Comments (7)
madvimer
commented on May 27, 2024
Any updates on this. we have a requirement to implement ssl. Only option i see right now is to make changes to common.sh and run-mongod. Can this be achieved as asked ?
from mongodb-container.
omron93
commented on May 27, 2024
@madvimer I hope this issue could be solved by using s2i to extend the image. So waiting to #287 to be merged. You can test the code from that PR if that works for you.
@UncleAlbie Can you estimate when you will be ready to review the PR?
from mongodb-container.
panovotn
commented on May 27, 2024
@omron93 I'll review #287 by tomorrow afternoon.
from mongodb-container.
omron93
commented on May 27, 2024
#287 is merged and changes are available in docker.io/centos/mongodb-36-centos7 image already.
You can solve this issue by having folders like this:
myapp/
└── mongodb-ssl
├── ca.pem
└── mongodb.pem
and either using build feature in openshift or invoke s2i manually: s2i build myapp/ centos/mongodb-36-centos7 mongodb-ssl-36-centos7 and use the new image docker run -ti -e MONGODB_ADMIN_PASSWORD=admin mongodb-ssl-36-centos7
@SimonVuong @madvimer Any feedback is welcomed.
from mongodb-container.
madvimer
commented on May 27, 2024
Thank you. I do have a follow up question
I understand that eval was removed and replaced with "-host localhost" option. MongoDB docs specify that with SSL enabled it becomes mandatory to specify hostname( localhost will not work). Is my understanding correct on this or am i missing something
from mongodb-container.
omron93
commented on May 27, 2024
I understand that eval was removed and replaced with "-host localhost" option. MongoDB docs specify that with SSL enabled it becomes mandatory to specify hostname( localhost will not work). Is my understanding correct on this or am i missing something
Thanks, you are right. I've missed it first.
I'm thinking about it and I see no other option than having to specify localhost in SAN of SSL certificate.
Basically in the container 'localhost' and 'hostname` can be resolved. And the hostname often changes with every container start. Also IMHO using real server/certificate domain for "internal" connection isn't good idea (although it could be possible if set up properly). This would be also complicated in openshift because connection ability from outside of the cluster needs to be configured explicitly.
@madvimer Do you have any idea how to solve this?
from mongodb-container.
hhorak
commented on May 27, 2024
mongodb container is not maintained any more in this org. closing.
from mongodb-container.
Related Issues (20)
- Create StatefulSet deployment for PostgreSQL HOT 2
- Replication support HOT 1
- erroneous error message when specifying admin password and a database name HOT 3
- Having an external route for mongo HOT 10
- Using this for production apps? HOT 5
- Deploying with glusterfs storage volume HOT 2
- run-mongod ignores rest of arguments HOT 1
- petset-replicas - unclear shutdown HOT 6
- Document how to back-up data from container HOT 2
- Provide example, test and doc for using own SSL cert HOT 1
- connecting as admin via gui HOT 2
- Support for journaling HOT 3
- Regression introduce with restarting slave pods with PVs HOT 3
- Publish Mongodb 4 image HOT 5
- First replica set member is not adding to existing replica set after failure HOT 5
- PVC with replicas HOT 2
- Exception in NodeJS app when new version deployed HOT 1
- OpenShift InstantiateTemplate is not generating admin password HOT 1
- MongoDB images newer than 3.6? HOT 2
- upgrade to v > 4.0 HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from mongodb-container.