Skip to content

Add Mutual TLS support to GitRepository #1778

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 4 commits into from
Apr 23, 2025
Merged

Add Mutual TLS support to GitRepository #1778

merged 4 commits into from
Apr 23, 2025

Conversation

stefanprodan
Copy link
Member

@stefanprodan stefanprodan commented Apr 22, 2025
edited
Loading

Update fluxcd/pkg/git to v0.26.0 which includes:

Closes: #1761

Git HTTPS Mutual TLS authentication

To authenticate towards a Git repository over HTTPS using mutual TLS, the referenced Secret's .data should contain the following keys:

  • tls.crt and tls.key, to specify the client certificate and private key used
    for TLS client authentication. These must be used in conjunction, i.e.
    specifying one without the other will lead to an error.
  • ca.crt, to specify the CA certificate used to verify the server, which is
    required if the server is using a self-signed certificate.
---
apiVersion: v1
kind: Secret
metadata:
  name: https-tls-certs
  namespace: default
type: Opaque
data:
  tls.crt: <BASE64>
  tls.key: <BASE64>
  ca.crt: <BASE64>

@stefanprodan stefanprodan added enhancement New feature or request area/git Git related issues and pull requests labels Apr 22, 2025
@stefanprodan stefanprodan mentioned this pull request Apr 22, 2025
Merged
@stefanprodan stefanprodan merged commit 034bc49 into main Apr 23, 2025
10 checks passed
@stefanprodan stefanprodan deleted the git-mutual-tls branch April 23, 2025 05:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@hiddeco hiddeco hiddeco approved these changes

@matheuscscp matheuscscp Awaiting requested review from matheuscscp

Assignees
No one assigned
Labels
area/git Git related issues and pull requests enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

mTLS support for GitRepositories
2 participants
@stefanprodan @hiddeco