From 0816ac2dfdb4533bc1cbe2afbbda82bf1d48d630 Mon Sep 17 00:00:00 2001 From: Yong Zhang Date: Fri, 23 Apr 2021 12:43:44 +0800 Subject: [PATCH] Reduce the TLS common name length (#115) --- *Motivation* Reduce the TLS command name to avoid getting a too long name that could not generate a certificate. --- charts/pulsar/templates/tls-certs-internal.yaml | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/charts/pulsar/templates/tls-certs-internal.yaml b/charts/pulsar/templates/tls-certs-internal.yaml index dc6112e..a766b3d 100644 --- a/charts/pulsar/templates/tls-certs-internal.yaml +++ b/charts/pulsar/templates/tls-certs-internal.yaml @@ -35,7 +35,7 @@ spec: {{ toYaml .Values.tls.common.organization | indent 2 }} # The use of the common name field has been deprecated since 2000 and is # discouraged from being used. - commonName: "*.{{ template "pulsar.fullname" . }}-{{ .Values.proxy.component }}.{{ template "pulsar.namespace" . }}.svc.{{ .Values.clusterDomain }}" + commonName: "{{ template "pulsar.fullname" . }}-{{ .Values.proxy.component }}" isCA: false keySize: {{ .Values.tls.common.keySize }} keyAlgorithm: {{ .Values.tls.common.keyAlgorithm }} @@ -77,7 +77,7 @@ spec: {{ toYaml .Values.tls.common.organization | indent 2 }} # The use of the common name field has been deprecated since 2000 and is # discouraged from being used. - commonName: "*.{{ template "pulsar.fullname" . }}-{{ .Values.broker.component }}.{{ template "pulsar.namespace" . }}.svc.{{ .Values.clusterDomain }}" + commonName: "{{ template "pulsar.fullname" . }}-{{ .Values.broker.component }}" isCA: false keySize: {{ .Values.tls.common.keySize }} keyAlgorithm: {{ .Values.tls.common.keyAlgorithm }} @@ -119,7 +119,7 @@ spec: {{ toYaml .Values.tls.common.organization | indent 2 }} # The use of the common name field has been deprecated since 2000 and is # discouraged from being used. - commonName: "*.{{ template "pulsar.fullname" . }}-{{ .Values.bookkeeper.component }}.{{ template "pulsar.namespace" . }}.svc.{{ .Values.clusterDomain }}" + commonName: "{{ template "pulsar.fullname" . }}-{{ .Values.bookkeeper.component }}" isCA: false keySize: {{ .Values.tls.common.keySize }} keyAlgorithm: {{ .Values.tls.common.keyAlgorithm }} @@ -160,7 +160,7 @@ spec: {{ toYaml .Values.tls.common.organization | indent 2 }} # The use of the common name field has been deprecated since 2000 and is # discouraged from being used. - commonName: "*.{{ template "pulsar.fullname" . }}-{{ .Values.autorecovery.component }}.{{ template "pulsar.namespace" . }}.svc.{{ .Values.clusterDomain }}" + commonName: "{{ template "pulsar.fullname" . }}-{{ .Values.autorecovery.component }}" isCA: false keySize: {{ .Values.tls.common.keySize }} keyAlgorithm: {{ .Values.tls.common.keyAlgorithm }} @@ -198,7 +198,7 @@ spec: {{ toYaml .Values.tls.common.organization | indent 2 }} # The use of the common name field has been deprecated since 2000 and is # discouraged from being used. - commonName: "*.{{ template "pulsar.fullname" . }}-{{ .Values.toolset.component }}.{{ template "pulsar.namespace" . }}.svc.{{ .Values.clusterDomain }}" + commonName: "{{ template "pulsar.fullname" . }}-{{ .Values.toolset.component }}" isCA: false keySize: {{ .Values.tls.common.keySize }} keyAlgorithm: {{ .Values.tls.common.keyAlgorithm }} @@ -236,7 +236,7 @@ spec: {{ toYaml .Values.tls.common.organization | indent 2 }} # The use of the common name field has been deprecated since 2000 and is # discouraged from being used. - commonName: "*.{{ template "pulsar.fullname" . }}-{{ .Values.zookeeper.component }}.{{ template "pulsar.namespace" . }}.svc.{{ .Values.clusterDomain }}" + commonName: "{{ template "pulsar.fullname" . }}-{{ .Values.zookeeper.component }}" isCA: false keySize: {{ .Values.tls.common.keySize }} keyAlgorithm: {{ .Values.tls.common.keyAlgorithm }}