Currently it's not possible to connect to a MySQL server through SSL. This PR adds a MYSQL_CA_CERT environment variable which allows us to add a CA (Certificate Authority) certificate. When this certificate is provided, it is added to the MySQL connection options, and invalid SSL handshakes / certificates are rejected.
Related PRs have been made in the api, image & kubernetes repositories:
Description
Currently it's not possible to connect to a MySQL server through SSL. This PR adds a
MYSQL_CA_CERT
environment variable which allows us to add a CA (Certificate Authority) certificate. When this certificate is provided, it is added to the MySQL connection options, and invalid SSL handshakes / certificates are rejected.Related PRs have been made in the api, image & kubernetes repositories:
https://github.com/openstad/openstad-api/pull/241 https://github.com/openstad/openstad-image-server/pull/35 https://github.com/openstad/openstad-kubernetes/pull/78
Issue reference
Type of change
New feature through an environment variable. Keeps backwards compatibility.
Documentation
See README.md
Tests
Locally
Branch