Error on SSL connection; adding self-signed CA root cert to trusted certificates in GSS
396 views
Skip to first unread message
Miroslav Karpíšek
Mar 17, 2023, 2:26:15 PM3/17/23
to cloud-composer-discuss
Hi,
what is please the correct way to handle the use-case when I want to add a self-signed certificate to the trusted certificates in google cloud composer?
Usually, I would download and update the certificates in the docker image upon creation but here (as we are directly in charge of the GKE pod's creation) I don't know how to proceed. Any suggestions?
Maybe I'm totally wrong and there is a better way how to do it on the GCP platform (maybe some service).
Thank you in advance for any suggestions.
what is please the correct way to handle the use-case when I want to add a self-signed certificate to the trusted certificates in google cloud composer?
Usually, I would download and update the certificates in the docker image upon creation but here (as we are directly in charge of the GKE pod's creation) I don't know how to proceed. Any suggestions?
Maybe I'm totally wrong and there is a better way how to do it on the GCP platform (maybe some service).
Thank you in advance for any suggestions.
Rafal Biegacz
Mar 19, 2023, 10:25:30 AM3/19/23
to Miroslav Karpíšek, cloud-composer-discuss
Hi,
The most correct way would be to store it in Secret Manager and download the certificate from the Secret Manager to local storage when needed.
The alternative approach would be to add the certificate to /data folder in the GCS bucket of the Composer environment.
Regards, Rafal
--
You received this message because you are subscribed to the Google Groups "cloud-composer-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cloud-composer-di...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/cloud-composer-discuss/32c92d0f-1dc4-4810-b237-ecdac021368bn%40googlegroups.com.
Reply all
Reply to author
Forward
0 new messages