,15 @@ backup: etcdConfiguration: # -- Etcd endpoint ip or hostname without protocol or port + # Example: etcd.kube-system.svc.cluster.local endpoint: "changeme" + # -- Skip server certificate verification + # Useful for scenarios where etcd nodes are external endpoints (access + # through etcd service in kube-system namespace) and have a different CN/SAN + # in the certificate . Otherwise, "failed to verify certificate: x509: + # certificate is valid for etcd-2, etc., not + # etcd.kube-system.svc.cluster.local" + insecureSkipTlsVerify: false etcdCertification: # -- etcd-peer-tls secret name