Uploaded image for project: 'Couchbase Kubernetes'
  1. Couchbase Kubernetes
  2. K8S-2551

Public CA LDAP Support

    XMLWordPrintable

Details

    • Improvement
    • Status: In Progress
    • Major
    • Resolution: Unresolved
    • None
    • not-targeted
    • operator
    • None
    • 7: ARM arch? CMOS?, 9: R&D, leftovers, 11: Blogs, Training, leftovers
    • 5

    Description

      We require that the LDAP CA be specified, implying we only really support a private PKI.  There are however people who want to put their enterprise's authentication on the public internet and signed by a public CA, so we need to loosen the LDAP CA rules.

      Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          Ascending order - Click to sort in descending order
          simon.murray Simon Murray created issue -
          simon.murray Simon Murray made changes -
          Field Original Value New Value
          Rank Ranked higher
          simon.murray Simon Murray made changes -
          Story Points 1 5
          simon.murray Simon Murray made changes -
          Assignee Simon Murray [ simon.murray ] Alex Emery [ JIRAUSER26037 ]
          simon.murray Simon Murray made changes -
          Sprint 7: ARM arch? CMOS? [ 2023 ]
          simon.murray Simon Murray made changes -
          Rank Ranked lower
          simon.murray Simon Murray made changes -
          Rank Ranked higher
          Alex.emery Alex Emery made changes -
          Status Open [ 1 ] In Progress [ 3 ]
          ingenthr Matt Ingenthron made changes -
          Sprint 7: ARM arch? CMOS? [ 2023 ] 7: ARM arch? CMOS?, 9: R&D, leftovers [ 2023, 2041 ]
          ingenthr Matt Ingenthron made changes -
          Sprint 7: ARM arch? CMOS?, 9: R&D, leftovers [ 2023, 2041 ] 7: ARM arch? CMOS?, 9: R&D, leftovers, 11: Blogs, Training, leftovers [ 2023, 2041, 2062 ]
          ingenthr Matt Ingenthron made changes -
          Sprint 7: ARM arch? CMOS?, 9: R&D, leftovers, 11: Blogs, Training, leftovers [ 2023, 2041, 2062 ] 7: ARM arch? CMOS?, 9: R&D, leftovers, 11: Blogs, Training, leftovers, 13: Release [ 2023, 2041, 2062, 2098 ]
          ingenthr Matt Ingenthron made changes -
          Sprint 7: ARM arch? CMOS?, 9: R&D, leftovers, 11: Blogs, Training, leftovers, 13: Release [ 2023, 2041, 2062, 2098 ] 7: ARM arch? CMOS?, 9: R&D, leftovers, 11: Blogs, Training, leftovers [ 2023, 2041, 2062 ]
          ingenthr Matt Ingenthron made changes -
          Rank Ranked higher
          Alex.emery Alex Emery added a comment -

          Server maintains a trust store separate from `/etc/ssl/` so I don't think this is possible.

          Multiple root CA support means users could just upload the CA they desired and achieve the same functionality 

           

          Alex.emery Alex Emery added a comment - Server maintains a trust store separate from `/etc/ssl/` so I don't think this is possible. Multiple root CA support means users could just upload the CA they desired and achieve the same functionality   
          simon.murray Simon Murray made changes -
          Rank Ranked lower

          People

            Alex.emery Alex Emery
            simon.murray Simon Murray
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:

              Gerrit Reviews

                There are no open Gerrit changes

                PagerDuty