Request feature to support self-signed cert for cert validation - Githubissues

dynatrace-oss / dynatrace-gcp-monitor

Dynatrace integration for Google Cloud Platform monitoring

https://www.dynatrace.com/support/help/technology-support/cloud-platforms/google-cloud-platform/

Apache License 2.0

35 stars 20 forks source link

Request feature to support self-signed cert for cert validation #397

Closed peijunzh closed 1 year ago

peijunzh commented 1 year ago

In file https://github.com/dynatrace-oss/dynatrace-gcp-monitor/blob/master/k8s/helm-chart/dynatrace-gcp-monitor/values.yaml, there are following lines:

requireValidCertificate: if true function requires valid SSL certificates when communicating with Dynatrace cluster

may be used to bypass SSL certificates errors when traffic is proxied through Active Gate with self-signed certificate.

Allowed values: "true"/"yes", "false"/"no"

requireValidCertificate: "true"

Could please add feature to support self-signed certificate as following? Thanks.

set requireValidCertificate as"true".
add a new variable like "selfSignedCert" which accept PEM format cert, or variable like "selfSignedCA" which accept PEM format CA cert(so multiple certs signed by this CA can be validated).
Once dyntrace-gcp-monitor pod is running and talk to Dynatrace ActiveGate which has cert as "selfSignedCert" or has cert signed by "selfSignedCA", it can accept the self-signed cert.

joaquinfilipic-dynatrace commented 1 year ago

AFAIK, that would depend on the AG's acceptance, not only up to this integration. Please go to DT community for this request: https://community.dynatrace.com/t5/Dynatrace-product-ideas/idb-p/DynatraceProductIdeas