luxolus
/
open-consul
2
0
Fork 0
Code Issues 1 Pull Requests Packages Releases Wiki Activity

[docs] update terminating gateway docs for trust store path (#13432) 

* update terminating gateway docs for trust store
* Update website/content/docs/k8s/connect/terminating-gateways.mdx
Co-authored-by: trujillo-adam <47586768+trujillo-adam@users.noreply.github.com>
This commit is contained in:
Kyle Schochenmaier 2022-06-14 12:29:33 -05:00 committed by GitHub
parent 9ab1c0993c
commit df468af991
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
website/content/docs/k8s/connect/terminating-gateways.mdx
View File

@ -205,13 +205,16 @@ metadata:
spec:
services:
- name: example-https
caFile: /etc/ssl/cert.pem
caFile: /etc/ssl/certs/ca-certificates.crt
```
</CodeBlockConfig>
~> If TLS is enabled a `caFile` must be provided, it must point to the system trust store of the terminating gateway
container (`/etc/ssl/cert.pem`).
If TLS is enabled, you must include the `caFile` parameter that points to the system trust store of the terminating gateway container. By default, the trust store is located in the `/etc/ssl/certs/ca-certificates.crt` directory.
Configure the `caFile` parameter to point to the `/etc/ssl/cert.pem` directory if TLS is enabled and you are using one of the following components:
* Consul Helm chart 0.43 or older
* Or an Envoy image with an alpine base image
Apply the `TerminatingGateway` resource with `kubectl apply`: