I build ignite cluster in my kubernetes VM. I want to configure my ignite pods to work with tls without certificate validation. I created a key store manually in each pod which are binary files how can I add them to be created as part of the chart deploy? should I create the file before and add to configmap? or run a shell command during build to create them? can you please assist I'm new to kubernetes and SSL/TLS
1 Answers
1
votes
You need to configure your node to use appropriate ssl/tls settings per this guide: https://ignite.apache.org/docs/latest/security/ssl-tls
docs for using a configmap to create an ignite configuration file for a node: https://ignite.apache.org/docs/latest/installation/kubernetes/amazon-eks-deployment#creating-configmap-for-node-configuration-file
You could set up the ssl/tls files as configmaps, or alternatively, use a stateful set and create a persistentvolume to hold the files. https://kubernetes.io/docs/concepts/storage/persistent-volumes/
See the 
tab on https://ignite.apache.org/docs/latest/installation/kubernetes/amazon-eks-deployment#creating-pod-configuration for instructions on how to mount persistent volumes for an Ignite Stateful set.
