From 0d9b80ef7411c4c1d074d8e687c60a6731d02f11 Mon Sep 17 00:00:00 2001 From: Kenjiro Nakayama Date: Mon, 8 Aug 2022 19:15:46 +0900 Subject: [PATCH] Enable internal-tls on ocp-tls (#1203) * Enable internal-tls on OCP 4.8 * Use tls to match JOB name --- openshift/e2e-common.sh | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/openshift/e2e-common.sh b/openshift/e2e-common.sh index 5c072cc94e29..28067e85b360 100644 --- a/openshift/e2e-common.sh +++ b/openshift/e2e-common.sh @@ -229,6 +229,14 @@ spec: logging.enable-request-log: "true" EOF + # TODO: Only one cluster enables internal-tls but it should be enabled by default when the feature is stable. + if [[ ${JOB_NAME} =~ "tls" ]]; then + oc patch knativeserving knative-serving \ + -n "${SERVING_NAMESPACE}" \ + --type merge --patch '{"spec": {"config": {"network": {"internal-encryption": "true"}}}}' + echo "internal-encryption is enabled" + fi + # Wait for 4 pods to appear first timeout 600 '[[ $(oc get pods -n $SERVING_NAMESPACE --no-headers | wc -l) -lt 4 ]]' || return 1 wait_until_pods_running $SERVING_NAMESPACE || return 1