Skip to content

Add option to provide a custom tls.Config to allow control over the tls connection #56

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
jwatson-gcu wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Add option to provide a custom tls.Config to allow control over the tls connection #56

jwatson-gcu wants to merge 1 commit into from
+23 −10

Conversation

@jwatson-gcu
Copy link

@jwatson-gcu jwatson-gcu commented Sep 15, 2021

This PR proposes two things:

  1. Adding a service.ServiceOption to provide a tls.Config to NewNimbleGroupService() which is in turn used by resty.Client

    The current behavior hard codes the tls connection to skip certificate verification, which is something that is not allowed in our security environment.

	restyClient.SetTLSClientConfig(&tls.Config{
		InsecureSkipVerify: true,
	})
  1. When using a Tenant User, certificates are fully validated.

Signed-off-by: Joseph Watson jwatson@genisyscu.org

@jwatson-gcu
Add option to provide a custom tls.Config to allow control over the tls
f773364 
connection

Signed-off-by: Joseph Watson <jwatson@genisyscu.org>
@jwatson-gcu
Copy link
Author

jwatson-gcu commented Sep 15, 2021

Example usage:

	nimbleClient, err := service.NewNimbleGroupService(
		service.WithHost(config.Host),
		service.WithUser(config.User),
		service.WithPassword(config.Password),
		service.WithTLSConfig(tlsConfig),
	)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@raunakkumar raunakkumar Awaiting requested review from raunakkumar raunakkumar is a code owner

@rgcostea rgcostea Awaiting requested review from rgcostea

@rkumpf rkumpf Awaiting requested review from rkumpf rkumpf is a code owner

@suneeth51 suneeth51 Awaiting requested review from suneeth51 suneeth51 is a code owner

@vidhutsingh vidhutsingh Awaiting requested review from vidhutsingh vidhutsingh is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@jwatson-gcu