search

jenkins-x / jx

Jenkins X provides automated CI+CD for Kubernetes with Preview Environments on Pull Requests using Cloud Native pipelines from Tekton
https://jenkins-x.io/
Apache License 2.0
4.57k stars 787 forks source link

[v3][Security] Jenkins X without internet connection #8061

Open keskad opened 2 years ago

keskad commented 2 years ago

Hi,

I have a question regarding placing JX v3 inside an isolated network. I noticed that there are ghcr.io images used and inside a few containers are fetching jx plugins from GitHub.

Is it possible to close outgoing network connection? What would need to be done? What about updates of jx and images? Could a HTTP proxy be used? (currently I see that jx does not support it probably)

Background:

Thanks for engagement :slightly_smiling_face:

ankitm123 commented 2 years ago

The only thing that comes to mind is how will lighthouse work in that restricted environment? The bi-directional nature of the communication between the scm provider and lighthouse would be something to look out for.

One alternative might be to use gitea hosted inside the kubernetes cluster ...

keskad commented 2 years ago

Sorry, forgot to say - I'm using Gitlab actually inside the private network. Cluster has and will have access to gitlab.