ITA: Ensure https_proxy is taken into consideration in the deployment

confidential-containers / trustee

Attestation and Secret Delivery Components

Apache License 2.0

67 stars 88 forks source link

ITA: Ensure https_proxy is taken into consideration in the deployment #567

Open fidencio opened 1 week ago

fidencio commented 1 week ago

Describe the bug

As the deployment has no knowledge about the https_proxy env var, the kbs container will not be able to properly startup the kbs service as it cannot contact the ITA server.

How to reproduce

Deploy ITA behind proxies using the Kata Containers CI, and you'll see that the pod_checker will fail.

CoCo version information

latest

What TEE are you seeing the problem on

Tdx

Failing command and relevant log output

No response

Xynnn007 commented 1 week ago

Hi @fidencio , in which way you set the HTTPS_PROXY env?

cc @mythi

mythi commented 1 week ago

Perhaps we need to prioritize getting #361 fixed so that "downstreams" can apply kustomizations on top of what trustee repo offers more easily.