fonoster / routr

⚡ The future of programmable SIP servers.
https://routr.io
MIT License
1.42k stars 147 forks source link

Fix missing self signed certs #213

Closed psanders closed 1 year ago

psanders commented 1 year ago

Description

This PR addresses the omission of the self-signed certificate in the Helm distribution. It also modifies the convert-to-p12.sh to include the full chain of certificates when the ca.crt is available, which is the case for our self-signed certificates.

In addition, this PR improves the server's security by moving the EdgePort configuration to a secret, instead of using configmaps, given that the file contains sensitive information.

Type of change

How Has This Been Tested?

I ran the Helm chart on my local k8s to ensure that the certificates function correctly when tls is enabled. I tested this setup using Blink Pro, and the client registered perfectly.

Checklist: