Skip to content

chore: update app-proxy image tags to 1.3627.0 - send process env into simple-git calls #565

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

chore: update app-proxy image tags to 1.3627.0 - send process env into simple-git calls #565

wants to merge 3 commits into from
+2 −3

Conversation

ATGardner
Copy link
Contributor

What

app-proxy will send current env vars to simple-git execution
added GIT_SSAL_CAINFO to let git binary access self-signed servers

Why

on-prem git servers with self-signed certificates would fail cloning.

Notes

@ATGardner ATGardner requested review from a team as code owners July 7, 2025 14:52
@ATGardner ATGardner self-assigned this Jul 7, 2025
ATGardner
ATGardner commented Jul 7, 2025
View reviewed changes
charts/gitops-runtime/templates/app-proxy/_app-proxy-env.yaml
@@ -12,7 +12,6 @@ GIT_USERNAME: {{ .Values.global.runtime.gitCredentials.username }}
GIT_PASSWORD:
{{- include "codefresh-gitops-runtime.runtime-gitcreds.password.env-var-value" . | nindent 2 }}
{{- end }}
WORKFLOW_PIPELINES_WEBHOOKS_TLS_SECRET: codefresh-workflow-pipelines-tls
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

was not used anywhere in the code

@ATGardner
Copy link
Contributor Author

/e2e

2 similar comments
@ATGardner
Copy link
Contributor Author

/e2e

@ATGardner
Copy link
Contributor Author

/e2e

@ATGardner
Copy link
Contributor Author

/e2e

1 similar comment
@ATGardner
Copy link
Contributor Author

/e2e

ATGardner added 3 commits July 8, 2025 18:39
@ATGardner
chore: update app-proxy image tags to 1.3627.0 - send process env int…
542c92f 
…o simple-git calls
@ATGardner
feat: add GIT_SSL_CAINFO environment variable for secure Git operations
2a3b509 
This change introduces the GIT_SSL_CAINFO variable to specify the
location of the CA certificate for SSL connections, enhancing the
security of Git operations within the app-proxy environment.
Additionally, it removes the WORKFLOW_PIPELINES_WEBHOOKS_TLS_SECRET
variable to streamline the configuration.
@ATGardner
chore: remove GIT_SSL_CAINFO environment variable from container config
22fc140 
This change removes the GIT_SSL_CAINFO variable from the environment
variables defined for the cap-app-proxy container. This adjustment
ensures that the configuration aligns with the current security
standards and practices.
@ATGardner
Copy link
Contributor Author

/e2e

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@zarbis zarbis zarbis approved these changes

@ilia-medvedev-codefresh ilia-medvedev-codefresh ilia-medvedev-codefresh approved these changes

Assignees

@ATGardner ATGardner

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@ATGardner @zarbis @ilia-medvedev-codefresh