-
Notifications
You must be signed in to change notification settings - Fork 4.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add template for ssl config reference settings #20357
Add template for ssl config reference settings #20357
Conversation
❕ Build Aborted
Expand to view the summary
Build stats
Test stats 🧪
Test errorsExpand to view the tests failures
Steps errorsExpand to view the steps failures
Log outputExpand to view the last 100 lines of log output
|
# this allow you to ensure that a specific certificate is used to validate the chain of trust. | ||
# | ||
# The pin is a base64 encoded string of the SHA-256 fingerprint. | ||
#ssl.ca_sha256: "" |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The commit looks somewhat bloated due to minor differences between SSL documentation. Maybe it would better to use the config from auditbeat as base for the template?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It's bloated because the Elasticsearch output's ssl config (chosen as the source of all ssl config options) was not aligned with logstash, kafka, redis, kibana, and monitoring's config.
Pinging @elastic/integrations (Team:Integrations) |
Pinging @elastic/siem (Team:SIEM) |
fbf13b7
to
9b0b9a6
Compare
run tests |
1 similar comment
run tests |
Use a shared template for the ssl options in reference configs. The reduces duplication of the SSL settings in config templates and ensures that the reference configs are consistent across outputs and monitoring. I provided an `indent` function in case this config template needed to be reused at various indentation levels, but it turns out that all of the uses so far required an indentation of 2 (so I could have just indented ssl.reference.yml.tmpl manually).
9b0b9a6
to
8725ec9
Compare
* Add template for ssl config reference settings Use a shared template for the ssl options in reference configs. The reduces duplication of the SSL settings in config templates and ensures that the reference configs are consistent across outputs and monitoring. I provided an `indent` function in case this config template needed to be reused at various indentation levels, but it turns out that all of the uses so far required an indentation of 2 (so I could have just indented ssl.reference.yml.tmpl manually). * Indent any non-whitespace containing lines (cherry picked from commit 9e4d4f2)
* Add template for ssl config reference settings Use a shared template for the ssl options in reference configs. The reduces duplication of the SSL settings in config templates and ensures that the reference configs are consistent across outputs and monitoring. I provided an `indent` function in case this config template needed to be reused at various indentation levels, but it turns out that all of the uses so far required an indentation of 2 (so I could have just indented ssl.reference.yml.tmpl manually). * Indent any non-whitespace containing lines (cherry picked from commit 9e4d4f2)
* Add template for ssl config reference settings Use a shared template for the ssl options in reference configs. The reduces duplication of the SSL settings in config templates and ensures that the reference configs are consistent across outputs and monitoring. I provided an `indent` function in case this config template needed to be reused at various indentation levels, but it turns out that all of the uses so far required an indentation of 2 (so I could have just indented ssl.reference.yml.tmpl manually). * Indent any non-whitespace containing lines
What does this PR do?
Use a shared template for the ssl options in reference configs.
I provided an
indent
function in case this config template needed to be reusedat various indentation levels, but it turns out that all of the uses so far required
an indentation of 2 (so I could have just indented ssl.reference.yml.tmpl manually).
Why is it important?
The reduces duplication of the SSL settings in config templates and ensures that the
reference configs are consistent across outputs and monitoring.
Checklist
CHANGELOG.next.asciidoc
orCHANGELOG-developer.next.asciidoc
.Author's Checklist
Related issues