Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Provide option to run reload POST call in insecure mode when tls is enabled on app endpoint #112

Open
gmhegde86 opened this issue Oct 23, 2024 · 0 comments
Open

Provide option to run reload POST call in insecure mode when tls is enabled on app endpoint #112

gmhegde86 opened this issue Oct 23, 2024 · 0 comments

Comments

@gmhegde86
Copy link

I am using config reloader to reload alertmanager app on a configmap change, the endpoint has https with mtls enabled, however the config-reloader fails to reload with the following error:

2024/10/23 04:26:10 Watching directory: "/etc/alertmanager/config"
2024/10/23 04:26:10 Watching directory: "/etc/alertmanager/tls_assets"
2024/10/23 04:27:27 config map updated
2024/10/23 04:27:32 error: Post https://localhost:9093/-/reload: x509: certificate signed by unknown authority
2024/10/23 04:27:32 config map updated
2024/10/23 04:27:32 error: Post https://localhost:9093/-/reload: x509: certificate signed by unknown authority

The certificate used is root ca cert of our organization. When we looked into this error, a workaround suggested is to run the POST call with insecure mode (-k curl option/insecureSkipVerify=True for apps), however there doesn't isn't any configurable option to run the reload post call in insecure mode
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@gmhegde86