Skip to content

Update to support route registrar move to backend endpoints only being TLS #343

New issue
New issue
Open
Open
Update to support route registrar move to backend endpoints only being TLS#343
Labels
squad-success
@ChrisMcGowan

Description

@ChrisMcGowan
ChrisMcGowan
opened on Feb 5, 2024

In an upcoming version of route_registrar in the routing release, the runtime WG is advising that only TLS enabled backend endpoints will be supported. cloud.gov needs to make sure all deployments and releases using route_registrar to route through Cloud Foundry are using TLS for the back end endpoint that is being registered.

Notes

  • From end web services needs to be using TLS
  • The CA used for these certs needs to be trusted by the gorouter - use MasterBosh for CA

Acceptance Criteria

  • Determine if front end web services supports TLS - upgrade if needed
  • Create new credhub based certificates to use via ops files
  • Update documentation reflecting the change
  • Update deployment repos and pipelines as needed

Metadata

Metadata

Assignees

No one assigned

    Labels

    squad-success

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions