Closed artyom-p closed 5 months ago
Hey @artyom-p thanks for bringing this up. At the moment, the default Infisical connection configuration doesn't account for TLS. We wanted to keep the to keep the connection string simple but I understand adding TLS would certainly add a layer of security when your instance of infisical is communicating with DB. I will bring this up with the team and let you know when we can plan for this in an up coming sprint. If possible, please use non TLS enabled db for the time being
Hey @artyom-p. Can you try using tlsAllowInvalidHostnames=true
instead?
https://www.mongodb.com/docs/manual/reference/connection-string/
@sheensantoscapadngan works!
Hey @maidul98 is there any update on this issue? I am trying to use MongoDB Atlas with Infisical and use the TLS connection and this is quite a blocker :/
@renatoaraujo if you are able to put together a PR, i'm happy to review it. Just ensure that current functionality isn't effected
Closing as we moved away from monogdb
Describe the bug
We try to run the Infisical in Kubernetes and use our own MongoDB instance running in the cluster. Our instance is configured to use self-signed certs. Specifying external connection string in the Infisical helm chart
To Reproduce
Expected behavior
sslInvalidHostNameAllowed flag should instruct client to not validate self signed certificate domain
Screenshots
Platform you are having the issue on:
EKS 1.24